From null at suse.de Thu Aug 1 07:26:30 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Thu, 01 Aug 2024 07:26:30 -0000 Subject: SUSE-SU-2024:1402-2: moderate: Security update for opensc Message-ID: <172249719017.3288.1292512179545147656@smelt2.prg2.suse.org> # Security update for opensc Announcement ID: SUSE-SU-2024:1402-2 Rating: moderate References: * bsc#1219386 Cross-References: * CVE-2023-5992 CVSS scores: * CVE-2023-5992 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:N/A:N * CVE-2023-5992 ( NVD ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N Affected Products: * SUSE Linux Enterprise Micro 5.5 An update that solves one vulnerability can now be installed. ## Description: This update for opensc fixes the following issues: * CVE-2023-5992: Fixed side-channel leaks while stripping encryption PKCS#1 padding (bsc#1219386) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2024-1402=1 ## Package List: * SUSE Linux Enterprise Micro 5.5 (aarch64 ppc64le s390x x86_64) * opensc-0.22.0-150400.3.9.1 * opensc-debugsource-0.22.0-150400.3.9.1 * opensc-debuginfo-0.22.0-150400.3.9.1 ## References: * https://www.suse.com/security/cve/CVE-2023-5992.html * https://bugzilla.suse.com/show_bug.cgi?id=1219386 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Thu Aug 1 07:26:44 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Thu, 01 Aug 2024 07:26:44 -0000 Subject: SUSE-SU-2024:1991-2: important: Security update for unbound Message-ID: <172249720451.3288.16691763257612972742@smelt2.prg2.suse.org> # Security update for unbound Announcement ID: SUSE-SU-2024:1991-2 Rating: important References: * bsc#1202031 * bsc#1202033 * bsc#1203643 * bsc#1219823 * bsc#1219826 * jsc#PED-8333 Cross-References: * CVE-2022-30698 * CVE-2022-30699 * CVE-2022-3204 * CVE-2023-50387 * CVE-2023-50868 CVSS scores: * CVE-2022-30698 ( SUSE ): 5.6 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L * CVE-2022-30698 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2022-30699 ( SUSE ): 5.6 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L * CVE-2022-30699 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2022-3204 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2022-3204 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2023-50387 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2023-50387 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2023-50868 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * SUSE Linux Enterprise Micro 5.5 An update that solves five vulnerabilities and contains one feature can now be installed. ## Description: This update for unbound fixes the following issues: unbound was updated to 1.20.0: * A lot of bugfixes and added features. For a complete list take a look at the changelog located at: /usr/share/doc/packages/unbound/Changelog or https://www.nlnetlabs.nl/projects/unbound/download/ Some Noteworthy Changes: * Removed DLV. The DLV has been decommisioned since unbound 1.5.4 and has been advised to stop using it since. The use of dlv options displays a warning. * Remove EDNS lame procedure, do not re-query without EDNS after timeout. * Add DNS over HTTPS * libunbound has been upgraded to major version 8 Security Fixes: * CVE-2023-50387: DNSSEC verification complexity can be exploited to exhaust CPU resources and stall DNS resolvers. [bsc#1219823] * CVE-2023-50868: NSEC3 closest encloser proof can exhaust CPU. [bsc#1219826] * CVE-2022-30698: Novel "ghost domain names" attack by introducing subdomain delegations. [bsc#1202033] * CVE-2022-30699: Novel "ghost domain names" attack by updating almost expired delegation information. [bsc#1202031] * CVE-2022-3204: NRDelegation attack leads to uncontrolled resource consumption (Non-Responsive Delegation Attack). [bsc#1203643] Packaging Changes: * Use prefixes instead of sudo in unbound.service * Remove no longer necessary BuildRequires: libfstrm-devel and libprotobuf-c- devel ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2024-1991=1 ## Package List: * SUSE Linux Enterprise Micro 5.5 (aarch64 ppc64le s390x x86_64) * unbound-debugsource-1.20.0-150100.10.13.1 * unbound-anchor-1.20.0-150100.10.13.1 * libunbound8-1.20.0-150100.10.13.1 * unbound-debuginfo-1.20.0-150100.10.13.1 * libunbound8-debuginfo-1.20.0-150100.10.13.1 ## References: * https://www.suse.com/security/cve/CVE-2022-30698.html * https://www.suse.com/security/cve/CVE-2022-30699.html * https://www.suse.com/security/cve/CVE-2022-3204.html * https://www.suse.com/security/cve/CVE-2023-50387.html * https://www.suse.com/security/cve/CVE-2023-50868.html * https://bugzilla.suse.com/show_bug.cgi?id=1202031 * https://bugzilla.suse.com/show_bug.cgi?id=1202033 * https://bugzilla.suse.com/show_bug.cgi?id=1203643 * https://bugzilla.suse.com/show_bug.cgi?id=1219823 * https://bugzilla.suse.com/show_bug.cgi?id=1219826 * https://jira.suse.com/browse/PED-8333 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Thu Aug 1 07:26:48 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Thu, 01 Aug 2024 07:26:48 -0000 Subject: SUSE-SU-2024:1438-2: important: Security update for qemu Message-ID: <172249720829.3288.4398945373519790919@smelt2.prg2.suse.org> # Security update for qemu Announcement ID: SUSE-SU-2024:1438-2 Rating: important References: * bsc#1213269 * bsc#1218889 * bsc#1222843 * bsc#1222845 Cross-References: * CVE-2023-3019 * CVE-2023-6683 * CVE-2024-3446 * CVE-2024-3447 CVSS scores: * CVE-2023-3019 ( SUSE ): 7.5 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H * CVE-2023-3019 ( NVD ): 6.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H * CVE-2023-6683 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-6683 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-3446 ( SUSE ): 8.2 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H * CVE-2024-3447 ( SUSE ): 6.0 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H Affected Products: * SUSE Linux Enterprise Micro 5.5 An update that solves four vulnerabilities can now be installed. ## Description: This update for qemu fixes the following issues: * CVE-2024-3447: Fixed heap buffer overflow in sdhci_write_dataport() (bsc#1222845) * CVE-2023-6683: Fixed NULL pointer dereference in qemu_clipboard_request() (bsc#1218889) * CVE-2024-3446: Fixed DMA reentrancy issue leads to double free vulnerability (bsc#1222843) * CVE-2023-3019: Fixed heap use-after-free in e1000e_write_packet_to_guest() (bsc#1213269) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2024-1438=1 ## Package List: * SUSE Linux Enterprise Micro 5.5 (aarch64 ppc64le s390x x86_64) * qemu-hw-display-virtio-gpu-7.1.0-150500.49.15.1 * qemu-ui-spice-core-7.1.0-150500.49.15.1 * qemu-chardev-spice-7.1.0-150500.49.15.1 * qemu-audio-spice-debuginfo-7.1.0-150500.49.15.1 * qemu-ui-opengl-7.1.0-150500.49.15.1 * qemu-hw-display-virtio-vga-7.1.0-150500.49.15.1 * qemu-ui-opengl-debuginfo-7.1.0-150500.49.15.1 * qemu-ui-spice-core-debuginfo-7.1.0-150500.49.15.1 * qemu-tools-debuginfo-7.1.0-150500.49.15.1 * qemu-chardev-spice-debuginfo-7.1.0-150500.49.15.1 * qemu-hw-display-qxl-7.1.0-150500.49.15.1 * qemu-tools-7.1.0-150500.49.15.1 * qemu-block-curl-7.1.0-150500.49.15.1 * qemu-guest-agent-7.1.0-150500.49.15.1 * qemu-hw-display-virtio-gpu-debuginfo-7.1.0-150500.49.15.1 * qemu-block-curl-debuginfo-7.1.0-150500.49.15.1 * qemu-guest-agent-debuginfo-7.1.0-150500.49.15.1 * qemu-debuginfo-7.1.0-150500.49.15.1 * qemu-hw-usb-redirect-debuginfo-7.1.0-150500.49.15.1 * qemu-debugsource-7.1.0-150500.49.15.1 * qemu-audio-spice-7.1.0-150500.49.15.1 * qemu-hw-usb-redirect-7.1.0-150500.49.15.1 * qemu-7.1.0-150500.49.15.1 * qemu-hw-display-virtio-vga-debuginfo-7.1.0-150500.49.15.1 * qemu-hw-display-qxl-debuginfo-7.1.0-150500.49.15.1 * SUSE Linux Enterprise Micro 5.5 (aarch64) * qemu-arm-debuginfo-7.1.0-150500.49.15.1 * qemu-arm-7.1.0-150500.49.15.1 * SUSE Linux Enterprise Micro 5.5 (noarch) * qemu-ipxe-1.0.0+-150500.49.15.1 * qemu-SLOF-7.1.0-150500.49.15.1 * qemu-sgabios-8-150500.49.15.1 * qemu-vgabios-1.16.0_0_gd239552-150500.49.15.1 * qemu-seabios-1.16.0_0_gd239552-150500.49.15.1 * SUSE Linux Enterprise Micro 5.5 (s390x) * qemu-s390x-debuginfo-7.1.0-150500.49.15.1 * qemu-s390x-7.1.0-150500.49.15.1 * SUSE Linux Enterprise Micro 5.5 (x86_64) * qemu-accel-tcg-x86-7.1.0-150500.49.15.1 * qemu-accel-tcg-x86-debuginfo-7.1.0-150500.49.15.1 * qemu-x86-7.1.0-150500.49.15.1 * qemu-x86-debuginfo-7.1.0-150500.49.15.1 * SUSE Linux Enterprise Micro 5.5 (ppc64le) * qemu-ppc-7.1.0-150500.49.15.1 * qemu-ppc-debuginfo-7.1.0-150500.49.15.1 ## References: * https://www.suse.com/security/cve/CVE-2023-3019.html * https://www.suse.com/security/cve/CVE-2023-6683.html * https://www.suse.com/security/cve/CVE-2024-3446.html * https://www.suse.com/security/cve/CVE-2024-3447.html * https://bugzilla.suse.com/show_bug.cgi?id=1213269 * https://bugzilla.suse.com/show_bug.cgi?id=1218889 * https://bugzilla.suse.com/show_bug.cgi?id=1222843 * https://bugzilla.suse.com/show_bug.cgi?id=1222845 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Thu Aug 1 08:30:19 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Thu, 01 Aug 2024 08:30:19 -0000 Subject: SUSE-SU-2024:2685-1: moderate: Security update for python-requests Message-ID: <172250101966.12919.7683034111603803922@smelt2.prg2.suse.org> # Security update for python-requests Announcement ID: SUSE-SU-2024:2685-1 Rating: moderate References: * bsc#1211674 Cross-References: * CVE-2023-32681 CVSS scores: * CVE-2023-32681 ( SUSE ): 6.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:N/A:N * CVE-2023-32681 ( NVD ): 6.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:N/A:N Affected Products: * openSUSE Leap Micro 5.3 * SUSE Enterprise Storage 7.1 * SUSE Linux Enterprise High Performance Computing 15 SP3 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 * SUSE Linux Enterprise Real Time 15 SP3 * SUSE Linux Enterprise Server 15 SP3 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 An update that solves one vulnerability can now be installed. ## Description: This update for python-requests fixes the following issues: * CVE-2023-32681: Fixed unintended leak of Proxy-Authorization header (bsc#1211674). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap Micro 5.3 zypper in -t patch openSUSE-Leap-Micro-5.3-2024-2685=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 zypper in -t patch SUSE-SLE-Product-HPC-15-SP3-LTSS-2024-2685=1 * SUSE Linux Enterprise Real Time 15 SP3 zypper in -t patch SUSE-2024-2685=1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 zypper in -t patch SUSE-SLE-Product-SLES-15-SP3-LTSS-2024-2685=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP3-2024-2685=1 * SUSE Enterprise Storage 7.1 zypper in -t patch SUSE-Storage-7.1-2024-2685=1 ## Package List: * openSUSE Leap Micro 5.3 (noarch) * python3-requests-2.24.0-150300.3.3.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (noarch) * python3-requests-2.24.0-150300.3.3.1 * SUSE Linux Enterprise Real Time 15 SP3 (noarch) * python3-requests-2.24.0-150300.3.3.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (noarch) * python3-requests-2.24.0-150300.3.3.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (noarch) * python3-requests-2.24.0-150300.3.3.1 * SUSE Enterprise Storage 7.1 (noarch) * python3-requests-2.24.0-150300.3.3.1 ## References: * https://www.suse.com/security/cve/CVE-2023-32681.html * https://bugzilla.suse.com/show_bug.cgi?id=1211674 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Thu Aug 1 08:30:22 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Thu, 01 Aug 2024 08:30:22 -0000 Subject: SUSE-SU-2024:1880-2: moderate: Security update for python-requests Message-ID: <172250102221.12919.1123234264094600308@smelt2.prg2.suse.org> # Security update for python-requests Announcement ID: SUSE-SU-2024:1880-2 Rating: moderate References: * bsc#1224788 Cross-References: * CVE-2024-35195 CVSS scores: * CVE-2024-35195 ( SUSE ): 6.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:N Affected Products: * SUSE Enterprise Storage 7.1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 * SUSE Linux Enterprise High Performance Computing 15 SP3 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise Server 15 SP3 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Manager Proxy 4.3 * SUSE Manager Retail Branch Server 4.3 * SUSE Manager Server 4.3 An update that solves one vulnerability can now be installed. ## Description: This update for python-requests fixes the following issues: * CVE-2024-35195: Fixed cert verification regardless of changes to the value of `verify` (bsc#1224788). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Manager Proxy 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Proxy-4.3-2024-1880=1 * SUSE Manager Retail Branch Server 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Retail-Branch- Server-4.3-2024-1880=1 * SUSE Manager Server 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Server-4.3-2024-1880=1 * SUSE Enterprise Storage 7.1 zypper in -t patch SUSE-Storage-7.1-2024-1880=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 zypper in -t patch SUSE-SLE-Product-HPC-15-SP3-LTSS-2024-1880=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2024-1880=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2024-1880=1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 zypper in -t patch SUSE-SLE-Product-SLED-15-SP4-LTSS-2024-1880=1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 zypper in -t patch SUSE-SLE-Product-SLES-15-SP3-LTSS-2024-1880=1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2024-1880=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP3-2024-1880=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2024-1880=1 ## Package List: * SUSE Manager Proxy 4.3 (noarch) * python3-requests-2.25.1-150300.3.9.1 * SUSE Manager Retail Branch Server 4.3 (noarch) * python3-requests-2.25.1-150300.3.9.1 * SUSE Manager Server 4.3 (noarch) * python3-requests-2.25.1-150300.3.9.1 * SUSE Enterprise Storage 7.1 (noarch) * python3-requests-2.25.1-150300.3.9.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (noarch) * python3-requests-2.25.1-150300.3.9.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (noarch) * python3-requests-2.25.1-150300.3.9.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (noarch) * python3-requests-2.25.1-150300.3.9.1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (noarch) * python3-requests-2.25.1-150300.3.9.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (noarch) * python3-requests-2.25.1-150300.3.9.1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (noarch) * python3-requests-2.25.1-150300.3.9.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (noarch) * python3-requests-2.25.1-150300.3.9.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (noarch) * python3-requests-2.25.1-150300.3.9.1 ## References: * https://www.suse.com/security/cve/CVE-2024-35195.html * https://bugzilla.suse.com/show_bug.cgi?id=1224788 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Fri Aug 2 08:39:30 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Fri, 02 Aug 2024 08:39:30 -0000 Subject: SUSE-SU-2024:2704-1: low: Security update for patch Message-ID: <172258797001.18191.13409228214791132008@smelt2.prg2.suse.org> # Security update for patch Announcement ID: SUSE-SU-2024:2704-1 Rating: low References: * bsc#1167721 Cross-References: * CVE-2019-20633 CVSS scores: * CVE-2019-20633 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L * CVE-2019-20633 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H Affected Products: * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 An update that solves one vulnerability can now be installed. ## Description: This update for patch fixes the following issues: * CVE-2019-20633: Fixed double-free/OOB read in pch.c (bsc#1167721) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise High Performance Computing 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-2704=1 * SUSE Linux Enterprise Server 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-2704=1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-2704=1 ## Package List: * SUSE Linux Enterprise High Performance Computing 12 SP5 (aarch64 x86_64) * patch-2.7.5-8.11.1 * patch-debuginfo-2.7.5-8.11.1 * patch-debugsource-2.7.5-8.11.1 * SUSE Linux Enterprise Server 12 SP5 (aarch64 ppc64le s390x x86_64) * patch-2.7.5-8.11.1 * patch-debuginfo-2.7.5-8.11.1 * patch-debugsource-2.7.5-8.11.1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 (ppc64le x86_64) * patch-2.7.5-8.11.1 * patch-debuginfo-2.7.5-8.11.1 * patch-debugsource-2.7.5-8.11.1 ## References: * https://www.suse.com/security/cve/CVE-2019-20633.html * https://bugzilla.suse.com/show_bug.cgi?id=1167721 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Fri Aug 2 12:30:05 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Fri, 02 Aug 2024 12:30:05 -0000 Subject: SUSE-SU-2024:2709-1: critical: Security update for docker Message-ID: <172260180582.26769.14227994910164695367@smelt2.prg2.suse.org> # Security update for docker Announcement ID: SUSE-SU-2024:2709-1 Rating: critical References: * bsc#1214855 * bsc#1221916 * bsc#1228324 Cross-References: * CVE-2024-41110 CVSS scores: * CVE-2024-41110 ( SUSE ): 9.9 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H Affected Products: * Containers Module 12 * SUSE Linux Enterprise High Performance Computing 12 SP2 * SUSE Linux Enterprise High Performance Computing 12 SP3 * SUSE Linux Enterprise High Performance Computing 12 SP4 * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise Server 12 * SUSE Linux Enterprise Server 12 SP1 * SUSE Linux Enterprise Server 12 SP2 * SUSE Linux Enterprise Server 12 SP3 * SUSE Linux Enterprise Server 12 SP4 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server for SAP Applications 12 * SUSE Linux Enterprise Server for SAP Applications 12 SP1 * SUSE Linux Enterprise Server for SAP Applications 12 SP2 * SUSE Linux Enterprise Server for SAP Applications 12 SP3 * SUSE Linux Enterprise Server for SAP Applications 12 SP4 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 An update that solves one vulnerability and has two security fixes can now be installed. ## Description: This update for docker fixes the following issues: * Update to Docker 25.0.6-ce. See upstream changelog online at * CVE-2024-41110: A Authz zero length regression that could lead to authentication bypass was fixed (bsc#1228324) * Fix BuildKit's symlink resolution logic to correctly handle non-lexical symlinks. (bsc#1221916) * Write volume options atomically so sudden system crashes won't result in future Docker starts failing due to empty files. (bsc#1214855) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * Containers Module 12 zypper in -t patch SUSE-SLE-Module-Containers-12-2024-2709=1 ## Package List: * Containers Module 12 (ppc64le s390x x86_64) * docker-25.0.6_ce-98.115.1 * docker-debuginfo-25.0.6_ce-98.115.1 ## References: * https://www.suse.com/security/cve/CVE-2024-41110.html * https://bugzilla.suse.com/show_bug.cgi?id=1214855 * https://bugzilla.suse.com/show_bug.cgi?id=1221916 * https://bugzilla.suse.com/show_bug.cgi?id=1228324 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Fri Aug 2 20:30:06 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Fri, 02 Aug 2024 20:30:06 -0000 Subject: SUSE-SU-2024:2723-1: important: Security update for the Linux Kernel RT (Live Patch 15 for SLE 15 SP5) Message-ID: <172263060698.7390.2676623238830928238@smelt2.prg2.suse.org> # Security update for the Linux Kernel RT (Live Patch 15 for SLE 15 SP5) Announcement ID: SUSE-SU-2024:2723-1 Rating: important References: * bsc#1223363 * bsc#1223683 * bsc#1225013 Cross-References: * CVE-2024-26828 * CVE-2024-26923 * CVE-2024-27398 CVSS scores: * CVE-2024-26828 ( SUSE ): 7.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:H * CVE-2024-26923 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-27398 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.5 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Live Patching 15-SP5 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 An update that solves three vulnerabilities can now be installed. ## Description: This update for the Linux Kernel 5.14.21-150500_13_55 fixes several issues. The following security issues were fixed: * CVE-2024-27398: Fixed use-after-free bug caused by sco_sock_timeout() (bsc#1225013). * CVE-2024-26923: Fixed false-positive lockdep splat for spin_lock() in __unix_gc() (bsc#1223683). * CVE-2024-26828: Fixed underflow in parse_server_interfaces() (bsc#1223363). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.5 zypper in -t patch SUSE-2024-2723=1 * SUSE Linux Enterprise Live Patching 15-SP5 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP5-2024-2723=1 ## Package List: * openSUSE Leap 15.5 (x86_64) * kernel-livepatch-5_14_21-150500_13_55-rt-3-150500.11.6.1 * kernel-livepatch-5_14_21-150500_13_55-rt-debuginfo-3-150500.11.6.1 * kernel-livepatch-SLE15-SP5-RT_Update_15-debugsource-3-150500.11.6.1 * SUSE Linux Enterprise Live Patching 15-SP5 (x86_64) * kernel-livepatch-5_14_21-150500_13_55-rt-3-150500.11.6.1 * kernel-livepatch-5_14_21-150500_13_55-rt-debuginfo-3-150500.11.6.1 * kernel-livepatch-SLE15-SP5-RT_Update_15-debugsource-3-150500.11.6.1 ## References: * https://www.suse.com/security/cve/CVE-2024-26828.html * https://www.suse.com/security/cve/CVE-2024-26923.html * https://www.suse.com/security/cve/CVE-2024-27398.html * https://bugzilla.suse.com/show_bug.cgi?id=1223363 * https://bugzilla.suse.com/show_bug.cgi?id=1223683 * https://bugzilla.suse.com/show_bug.cgi?id=1225013 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Fri Aug 2 20:33:08 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Fri, 02 Aug 2024 20:33:08 -0000 Subject: SUSE-SU-2024:2723-1: important: Security update for the Linux Kernel RT (Live Patch 15 for SLE 15 SP5) Message-ID: <172263078891.10294.5465778103536921056@smelt2.prg2.suse.org> # Security update for the Linux Kernel RT (Live Patch 15 for SLE 15 SP5) Announcement ID: SUSE-SU-2024:2723-1 Rating: important References: * bsc#1223363 * bsc#1223683 * bsc#1225013 Cross-References: * CVE-2024-26828 * CVE-2024-26923 * CVE-2024-27398 CVSS scores: * CVE-2024-26828 ( SUSE ): 7.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:H * CVE-2024-26923 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-27398 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.5 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Live Patching 15-SP5 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 An update that solves three vulnerabilities can now be installed. ## Description: This update for the Linux Kernel 5.14.21-150500_13_55 fixes several issues. The following security issues were fixed: * CVE-2024-27398: Fixed use-after-free bug caused by sco_sock_timeout() (bsc#1225013). * CVE-2024-26923: Fixed false-positive lockdep splat for spin_lock() in __unix_gc() (bsc#1223683). * CVE-2024-26828: Fixed underflow in parse_server_interfaces() (bsc#1223363). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.5 zypper in -t patch SUSE-2024-2723=1 * SUSE Linux Enterprise Live Patching 15-SP5 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP5-2024-2723=1 ## Package List: * openSUSE Leap 15.5 (x86_64) * kernel-livepatch-SLE15-SP5-RT_Update_15-debugsource-3-150500.11.6.1 * kernel-livepatch-5_14_21-150500_13_55-rt-3-150500.11.6.1 * kernel-livepatch-5_14_21-150500_13_55-rt-debuginfo-3-150500.11.6.1 * SUSE Linux Enterprise Live Patching 15-SP5 (x86_64) * kernel-livepatch-SLE15-SP5-RT_Update_15-debugsource-3-150500.11.6.1 * kernel-livepatch-5_14_21-150500_13_55-rt-3-150500.11.6.1 * kernel-livepatch-5_14_21-150500_13_55-rt-debuginfo-3-150500.11.6.1 ## References: * https://www.suse.com/security/cve/CVE-2024-26828.html * https://www.suse.com/security/cve/CVE-2024-26923.html * https://www.suse.com/security/cve/CVE-2024-27398.html * https://bugzilla.suse.com/show_bug.cgi?id=1223363 * https://bugzilla.suse.com/show_bug.cgi?id=1223683 * https://bugzilla.suse.com/show_bug.cgi?id=1225013 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Fri Aug 2 20:36:10 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Fri, 02 Aug 2024 20:36:10 -0000 Subject: SUSE-SU-2024:2723-1: important: Security update for the Linux Kernel RT (Live Patch 15 for SLE 15 SP5) Message-ID: <172263097012.7390.5348227821921872081@smelt2.prg2.suse.org> # Security update for the Linux Kernel RT (Live Patch 15 for SLE 15 SP5) Announcement ID: SUSE-SU-2024:2723-1 Rating: important References: * bsc#1223363 * bsc#1223683 * bsc#1225013 Cross-References: * CVE-2024-26828 * CVE-2024-26923 * CVE-2024-27398 CVSS scores: * CVE-2024-26828 ( SUSE ): 7.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:H * CVE-2024-26923 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-27398 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.5 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Live Patching 15-SP5 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 An update that solves three vulnerabilities can now be installed. ## Description: This update for the Linux Kernel 5.14.21-150500_13_55 fixes several issues. The following security issues were fixed: * CVE-2024-27398: Fixed use-after-free bug caused by sco_sock_timeout() (bsc#1225013). * CVE-2024-26923: Fixed false-positive lockdep splat for spin_lock() in __unix_gc() (bsc#1223683). * CVE-2024-26828: Fixed underflow in parse_server_interfaces() (bsc#1223363). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.5 zypper in -t patch SUSE-2024-2723=1 * SUSE Linux Enterprise Live Patching 15-SP5 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP5-2024-2723=1 ## Package List: * openSUSE Leap 15.5 (x86_64) * kernel-livepatch-5_14_21-150500_13_55-rt-3-150500.11.6.1 * kernel-livepatch-5_14_21-150500_13_55-rt-debuginfo-3-150500.11.6.1 * kernel-livepatch-SLE15-SP5-RT_Update_15-debugsource-3-150500.11.6.1 * SUSE Linux Enterprise Live Patching 15-SP5 (x86_64) * kernel-livepatch-5_14_21-150500_13_55-rt-3-150500.11.6.1 * kernel-livepatch-5_14_21-150500_13_55-rt-debuginfo-3-150500.11.6.1 * kernel-livepatch-SLE15-SP5-RT_Update_15-debugsource-3-150500.11.6.1 ## References: * https://www.suse.com/security/cve/CVE-2024-26828.html * https://www.suse.com/security/cve/CVE-2024-26923.html * https://www.suse.com/security/cve/CVE-2024-27398.html * https://bugzilla.suse.com/show_bug.cgi?id=1223363 * https://bugzilla.suse.com/show_bug.cgi?id=1223683 * https://bugzilla.suse.com/show_bug.cgi?id=1225013 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Fri Aug 2 20:36:26 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Fri, 02 Aug 2024 20:36:26 -0000 Subject: SUSE-SU-2024:2722-1: important: Security update for the Linux Kernel RT (Live Patch 10 for SLE 15 SP5) Message-ID: <172263098646.7390.17115272698938523050@smelt2.prg2.suse.org> # Security update for the Linux Kernel RT (Live Patch 10 for SLE 15 SP5) Announcement ID: SUSE-SU-2024:2722-1 Rating: important References: * bsc#1219296 * bsc#1220145 * bsc#1220211 * bsc#1220828 * bsc#1220832 * bsc#1221302 * bsc#1222685 * bsc#1222882 * bsc#1223059 * bsc#1223363 * bsc#1223514 * bsc#1223681 * bsc#1223683 * bsc#1225013 * bsc#1225310 Cross-References: * CVE-2022-48651 * CVE-2023-52340 * CVE-2023-52502 * CVE-2023-6546 * CVE-2024-23307 * CVE-2024-26585 * CVE-2024-26610 * CVE-2024-26622 * CVE-2024-26766 * CVE-2024-26828 * CVE-2024-26852 * CVE-2024-26923 * CVE-2024-26930 * CVE-2024-27398 * CVE-2024-35950 CVSS scores: * CVE-2022-48651 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-52340 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52340 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52502 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-6546 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-6546 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-23307 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-23307 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26585 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26585 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26610 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2024-26622 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26766 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26828 ( SUSE ): 7.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:H * CVE-2024-26852 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26923 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26930 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26930 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-27398 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35950 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.5 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Live Patching 15-SP5 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 An update that solves 15 vulnerabilities can now be installed. ## Description: This update for the Linux Kernel 5.14.21-150500_13_35 fixes several issues. The following security issues were fixed: * CVE-2024-27398: Fixed use-after-free bug caused by sco_sock_timeout() (bsc#1225013). * CVE-2024-35950: drm/client: Fully protect modes with dev->mode_config.mutex (bsc#1225310). * CVE-2024-26923: Fixed false-positive lockdep splat for spin_lock() in __unix_gc() (bsc#1223683). * CVE-2024-26930: Fixed double free of the ha->vp_map pointer (bsc#1223681). * CVE-2024-26828: Fixed underflow in parse_server_interfaces() (bsc#1223363). * CVE-2024-23307: Fixed Integer Overflow or Wraparound vulnerability in x86 and ARM md, raid, raid5 modules (bsc#1220145). * CVE-2024-26852: Fixed use-after-free in ip6_route_mpath_notify() (bsc#1223059). * CVE-2024-26610: Fixed memory corruption in wifi/iwlwifi (bsc#1221302). * CVE-2022-48651: Fixed an out-of-bound bug in ipvlan caused by unset skb->mac_header (bsc#1223514). * CVE-2024-26766: Fixed SDMA off-by-one error in _pad_sdma_tx_descs() (bsc#1222882). * CVE-2023-52502: Fixed a race condition in nfc_llcp_sock_get() and nfc_llcp_sock_get_sn() (bsc#1220832). * CVE-2024-26585: Fixed race between tx work scheduling and socket close (bsc#1220211). * CVE-2023-6546: Fixed a race condition in the GSM 0710 tty multiplexor via the GSMIOC_SETCONF ioctl that could lead to local privilege escalation (bsc#1222685). * CVE-2024-26622: Fixed use-after-free write bug in tomoyo_write_control() (bsc#1220828). * CVE-2023-52340: Fixed a denial of service related to ICMPv6 'Packet Too Big' packets (bsc#1219296). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.5 zypper in -t patch SUSE-2024-2722=1 * SUSE Linux Enterprise Live Patching 15-SP5 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP5-2024-2722=1 ## Package List: * openSUSE Leap 15.5 (x86_64) * kernel-livepatch-5_14_21-150500_13_35-rt-7-150500.11.8.1 * kernel-livepatch-SLE15-SP5-RT_Update_10-debugsource-7-150500.11.8.1 * kernel-livepatch-5_14_21-150500_13_35-rt-debuginfo-7-150500.11.8.1 * SUSE Linux Enterprise Live Patching 15-SP5 (x86_64) * kernel-livepatch-5_14_21-150500_13_35-rt-7-150500.11.8.1 * kernel-livepatch-SLE15-SP5-RT_Update_10-debugsource-7-150500.11.8.1 * kernel-livepatch-5_14_21-150500_13_35-rt-debuginfo-7-150500.11.8.1 ## References: * https://www.suse.com/security/cve/CVE-2022-48651.html * https://www.suse.com/security/cve/CVE-2023-52340.html * https://www.suse.com/security/cve/CVE-2023-52502.html * https://www.suse.com/security/cve/CVE-2023-6546.html * https://www.suse.com/security/cve/CVE-2024-23307.html * https://www.suse.com/security/cve/CVE-2024-26585.html * https://www.suse.com/security/cve/CVE-2024-26610.html * https://www.suse.com/security/cve/CVE-2024-26622.html * https://www.suse.com/security/cve/CVE-2024-26766.html * https://www.suse.com/security/cve/CVE-2024-26828.html * https://www.suse.com/security/cve/CVE-2024-26852.html * https://www.suse.com/security/cve/CVE-2024-26923.html * https://www.suse.com/security/cve/CVE-2024-26930.html * https://www.suse.com/security/cve/CVE-2024-27398.html * https://www.suse.com/security/cve/CVE-2024-35950.html * https://bugzilla.suse.com/show_bug.cgi?id=1219296 * https://bugzilla.suse.com/show_bug.cgi?id=1220145 * https://bugzilla.suse.com/show_bug.cgi?id=1220211 * https://bugzilla.suse.com/show_bug.cgi?id=1220828 * https://bugzilla.suse.com/show_bug.cgi?id=1220832 * https://bugzilla.suse.com/show_bug.cgi?id=1221302 * https://bugzilla.suse.com/show_bug.cgi?id=1222685 * https://bugzilla.suse.com/show_bug.cgi?id=1222882 * https://bugzilla.suse.com/show_bug.cgi?id=1223059 * https://bugzilla.suse.com/show_bug.cgi?id=1223363 * https://bugzilla.suse.com/show_bug.cgi?id=1223514 * https://bugzilla.suse.com/show_bug.cgi?id=1223681 * https://bugzilla.suse.com/show_bug.cgi?id=1223683 * https://bugzilla.suse.com/show_bug.cgi?id=1225013 * https://bugzilla.suse.com/show_bug.cgi?id=1225310 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Fri Aug 2 20:36:29 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Fri, 02 Aug 2024 20:36:29 -0000 Subject: SUSE-SU-2024:2719-1: important: Security update for the Linux Kernel RT (Live Patch 9 for SLE 15 SP5) Message-ID: <172263098994.7390.9420853723282096109@smelt2.prg2.suse.org> # Security update for the Linux Kernel RT (Live Patch 9 for SLE 15 SP5) Announcement ID: SUSE-SU-2024:2719-1 Rating: important References: * bsc#1225013 * bsc#1225310 Cross-References: * CVE-2024-27398 * CVE-2024-35950 CVSS scores: * CVE-2024-27398 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35950 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.5 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Live Patching 15-SP5 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 An update that solves two vulnerabilities can now be installed. ## Description: This update for the Linux Kernel 5.14.21-150500_13_30 fixes several issues. The following security issues were fixed: * CVE-2024-27398: Fixed use-after-free bug caused by sco_sock_timeout() (bsc#1225013). * CVE-2024-35950: drm/client: Fully protect modes with dev->mode_config.mutex (bsc#1225310). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.5 zypper in -t patch SUSE-2024-2720=1 SUSE-2024-2721=1 SUSE-2024-2719=1 * SUSE Linux Enterprise Live Patching 15-SP5 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP5-2024-2720=1 SUSE-SLE- Module-Live-Patching-15-SP5-2024-2721=1 SUSE-SLE-Module-Live- Patching-15-SP5-2024-2719=1 ## Package List: * openSUSE Leap 15.5 (x86_64) * kernel-livepatch-SLE15-SP5-RT_Update_1-debugsource-15-150500.2.1 * kernel-livepatch-SLE15-SP5-RT_Update_9-debugsource-9-150500.2.1 * kernel-livepatch-5_14_21-150500_13_5-rt-15-150500.2.1 * kernel-livepatch-5_14_21-150500_13_30-rt-9-150500.2.1 * kernel-livepatch-5_14_21-150500_13_27-rt-debuginfo-10-150500.2.1 * kernel-livepatch-5_14_21-150500_13_5-rt-debuginfo-15-150500.2.1 * kernel-livepatch-5_14_21-150500_13_30-rt-debuginfo-9-150500.2.1 * kernel-livepatch-SLE15-SP5-RT_Update_8-debugsource-10-150500.2.1 * kernel-livepatch-5_14_21-150500_13_27-rt-10-150500.2.1 * SUSE Linux Enterprise Live Patching 15-SP5 (x86_64) * kernel-livepatch-SLE15-SP5-RT_Update_1-debugsource-15-150500.2.1 * kernel-livepatch-SLE15-SP5-RT_Update_9-debugsource-9-150500.2.1 * kernel-livepatch-5_14_21-150500_13_5-rt-15-150500.2.1 * kernel-livepatch-5_14_21-150500_13_30-rt-9-150500.2.1 * kernel-livepatch-5_14_21-150500_13_27-rt-debuginfo-10-150500.2.1 * kernel-livepatch-5_14_21-150500_13_5-rt-debuginfo-15-150500.2.1 * kernel-livepatch-5_14_21-150500_13_30-rt-debuginfo-9-150500.2.1 * kernel-livepatch-SLE15-SP5-RT_Update_8-debugsource-10-150500.2.1 * kernel-livepatch-5_14_21-150500_13_27-rt-10-150500.2.1 ## References: * https://www.suse.com/security/cve/CVE-2024-27398.html * https://www.suse.com/security/cve/CVE-2024-35950.html * https://bugzilla.suse.com/show_bug.cgi?id=1225013 * https://bugzilla.suse.com/show_bug.cgi?id=1225310 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 5 16:30:15 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 05 Aug 2024 16:30:15 -0000 Subject: SUSE-SU-2024:2740-1: important: Security update for the Linux Kernel (Live Patch 46 for SLE 15 SP2) Message-ID: <172287541589.15343.5926708819184748592@smelt2.prg2.suse.org> # Security update for the Linux Kernel (Live Patch 46 for SLE 15 SP2) Announcement ID: SUSE-SU-2024:2740-1 Rating: important References: * bsc#1210619 * bsc#1218487 * bsc#1220145 * bsc#1220537 * bsc#1222685 * bsc#1223059 * bsc#1223363 * bsc#1223514 * bsc#1223683 * bsc#1225013 * bsc#1225211 * bsc#1225310 Cross-References: * CVE-2021-46955 * CVE-2021-47383 * CVE-2022-48651 * CVE-2023-1829 * CVE-2023-6531 * CVE-2023-6546 * CVE-2024-23307 * CVE-2024-26828 * CVE-2024-26852 * CVE-2024-26923 * CVE-2024-27398 * CVE-2024-35950 CVSS scores: * CVE-2021-46955 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2021-47383 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48651 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-1829 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-1829 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-6531 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-6531 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-6546 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-6546 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-23307 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-23307 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26828 ( SUSE ): 7.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:H * CVE-2024-26852 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26923 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-27398 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35950 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * SUSE Linux Enterprise High Performance Computing 15 SP2 * SUSE Linux Enterprise Live Patching 15-SP2 * SUSE Linux Enterprise Server 15 SP2 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 An update that solves 12 vulnerabilities can now be installed. ## Description: This update for the Linux Kernel 5.3.18-150200_24_183 fixes several issues. The following security issues were fixed: * CVE-2024-27398: Fixed use-after-free bug caused by sco_sock_timeout() (bsc#1225013). * CVE-2024-35950: drm/client: Fully protect modes with dev->mode_config.mutex (bsc#1225310). * CVE-2021-47383: Fixed out-of-bound vmalloc access in imageblit (bsc#1225211). * CVE-2024-26923: Fixed false-positive lockdep splat for spin_lock() in __unix_gc() (bsc#1223683). * CVE-2024-26828: Fixed underflow in parse_server_interfaces() (bsc#1223363). * CVE-2021-46955: Fixed an out-of-bounds read with openvswitch, when fragmenting IPv4 packets (bsc#1220537). * CVE-2024-23307: Fixed Integer Overflow or Wraparound vulnerability in x86 and ARM md, raid, raid5 modules (bsc#1220145). * CVE-2024-26852: Fixed use-after-free in ip6_route_mpath_notify() (bsc#1223059). * CVE-2022-48651: Fixed an out-of-bound bug in ipvlan caused by unset skb->mac_header (bsc#1223514). * CVE-2023-6546: Fixed a race condition in the GSM 0710 tty multiplexor via the GSMIOC_SETCONF ioctl that could lead to local privilege escalation (bsc#1222685). * CVE-2023-6531: Fixed a use-after-free flaw due to a race problem in the unix garbage collector's deletion of SKB races with unix_stream_read_generic()on the socket that the SKB is queued on (bsc#1218487). * CVE-2023-1829: Fixed a use-after-free vulnerability in the control index filter (tcindex) (bsc#1210619). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Live Patching 15-SP2 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP2-2024-2740=1 ## Package List: * SUSE Linux Enterprise Live Patching 15-SP2 (ppc64le s390x x86_64) * kernel-livepatch-5_3_18-150200_24_183-default-6-150200.5.6.1 * kernel-livepatch-SLE15-SP2_Update_46-debugsource-6-150200.5.6.1 * kernel-livepatch-5_3_18-150200_24_183-default-debuginfo-6-150200.5.6.1 ## References: * https://www.suse.com/security/cve/CVE-2021-46955.html * https://www.suse.com/security/cve/CVE-2021-47383.html * https://www.suse.com/security/cve/CVE-2022-48651.html * https://www.suse.com/security/cve/CVE-2023-1829.html * https://www.suse.com/security/cve/CVE-2023-6531.html * https://www.suse.com/security/cve/CVE-2023-6546.html * https://www.suse.com/security/cve/CVE-2024-23307.html * https://www.suse.com/security/cve/CVE-2024-26828.html * https://www.suse.com/security/cve/CVE-2024-26852.html * https://www.suse.com/security/cve/CVE-2024-26923.html * https://www.suse.com/security/cve/CVE-2024-27398.html * https://www.suse.com/security/cve/CVE-2024-35950.html * https://bugzilla.suse.com/show_bug.cgi?id=1210619 * https://bugzilla.suse.com/show_bug.cgi?id=1218487 * https://bugzilla.suse.com/show_bug.cgi?id=1220145 * https://bugzilla.suse.com/show_bug.cgi?id=1220537 * https://bugzilla.suse.com/show_bug.cgi?id=1222685 * https://bugzilla.suse.com/show_bug.cgi?id=1223059 * https://bugzilla.suse.com/show_bug.cgi?id=1223363 * https://bugzilla.suse.com/show_bug.cgi?id=1223514 * https://bugzilla.suse.com/show_bug.cgi?id=1223683 * https://bugzilla.suse.com/show_bug.cgi?id=1225013 * https://bugzilla.suse.com/show_bug.cgi?id=1225211 * https://bugzilla.suse.com/show_bug.cgi?id=1225310 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 5 16:30:19 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 05 Aug 2024 16:30:19 -0000 Subject: SUSE-SU-2024:2734-1: important: Security update for the Linux Kernel RT (Live Patch 3 for SLE 15 SP5) Message-ID: <172287541908.15343.12697206286632379263@smelt2.prg2.suse.org> # Security update for the Linux Kernel RT (Live Patch 3 for SLE 15 SP5) Announcement ID: SUSE-SU-2024:2734-1 Rating: important References: * bsc#1225013 * bsc#1225310 Cross-References: * CVE-2024-27398 * CVE-2024-35950 CVSS scores: * CVE-2024-27398 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35950 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.5 * SUSE Linux Enterprise High Performance Computing 15 SP2 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Live Patching 15-SP2 * SUSE Linux Enterprise Live Patching 15-SP5 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Server 15 SP2 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 An update that solves two vulnerabilities can now be installed. ## Description: This update for the Linux Kernel 5.14.21-150500_13_11 fixes several issues. The following security issues were fixed: * CVE-2024-27398: Fixed use-after-free bug caused by sco_sock_timeout() (bsc#1225013). * CVE-2024-35950: drm/client: Fully protect modes with dev->mode_config.mutex (bsc#1225310). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Live Patching 15-SP2 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP2-2024-2739=1 SUSE-SLE- Module-Live-Patching-15-SP2-2024-2734=1 SUSE-SLE-Module-Live- Patching-15-SP2-2024-2733=1 SUSE-SLE-Module-Live-Patching-15-SP2-2024-2737=1 SUSE-SLE-Module-Live-Patching-15-SP2-2024-2738=1 * openSUSE Leap 15.5 zypper in -t patch SUSE-2024-2741=1 * SUSE Linux Enterprise Live Patching 15-SP5 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP5-2024-2741=1 ## Package List: * SUSE Linux Enterprise Live Patching 15-SP2 (ppc64le s390x x86_64) * kernel-livepatch-5_3_18-150200_24_163-default-debuginfo-12-150200.2.1 * kernel-livepatch-5_3_18-150200_24_157-default-14-150200.2.1 * kernel-livepatch-5_3_18-150200_24_169-default-debuginfo-12-150200.2.1 * kernel-livepatch-SLE15-SP2_Update_38-debugsource-14-150200.2.1 * kernel-livepatch-SLE15-SP2_Update_41-debugsource-12-150200.2.1 * kernel-livepatch-5_3_18-150200_24_166-default-12-150200.2.1 * kernel-livepatch-5_3_18-150200_24_175-default-debuginfo-11-150200.2.1 * kernel-livepatch-5_3_18-150200_24_175-default-11-150200.2.1 * kernel-livepatch-SLE15-SP2_Update_40-debugsource-12-150200.2.1 * kernel-livepatch-5_3_18-150200_24_169-default-12-150200.2.1 * kernel-livepatch-5_3_18-150200_24_157-default-debuginfo-14-150200.2.1 * kernel-livepatch-SLE15-SP2_Update_44-debugsource-11-150200.2.1 * kernel-livepatch-SLE15-SP2_Update_42-debugsource-12-150200.2.1 * kernel-livepatch-5_3_18-150200_24_166-default-debuginfo-12-150200.2.1 * kernel-livepatch-5_3_18-150200_24_163-default-12-150200.2.1 * openSUSE Leap 15.5 (x86_64) * kernel-livepatch-SLE15-SP5-RT_Update_3-debugsource-13-150500.2.1 * kernel-livepatch-5_14_21-150500_13_11-rt-13-150500.2.1 * kernel-livepatch-5_14_21-150500_13_11-rt-debuginfo-13-150500.2.1 * SUSE Linux Enterprise Live Patching 15-SP5 (x86_64) * kernel-livepatch-SLE15-SP5-RT_Update_3-debugsource-13-150500.2.1 * kernel-livepatch-5_14_21-150500_13_11-rt-13-150500.2.1 * kernel-livepatch-5_14_21-150500_13_11-rt-debuginfo-13-150500.2.1 ## References: * https://www.suse.com/security/cve/CVE-2024-27398.html * https://www.suse.com/security/cve/CVE-2024-35950.html * https://bugzilla.suse.com/show_bug.cgi?id=1225013 * https://bugzilla.suse.com/show_bug.cgi?id=1225310 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 5 16:33:21 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 05 Aug 2024 16:33:21 -0000 Subject: SUSE-SU-2024:2734-1: important: Security update for the Linux Kernel RT (Live Patch 3 for SLE 15 SP5) Message-ID: <172287560129.12638.5543445247980478166@smelt2.prg2.suse.org> # Security update for the Linux Kernel RT (Live Patch 3 for SLE 15 SP5) Announcement ID: SUSE-SU-2024:2734-1 Rating: important References: * bsc#1225013 * bsc#1225310 Cross-References: * CVE-2024-27398 * CVE-2024-35950 CVSS scores: * CVE-2024-27398 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35950 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.5 * SUSE Linux Enterprise High Performance Computing 15 SP2 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Live Patching 15-SP2 * SUSE Linux Enterprise Live Patching 15-SP5 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Server 15 SP2 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 An update that solves two vulnerabilities can now be installed. ## Description: This update for the Linux Kernel 5.14.21-150500_13_11 fixes several issues. The following security issues were fixed: * CVE-2024-27398: Fixed use-after-free bug caused by sco_sock_timeout() (bsc#1225013). * CVE-2024-35950: drm/client: Fully protect modes with dev->mode_config.mutex (bsc#1225310). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Live Patching 15-SP2 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP2-2024-2739=1 SUSE-SLE- Module-Live-Patching-15-SP2-2024-2734=1 SUSE-SLE-Module-Live- Patching-15-SP2-2024-2733=1 SUSE-SLE-Module-Live-Patching-15-SP2-2024-2737=1 SUSE-SLE-Module-Live-Patching-15-SP2-2024-2738=1 * openSUSE Leap 15.5 zypper in -t patch SUSE-2024-2741=1 * SUSE Linux Enterprise Live Patching 15-SP5 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP5-2024-2741=1 ## Package List: * SUSE Linux Enterprise Live Patching 15-SP2 (ppc64le s390x x86_64) * kernel-livepatch-SLE15-SP2_Update_40-debugsource-12-150200.2.1 * kernel-livepatch-SLE15-SP2_Update_44-debugsource-11-150200.2.1 * kernel-livepatch-5_3_18-150200_24_169-default-debuginfo-12-150200.2.1 * kernel-livepatch-5_3_18-150200_24_169-default-12-150200.2.1 * kernel-livepatch-5_3_18-150200_24_175-default-11-150200.2.1 * kernel-livepatch-SLE15-SP2_Update_42-debugsource-12-150200.2.1 * kernel-livepatch-5_3_18-150200_24_157-default-debuginfo-14-150200.2.1 * kernel-livepatch-5_3_18-150200_24_166-default-12-150200.2.1 * kernel-livepatch-5_3_18-150200_24_163-default-debuginfo-12-150200.2.1 * kernel-livepatch-SLE15-SP2_Update_41-debugsource-12-150200.2.1 * kernel-livepatch-5_3_18-150200_24_166-default-debuginfo-12-150200.2.1 * kernel-livepatch-5_3_18-150200_24_175-default-debuginfo-11-150200.2.1 * kernel-livepatch-SLE15-SP2_Update_38-debugsource-14-150200.2.1 * kernel-livepatch-5_3_18-150200_24_157-default-14-150200.2.1 * kernel-livepatch-5_3_18-150200_24_163-default-12-150200.2.1 * openSUSE Leap 15.5 (x86_64) * kernel-livepatch-SLE15-SP5-RT_Update_3-debugsource-13-150500.2.1 * kernel-livepatch-5_14_21-150500_13_11-rt-13-150500.2.1 * kernel-livepatch-5_14_21-150500_13_11-rt-debuginfo-13-150500.2.1 * SUSE Linux Enterprise Live Patching 15-SP5 (x86_64) * kernel-livepatch-SLE15-SP5-RT_Update_3-debugsource-13-150500.2.1 * kernel-livepatch-5_14_21-150500_13_11-rt-13-150500.2.1 * kernel-livepatch-5_14_21-150500_13_11-rt-debuginfo-13-150500.2.1 ## References: * https://www.suse.com/security/cve/CVE-2024-27398.html * https://www.suse.com/security/cve/CVE-2024-35950.html * https://bugzilla.suse.com/show_bug.cgi?id=1225013 * https://bugzilla.suse.com/show_bug.cgi?id=1225310 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 5 16:36:22 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 05 Aug 2024 16:36:22 -0000 Subject: SUSE-SU-2024:2734-1: important: Security update for the Linux Kernel RT (Live Patch 3 for SLE 15 SP5) Message-ID: <172287578273.12336.934144658861095532@smelt2.prg2.suse.org> # Security update for the Linux Kernel RT (Live Patch 3 for SLE 15 SP5) Announcement ID: SUSE-SU-2024:2734-1 Rating: important References: * bsc#1225013 * bsc#1225310 Cross-References: * CVE-2024-27398 * CVE-2024-35950 CVSS scores: * CVE-2024-27398 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35950 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.5 * SUSE Linux Enterprise High Performance Computing 15 SP2 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Live Patching 15-SP2 * SUSE Linux Enterprise Live Patching 15-SP5 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Server 15 SP2 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 An update that solves two vulnerabilities can now be installed. ## Description: This update for the Linux Kernel 5.14.21-150500_13_11 fixes several issues. The following security issues were fixed: * CVE-2024-27398: Fixed use-after-free bug caused by sco_sock_timeout() (bsc#1225013). * CVE-2024-35950: drm/client: Fully protect modes with dev->mode_config.mutex (bsc#1225310). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Live Patching 15-SP2 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP2-2024-2739=1 SUSE-SLE- Module-Live-Patching-15-SP2-2024-2734=1 SUSE-SLE-Module-Live- Patching-15-SP2-2024-2733=1 SUSE-SLE-Module-Live-Patching-15-SP2-2024-2737=1 SUSE-SLE-Module-Live-Patching-15-SP2-2024-2738=1 * openSUSE Leap 15.5 zypper in -t patch SUSE-2024-2741=1 * SUSE Linux Enterprise Live Patching 15-SP5 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP5-2024-2741=1 ## Package List: * SUSE Linux Enterprise Live Patching 15-SP2 (ppc64le s390x x86_64) * kernel-livepatch-SLE15-SP2_Update_41-debugsource-12-150200.2.1 * kernel-livepatch-5_3_18-150200_24_157-default-debuginfo-14-150200.2.1 * kernel-livepatch-5_3_18-150200_24_166-default-debuginfo-12-150200.2.1 * kernel-livepatch-5_3_18-150200_24_175-default-debuginfo-11-150200.2.1 * kernel-livepatch-5_3_18-150200_24_166-default-12-150200.2.1 * kernel-livepatch-SLE15-SP2_Update_44-debugsource-11-150200.2.1 * kernel-livepatch-5_3_18-150200_24_163-default-debuginfo-12-150200.2.1 * kernel-livepatch-5_3_18-150200_24_163-default-12-150200.2.1 * kernel-livepatch-SLE15-SP2_Update_42-debugsource-12-150200.2.1 * kernel-livepatch-5_3_18-150200_24_169-default-12-150200.2.1 * kernel-livepatch-SLE15-SP2_Update_40-debugsource-12-150200.2.1 * kernel-livepatch-5_3_18-150200_24_157-default-14-150200.2.1 * kernel-livepatch-5_3_18-150200_24_169-default-debuginfo-12-150200.2.1 * kernel-livepatch-SLE15-SP2_Update_38-debugsource-14-150200.2.1 * kernel-livepatch-5_3_18-150200_24_175-default-11-150200.2.1 * openSUSE Leap 15.5 (x86_64) * kernel-livepatch-SLE15-SP5-RT_Update_3-debugsource-13-150500.2.1 * kernel-livepatch-5_14_21-150500_13_11-rt-debuginfo-13-150500.2.1 * kernel-livepatch-5_14_21-150500_13_11-rt-13-150500.2.1 * SUSE Linux Enterprise Live Patching 15-SP5 (x86_64) * kernel-livepatch-SLE15-SP5-RT_Update_3-debugsource-13-150500.2.1 * kernel-livepatch-5_14_21-150500_13_11-rt-debuginfo-13-150500.2.1 * kernel-livepatch-5_14_21-150500_13_11-rt-13-150500.2.1 ## References: * https://www.suse.com/security/cve/CVE-2024-27398.html * https://www.suse.com/security/cve/CVE-2024-35950.html * https://bugzilla.suse.com/show_bug.cgi?id=1225013 * https://bugzilla.suse.com/show_bug.cgi?id=1225310 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 5 16:39:24 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 05 Aug 2024 16:39:24 -0000 Subject: SUSE-SU-2024:2734-1: important: Security update for the Linux Kernel RT (Live Patch 3 for SLE 15 SP5) Message-ID: <172287596427.12638.17452643447433664228@smelt2.prg2.suse.org> # Security update for the Linux Kernel RT (Live Patch 3 for SLE 15 SP5) Announcement ID: SUSE-SU-2024:2734-1 Rating: important References: * bsc#1225013 * bsc#1225310 Cross-References: * CVE-2024-27398 * CVE-2024-35950 CVSS scores: * CVE-2024-27398 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35950 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.5 * SUSE Linux Enterprise High Performance Computing 15 SP2 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Live Patching 15-SP2 * SUSE Linux Enterprise Live Patching 15-SP5 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Server 15 SP2 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 An update that solves two vulnerabilities can now be installed. ## Description: This update for the Linux Kernel 5.14.21-150500_13_11 fixes several issues. The following security issues were fixed: * CVE-2024-27398: Fixed use-after-free bug caused by sco_sock_timeout() (bsc#1225013). * CVE-2024-35950: drm/client: Fully protect modes with dev->mode_config.mutex (bsc#1225310). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Live Patching 15-SP2 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP2-2024-2739=1 SUSE-SLE- Module-Live-Patching-15-SP2-2024-2734=1 SUSE-SLE-Module-Live- Patching-15-SP2-2024-2733=1 SUSE-SLE-Module-Live-Patching-15-SP2-2024-2737=1 SUSE-SLE-Module-Live-Patching-15-SP2-2024-2738=1 * openSUSE Leap 15.5 zypper in -t patch SUSE-2024-2741=1 * SUSE Linux Enterprise Live Patching 15-SP5 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP5-2024-2741=1 ## Package List: * SUSE Linux Enterprise Live Patching 15-SP2 (ppc64le s390x x86_64) * kernel-livepatch-SLE15-SP2_Update_40-debugsource-12-150200.2.1 * kernel-livepatch-SLE15-SP2_Update_44-debugsource-11-150200.2.1 * kernel-livepatch-5_3_18-150200_24_169-default-debuginfo-12-150200.2.1 * kernel-livepatch-5_3_18-150200_24_169-default-12-150200.2.1 * kernel-livepatch-5_3_18-150200_24_175-default-11-150200.2.1 * kernel-livepatch-SLE15-SP2_Update_42-debugsource-12-150200.2.1 * kernel-livepatch-5_3_18-150200_24_157-default-debuginfo-14-150200.2.1 * kernel-livepatch-5_3_18-150200_24_166-default-12-150200.2.1 * kernel-livepatch-5_3_18-150200_24_163-default-debuginfo-12-150200.2.1 * kernel-livepatch-SLE15-SP2_Update_41-debugsource-12-150200.2.1 * kernel-livepatch-5_3_18-150200_24_166-default-debuginfo-12-150200.2.1 * kernel-livepatch-5_3_18-150200_24_175-default-debuginfo-11-150200.2.1 * kernel-livepatch-SLE15-SP2_Update_38-debugsource-14-150200.2.1 * kernel-livepatch-5_3_18-150200_24_157-default-14-150200.2.1 * kernel-livepatch-5_3_18-150200_24_163-default-12-150200.2.1 * openSUSE Leap 15.5 (x86_64) * kernel-livepatch-SLE15-SP5-RT_Update_3-debugsource-13-150500.2.1 * kernel-livepatch-5_14_21-150500_13_11-rt-13-150500.2.1 * kernel-livepatch-5_14_21-150500_13_11-rt-debuginfo-13-150500.2.1 * SUSE Linux Enterprise Live Patching 15-SP5 (x86_64) * kernel-livepatch-SLE15-SP5-RT_Update_3-debugsource-13-150500.2.1 * kernel-livepatch-5_14_21-150500_13_11-rt-13-150500.2.1 * kernel-livepatch-5_14_21-150500_13_11-rt-debuginfo-13-150500.2.1 ## References: * https://www.suse.com/security/cve/CVE-2024-27398.html * https://www.suse.com/security/cve/CVE-2024-35950.html * https://bugzilla.suse.com/show_bug.cgi?id=1225013 * https://bugzilla.suse.com/show_bug.cgi?id=1225310 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 5 20:30:16 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 05 Aug 2024 20:30:16 -0000 Subject: SUSE-SU-2024:2755-1: important: Security update for the Linux Kernel (Live Patch 42 for SLE 15 SP3) Message-ID: <172288981695.12638.2668401775110848953@smelt2.prg2.suse.org> # Security update for the Linux Kernel (Live Patch 42 for SLE 15 SP3) Announcement ID: SUSE-SU-2024:2755-1 Rating: important References: * bsc#1210619 * bsc#1218487 * bsc#1220145 * bsc#1220537 * bsc#1221302 * bsc#1222685 * bsc#1223059 * bsc#1223363 * bsc#1223514 * bsc#1223683 * bsc#1225013 * bsc#1225211 * bsc#1225310 Cross-References: * CVE-2021-46955 * CVE-2021-47383 * CVE-2022-48651 * CVE-2023-1829 * CVE-2023-6531 * CVE-2023-6546 * CVE-2024-23307 * CVE-2024-26610 * CVE-2024-26828 * CVE-2024-26852 * CVE-2024-26923 * CVE-2024-27398 * CVE-2024-35950 CVSS scores: * CVE-2021-46955 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2021-47383 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48651 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-1829 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-1829 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-6531 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-6531 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-6546 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-6546 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-23307 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-23307 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26610 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2024-26828 ( SUSE ): 7.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:H * CVE-2024-26852 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26923 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-27398 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35950 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.3 * SUSE Linux Enterprise High Performance Computing 15 SP3 * SUSE Linux Enterprise Live Patching 15-SP3 * SUSE Linux Enterprise Micro 5.1 * SUSE Linux Enterprise Micro 5.2 * SUSE Linux Enterprise Server 15 SP3 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 An update that solves 13 vulnerabilities can now be installed. ## Description: This update for the Linux Kernel 5.3.18-150300_59_153 fixes several issues. The following security issues were fixed: * CVE-2024-27398: Fixed use-after-free bug caused by sco_sock_timeout() (bsc#1225013). * CVE-2024-35950: drm/client: Fully protect modes with dev->mode_config.mutex (bsc#1225310). * CVE-2021-47383: Fixed out-of-bound vmalloc access in imageblit (bsc#1225211). * CVE-2024-26923: Fixed false-positive lockdep splat for spin_lock() in __unix_gc() (bsc#1223683). * CVE-2024-26828: Fixed underflow in parse_server_interfaces() (bsc#1223363). * CVE-2021-46955: Fixed an out-of-bounds read with openvswitch, when fragmenting IPv4 packets (bsc#1220537). * CVE-2024-23307: Fixed Integer Overflow or Wraparound vulnerability in x86 and ARM md, raid, raid5 modules (bsc#1220145). * CVE-2024-26852: Fixed use-after-free in ip6_route_mpath_notify() (bsc#1223059). * CVE-2024-26610: Fixed memory corruption in wifi/iwlwifi (bsc#1221302). * CVE-2022-48651: Fixed an out-of-bound bug in ipvlan caused by unset skb->mac_header (bsc#1223514). * CVE-2023-6546: Fixed a race condition in the GSM 0710 tty multiplexor via the GSMIOC_SETCONF ioctl that could lead to local privilege escalation (bsc#1222685). * CVE-2023-6531: Fixed a use-after-free flaw due to a race problem in the unix garbage collector's deletion of SKB races with unix_stream_read_generic()on the socket that the SKB is queued on (bsc#1218487). * CVE-2023-1829: Fixed a use-after-free vulnerability in the control index filter (tcindex) (bsc#1210619). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.3 zypper in -t patch SUSE-2024-2755=1 * SUSE Linux Enterprise Live Patching 15-SP3 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP3-2024-2755=1 ## Package List: * openSUSE Leap 15.3 (ppc64le s390x x86_64) * kernel-livepatch-5_3_18-150300_59_153-default-debuginfo-6-150300.7.6.1 * kernel-livepatch-5_3_18-150300_59_153-default-6-150300.7.6.1 * kernel-livepatch-SLE15-SP3_Update_42-debugsource-6-150300.7.6.1 * openSUSE Leap 15.3 (x86_64) * kernel-livepatch-5_3_18-150300_59_153-preempt-debuginfo-6-150300.7.6.1 * kernel-livepatch-5_3_18-150300_59_153-preempt-6-150300.7.6.1 * SUSE Linux Enterprise Live Patching 15-SP3 (ppc64le s390x x86_64) * kernel-livepatch-5_3_18-150300_59_153-default-6-150300.7.6.1 ## References: * https://www.suse.com/security/cve/CVE-2021-46955.html * https://www.suse.com/security/cve/CVE-2021-47383.html * https://www.suse.com/security/cve/CVE-2022-48651.html * https://www.suse.com/security/cve/CVE-2023-1829.html * https://www.suse.com/security/cve/CVE-2023-6531.html * https://www.suse.com/security/cve/CVE-2023-6546.html * https://www.suse.com/security/cve/CVE-2024-23307.html * https://www.suse.com/security/cve/CVE-2024-26610.html * https://www.suse.com/security/cve/CVE-2024-26828.html * https://www.suse.com/security/cve/CVE-2024-26852.html * https://www.suse.com/security/cve/CVE-2024-26923.html * https://www.suse.com/security/cve/CVE-2024-27398.html * https://www.suse.com/security/cve/CVE-2024-35950.html * https://bugzilla.suse.com/show_bug.cgi?id=1210619 * https://bugzilla.suse.com/show_bug.cgi?id=1218487 * https://bugzilla.suse.com/show_bug.cgi?id=1220145 * https://bugzilla.suse.com/show_bug.cgi?id=1220537 * https://bugzilla.suse.com/show_bug.cgi?id=1221302 * https://bugzilla.suse.com/show_bug.cgi?id=1222685 * https://bugzilla.suse.com/show_bug.cgi?id=1223059 * https://bugzilla.suse.com/show_bug.cgi?id=1223363 * https://bugzilla.suse.com/show_bug.cgi?id=1223514 * https://bugzilla.suse.com/show_bug.cgi?id=1223683 * https://bugzilla.suse.com/show_bug.cgi?id=1225013 * https://bugzilla.suse.com/show_bug.cgi?id=1225211 * https://bugzilla.suse.com/show_bug.cgi?id=1225310 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 5 20:30:26 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 05 Aug 2024 20:30:26 -0000 Subject: SUSE-SU-2024:2751-1: important: Security update for the Linux Kernel RT (Live Patch 11 for SLE 15 SP5) Message-ID: <172288982633.12638.14629362057603812238@smelt2.prg2.suse.org> # Security update for the Linux Kernel RT (Live Patch 11 for SLE 15 SP5) Announcement ID: SUSE-SU-2024:2751-1 Rating: important References: * bsc#1220145 * bsc#1220832 * bsc#1221302 * bsc#1222685 * bsc#1223059 * bsc#1223363 * bsc#1223514 * bsc#1223681 * bsc#1223683 * bsc#1225013 * bsc#1225310 Cross-References: * CVE-2022-48651 * CVE-2023-52502 * CVE-2023-6546 * CVE-2024-23307 * CVE-2024-26610 * CVE-2024-26828 * CVE-2024-26852 * CVE-2024-26923 * CVE-2024-26930 * CVE-2024-27398 * CVE-2024-35950 CVSS scores: * CVE-2022-48651 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-52502 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-6546 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-6546 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-23307 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-23307 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26610 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2024-26828 ( SUSE ): 7.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:H * CVE-2024-26852 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26923 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26930 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26930 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-27398 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35950 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.5 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Live Patching 15-SP5 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 An update that solves 11 vulnerabilities can now be installed. ## Description: This update for the Linux Kernel 5.14.21-150500_13_38 fixes several issues. The following security issues were fixed: * CVE-2024-27398: Fixed use-after-free bug caused by sco_sock_timeout() (bsc#1225013). * CVE-2024-35950: drm/client: Fully protect modes with dev->mode_config.mutex (bsc#1225310). * CVE-2024-26923: Fixed false-positive lockdep splat for spin_lock() in __unix_gc() (bsc#1223683). * CVE-2024-26930: Fixed double free of the ha->vp_map pointer (bsc#1223681). * CVE-2024-26828: Fixed underflow in parse_server_interfaces() (bsc#1223363). * CVE-2024-23307: Fixed Integer Overflow or Wraparound vulnerability in x86 and ARM md, raid, raid5 modules (bsc#1220145). * CVE-2024-26852: Fixed use-after-free in ip6_route_mpath_notify() (bsc#1223059). * CVE-2024-26610: Fixed memory corruption in wifi/iwlwifi (bsc#1221302). * CVE-2022-48651: Fixed an out-of-bound bug in ipvlan caused by unset skb->mac_header (bsc#1223514). * CVE-2023-52502: Fixed a race condition in nfc_llcp_sock_get() and nfc_llcp_sock_get_sn() (bsc#1220832). * CVE-2023-6546: Fixed a race condition in the GSM 0710 tty multiplexor via the GSMIOC_SETCONF ioctl that could lead to local privilege escalation (bsc#1222685). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.5 zypper in -t patch SUSE-2024-2751=1 * SUSE Linux Enterprise Live Patching 15-SP5 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP5-2024-2751=1 ## Package List: * openSUSE Leap 15.5 (x86_64) * kernel-livepatch-5_14_21-150500_13_38-rt-debuginfo-5-150500.11.6.1 * kernel-livepatch-5_14_21-150500_13_38-rt-5-150500.11.6.1 * kernel-livepatch-SLE15-SP5-RT_Update_11-debugsource-5-150500.11.6.1 * SUSE Linux Enterprise Live Patching 15-SP5 (x86_64) * kernel-livepatch-5_14_21-150500_13_38-rt-debuginfo-5-150500.11.6.1 * kernel-livepatch-5_14_21-150500_13_38-rt-5-150500.11.6.1 * kernel-livepatch-SLE15-SP5-RT_Update_11-debugsource-5-150500.11.6.1 ## References: * https://www.suse.com/security/cve/CVE-2022-48651.html * https://www.suse.com/security/cve/CVE-2023-52502.html * https://www.suse.com/security/cve/CVE-2023-6546.html * https://www.suse.com/security/cve/CVE-2024-23307.html * https://www.suse.com/security/cve/CVE-2024-26610.html * https://www.suse.com/security/cve/CVE-2024-26828.html * https://www.suse.com/security/cve/CVE-2024-26852.html * https://www.suse.com/security/cve/CVE-2024-26923.html * https://www.suse.com/security/cve/CVE-2024-26930.html * https://www.suse.com/security/cve/CVE-2024-27398.html * https://www.suse.com/security/cve/CVE-2024-35950.html * https://bugzilla.suse.com/show_bug.cgi?id=1220145 * https://bugzilla.suse.com/show_bug.cgi?id=1220832 * https://bugzilla.suse.com/show_bug.cgi?id=1221302 * https://bugzilla.suse.com/show_bug.cgi?id=1222685 * https://bugzilla.suse.com/show_bug.cgi?id=1223059 * https://bugzilla.suse.com/show_bug.cgi?id=1223363 * https://bugzilla.suse.com/show_bug.cgi?id=1223514 * https://bugzilla.suse.com/show_bug.cgi?id=1223681 * https://bugzilla.suse.com/show_bug.cgi?id=1223683 * https://bugzilla.suse.com/show_bug.cgi?id=1225013 * https://bugzilla.suse.com/show_bug.cgi?id=1225310 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 5 20:30:29 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 05 Aug 2024 20:30:29 -0000 Subject: SUSE-SU-2024:2750-1: important: Security update for the Linux Kernel RT (Live Patch 6 for SLE 15 SP5) Message-ID: <172288982939.12638.17885387007284048814@smelt2.prg2.suse.org> # Security update for the Linux Kernel RT (Live Patch 6 for SLE 15 SP5) Announcement ID: SUSE-SU-2024:2750-1 Rating: important References: * bsc#1225013 * bsc#1225310 Cross-References: * CVE-2024-27398 * CVE-2024-35950 CVSS scores: * CVE-2024-27398 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35950 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.5 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Live Patching 15-SP5 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 An update that solves two vulnerabilities can now be installed. ## Description: This update for the Linux Kernel 5.14.21-150500_13_21 fixes several issues. The following security issues were fixed: * CVE-2024-27398: Fixed use-after-free bug caused by sco_sock_timeout() (bsc#1225013). * CVE-2024-35950: drm/client: Fully protect modes with dev->mode_config.mutex (bsc#1225310). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.5 zypper in -t patch SUSE-2024-2750=1 SUSE-2024-2752=1 * SUSE Linux Enterprise Live Patching 15-SP5 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP5-2024-2750=1 SUSE-SLE- Module-Live-Patching-15-SP5-2024-2752=1 ## Package List: * openSUSE Leap 15.5 (x86_64) * kernel-livepatch-5_14_21-150500_13_21-rt-debuginfo-11-150500.2.1 * kernel-livepatch-5_14_21-150500_13_21-rt-11-150500.2.1 * kernel-livepatch-SLE15-SP5-RT_Update_6-debugsource-11-150500.2.1 * kernel-livepatch-5_14_21-150500_13_18-rt-debuginfo-12-150500.2.1 * kernel-livepatch-SLE15-SP5-RT_Update_5-debugsource-12-150500.2.1 * kernel-livepatch-5_14_21-150500_13_18-rt-12-150500.2.1 * SUSE Linux Enterprise Live Patching 15-SP5 (x86_64) * kernel-livepatch-5_14_21-150500_13_21-rt-debuginfo-11-150500.2.1 * kernel-livepatch-5_14_21-150500_13_21-rt-11-150500.2.1 * kernel-livepatch-SLE15-SP5-RT_Update_6-debugsource-11-150500.2.1 * kernel-livepatch-5_14_21-150500_13_18-rt-debuginfo-12-150500.2.1 * kernel-livepatch-SLE15-SP5-RT_Update_5-debugsource-12-150500.2.1 * kernel-livepatch-5_14_21-150500_13_18-rt-12-150500.2.1 ## References: * https://www.suse.com/security/cve/CVE-2024-27398.html * https://www.suse.com/security/cve/CVE-2024-35950.html * https://bugzilla.suse.com/show_bug.cgi?id=1225013 * https://bugzilla.suse.com/show_bug.cgi?id=1225310 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 5 20:30:32 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 05 Aug 2024 20:30:32 -0000 Subject: SUSE-SU-2024:2756-1: important: Security update for ksh Message-ID: <172288983287.12638.3923359047103121713@smelt2.prg2.suse.org> # Security update for ksh Announcement ID: SUSE-SU-2024:2756-1 Rating: important References: * bsc#1129288 * bsc#1160796 * bsc#1224057 Cross-References: * CVE-2019-14868 CVSS scores: * CVE-2019-14868 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2019-14868 ( NVD ): 7.4 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H Affected Products: * Legacy Module 12 * SUSE Linux Enterprise High Performance Computing 12 SP2 * SUSE Linux Enterprise High Performance Computing 12 SP3 * SUSE Linux Enterprise High Performance Computing 12 SP4 * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise Server 12 * SUSE Linux Enterprise Server 12 SP1 * SUSE Linux Enterprise Server 12 SP2 * SUSE Linux Enterprise Server 12 SP3 * SUSE Linux Enterprise Server 12 SP4 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server for SAP Applications 12 * SUSE Linux Enterprise Server for SAP Applications 12 SP1 * SUSE Linux Enterprise Server for SAP Applications 12 SP2 * SUSE Linux Enterprise Server for SAP Applications 12 SP3 * SUSE Linux Enterprise Server for SAP Applications 12 SP4 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 * SUSE Linux Enterprise Software Development Kit 12 SP5 An update that solves one vulnerability and has two security fixes can now be installed. ## Description: This update for ksh fixes the following issues: * CVE-2019-14868: Fixed code injection due to environment variables on startup interpreted as arithmetic expression (bsc#1160796) Other fixes: \- do not use posix_spawn as it lacks proper job handling (bsc#1224057) \- fix segfault in variable substitution (bsc#1129288) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * Legacy Module 12 zypper in -t patch SUSE-SLE-Module-Legacy-12-2024-2756=1 * SUSE Linux Enterprise Software Development Kit 12 SP5 zypper in -t patch SUSE-SLE-SDK-12-SP5-2024-2756=1 ## Package List: * Legacy Module 12 (aarch64 ppc64le s390x x86_64) * ksh-debuginfo-93vu-19.3.2 * ksh-debugsource-93vu-19.3.2 * ksh-93vu-19.3.2 * SUSE Linux Enterprise Software Development Kit 12 SP5 (aarch64 ppc64le s390x x86_64) * ksh-debuginfo-93vu-19.3.2 * ksh-debugsource-93vu-19.3.2 * ksh-devel-93vu-19.3.2 ## References: * https://www.suse.com/security/cve/CVE-2019-14868.html * https://bugzilla.suse.com/show_bug.cgi?id=1129288 * https://bugzilla.suse.com/show_bug.cgi?id=1160796 * https://bugzilla.suse.com/show_bug.cgi?id=1224057 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 5 20:30:35 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 05 Aug 2024 20:30:35 -0000 Subject: SUSE-SU-2024:2754-1: important: Security update for skopeo Message-ID: <172288983576.12638.18006239233235107362@smelt2.prg2.suse.org> # Security update for skopeo Announcement ID: SUSE-SU-2024:2754-1 Rating: important References: * bsc#1224123 Cross-References: * CVE-2024-28180 CVSS scores: Affected Products: * SUSE Linux Enterprise High Performance Computing 15 SP2 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 * SUSE Linux Enterprise Server 15 SP2 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 An update that solves one vulnerability can now be installed. ## Description: This update for skopeo fixes the following issues: Update to version 1.14.4: * CVE-2024-3727: Fixed a vulnerability that allows attackers to trigger unexpected authenticated registry accesses on behalf of a victim user, resource exhaustion, local path traversal and other attacks. (bsc#1224123) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 zypper in -t patch SUSE-SLE-Product-SLES-15-SP2-LTSS-2024-2754=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP2-2024-2754=1 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 zypper in -t patch SUSE-SLE-Product-HPC-15-SP2-LTSS-2024-2754=1 ## Package List: * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (aarch64 ppc64le s390x x86_64) * libgpg-error-devel-1.29-150000.3.3.1 * libgpg-error0-1.29-150000.3.3.1 * skopeo-1.14.4-150000.4.26.1 * libgpg-error0-debuginfo-1.29-150000.3.3.1 * libgpg-error-debugsource-1.29-150000.3.3.1 * skopeo-debuginfo-1.14.4-150000.4.26.1 * libgpg-error-devel-debuginfo-1.29-150000.3.3.1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (x86_64) * libgpg-error0-32bit-1.29-150000.3.3.1 * libgpg-error0-32bit-debuginfo-1.29-150000.3.3.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 (ppc64le x86_64) * libgpg-error-devel-1.29-150000.3.3.1 * libgpg-error0-1.29-150000.3.3.1 * skopeo-1.14.4-150000.4.26.1 * libgpg-error0-debuginfo-1.29-150000.3.3.1 * libgpg-error-debugsource-1.29-150000.3.3.1 * skopeo-debuginfo-1.14.4-150000.4.26.1 * libgpg-error-devel-debuginfo-1.29-150000.3.3.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 (x86_64) * libgpg-error0-32bit-1.29-150000.3.3.1 * libgpg-error0-32bit-debuginfo-1.29-150000.3.3.1 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 (aarch64 x86_64) * libgpg-error-devel-1.29-150000.3.3.1 * libgpg-error0-1.29-150000.3.3.1 * skopeo-1.14.4-150000.4.26.1 * libgpg-error0-debuginfo-1.29-150000.3.3.1 * libgpg-error-debugsource-1.29-150000.3.3.1 * skopeo-debuginfo-1.14.4-150000.4.26.1 * libgpg-error-devel-debuginfo-1.29-150000.3.3.1 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 (x86_64) * libgpg-error0-32bit-1.29-150000.3.3.1 * libgpg-error0-32bit-debuginfo-1.29-150000.3.3.1 ## References: * https://www.suse.com/security/cve/CVE-2024-28180.html * https://bugzilla.suse.com/show_bug.cgi?id=1224123 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 5 20:30:52 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 05 Aug 2024 20:30:52 -0000 Subject: SUSE-SU-2024:2734-1: important: Security update for the Linux Kernel RT (Live Patch 3 for SLE 15 SP5) Message-ID: <172288985211.12638.4997671871343997337@smelt2.prg2.suse.org> # Security update for the Linux Kernel RT (Live Patch 3 for SLE 15 SP5) Announcement ID: SUSE-SU-2024:2734-1 Rating: important References: * bsc#1225013 * bsc#1225310 Cross-References: * CVE-2024-27398 * CVE-2024-35950 CVSS scores: * CVE-2024-27398 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35950 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.5 * SUSE Linux Enterprise High Performance Computing 15 SP2 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Live Patching 15-SP2 * SUSE Linux Enterprise Live Patching 15-SP5 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Server 15 SP2 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 An update that solves two vulnerabilities can now be installed. ## Description: This update for the Linux Kernel 5.14.21-150500_13_11 fixes several issues. The following security issues were fixed: * CVE-2024-27398: Fixed use-after-free bug caused by sco_sock_timeout() (bsc#1225013). * CVE-2024-35950: drm/client: Fully protect modes with dev->mode_config.mutex (bsc#1225310). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Live Patching 15-SP2 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP2-2024-2739=1 SUSE-SLE- Module-Live-Patching-15-SP2-2024-2734=1 SUSE-SLE-Module-Live- Patching-15-SP2-2024-2733=1 SUSE-SLE-Module-Live-Patching-15-SP2-2024-2737=1 SUSE-SLE-Module-Live-Patching-15-SP2-2024-2738=1 * openSUSE Leap 15.5 zypper in -t patch SUSE-2024-2741=1 * SUSE Linux Enterprise Live Patching 15-SP5 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP5-2024-2741=1 ## Package List: * SUSE Linux Enterprise Live Patching 15-SP2 (ppc64le s390x x86_64) * kernel-livepatch-SLE15-SP2_Update_40-debugsource-12-150200.2.1 * kernel-livepatch-SLE15-SP2_Update_44-debugsource-11-150200.2.1 * kernel-livepatch-5_3_18-150200_24_169-default-debuginfo-12-150200.2.1 * kernel-livepatch-5_3_18-150200_24_169-default-12-150200.2.1 * kernel-livepatch-5_3_18-150200_24_175-default-11-150200.2.1 * kernel-livepatch-SLE15-SP2_Update_42-debugsource-12-150200.2.1 * kernel-livepatch-5_3_18-150200_24_157-default-debuginfo-14-150200.2.1 * kernel-livepatch-5_3_18-150200_24_166-default-12-150200.2.1 * kernel-livepatch-5_3_18-150200_24_163-default-debuginfo-12-150200.2.1 * kernel-livepatch-SLE15-SP2_Update_41-debugsource-12-150200.2.1 * kernel-livepatch-5_3_18-150200_24_166-default-debuginfo-12-150200.2.1 * kernel-livepatch-5_3_18-150200_24_175-default-debuginfo-11-150200.2.1 * kernel-livepatch-SLE15-SP2_Update_38-debugsource-14-150200.2.1 * kernel-livepatch-5_3_18-150200_24_157-default-14-150200.2.1 * kernel-livepatch-5_3_18-150200_24_163-default-12-150200.2.1 * openSUSE Leap 15.5 (x86_64) * kernel-livepatch-SLE15-SP5-RT_Update_3-debugsource-13-150500.2.1 * kernel-livepatch-5_14_21-150500_13_11-rt-13-150500.2.1 * kernel-livepatch-5_14_21-150500_13_11-rt-debuginfo-13-150500.2.1 * SUSE Linux Enterprise Live Patching 15-SP5 (x86_64) * kernel-livepatch-SLE15-SP5-RT_Update_3-debugsource-13-150500.2.1 * kernel-livepatch-5_14_21-150500_13_11-rt-13-150500.2.1 * kernel-livepatch-5_14_21-150500_13_11-rt-debuginfo-13-150500.2.1 ## References: * https://www.suse.com/security/cve/CVE-2024-27398.html * https://www.suse.com/security/cve/CVE-2024-35950.html * https://bugzilla.suse.com/show_bug.cgi?id=1225013 * https://bugzilla.suse.com/show_bug.cgi?id=1225310 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 5 20:37:12 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 05 Aug 2024 20:37:12 -0000 Subject: SUSE-SU-2024:2732-1: important: Security update for python-Twisted Message-ID: <172289023276.12336.2062704247612559338@smelt2.prg2.suse.org> # Security update for python-Twisted Announcement ID: SUSE-SU-2024:2732-1 Rating: important References: * bsc#1228549 * bsc#1228552 Cross-References: * CVE-2024-41671 * CVE-2024-41810 CVSS scores: * CVE-2024-41671 ( SUSE ): 8.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:L/VA:L/SC:N/SI:N/SA:N * CVE-2024-41671 ( SUSE ): 8.6 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L * CVE-2024-41810 ( SUSE ): 5.1 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N * CVE-2024-41810 ( SUSE ): 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Affected Products: * SUSE Linux Enterprise High Performance Computing 12 SP2 * SUSE Linux Enterprise High Performance Computing 12 SP3 * SUSE Linux Enterprise High Performance Computing 12 SP4 * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise Server 12 * SUSE Linux Enterprise Server 12 SP1 * SUSE Linux Enterprise Server 12 SP2 * SUSE Linux Enterprise Server 12 SP3 * SUSE Linux Enterprise Server 12 SP4 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server for SAP Applications 12 * SUSE Linux Enterprise Server for SAP Applications 12 SP1 * SUSE Linux Enterprise Server for SAP Applications 12 SP2 * SUSE Linux Enterprise Server for SAP Applications 12 SP3 * SUSE Linux Enterprise Server for SAP Applications 12 SP4 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 * Web and Scripting Module 12 An update that solves two vulnerabilities can now be installed. ## Description: This update for python-Twisted fixes the following issues: * CVE-2024-41671: Fixed an information disclosure due to HTTP requests processed out-of-order (bsc#1228549) * CVE-2024-41810: Fixed reflected XSS via HTML injection in redirect response (bsc#1228552) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * Web and Scripting Module 12 zypper in -t patch SUSE-SLE-Module-Web-Scripting-12-2024-2732=1 ## Package List: * Web and Scripting Module 12 (aarch64 ppc64le s390x x86_64) * python-Twisted-15.2.1-9.26.1 * python-Twisted-debuginfo-15.2.1-9.26.1 * python-Twisted-debugsource-15.2.1-9.26.1 ## References: * https://www.suse.com/security/cve/CVE-2024-41671.html * https://www.suse.com/security/cve/CVE-2024-41810.html * https://bugzilla.suse.com/show_bug.cgi?id=1228549 * https://bugzilla.suse.com/show_bug.cgi?id=1228552 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 5 20:37:20 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 05 Aug 2024 20:37:20 -0000 Subject: SUSE-SU-2024:2726-1: important: Security update for the Linux Kernel RT (Live Patch 14 for SLE 15 SP5) Message-ID: <172289024065.12336.5329046786531854696@smelt2.prg2.suse.org> # Security update for the Linux Kernel RT (Live Patch 14 for SLE 15 SP5) Announcement ID: SUSE-SU-2024:2726-1 Rating: important References: * bsc#1223363 * bsc#1223683 * bsc#1225013 Cross-References: * CVE-2024-26828 * CVE-2024-26923 * CVE-2024-27398 CVSS scores: * CVE-2024-26828 ( SUSE ): 7.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:H * CVE-2024-26923 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-27398 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.5 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Live Patching 15-SP5 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 An update that solves three vulnerabilities can now be installed. ## Description: This update for the Linux Kernel 5.14.21-150500_13_52 fixes several issues. The following security issues were fixed: * CVE-2024-27398: Fixed use-after-free bug caused by sco_sock_timeout() (bsc#1225013). * CVE-2024-26923: Fixed false-positive lockdep splat for spin_lock() in __unix_gc() (bsc#1223683). * CVE-2024-26828: Fixed underflow in parse_server_interfaces() (bsc#1223363). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.5 zypper in -t patch SUSE-2024-2726=1 * SUSE Linux Enterprise Live Patching 15-SP5 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP5-2024-2726=1 ## Package List: * openSUSE Leap 15.5 (x86_64) * kernel-livepatch-5_14_21-150500_13_52-rt-3-150500.11.8.1 * kernel-livepatch-SLE15-SP5-RT_Update_14-debugsource-3-150500.11.8.1 * kernel-livepatch-5_14_21-150500_13_52-rt-debuginfo-3-150500.11.8.1 * SUSE Linux Enterprise Live Patching 15-SP5 (x86_64) * kernel-livepatch-5_14_21-150500_13_52-rt-3-150500.11.8.1 * kernel-livepatch-SLE15-SP5-RT_Update_14-debugsource-3-150500.11.8.1 * kernel-livepatch-5_14_21-150500_13_52-rt-debuginfo-3-150500.11.8.1 ## References: * https://www.suse.com/security/cve/CVE-2024-26828.html * https://www.suse.com/security/cve/CVE-2024-26923.html * https://www.suse.com/security/cve/CVE-2024-27398.html * https://bugzilla.suse.com/show_bug.cgi?id=1223363 * https://bugzilla.suse.com/show_bug.cgi?id=1223683 * https://bugzilla.suse.com/show_bug.cgi?id=1225013 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 5 20:37:27 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 05 Aug 2024 20:37:27 -0000 Subject: SUSE-SU-2024:2725-1: important: Security update for the Linux Kernel RT (Live Patch 13 for SLE 15 SP5) Message-ID: <172289024796.12336.11655998205858333939@smelt2.prg2.suse.org> # Security update for the Linux Kernel RT (Live Patch 13 for SLE 15 SP5) Announcement ID: SUSE-SU-2024:2725-1 Rating: important References: * bsc#1221302 * bsc#1223059 * bsc#1223363 * bsc#1223514 * bsc#1223683 * bsc#1225013 * bsc#1225310 Cross-References: * CVE-2022-48651 * CVE-2024-26610 * CVE-2024-26828 * CVE-2024-26852 * CVE-2024-26923 * CVE-2024-27398 * CVE-2024-35950 CVSS scores: * CVE-2022-48651 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26610 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2024-26828 ( SUSE ): 7.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:H * CVE-2024-26852 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26923 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-27398 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35950 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.5 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Live Patching 15-SP5 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 An update that solves seven vulnerabilities can now be installed. ## Description: This update for the Linux Kernel 5.14.21-150500_13_47 fixes several issues. The following security issues were fixed: * CVE-2024-27398: Fixed use-after-free bug caused by sco_sock_timeout() (bsc#1225013). * CVE-2024-35950: drm/client: Fully protect modes with dev->mode_config.mutex (bsc#1225310). * CVE-2024-26923: Fixed false-positive lockdep splat for spin_lock() in __unix_gc() (bsc#1223683). * CVE-2024-26828: Fixed underflow in parse_server_interfaces() (bsc#1223363). * CVE-2024-26852: Fixed use-after-free in ip6_route_mpath_notify() (bsc#1223059). * CVE-2024-26610: Fixed memory corruption in wifi/iwlwifi (bsc#1221302). * CVE-2022-48651: Fixed an out-of-bound bug in ipvlan caused by unset skb->mac_header (bsc#1223514). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.5 zypper in -t patch SUSE-2024-2725=1 * SUSE Linux Enterprise Live Patching 15-SP5 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP5-2024-2725=1 ## Package List: * openSUSE Leap 15.5 (x86_64) * kernel-livepatch-5_14_21-150500_13_47-rt-5-150500.11.6.1 * kernel-livepatch-SLE15-SP5-RT_Update_13-debugsource-5-150500.11.6.1 * kernel-livepatch-5_14_21-150500_13_47-rt-debuginfo-5-150500.11.6.1 * SUSE Linux Enterprise Live Patching 15-SP5 (x86_64) * kernel-livepatch-5_14_21-150500_13_47-rt-5-150500.11.6.1 * kernel-livepatch-SLE15-SP5-RT_Update_13-debugsource-5-150500.11.6.1 * kernel-livepatch-5_14_21-150500_13_47-rt-debuginfo-5-150500.11.6.1 ## References: * https://www.suse.com/security/cve/CVE-2022-48651.html * https://www.suse.com/security/cve/CVE-2024-26610.html * https://www.suse.com/security/cve/CVE-2024-26828.html * https://www.suse.com/security/cve/CVE-2024-26852.html * https://www.suse.com/security/cve/CVE-2024-26923.html * https://www.suse.com/security/cve/CVE-2024-27398.html * https://www.suse.com/security/cve/CVE-2024-35950.html * https://bugzilla.suse.com/show_bug.cgi?id=1221302 * https://bugzilla.suse.com/show_bug.cgi?id=1223059 * https://bugzilla.suse.com/show_bug.cgi?id=1223363 * https://bugzilla.suse.com/show_bug.cgi?id=1223514 * https://bugzilla.suse.com/show_bug.cgi?id=1223683 * https://bugzilla.suse.com/show_bug.cgi?id=1225013 * https://bugzilla.suse.com/show_bug.cgi?id=1225310 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 5 20:37:31 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 05 Aug 2024 20:37:31 -0000 Subject: SUSE-SU-2024:2724-1: important: Security update for the Linux Kernel RT (Live Patch 7 for SLE 15 SP5) Message-ID: <172289025193.12336.16828756714823834772@smelt2.prg2.suse.org> # Security update for the Linux Kernel RT (Live Patch 7 for SLE 15 SP5) Announcement ID: SUSE-SU-2024:2724-1 Rating: important References: * bsc#1225013 * bsc#1225310 Cross-References: * CVE-2024-27398 * CVE-2024-35950 CVSS scores: * CVE-2024-27398 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35950 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.5 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Live Patching 15-SP5 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 An update that solves two vulnerabilities can now be installed. ## Description: This update for the Linux Kernel 5.14.21-150500_13_24 fixes several issues. The following security issues were fixed: * CVE-2024-27398: Fixed use-after-free bug caused by sco_sock_timeout() (bsc#1225013). * CVE-2024-35950: drm/client: Fully protect modes with dev->mode_config.mutex (bsc#1225310). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.5 zypper in -t patch SUSE-2024-2724=1 * SUSE Linux Enterprise Live Patching 15-SP5 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP5-2024-2724=1 ## Package List: * openSUSE Leap 15.5 (x86_64) * kernel-livepatch-5_14_21-150500_13_24-rt-11-150500.2.1 * kernel-livepatch-5_14_21-150500_13_24-rt-debuginfo-11-150500.2.1 * kernel-livepatch-SLE15-SP5-RT_Update_7-debugsource-11-150500.2.1 * SUSE Linux Enterprise Live Patching 15-SP5 (x86_64) * kernel-livepatch-5_14_21-150500_13_24-rt-11-150500.2.1 * kernel-livepatch-5_14_21-150500_13_24-rt-debuginfo-11-150500.2.1 * kernel-livepatch-SLE15-SP5-RT_Update_7-debugsource-11-150500.2.1 ## References: * https://www.suse.com/security/cve/CVE-2024-27398.html * https://www.suse.com/security/cve/CVE-2024-35950.html * https://bugzilla.suse.com/show_bug.cgi?id=1225013 * https://bugzilla.suse.com/show_bug.cgi?id=1225310 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Aug 6 08:30:08 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Tue, 06 Aug 2024 08:30:08 -0000 Subject: SUSE-SU-2024:2760-1: important: Security update for the Linux Kernel (Live Patch 43 for SLE 15 SP2) Message-ID: <172293300837.12363.17823736342001515468@smelt2.prg2.suse.org> # Security update for the Linux Kernel (Live Patch 43 for SLE 15 SP2) Announcement ID: SUSE-SU-2024:2760-1 Rating: important References: * bsc#1225013 * bsc#1225310 Cross-References: * CVE-2024-27398 * CVE-2024-35950 CVSS scores: * CVE-2024-27398 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35950 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * SUSE Linux Enterprise High Performance Computing 15 SP2 * SUSE Linux Enterprise Live Patching 15-SP2 * SUSE Linux Enterprise Server 15 SP2 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 An update that solves two vulnerabilities can now be installed. ## Description: This update for the Linux Kernel 5.3.18-150200_24_172 fixes several issues. The following security issues were fixed: * CVE-2024-27398: Fixed use-after-free bug caused by sco_sock_timeout() (bsc#1225013). * CVE-2024-35950: drm/client: Fully protect modes with dev->mode_config.mutex (bsc#1225310). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Live Patching 15-SP2 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP2-2024-2760=1 ## Package List: * SUSE Linux Enterprise Live Patching 15-SP2 (ppc64le s390x x86_64) * kernel-livepatch-SLE15-SP2_Update_43-debugsource-10-150200.2.1 * kernel-livepatch-5_3_18-150200_24_172-default-debuginfo-10-150200.2.1 * kernel-livepatch-5_3_18-150200_24_172-default-10-150200.2.1 ## References: * https://www.suse.com/security/cve/CVE-2024-27398.html * https://www.suse.com/security/cve/CVE-2024-35950.html * https://bugzilla.suse.com/show_bug.cgi?id=1225013 * https://bugzilla.suse.com/show_bug.cgi?id=1225310 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Aug 6 08:30:16 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Tue, 06 Aug 2024 08:30:16 -0000 Subject: SUSE-SU-2024:2759-1: important: Security update for the Linux Kernel (Live Patch 48 for SLE 15 SP2) Message-ID: <172293301675.12363.1652639108216329495@smelt2.prg2.suse.org> # Security update for the Linux Kernel (Live Patch 48 for SLE 15 SP2) Announcement ID: SUSE-SU-2024:2759-1 Rating: important References: * bsc#1210619 * bsc#1223363 * bsc#1223683 * bsc#1225013 * bsc#1225211 * bsc#1225310 Cross-References: * CVE-2021-47383 * CVE-2023-1829 * CVE-2024-26828 * CVE-2024-26923 * CVE-2024-27398 * CVE-2024-35950 CVSS scores: * CVE-2021-47383 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-1829 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-1829 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26828 ( SUSE ): 7.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:H * CVE-2024-26923 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-27398 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35950 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * SUSE Linux Enterprise High Performance Computing 15 SP2 * SUSE Linux Enterprise Live Patching 15-SP2 * SUSE Linux Enterprise Server 15 SP2 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 An update that solves six vulnerabilities can now be installed. ## Description: This update for the Linux Kernel 5.3.18-150200_24_191 fixes several issues. The following security issues were fixed: * CVE-2024-27398: Fixed use-after-free bug caused by sco_sock_timeout() (bsc#1225013). * CVE-2024-35950: drm/client: Fully protect modes with dev->mode_config.mutex (bsc#1225310). * CVE-2021-47383: Fixed out-of-bound vmalloc access in imageblit (bsc#1225211). * CVE-2024-26923: Fixed false-positive lockdep splat for spin_lock() in __unix_gc() (bsc#1223683). * CVE-2024-26828: Fixed underflow in parse_server_interfaces() (bsc#1223363). * CVE-2023-1829: Fixed a use-after-free vulnerability in the control index filter (tcindex) (bsc#1210619). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Live Patching 15-SP2 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP2-2024-2759=1 ## Package List: * SUSE Linux Enterprise Live Patching 15-SP2 (ppc64le s390x x86_64) * kernel-livepatch-5_3_18-150200_24_191-default-4-150200.5.6.1 * kernel-livepatch-5_3_18-150200_24_191-default-debuginfo-4-150200.5.6.1 * kernel-livepatch-SLE15-SP2_Update_48-debugsource-4-150200.5.6.1 ## References: * https://www.suse.com/security/cve/CVE-2021-47383.html * https://www.suse.com/security/cve/CVE-2023-1829.html * https://www.suse.com/security/cve/CVE-2024-26828.html * https://www.suse.com/security/cve/CVE-2024-26923.html * https://www.suse.com/security/cve/CVE-2024-27398.html * https://www.suse.com/security/cve/CVE-2024-35950.html * https://bugzilla.suse.com/show_bug.cgi?id=1210619 * https://bugzilla.suse.com/show_bug.cgi?id=1223363 * https://bugzilla.suse.com/show_bug.cgi?id=1223683 * https://bugzilla.suse.com/show_bug.cgi?id=1225013 * https://bugzilla.suse.com/show_bug.cgi?id=1225211 * https://bugzilla.suse.com/show_bug.cgi?id=1225310 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Aug 6 08:30:25 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Tue, 06 Aug 2024 08:30:25 -0000 Subject: SUSE-SU-2024:2758-1: important: Security update for the Linux Kernel (Live Patch 47 for SLE 15 SP2) Message-ID: <172293302551.12363.18180510302780276690@smelt2.prg2.suse.org> # Security update for the Linux Kernel (Live Patch 47 for SLE 15 SP2) Announcement ID: SUSE-SU-2024:2758-1 Rating: important References: * bsc#1210619 * bsc#1220145 * bsc#1220537 * bsc#1223059 * bsc#1223363 * bsc#1223514 * bsc#1223683 * bsc#1225013 * bsc#1225211 * bsc#1225310 Cross-References: * CVE-2021-46955 * CVE-2021-47383 * CVE-2022-48651 * CVE-2023-1829 * CVE-2024-23307 * CVE-2024-26828 * CVE-2024-26852 * CVE-2024-26923 * CVE-2024-27398 * CVE-2024-35950 CVSS scores: * CVE-2021-46955 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2021-47383 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48651 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-1829 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-1829 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-23307 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-23307 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26828 ( SUSE ): 7.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:H * CVE-2024-26852 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26923 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-27398 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35950 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * SUSE Linux Enterprise High Performance Computing 15 SP2 * SUSE Linux Enterprise Live Patching 15-SP2 * SUSE Linux Enterprise Server 15 SP2 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 An update that solves 10 vulnerabilities can now be installed. ## Description: This update for the Linux Kernel 5.3.18-150200_24_188 fixes several issues. The following security issues were fixed: * CVE-2024-27398: Fixed use-after-free bug caused by sco_sock_timeout() (bsc#1225013). * CVE-2024-35950: drm/client: Fully protect modes with dev->mode_config.mutex (bsc#1225310). * CVE-2021-47383: Fixed out-of-bound vmalloc access in imageblit (bsc#1225211). * CVE-2024-26923: Fixed false-positive lockdep splat for spin_lock() in __unix_gc() (bsc#1223683). * CVE-2024-26828: Fixed underflow in parse_server_interfaces() (bsc#1223363). * CVE-2021-46955: Fixed an out-of-bounds read with openvswitch, when fragmenting IPv4 packets (bsc#1220537). * CVE-2024-23307: Fixed Integer Overflow or Wraparound vulnerability in x86 and ARM md, raid, raid5 modules (bsc#1220145). * CVE-2024-26852: Fixed use-after-free in ip6_route_mpath_notify() (bsc#1223059). * CVE-2022-48651: Fixed an out-of-bound bug in ipvlan caused by unset skb->mac_header (bsc#1223514). * CVE-2023-1829: Fixed a use-after-free vulnerability in the control index filter (tcindex) (bsc#1210619). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Live Patching 15-SP2 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP2-2024-2758=1 ## Package List: * SUSE Linux Enterprise Live Patching 15-SP2 (ppc64le s390x x86_64) * kernel-livepatch-5_3_18-150200_24_188-default-5-150200.5.6.1 * kernel-livepatch-5_3_18-150200_24_188-default-debuginfo-5-150200.5.6.1 * kernel-livepatch-SLE15-SP2_Update_47-debugsource-5-150200.5.6.1 ## References: * https://www.suse.com/security/cve/CVE-2021-46955.html * https://www.suse.com/security/cve/CVE-2021-47383.html * https://www.suse.com/security/cve/CVE-2022-48651.html * https://www.suse.com/security/cve/CVE-2023-1829.html * https://www.suse.com/security/cve/CVE-2024-23307.html * https://www.suse.com/security/cve/CVE-2024-26828.html * https://www.suse.com/security/cve/CVE-2024-26852.html * https://www.suse.com/security/cve/CVE-2024-26923.html * https://www.suse.com/security/cve/CVE-2024-27398.html * https://www.suse.com/security/cve/CVE-2024-35950.html * https://bugzilla.suse.com/show_bug.cgi?id=1210619 * https://bugzilla.suse.com/show_bug.cgi?id=1220145 * https://bugzilla.suse.com/show_bug.cgi?id=1220537 * https://bugzilla.suse.com/show_bug.cgi?id=1223059 * https://bugzilla.suse.com/show_bug.cgi?id=1223363 * https://bugzilla.suse.com/show_bug.cgi?id=1223514 * https://bugzilla.suse.com/show_bug.cgi?id=1223683 * https://bugzilla.suse.com/show_bug.cgi?id=1225013 * https://bugzilla.suse.com/show_bug.cgi?id=1225211 * https://bugzilla.suse.com/show_bug.cgi?id=1225310 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Aug 6 08:30:27 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Tue, 06 Aug 2024 08:30:27 -0000 Subject: SUSE-SU-2024:2761-1: important: Security update for openssl-3-livepatches Message-ID: <172293302750.12363.17879091231282345958@smelt2.prg2.suse.org> # Security update for openssl-3-livepatches Announcement ID: SUSE-SU-2024:2761-1 Rating: important References: * bsc#1227147 Cross-References: * CVE-2024-5535 CVSS scores: * CVE-2024-5535 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * openSUSE Leap 15.6 * SUSE Linux Enterprise Live Patching 15-SP6 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 An update that solves one vulnerability can now be installed. ## Description: This update for openssl-3-livepatches fixes the following issues: * CVE-2024-5535: Fixed SSL_select_next_proto buffer overread (bsc#1227147). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch SUSE-2024-2761=1 * SUSE Linux Enterprise Live Patching 15-SP6 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP6-2024-2761=1 ## Package List: * openSUSE Leap 15.6 (x86_64) * openssl-3-livepatches-debugsource-0.1-150600.13.3.1 * openssl-3-livepatches-0.1-150600.13.3.1 * openssl-3-livepatches-debuginfo-0.1-150600.13.3.1 * SUSE Linux Enterprise Live Patching 15-SP6 (x86_64) * openssl-3-livepatches-debugsource-0.1-150600.13.3.1 * openssl-3-livepatches-0.1-150600.13.3.1 * openssl-3-livepatches-debuginfo-0.1-150600.13.3.1 ## References: * https://www.suse.com/security/cve/CVE-2024-5535.html * https://bugzilla.suse.com/show_bug.cgi?id=1227147 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Aug 6 08:30:30 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Tue, 06 Aug 2024 08:30:30 -0000 Subject: SUSE-SU-2024:2757-1: important: Security update for python-Twisted Message-ID: <172293303034.12363.10622015785006344167@smelt2.prg2.suse.org> # Security update for python-Twisted Announcement ID: SUSE-SU-2024:2757-1 Rating: important References: * bsc#1228549 * bsc#1228552 Cross-References: * CVE-2024-41671 * CVE-2024-41810 CVSS scores: * CVE-2024-41671 ( SUSE ): 8.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:L/VA:L/SC:N/SI:N/SA:N * CVE-2024-41671 ( SUSE ): 8.6 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L * CVE-2024-41810 ( SUSE ): 5.1 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N * CVE-2024-41810 ( SUSE ): 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Affected Products: * SUSE Enterprise Storage 7.1 * SUSE Linux Enterprise High Performance Computing 15 SP2 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 * SUSE Linux Enterprise High Performance Computing 15 SP3 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 * SUSE Linux Enterprise Server 15 SP2 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 * SUSE Linux Enterprise Server 15 SP3 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 An update that solves two vulnerabilities can now be installed. ## Description: This update for python-Twisted fixes the following issues: * CVE-2024-41671: Fixed an information disclosure due to HTTP requests processed out-of-order (bsc#1228549) * CVE-2024-41810: Fixed reflected XSS via HTML injection in redirect response (bsc#1228552) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 zypper in -t patch SUSE-SLE-Product-HPC-15-SP2-LTSS-2024-2757=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 zypper in -t patch SUSE-SLE-Product-HPC-15-SP3-LTSS-2024-2757=1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 zypper in -t patch SUSE-SLE-Product-SLES-15-SP2-LTSS-2024-2757=1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 zypper in -t patch SUSE-SLE-Product-SLES-15-SP3-LTSS-2024-2757=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP2-2024-2757=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP3-2024-2757=1 * SUSE Enterprise Storage 7.1 zypper in -t patch SUSE-Storage-7.1-2024-2757=1 ## Package List: * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 (aarch64 x86_64) * python3-Twisted-debuginfo-19.10.0-150200.3.24.1 * python3-Twisted-19.10.0-150200.3.24.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (aarch64 x86_64) * python3-Twisted-debuginfo-19.10.0-150200.3.24.1 * python3-Twisted-19.10.0-150200.3.24.1 * python-Twisted-debuginfo-19.10.0-150200.3.24.1 * python-Twisted-debugsource-19.10.0-150200.3.24.1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (aarch64 ppc64le s390x x86_64) * python3-Twisted-debuginfo-19.10.0-150200.3.24.1 * python3-Twisted-19.10.0-150200.3.24.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (aarch64 ppc64le s390x x86_64) * python3-Twisted-debuginfo-19.10.0-150200.3.24.1 * python3-Twisted-19.10.0-150200.3.24.1 * python-Twisted-debuginfo-19.10.0-150200.3.24.1 * python-Twisted-debugsource-19.10.0-150200.3.24.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 (ppc64le x86_64) * python3-Twisted-debuginfo-19.10.0-150200.3.24.1 * python3-Twisted-19.10.0-150200.3.24.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (ppc64le x86_64) * python3-Twisted-debuginfo-19.10.0-150200.3.24.1 * python3-Twisted-19.10.0-150200.3.24.1 * python-Twisted-debuginfo-19.10.0-150200.3.24.1 * python-Twisted-debugsource-19.10.0-150200.3.24.1 * SUSE Enterprise Storage 7.1 (aarch64 x86_64) * python3-Twisted-debuginfo-19.10.0-150200.3.24.1 * python3-Twisted-19.10.0-150200.3.24.1 * python-Twisted-debuginfo-19.10.0-150200.3.24.1 * python-Twisted-debugsource-19.10.0-150200.3.24.1 ## References: * https://www.suse.com/security/cve/CVE-2024-41671.html * https://www.suse.com/security/cve/CVE-2024-41810.html * https://bugzilla.suse.com/show_bug.cgi?id=1228549 * https://bugzilla.suse.com/show_bug.cgi?id=1228552 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Aug 6 12:30:18 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Tue, 06 Aug 2024 12:30:18 -0000 Subject: SUSE-SU-2024:2773-1: important: Security update for the Linux Kernel (Live Patch 43 for SLE 15 SP3) Message-ID: <172294741811.12336.8870766582842514074@smelt2.prg2.suse.org> # Security update for the Linux Kernel (Live Patch 43 for SLE 15 SP3) Announcement ID: SUSE-SU-2024:2773-1 Rating: important References: * bsc#1210619 * bsc#1220145 * bsc#1220537 * bsc#1221302 * bsc#1223059 * bsc#1223363 * bsc#1223514 * bsc#1223683 * bsc#1225013 * bsc#1225211 * bsc#1225310 Cross-References: * CVE-2021-46955 * CVE-2021-47383 * CVE-2022-48651 * CVE-2023-1829 * CVE-2024-23307 * CVE-2024-26610 * CVE-2024-26828 * CVE-2024-26852 * CVE-2024-26923 * CVE-2024-27398 * CVE-2024-35950 CVSS scores: * CVE-2021-46955 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2021-47383 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48651 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-1829 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-1829 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-23307 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-23307 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26610 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2024-26828 ( SUSE ): 7.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:H * CVE-2024-26852 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26923 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-27398 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35950 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.3 * SUSE Linux Enterprise High Performance Computing 15 SP3 * SUSE Linux Enterprise Live Patching 15-SP3 * SUSE Linux Enterprise Micro 5.1 * SUSE Linux Enterprise Micro 5.2 * SUSE Linux Enterprise Server 15 SP3 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 An update that solves 11 vulnerabilities can now be installed. ## Description: This update for the Linux Kernel 5.3.18-150300_59_158 fixes several issues. The following security issues were fixed: * CVE-2024-27398: Fixed use-after-free bug caused by sco_sock_timeout() (bsc#1225013). * CVE-2024-35950: drm/client: Fully protect modes with dev->mode_config.mutex (bsc#1225310). * CVE-2021-47383: Fixed out-of-bound vmalloc access in imageblit (bsc#1225211). * CVE-2024-26923: Fixed false-positive lockdep splat for spin_lock() in __unix_gc() (bsc#1223683). * CVE-2024-26828: Fixed underflow in parse_server_interfaces() (bsc#1223363). * CVE-2021-46955: Fixed an out-of-bounds read with openvswitch, when fragmenting IPv4 packets (bsc#1220537). * CVE-2024-23307: Fixed Integer Overflow or Wraparound vulnerability in x86 and ARM md, raid, raid5 modules (bsc#1220145). * CVE-2024-26852: Fixed use-after-free in ip6_route_mpath_notify() (bsc#1223059). * CVE-2024-26610: Fixed memory corruption in wifi/iwlwifi (bsc#1221302). * CVE-2022-48651: Fixed an out-of-bound bug in ipvlan caused by unset skb->mac_header (bsc#1223514). * CVE-2023-1829: Fixed a use-after-free vulnerability in the control index filter (tcindex) (bsc#1210619). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.3 zypper in -t patch SUSE-2024-2773=1 * SUSE Linux Enterprise Live Patching 15-SP3 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP3-2024-2773=1 ## Package List: * openSUSE Leap 15.3 (ppc64le s390x x86_64) * kernel-livepatch-5_3_18-150300_59_158-default-5-150300.7.6.1 * kernel-livepatch-5_3_18-150300_59_158-default-debuginfo-5-150300.7.6.1 * kernel-livepatch-SLE15-SP3_Update_43-debugsource-5-150300.7.6.1 * openSUSE Leap 15.3 (x86_64) * kernel-livepatch-5_3_18-150300_59_158-preempt-debuginfo-5-150300.7.6.1 * kernel-livepatch-5_3_18-150300_59_158-preempt-5-150300.7.6.1 * SUSE Linux Enterprise Live Patching 15-SP3 (ppc64le s390x x86_64) * kernel-livepatch-5_3_18-150300_59_158-default-5-150300.7.6.1 ## References: * https://www.suse.com/security/cve/CVE-2021-46955.html * https://www.suse.com/security/cve/CVE-2021-47383.html * https://www.suse.com/security/cve/CVE-2022-48651.html * https://www.suse.com/security/cve/CVE-2023-1829.html * https://www.suse.com/security/cve/CVE-2024-23307.html * https://www.suse.com/security/cve/CVE-2024-26610.html * https://www.suse.com/security/cve/CVE-2024-26828.html * https://www.suse.com/security/cve/CVE-2024-26852.html * https://www.suse.com/security/cve/CVE-2024-26923.html * https://www.suse.com/security/cve/CVE-2024-27398.html * https://www.suse.com/security/cve/CVE-2024-35950.html * https://bugzilla.suse.com/show_bug.cgi?id=1210619 * https://bugzilla.suse.com/show_bug.cgi?id=1220145 * https://bugzilla.suse.com/show_bug.cgi?id=1220537 * https://bugzilla.suse.com/show_bug.cgi?id=1221302 * https://bugzilla.suse.com/show_bug.cgi?id=1223059 * https://bugzilla.suse.com/show_bug.cgi?id=1223363 * https://bugzilla.suse.com/show_bug.cgi?id=1223514 * https://bugzilla.suse.com/show_bug.cgi?id=1223683 * https://bugzilla.suse.com/show_bug.cgi?id=1225013 * https://bugzilla.suse.com/show_bug.cgi?id=1225211 * https://bugzilla.suse.com/show_bug.cgi?id=1225310 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Aug 6 12:30:22 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Tue, 06 Aug 2024 12:30:22 -0000 Subject: SUSE-SU-2024:2771-1: important: Security update for the Linux Kernel (Live Patch 34 for SLE 15 SP3) Message-ID: <172294742226.12336.12994357227092187228@smelt2.prg2.suse.org> # Security update for the Linux Kernel (Live Patch 34 for SLE 15 SP3) Announcement ID: SUSE-SU-2024:2771-1 Rating: important References: * bsc#1225013 * bsc#1225310 Cross-References: * CVE-2024-27398 * CVE-2024-35950 CVSS scores: * CVE-2024-27398 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35950 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.3 * SUSE Linux Enterprise High Performance Computing 15 SP2 * SUSE Linux Enterprise High Performance Computing 15 SP3 * SUSE Linux Enterprise Live Patching 15-SP2 * SUSE Linux Enterprise Live Patching 15-SP3 * SUSE Linux Enterprise Micro 5.1 * SUSE Linux Enterprise Micro 5.2 * SUSE Linux Enterprise Server 15 SP2 * SUSE Linux Enterprise Server 15 SP3 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 An update that solves two vulnerabilities can now be installed. ## Description: This update for the Linux Kernel 5.3.18-150300_59_127 fixes several issues. The following security issues were fixed: * CVE-2024-27398: Fixed use-after-free bug caused by sco_sock_timeout() (bsc#1225013). * CVE-2024-35950: drm/client: Fully protect modes with dev->mode_config.mutex (bsc#1225310). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Live Patching 15-SP2 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP2-2024-2771=1 SUSE-SLE- Module-Live-Patching-15-SP2-2024-2770=1 * openSUSE Leap 15.3 zypper in -t patch SUSE-2024-2772=1 * SUSE Linux Enterprise Live Patching 15-SP3 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP3-2024-2772=1 ## Package List: * SUSE Linux Enterprise Live Patching 15-SP2 (ppc64le s390x x86_64) * kernel-livepatch-SLE15-SP2_Update_39-debugsource-13-150200.2.1 * kernel-livepatch-5_3_18-150200_24_160-default-debuginfo-13-150200.2.1 * kernel-livepatch-5_3_18-150200_24_160-default-13-150200.2.1 * kernel-livepatch-5_3_18-150200_24_178-default-8-150200.2.1 * kernel-livepatch-SLE15-SP2_Update_45-debugsource-8-150200.2.1 * kernel-livepatch-5_3_18-150200_24_178-default-debuginfo-8-150200.2.1 * openSUSE Leap 15.3 (ppc64le s390x x86_64) * kernel-livepatch-5_3_18-150300_59_127-default-debuginfo-14-150300.2.1 * kernel-livepatch-SLE15-SP3_Update_34-debugsource-14-150300.2.1 * kernel-livepatch-5_3_18-150300_59_127-default-14-150300.2.1 * openSUSE Leap 15.3 (x86_64) * kernel-livepatch-5_3_18-150300_59_127-preempt-14-150300.2.1 * kernel-livepatch-5_3_18-150300_59_127-preempt-debuginfo-14-150300.2.1 * SUSE Linux Enterprise Live Patching 15-SP3 (ppc64le s390x x86_64) * kernel-livepatch-5_3_18-150300_59_127-default-14-150300.2.1 ## References: * https://www.suse.com/security/cve/CVE-2024-27398.html * https://www.suse.com/security/cve/CVE-2024-35950.html * https://bugzilla.suse.com/show_bug.cgi?id=1225013 * https://bugzilla.suse.com/show_bug.cgi?id=1225310 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Aug 6 12:30:25 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Tue, 06 Aug 2024 12:30:25 -0000 Subject: SUSE-SU-2024:2273-2: moderate: Security update for podman Message-ID: <172294742504.12336.16260556040209898983@smelt2.prg2.suse.org> # Security update for podman Announcement ID: SUSE-SU-2024:2273-2 Rating: moderate References: * bsc#1227052 Cross-References: * CVE-2024-6104 CVSS scores: * CVE-2024-6104 ( SUSE ): 6.0 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N * CVE-2024-6104 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Micro for Rancher 5.3 * SUSE Linux Enterprise Micro for Rancher 5.4 An update that solves one vulnerability can now be installed. ## Description: This update for podman fixes the following issues: * CVE-2024-6104: Fixed a potential leak of sensitive information on HTTP log file (bsc#1227052). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Micro for Rancher 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2024-2273=1 * SUSE Linux Enterprise Micro 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2024-2273=1 * SUSE Linux Enterprise Micro for Rancher 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2024-2273=1 * SUSE Linux Enterprise Micro 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2024-2273=1 ## Package List: * SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 s390x x86_64) * podman-4.9.5-150400.4.30.1 * podman-debuginfo-4.9.5-150400.4.30.1 * podman-remote-debuginfo-4.9.5-150400.4.30.1 * podman-remote-4.9.5-150400.4.30.1 * SUSE Linux Enterprise Micro 5.3 (aarch64 s390x x86_64) * podman-4.9.5-150400.4.30.1 * podman-debuginfo-4.9.5-150400.4.30.1 * podman-remote-debuginfo-4.9.5-150400.4.30.1 * podman-remote-4.9.5-150400.4.30.1 * SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 s390x x86_64) * podman-4.9.5-150400.4.30.1 * podman-debuginfo-4.9.5-150400.4.30.1 * podman-remote-debuginfo-4.9.5-150400.4.30.1 * podman-remote-4.9.5-150400.4.30.1 * SUSE Linux Enterprise Micro 5.4 (aarch64 s390x x86_64) * podman-4.9.5-150400.4.30.1 * podman-debuginfo-4.9.5-150400.4.30.1 * podman-remote-debuginfo-4.9.5-150400.4.30.1 * podman-remote-4.9.5-150400.4.30.1 ## References: * https://www.suse.com/security/cve/CVE-2024-6104.html * https://bugzilla.suse.com/show_bug.cgi?id=1227052 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Aug 6 12:30:27 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Tue, 06 Aug 2024 12:30:27 -0000 Subject: SUSE-SU-2024:2767-1: important: Security update for ca-certificates-mozilla Message-ID: <172294742769.12336.4206515768520481635@smelt2.prg2.suse.org> # Security update for ca-certificates-mozilla Announcement ID: SUSE-SU-2024:2767-1 Rating: important References: * bsc#1220356 * bsc#1227525 Affected Products: * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 An update that has two security fixes can now be installed. ## Description: This update for ca-certificates-mozilla fixes the following issues: * Updated to 2.68 state of Mozilla SSL root CAs (bsc#1227525) * Added: FIRMAPROFESIONAL CA ROOT-A WEB * Distrust: GLOBALTRUST 2020 * Updated to 2.66 state of Mozilla SSL root CAs (bsc#1220356) Added: * CommScope Public Trust ECC Root-01 * CommScope Public Trust ECC Root-02 * CommScope Public Trust RSA Root-01 * CommScope Public Trust RSA Root-02 * D-Trust SBR Root CA 1 2022 * D-Trust SBR Root CA 2 2022 * Telekom Security SMIME ECC Root 2021 * Telekom Security SMIME RSA Root 2023 * Telekom Security TLS ECC Root 2020 * Telekom Security TLS RSA Root 2023 * TrustAsia Global Root CA G3 * TrustAsia Global Root CA G4 Removed: * Autoridad de Certificacion Firmaprofesional CIF A62634068 * Chambers of Commerce Root - 2008 * Global Chambersign Root - 2008 * Security Communication Root CA * Symantec Class 1 Public Primary Certification Authority - G6 * Symantec Class 2 Public Primary Certification Authority - G6 * TrustCor ECA-1 * TrustCor RootCert CA-1 * TrustCor RootCert CA-2 * VeriSign Class 1 Public Primary Certification Authority - G3 * VeriSign Class 2 Public Primary Certification Authority - G3 ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise High Performance Computing 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-2767=1 * SUSE Linux Enterprise Server 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-2767=1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-2767=1 ## Package List: * SUSE Linux Enterprise High Performance Computing 12 SP5 (noarch) * ca-certificates-mozilla-2.68-12.46.1 * SUSE Linux Enterprise Server 12 SP5 (noarch) * ca-certificates-mozilla-2.68-12.46.1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 (noarch) * ca-certificates-mozilla-2.68-12.46.1 ## References: * https://bugzilla.suse.com/show_bug.cgi?id=1220356 * https://bugzilla.suse.com/show_bug.cgi?id=1227525 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Aug 6 16:30:10 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Tue, 06 Aug 2024 16:30:10 -0000 Subject: SUSE-SU-2024:2792-1: important: Security update for the Linux Kernel (Live Patch 44 for SLE 15 SP3) Message-ID: <172296181095.12363.15090073744030519847@smelt2.prg2.suse.org> # Security update for the Linux Kernel (Live Patch 44 for SLE 15 SP3) Announcement ID: SUSE-SU-2024:2792-1 Rating: important References: * bsc#1210619 * bsc#1223363 * bsc#1223683 * bsc#1225013 * bsc#1225211 * bsc#1225310 Cross-References: * CVE-2021-47383 * CVE-2023-1829 * CVE-2024-26828 * CVE-2024-26923 * CVE-2024-27398 * CVE-2024-35950 CVSS scores: * CVE-2021-47383 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-1829 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-1829 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26828 ( SUSE ): 7.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:H * CVE-2024-26923 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-27398 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35950 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.3 * SUSE Linux Enterprise High Performance Computing 15 SP3 * SUSE Linux Enterprise Live Patching 15-SP3 * SUSE Linux Enterprise Micro 5.1 * SUSE Linux Enterprise Micro 5.2 * SUSE Linux Enterprise Server 15 SP3 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 An update that solves six vulnerabilities can now be installed. ## Description: This update for the Linux Kernel 5.3.18-150300_59_161 fixes several issues. The following security issues were fixed: * CVE-2024-27398: Fixed use-after-free bug caused by sco_sock_timeout() (bsc#1225013). * CVE-2024-35950: drm/client: Fully protect modes with dev->mode_config.mutex (bsc#1225310). * CVE-2021-47383: Fixed out-of-bound vmalloc access in imageblit (bsc#1225211). * CVE-2024-26923: Fixed false-positive lockdep splat for spin_lock() in __unix_gc() (bsc#1223683). * CVE-2024-26828: Fixed underflow in parse_server_interfaces() (bsc#1223363). * CVE-2023-1829: Fixed a use-after-free vulnerability in the control index filter (tcindex) (bsc#1210619). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.3 zypper in -t patch SUSE-2024-2792=1 * SUSE Linux Enterprise Live Patching 15-SP3 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP3-2024-2792=1 ## Package List: * openSUSE Leap 15.3 (ppc64le s390x x86_64) * kernel-livepatch-SLE15-SP3_Update_44-debugsource-4-150300.7.6.1 * kernel-livepatch-5_3_18-150300_59_161-default-4-150300.7.6.1 * kernel-livepatch-5_3_18-150300_59_161-default-debuginfo-4-150300.7.6.1 * openSUSE Leap 15.3 (x86_64) * kernel-livepatch-5_3_18-150300_59_161-preempt-debuginfo-4-150300.7.6.1 * kernel-livepatch-5_3_18-150300_59_161-preempt-4-150300.7.6.1 * SUSE Linux Enterprise Live Patching 15-SP3 (ppc64le s390x x86_64) * kernel-livepatch-5_3_18-150300_59_161-default-4-150300.7.6.1 ## References: * https://www.suse.com/security/cve/CVE-2021-47383.html * https://www.suse.com/security/cve/CVE-2023-1829.html * https://www.suse.com/security/cve/CVE-2024-26828.html * https://www.suse.com/security/cve/CVE-2024-26923.html * https://www.suse.com/security/cve/CVE-2024-27398.html * https://www.suse.com/security/cve/CVE-2024-35950.html * https://bugzilla.suse.com/show_bug.cgi?id=1210619 * https://bugzilla.suse.com/show_bug.cgi?id=1223363 * https://bugzilla.suse.com/show_bug.cgi?id=1223683 * https://bugzilla.suse.com/show_bug.cgi?id=1225013 * https://bugzilla.suse.com/show_bug.cgi?id=1225211 * https://bugzilla.suse.com/show_bug.cgi?id=1225310 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Aug 6 16:30:13 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Tue, 06 Aug 2024 16:30:13 -0000 Subject: SUSE-SU-2024:2793-1: important: Security update for the Linux Kernel (Live Patch 40 for SLE 15 SP3) Message-ID: <172296181389.12363.6544421100296517553@smelt2.prg2.suse.org> # Security update for the Linux Kernel (Live Patch 40 for SLE 15 SP3) Announcement ID: SUSE-SU-2024:2793-1 Rating: important References: * bsc#1225013 * bsc#1225310 Cross-References: * CVE-2024-27398 * CVE-2024-35950 CVSS scores: * CVE-2024-27398 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35950 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.3 * SUSE Linux Enterprise High Performance Computing 15 SP3 * SUSE Linux Enterprise Live Patching 15-SP3 * SUSE Linux Enterprise Micro 5.1 * SUSE Linux Enterprise Micro 5.2 * SUSE Linux Enterprise Server 15 SP3 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 An update that solves two vulnerabilities can now be installed. ## Description: This update for the Linux Kernel 5.3.18-150300_59_147 fixes several issues. The following security issues were fixed: * CVE-2024-27398: Fixed use-after-free bug caused by sco_sock_timeout() (bsc#1225013). * CVE-2024-35950: drm/client: Fully protect modes with dev->mode_config.mutex (bsc#1225310). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.3 zypper in -t patch SUSE-2024-2795=1 SUSE-2024-2774=1 SUSE-2024-2796=1 SUSE-2024-2775=1 SUSE-2024-2793=1 SUSE-2024-2794=1 * SUSE Linux Enterprise Live Patching 15-SP3 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP3-2024-2795=1 SUSE-SLE- Module-Live-Patching-15-SP3-2024-2774=1 SUSE-SLE-Module-Live- Patching-15-SP3-2024-2796=1 SUSE-SLE-Module-Live-Patching-15-SP3-2024-2775=1 SUSE-SLE-Module-Live-Patching-15-SP3-2024-2793=1 SUSE-SLE-Module-Live- Patching-15-SP3-2024-2794=1 ## Package List: * openSUSE Leap 15.3 (ppc64le s390x x86_64) * kernel-livepatch-5_3_18-150300_59_138-default-12-150300.2.1 * kernel-livepatch-5_3_18-150300_59_147-default-10-150300.2.1 * kernel-livepatch-SLE15-SP3_Update_36-debugsource-12-150300.2.1 * kernel-livepatch-SLE15-SP3_Update_39-debugsource-10-150300.2.1 * kernel-livepatch-5_3_18-150300_59_133-default-12-150300.2.1 * kernel-livepatch-5_3_18-150300_59_141-default-11-150300.2.1 * kernel-livepatch-5_3_18-150300_59_138-default-debuginfo-12-150300.2.1 * kernel-livepatch-5_3_18-150300_59_144-default-10-150300.2.1 * kernel-livepatch-SLE15-SP3_Update_37-debugsource-12-150300.2.1 * kernel-livepatch-5_3_18-150300_59_133-default-debuginfo-12-150300.2.1 * kernel-livepatch-SLE15-SP3_Update_40-debugsource-10-150300.2.1 * kernel-livepatch-5_3_18-150300_59_130-default-13-150300.2.1 * kernel-livepatch-5_3_18-150300_59_130-default-debuginfo-13-150300.2.1 * kernel-livepatch-5_3_18-150300_59_144-default-debuginfo-10-150300.2.1 * kernel-livepatch-5_3_18-150300_59_147-default-debuginfo-10-150300.2.1 * kernel-livepatch-5_3_18-150300_59_141-default-debuginfo-11-150300.2.1 * kernel-livepatch-SLE15-SP3_Update_38-debugsource-11-150300.2.1 * kernel-livepatch-SLE15-SP3_Update_35-debugsource-13-150300.2.1 * openSUSE Leap 15.3 (x86_64) * kernel-livepatch-5_3_18-150300_59_144-preempt-debuginfo-10-150300.2.1 * kernel-livepatch-5_3_18-150300_59_144-preempt-10-150300.2.1 * kernel-livepatch-5_3_18-150300_59_130-preempt-debuginfo-13-150300.2.1 * kernel-livepatch-5_3_18-150300_59_141-preempt-debuginfo-11-150300.2.1 * kernel-livepatch-5_3_18-150300_59_133-preempt-debuginfo-12-150300.2.1 * kernel-livepatch-5_3_18-150300_59_141-preempt-11-150300.2.1 * kernel-livepatch-5_3_18-150300_59_133-preempt-12-150300.2.1 * kernel-livepatch-5_3_18-150300_59_138-preempt-12-150300.2.1 * kernel-livepatch-5_3_18-150300_59_147-preempt-10-150300.2.1 * kernel-livepatch-5_3_18-150300_59_130-preempt-13-150300.2.1 * kernel-livepatch-5_3_18-150300_59_147-preempt-debuginfo-10-150300.2.1 * kernel-livepatch-5_3_18-150300_59_138-preempt-debuginfo-12-150300.2.1 * SUSE Linux Enterprise Live Patching 15-SP3 (ppc64le s390x x86_64) * kernel-livepatch-5_3_18-150300_59_138-default-12-150300.2.1 * kernel-livepatch-5_3_18-150300_59_147-default-10-150300.2.1 * kernel-livepatch-5_3_18-150300_59_133-default-12-150300.2.1 * kernel-livepatch-5_3_18-150300_59_144-default-10-150300.2.1 * kernel-livepatch-5_3_18-150300_59_141-default-11-150300.2.1 * kernel-livepatch-5_3_18-150300_59_130-default-13-150300.2.1 ## References: * https://www.suse.com/security/cve/CVE-2024-27398.html * https://www.suse.com/security/cve/CVE-2024-35950.html * https://bugzilla.suse.com/show_bug.cgi?id=1225013 * https://bugzilla.suse.com/show_bug.cgi?id=1225310 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Aug 6 16:30:19 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Tue, 06 Aug 2024 16:30:19 -0000 Subject: SUSE-SU-2024:2790-1: important: Security update for MozillaThunderbird Message-ID: <172296181947.12363.12528253539670278325@smelt2.prg2.suse.org> # Security update for MozillaThunderbird Announcement ID: SUSE-SU-2024:2790-1 Rating: important References: * bsc#1226316 Cross-References: * CVE-2024-6600 * CVE-2024-6601 * CVE-2024-6602 * CVE-2024-6603 * CVE-2024-6604 CVSS scores: Affected Products: * openSUSE Leap 15.5 * openSUSE Leap 15.6 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 * SUSE Linux Enterprise Desktop 15 SP5 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Linux Enterprise Workstation Extension 15 SP5 * SUSE Linux Enterprise Workstation Extension 15 SP6 * SUSE Package Hub 15 15-SP5 * SUSE Package Hub 15 15-SP6 An update that solves five vulnerabilities can now be installed. ## Description: This update for MozillaThunderbird fixes the following issues: Update to Mozilla Thunderbird 115.13 (MFSA 2024-31, bsc#1226316): Security fixes: * CVE-2024-6600: Memory corruption in WebGL API (bmo#1888340) * CVE-2024-6601: Race condition in permission assignment (bmo#1890748) * CVE-2024-6602: Memory corruption in NSS (bmo#1895032) * CVE-2024-6603: Memory corruption in thread creation (bmo#1895081) * CVE-2024-6604: Memory safety bugs fixed in Firefox 128, Firefox ESR 115.13, Thunderbird 128, and Thunderbird 115.13 (bmo#1748105, bmo#1837550, bmo#1884266) Other fixes: * fixed: After starting Thunderbird, the message list position was sometimes set to an incorrect position (bmo#1896009) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.5 zypper in -t patch openSUSE-SLE-15.5-2024-2790=1 * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2024-2790=1 * SUSE Package Hub 15 15-SP5 zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP5-2024-2790=1 * SUSE Package Hub 15 15-SP6 zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP6-2024-2790=1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 zypper in -t patch SUSE-SLE-Product-SLED-15-SP4-LTSS-2024-2790=1 * SUSE Linux Enterprise Workstation Extension 15 SP5 zypper in -t patch SUSE-SLE-Product-WE-15-SP5-2024-2790=1 * SUSE Linux Enterprise Workstation Extension 15 SP6 zypper in -t patch SUSE-SLE-Product-WE-15-SP6-2024-2790=1 ## Package List: * openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64) * MozillaThunderbird-translations-common-115.13.0-150200.8.171.4 * MozillaThunderbird-translations-other-115.13.0-150200.8.171.4 * MozillaThunderbird-debuginfo-115.13.0-150200.8.171.4 * MozillaThunderbird-115.13.0-150200.8.171.4 * MozillaThunderbird-debugsource-115.13.0-150200.8.171.4 * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64) * MozillaThunderbird-translations-common-115.13.0-150200.8.171.4 * MozillaThunderbird-translations-other-115.13.0-150200.8.171.4 * MozillaThunderbird-debuginfo-115.13.0-150200.8.171.4 * MozillaThunderbird-115.13.0-150200.8.171.4 * MozillaThunderbird-debugsource-115.13.0-150200.8.171.4 * SUSE Package Hub 15 15-SP5 (aarch64 ppc64le s390x) * MozillaThunderbird-translations-common-115.13.0-150200.8.171.4 * MozillaThunderbird-translations-other-115.13.0-150200.8.171.4 * MozillaThunderbird-debuginfo-115.13.0-150200.8.171.4 * MozillaThunderbird-115.13.0-150200.8.171.4 * MozillaThunderbird-debugsource-115.13.0-150200.8.171.4 * SUSE Package Hub 15 15-SP6 (aarch64 ppc64le s390x) * MozillaThunderbird-translations-common-115.13.0-150200.8.171.4 * MozillaThunderbird-translations-other-115.13.0-150200.8.171.4 * MozillaThunderbird-debuginfo-115.13.0-150200.8.171.4 * MozillaThunderbird-115.13.0-150200.8.171.4 * MozillaThunderbird-debugsource-115.13.0-150200.8.171.4 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (x86_64) * MozillaThunderbird-translations-common-115.13.0-150200.8.171.4 * MozillaThunderbird-translations-other-115.13.0-150200.8.171.4 * MozillaThunderbird-debuginfo-115.13.0-150200.8.171.4 * MozillaThunderbird-115.13.0-150200.8.171.4 * MozillaThunderbird-debugsource-115.13.0-150200.8.171.4 * SUSE Linux Enterprise Workstation Extension 15 SP5 (x86_64) * MozillaThunderbird-translations-common-115.13.0-150200.8.171.4 * MozillaThunderbird-translations-other-115.13.0-150200.8.171.4 * MozillaThunderbird-debuginfo-115.13.0-150200.8.171.4 * MozillaThunderbird-115.13.0-150200.8.171.4 * MozillaThunderbird-debugsource-115.13.0-150200.8.171.4 * SUSE Linux Enterprise Workstation Extension 15 SP6 (x86_64) * MozillaThunderbird-translations-common-115.13.0-150200.8.171.4 * MozillaThunderbird-translations-other-115.13.0-150200.8.171.4 * MozillaThunderbird-debuginfo-115.13.0-150200.8.171.4 * MozillaThunderbird-115.13.0-150200.8.171.4 * MozillaThunderbird-debugsource-115.13.0-150200.8.171.4 ## References: * https://www.suse.com/security/cve/CVE-2024-6600.html * https://www.suse.com/security/cve/CVE-2024-6601.html * https://www.suse.com/security/cve/CVE-2024-6602.html * https://www.suse.com/security/cve/CVE-2024-6603.html * https://www.suse.com/security/cve/CVE-2024-6604.html * https://bugzilla.suse.com/show_bug.cgi?id=1226316 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Aug 6 16:30:21 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Tue, 06 Aug 2024 16:30:21 -0000 Subject: SUSE-SU-2024:2789-1: important: Security update for libnbd Message-ID: <172296182161.12363.16346182718050812376@smelt2.prg2.suse.org> # Security update for libnbd Announcement ID: SUSE-SU-2024:2789-1 Rating: important References: * bsc#1228872 Cross-References: * CVE-2024-7383 CVSS scores: * CVE-2024-7383 ( SUSE ): 7.6 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N * CVE-2024-7383 ( SUSE ): 7.4 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N Affected Products: * openSUSE Leap 15.3 * openSUSE Leap 15.5 An update that solves one vulnerability can now be installed. ## Description: This update for libnbd fixes the following issues: * CVE-2024-7383: Fixed incorrect verification of a NBD server's certificate when using TLS to connect to the server (bsc#1228872) Other fixes: \- Update to version 1.18.5. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.3 zypper in -t patch SUSE-2024-2789=1 * openSUSE Leap 15.5 zypper in -t patch openSUSE-SLE-15.5-2024-2789=1 ## Package List: * openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64 i586) * nbdfuse-debuginfo-1.18.5-150300.8.21.1 * libnbd0-debuginfo-1.18.5-150300.8.21.1 * libnbd0-1.18.5-150300.8.21.1 * libnbd-1.18.5-150300.8.21.1 * libnbd-devel-1.18.5-150300.8.21.1 * nbdfuse-1.18.5-150300.8.21.1 * python3-libnbd-1.18.5-150300.8.21.1 * python3-libnbd-debuginfo-1.18.5-150300.8.21.1 * libnbd-debugsource-1.18.5-150300.8.21.1 * libnbd-debuginfo-1.18.5-150300.8.21.1 * openSUSE Leap 15.3 (noarch) * libnbd-bash-completion-1.18.5-150300.8.21.1 * openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64) * nbdfuse-debuginfo-1.18.5-150300.8.21.1 * libnbd0-debuginfo-1.18.5-150300.8.21.1 * libnbd0-1.18.5-150300.8.21.1 * libnbd-1.18.5-150300.8.21.1 * libnbd-devel-1.18.5-150300.8.21.1 * nbdfuse-1.18.5-150300.8.21.1 * python3-libnbd-1.18.5-150300.8.21.1 * python3-libnbd-debuginfo-1.18.5-150300.8.21.1 * libnbd-debugsource-1.18.5-150300.8.21.1 * libnbd-debuginfo-1.18.5-150300.8.21.1 * openSUSE Leap 15.5 (noarch) * libnbd-bash-completion-1.18.5-150300.8.21.1 ## References: * https://www.suse.com/security/cve/CVE-2024-7383.html * https://bugzilla.suse.com/show_bug.cgi?id=1228872 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Aug 6 16:30:31 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Tue, 06 Aug 2024 16:30:31 -0000 Subject: SUSE-SU-2024:2785-1: moderate: Security update for kernel-firmware Message-ID: <172296183130.12363.10631099743637631020@smelt2.prg2.suse.org> # Security update for kernel-firmware Announcement ID: SUSE-SU-2024:2785-1 Rating: moderate References: * bsc#1225600 * bsc#1225601 Cross-References: * CVE-2023-38417 * CVE-2023-47210 CVSS scores: * CVE-2023-38417 ( SUSE ): 4.3 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2023-47210 ( SUSE ): 4.7 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L Affected Products: * Basesystem Module 15-SP6 * openSUSE Leap 15.6 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 An update that solves two vulnerabilities can now be installed. ## Description: This update for kernel-firmware fixes the following issues: Update to version 20240728: * amdgpu: update DMCUB to v0.0.227.0 for DCN35 and DCN351 * Revert "iwlwifi: update ty/So/Ma firmwares for core89-58 release" * linux-firmware: update firmware for MT7922 WiFi device * linux-firmware: update firmware for MT7921 WiFi device * linux-firmware: update firmware for mediatek bluetooth chip (MT7922) * linux-firmware: update firmware for mediatek bluetooth chip (MT7921) * iwlwifi: add gl FW for core89-58 release * iwlwifi: update ty/So/Ma firmwares for core89-58 release * iwlwifi: update cc/Qu/QuZ firmwares for core89-58 release * mediatek: Update mt8195 SOF firmware and sof-tplg * ASoC: tas2781: fix the license issue for tas781 firmware * rtl_bt: Update RTL8852B BT USB FW to 0x048F_4008 * i915: Update Xe2LPD DMC to v2.21 * qcom: move signed x1e80100 signed firmware to the SoC subdir * qcom: add video firmware file for vpu-3.0 * intel: avs: Add topology file for I2S Analog Devices 4567 * intel: avs: Add topology file for I2S Nuvoton 8825 * intel: avs: Add topology file for I2S Maxim 98927 * intel: avs: Add topology file for I2S Maxim 98373 * intel: avs: Add topology file for I2S Maxim 98357a * intel: avs: Add topology file for I2S Dialog 7219 * intel: avs: Add topology file for I2S Realtek 5663 * intel: avs: Add topology file for I2S Realtek 5640 * intel: avs: Add topology file for I2S Realtek 5514 * intel: avs: Add topology file for I2S Realtek 298 * intel: avs: Add topology file for I2S Realtek 286 * intel: avs: Add topology file for I2S Realtek 274 * intel: avs: Add topology file for Digital Microphone Array * intel: avs: Add topology file for HDMI codecs * intel: avs: Add topology file for HDAudio codecs * intel: avs: Update AudioDSP base firmware for APL-based platforms ## Special Instructions and Notes: * Please reboot the system after installing this update. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch SUSE-2024-2785=1 openSUSE-SLE-15.6-2024-2785=1 * Basesystem Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP6-2024-2785=1 ## Package List: * openSUSE Leap 15.6 (noarch) * kernel-firmware-marvell-20240728-150600.3.6.1 * kernel-firmware-iwlwifi-20240728-150600.3.6.1 * kernel-firmware-nfp-20240728-150600.3.6.1 * kernel-firmware-ath10k-20240728-150600.3.6.1 * kernel-firmware-ueagle-20240728-150600.3.6.1 * kernel-firmware-bluetooth-20240728-150600.3.6.1 * kernel-firmware-network-20240728-150600.3.6.1 * kernel-firmware-usb-network-20240728-150600.3.6.1 * kernel-firmware-qlogic-20240728-150600.3.6.1 * kernel-firmware-brcm-20240728-150600.3.6.1 * kernel-firmware-ti-20240728-150600.3.6.1 * kernel-firmware-mediatek-20240728-150600.3.6.1 * kernel-firmware-20240728-150600.3.6.1 * kernel-firmware-dpaa2-20240728-150600.3.6.1 * kernel-firmware-radeon-20240728-150600.3.6.1 * kernel-firmware-liquidio-20240728-150600.3.6.1 * kernel-firmware-ath12k-20240728-150600.3.6.1 * kernel-firmware-i915-20240728-150600.3.6.1 * kernel-firmware-serial-20240728-150600.3.6.1 * kernel-firmware-bnx2-20240728-150600.3.6.1 * kernel-firmware-ath11k-20240728-150600.3.6.1 * kernel-firmware-platform-20240728-150600.3.6.1 * kernel-firmware-prestera-20240728-150600.3.6.1 * kernel-firmware-nvidia-20240728-150600.3.6.1 * kernel-firmware-qcom-20240728-150600.3.6.1 * kernel-firmware-mwifiex-20240728-150600.3.6.1 * kernel-firmware-realtek-20240728-150600.3.6.1 * kernel-firmware-all-20240728-150600.3.6.1 * kernel-firmware-media-20240728-150600.3.6.1 * kernel-firmware-amdgpu-20240728-150600.3.6.1 * ucode-amd-20240728-150600.3.6.1 * kernel-firmware-intel-20240728-150600.3.6.1 * kernel-firmware-mellanox-20240728-150600.3.6.1 * kernel-firmware-atheros-20240728-150600.3.6.1 * kernel-firmware-chelsio-20240728-150600.3.6.1 * kernel-firmware-sound-20240728-150600.3.6.1 * Basesystem Module 15-SP6 (noarch) * kernel-firmware-marvell-20240728-150600.3.6.1 * kernel-firmware-iwlwifi-20240728-150600.3.6.1 * kernel-firmware-nfp-20240728-150600.3.6.1 * kernel-firmware-ath10k-20240728-150600.3.6.1 * kernel-firmware-ueagle-20240728-150600.3.6.1 * kernel-firmware-bluetooth-20240728-150600.3.6.1 * kernel-firmware-network-20240728-150600.3.6.1 * kernel-firmware-usb-network-20240728-150600.3.6.1 * kernel-firmware-qlogic-20240728-150600.3.6.1 * kernel-firmware-brcm-20240728-150600.3.6.1 * kernel-firmware-ti-20240728-150600.3.6.1 * kernel-firmware-mediatek-20240728-150600.3.6.1 * kernel-firmware-dpaa2-20240728-150600.3.6.1 * kernel-firmware-radeon-20240728-150600.3.6.1 * kernel-firmware-liquidio-20240728-150600.3.6.1 * kernel-firmware-ath12k-20240728-150600.3.6.1 * kernel-firmware-i915-20240728-150600.3.6.1 * kernel-firmware-serial-20240728-150600.3.6.1 * kernel-firmware-bnx2-20240728-150600.3.6.1 * kernel-firmware-ath11k-20240728-150600.3.6.1 * kernel-firmware-platform-20240728-150600.3.6.1 * kernel-firmware-prestera-20240728-150600.3.6.1 * kernel-firmware-nvidia-20240728-150600.3.6.1 * kernel-firmware-qcom-20240728-150600.3.6.1 * kernel-firmware-mwifiex-20240728-150600.3.6.1 * kernel-firmware-realtek-20240728-150600.3.6.1 * kernel-firmware-all-20240728-150600.3.6.1 * kernel-firmware-media-20240728-150600.3.6.1 * kernel-firmware-amdgpu-20240728-150600.3.6.1 * ucode-amd-20240728-150600.3.6.1 * kernel-firmware-intel-20240728-150600.3.6.1 * kernel-firmware-mellanox-20240728-150600.3.6.1 * kernel-firmware-atheros-20240728-150600.3.6.1 * kernel-firmware-chelsio-20240728-150600.3.6.1 * kernel-firmware-sound-20240728-150600.3.6.1 ## References: * https://www.suse.com/security/cve/CVE-2023-38417.html * https://www.suse.com/security/cve/CVE-2023-47210.html * https://bugzilla.suse.com/show_bug.cgi?id=1225600 * https://bugzilla.suse.com/show_bug.cgi?id=1225601 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Aug 6 16:30:34 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Tue, 06 Aug 2024 16:30:34 -0000 Subject: SUSE-SU-2024:2784-1: important: Security update for curl Message-ID: <172296183436.12363.7381283966591652915@smelt2.prg2.suse.org> # Security update for curl Announcement ID: SUSE-SU-2024:2784-1 Rating: important References: * bsc#1227888 * bsc#1228535 Cross-References: * CVE-2024-6197 * CVE-2024-7264 CVSS scores: * CVE-2024-6197 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2024-7264 ( SUSE ): 4.8 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:L Affected Products: * Basesystem Module 15-SP6 * openSUSE Leap 15.6 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 An update that solves two vulnerabilities can now be installed. ## Description: This update for curl fixes the following issues: * CVE-2024-7264: Fixed ASN.1 date parser overread (bsc#1228535) * CVE-2024-6197: Fixed freeing stack buffer in utf8asn1str (bsc#1227888) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch SUSE-2024-2784=1 openSUSE-SLE-15.6-2024-2784=1 * Basesystem Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP6-2024-2784=1 ## Package List: * openSUSE Leap 15.6 (aarch64_ilp32) * libcurl-devel-64bit-8.6.0-150600.4.3.1 * libcurl4-64bit-8.6.0-150600.4.3.1 * libcurl4-64bit-debuginfo-8.6.0-150600.4.3.1 * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64 i586) * libcurl4-debuginfo-8.6.0-150600.4.3.1 * curl-debugsource-8.6.0-150600.4.3.1 * curl-8.6.0-150600.4.3.1 * libcurl4-8.6.0-150600.4.3.1 * curl-debuginfo-8.6.0-150600.4.3.1 * libcurl-devel-8.6.0-150600.4.3.1 * openSUSE Leap 15.6 (x86_64) * libcurl4-32bit-8.6.0-150600.4.3.1 * libcurl-devel-32bit-8.6.0-150600.4.3.1 * libcurl4-32bit-debuginfo-8.6.0-150600.4.3.1 * Basesystem Module 15-SP6 (aarch64 ppc64le s390x x86_64) * libcurl4-debuginfo-8.6.0-150600.4.3.1 * curl-debugsource-8.6.0-150600.4.3.1 * curl-8.6.0-150600.4.3.1 * libcurl4-8.6.0-150600.4.3.1 * curl-debuginfo-8.6.0-150600.4.3.1 * libcurl-devel-8.6.0-150600.4.3.1 * Basesystem Module 15-SP6 (x86_64) * libcurl4-32bit-8.6.0-150600.4.3.1 * libcurl4-32bit-debuginfo-8.6.0-150600.4.3.1 ## References: * https://www.suse.com/security/cve/CVE-2024-6197.html * https://www.suse.com/security/cve/CVE-2024-7264.html * https://bugzilla.suse.com/show_bug.cgi?id=1227888 * https://bugzilla.suse.com/show_bug.cgi?id=1228535 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Aug 6 16:30:45 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Tue, 06 Aug 2024 16:30:45 -0000 Subject: SUSE-SU-2024:2780-1: low: Security update for patch Message-ID: <172296184534.12363.6274162819865566947@smelt2.prg2.suse.org> # Security update for patch Announcement ID: SUSE-SU-2024:2780-1 Rating: low References: * bsc#1167721 Cross-References: * CVE-2019-20633 CVSS scores: * CVE-2019-20633 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L * CVE-2019-20633 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H Affected Products: * Basesystem Module 15-SP5 * Basesystem Module 15-SP6 * openSUSE Leap 15.5 * openSUSE Leap 15.6 * SUSE Linux Enterprise Desktop 15 SP5 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 An update that solves one vulnerability can now be installed. ## Description: This update for patch fixes the following issues: * CVE-2019-20633: Fixed double-free/OOB read in pch.c (bsc#1167721) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.5 zypper in -t patch openSUSE-SLE-15.5-2024-2780=1 * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2024-2780=1 * Basesystem Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP5-2024-2780=1 * Basesystem Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP6-2024-2780=1 ## Package List: * openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64) * patch-debuginfo-2.7.6-150000.5.6.1 * patch-debugsource-2.7.6-150000.5.6.1 * patch-2.7.6-150000.5.6.1 * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64) * patch-debuginfo-2.7.6-150000.5.6.1 * patch-debugsource-2.7.6-150000.5.6.1 * patch-2.7.6-150000.5.6.1 * Basesystem Module 15-SP5 (aarch64 ppc64le s390x x86_64) * patch-debuginfo-2.7.6-150000.5.6.1 * patch-debugsource-2.7.6-150000.5.6.1 * patch-2.7.6-150000.5.6.1 * Basesystem Module 15-SP6 (aarch64 ppc64le s390x x86_64) * patch-debuginfo-2.7.6-150000.5.6.1 * patch-debugsource-2.7.6-150000.5.6.1 * patch-2.7.6-150000.5.6.1 ## References: * https://www.suse.com/security/cve/CVE-2019-20633.html * https://bugzilla.suse.com/show_bug.cgi?id=1167721 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Aug 6 20:30:10 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Tue, 06 Aug 2024 20:30:10 -0000 Subject: SUSE-SU-2024:2797-1: important: Security update for the Linux Kernel (Live Patch 45 for SLE 15 SP3) Message-ID: <172297621003.29871.10939886955540674497@smelt2.prg2.suse.org> # Security update for the Linux Kernel (Live Patch 45 for SLE 15 SP3) Announcement ID: SUSE-SU-2024:2797-1 Rating: important References: * bsc#1223683 * bsc#1225310 Cross-References: * CVE-2024-26923 * CVE-2024-35950 CVSS scores: * CVE-2024-26923 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35950 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.3 * SUSE Linux Enterprise High Performance Computing 15 SP2 * SUSE Linux Enterprise High Performance Computing 15 SP3 * SUSE Linux Enterprise Live Patching 15-SP2 * SUSE Linux Enterprise Live Patching 15-SP3 * SUSE Linux Enterprise Micro 5.1 * SUSE Linux Enterprise Micro 5.2 * SUSE Linux Enterprise Server 15 SP2 * SUSE Linux Enterprise Server 15 SP3 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 An update that solves two vulnerabilities can now be installed. ## Description: This update for the Linux Kernel 5.3.18-150300_59_164 fixes several issues. The following security issues were fixed: * CVE-2024-26923: Fixed false-positive lockdep splat for spin_lock() in __unix_gc() (bsc#1223683). * CVE-2024-35950: drm/client: Fully protect modes with dev->mode_config.mutex (bsc#1225310). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Live Patching 15-SP2 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP2-2024-2797=1 * openSUSE Leap 15.3 zypper in -t patch SUSE-2024-2798=1 * SUSE Linux Enterprise Live Patching 15-SP3 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP3-2024-2798=1 ## Package List: * SUSE Linux Enterprise Live Patching 15-SP2 (ppc64le s390x x86_64) * kernel-livepatch-5_3_18-150200_24_194-default-debuginfo-2-150200.5.6.1 * kernel-livepatch-5_3_18-150200_24_194-default-2-150200.5.6.1 * kernel-livepatch-SLE15-SP2_Update_49-debugsource-2-150200.5.6.1 * openSUSE Leap 15.3 (ppc64le s390x x86_64) * kernel-livepatch-SLE15-SP3_Update_45-debugsource-2-150300.7.6.1 * kernel-livepatch-5_3_18-150300_59_164-default-2-150300.7.6.1 * kernel-livepatch-5_3_18-150300_59_164-default-debuginfo-2-150300.7.6.1 * openSUSE Leap 15.3 (x86_64) * kernel-livepatch-5_3_18-150300_59_164-preempt-2-150300.7.6.1 * kernel-livepatch-5_3_18-150300_59_164-preempt-debuginfo-2-150300.7.6.1 * SUSE Linux Enterprise Live Patching 15-SP3 (ppc64le s390x x86_64) * kernel-livepatch-5_3_18-150300_59_164-default-2-150300.7.6.1 ## References: * https://www.suse.com/security/cve/CVE-2024-26923.html * https://www.suse.com/security/cve/CVE-2024-35950.html * https://bugzilla.suse.com/show_bug.cgi?id=1223683 * https://bugzilla.suse.com/show_bug.cgi?id=1225310 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Wed Aug 7 08:30:06 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Wed, 07 Aug 2024 08:30:06 -0000 Subject: SUSE-SU-2024:2811-1: important: Security update for bind Message-ID: <172301940657.9296.5576328568952515667@smelt2.prg2.suse.org> # Security update for bind Announcement ID: SUSE-SU-2024:2811-1 Rating: important References: * bsc#1228256 * bsc#1228257 Cross-References: * CVE-2024-1737 * CVE-2024-1975 CVSS scores: * CVE-2024-1737 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-1975 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * SUSE Linux Enterprise High Performance Computing 15 SP2 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 * SUSE Linux Enterprise Micro 5.0 * SUSE Linux Enterprise Micro 5.1 * SUSE Linux Enterprise Micro 5.2 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Server 15 SP2 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 * SUSE Manager Client Tools for SLE Micro 5 An update that solves two vulnerabilities can now be installed. ## Description: This update for bind fixes the following issues: * CVE-2024-1737: It is possible to craft excessively large numbers of resource record types for a given owner name, which has the effect of slowing down database processing. This has been addressed by adding a configurable limit to the number of records that can be stored per name and type in a cache or zone database. The default is 100, which can be tuned with the new max- types-per-name option. (bsc#1228256) * CVE-2024-1975: Validating DNS messages signed using the SIG(0) protocol (RFC 2931) could cause excessive CPU load, leading to a denial-of-service condition. Support for SIG(0) message validation was removed from this version of named. (bsc#1228257) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Manager Client Tools for SLE Micro 5 zypper in -t patch SUSE-SLE-Manager-Tools-For-Micro-5-2024-2811=1 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 zypper in -t patch SUSE-SLE-Product-HPC-15-SP2-LTSS-2024-2811=1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 zypper in -t patch SUSE-SLE-Product-SLES-15-SP2-LTSS-2024-2811=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP2-2024-2811=1 ## Package List: * SUSE Manager Client Tools for SLE Micro 5 (aarch64 s390x x86_64) * bind-utils-9.16.6-150000.12.77.1 * libdns1605-9.16.6-150000.12.77.1 * libns1604-9.16.6-150000.12.77.1 * libisccc1600-9.16.6-150000.12.77.1 * libisccfg1600-9.16.6-150000.12.77.1 * libirs1601-9.16.6-150000.12.77.1 * libns1604-debuginfo-9.16.6-150000.12.77.1 * libbind9-1600-9.16.6-150000.12.77.1 * libisc1606-9.16.6-150000.12.77.1 * SUSE Manager Client Tools for SLE Micro 5 (aarch64_ilp32) * libdns1605-64bit-9.16.6-150000.12.77.1 * libisccfg1600-64bit-9.16.6-150000.12.77.1 * libirs1601-64bit-9.16.6-150000.12.77.1 * libbind9-1600-64bit-9.16.6-150000.12.77.1 * libisccc1600-64bit-9.16.6-150000.12.77.1 * libisc1606-64bit-9.16.6-150000.12.77.1 * SUSE Manager Client Tools for SLE Micro 5 (noarch) * python3-bind-9.16.6-150000.12.77.1 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 (aarch64 x86_64) * libirs-devel-9.16.6-150000.12.77.1 * libns1604-debuginfo-9.16.6-150000.12.77.1 * bind-utils-debuginfo-9.16.6-150000.12.77.1 * libdns1605-debuginfo-9.16.6-150000.12.77.1 * libisccfg1600-debuginfo-9.16.6-150000.12.77.1 * libirs1601-debuginfo-9.16.6-150000.12.77.1 * bind-debuginfo-9.16.6-150000.12.77.1 * bind-debugsource-9.16.6-150000.12.77.1 * bind-chrootenv-9.16.6-150000.12.77.1 * libisc1606-debuginfo-9.16.6-150000.12.77.1 * libirs1601-9.16.6-150000.12.77.1 * libisccfg1600-9.16.6-150000.12.77.1 * libbind9-1600-9.16.6-150000.12.77.1 * bind-devel-9.16.6-150000.12.77.1 * libbind9-1600-debuginfo-9.16.6-150000.12.77.1 * bind-utils-9.16.6-150000.12.77.1 * libdns1605-9.16.6-150000.12.77.1 * libisccc1600-debuginfo-9.16.6-150000.12.77.1 * libns1604-9.16.6-150000.12.77.1 * libisccc1600-9.16.6-150000.12.77.1 * bind-9.16.6-150000.12.77.1 * libisc1606-9.16.6-150000.12.77.1 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 (noarch) * python3-bind-9.16.6-150000.12.77.1 * bind-doc-9.16.6-150000.12.77.1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (aarch64 ppc64le s390x x86_64) * libirs-devel-9.16.6-150000.12.77.1 * libns1604-debuginfo-9.16.6-150000.12.77.1 * bind-utils-debuginfo-9.16.6-150000.12.77.1 * libdns1605-debuginfo-9.16.6-150000.12.77.1 * libisccfg1600-debuginfo-9.16.6-150000.12.77.1 * libirs1601-debuginfo-9.16.6-150000.12.77.1 * bind-debuginfo-9.16.6-150000.12.77.1 * bind-debugsource-9.16.6-150000.12.77.1 * bind-chrootenv-9.16.6-150000.12.77.1 * libisc1606-debuginfo-9.16.6-150000.12.77.1 * libirs1601-9.16.6-150000.12.77.1 * libisccfg1600-9.16.6-150000.12.77.1 * libbind9-1600-9.16.6-150000.12.77.1 * bind-devel-9.16.6-150000.12.77.1 * libbind9-1600-debuginfo-9.16.6-150000.12.77.1 * bind-utils-9.16.6-150000.12.77.1 * libdns1605-9.16.6-150000.12.77.1 * libisccc1600-debuginfo-9.16.6-150000.12.77.1 * libns1604-9.16.6-150000.12.77.1 * libisccc1600-9.16.6-150000.12.77.1 * bind-9.16.6-150000.12.77.1 * libisc1606-9.16.6-150000.12.77.1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (noarch) * python3-bind-9.16.6-150000.12.77.1 * bind-doc-9.16.6-150000.12.77.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 (ppc64le x86_64) * libirs-devel-9.16.6-150000.12.77.1 * libns1604-debuginfo-9.16.6-150000.12.77.1 * bind-utils-debuginfo-9.16.6-150000.12.77.1 * libdns1605-debuginfo-9.16.6-150000.12.77.1 * libisccfg1600-debuginfo-9.16.6-150000.12.77.1 * libirs1601-debuginfo-9.16.6-150000.12.77.1 * bind-debuginfo-9.16.6-150000.12.77.1 * bind-debugsource-9.16.6-150000.12.77.1 * bind-chrootenv-9.16.6-150000.12.77.1 * libisc1606-debuginfo-9.16.6-150000.12.77.1 * libirs1601-9.16.6-150000.12.77.1 * libisccfg1600-9.16.6-150000.12.77.1 * libbind9-1600-9.16.6-150000.12.77.1 * bind-devel-9.16.6-150000.12.77.1 * libbind9-1600-debuginfo-9.16.6-150000.12.77.1 * bind-utils-9.16.6-150000.12.77.1 * libdns1605-9.16.6-150000.12.77.1 * libisccc1600-debuginfo-9.16.6-150000.12.77.1 * libns1604-9.16.6-150000.12.77.1 * libisccc1600-9.16.6-150000.12.77.1 * bind-9.16.6-150000.12.77.1 * libisc1606-9.16.6-150000.12.77.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 (noarch) * python3-bind-9.16.6-150000.12.77.1 * bind-doc-9.16.6-150000.12.77.1 ## References: * https://www.suse.com/security/cve/CVE-2024-1737.html * https://www.suse.com/security/cve/CVE-2024-1975.html * https://bugzilla.suse.com/show_bug.cgi?id=1228256 * https://bugzilla.suse.com/show_bug.cgi?id=1228257 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Wed Aug 7 08:30:10 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Wed, 07 Aug 2024 08:30:10 -0000 Subject: SUSE-SU-2024:2810-1: important: Security update for bind Message-ID: <172301941076.9296.10768987417000505602@smelt2.prg2.suse.org> # Security update for bind Announcement ID: SUSE-SU-2024:2810-1 Rating: important References: * bsc#1228256 * bsc#1228257 Cross-References: * CVE-2024-1737 * CVE-2024-1975 CVSS scores: * CVE-2024-1737 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-1975 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * Basesystem Module 15-SP6 * openSUSE Leap 15.3 * SUSE Enterprise Storage 7.1 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise High Performance Computing 15 SP3 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Server 15 SP3 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 An update that solves two vulnerabilities can now be installed. ## Description: This update for bind fixes the following issues: * CVE-2024-1737: It is possible to craft excessively large numbers of resource record types for a given owner name, which has the effect of slowing down database processing. This has been addressed by adding a configurable limit to the number of records that can be stored per name and type in a cache or zone database. The default is 100, which can be tuned with the new max- types-per-name option. (bsc#1228256) * CVE-2024-1975: Validating DNS messages signed using the SIG(0) protocol (RFC 2931) could cause excessive CPU load, leading to a denial-of-service condition. Support for SIG(0) message validation was removed from this version of named. (bsc#1228257) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.3 zypper in -t patch SUSE-2024-2810=1 * Basesystem Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP6-2024-2810=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 zypper in -t patch SUSE-SLE-Product-HPC-15-SP3-LTSS-2024-2810=1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 zypper in -t patch SUSE-SLE-Product-SLES-15-SP3-LTSS-2024-2810=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP3-2024-2810=1 * SUSE Enterprise Storage 7.1 zypper in -t patch SUSE-Storage-7.1-2024-2810=1 ## Package List: * openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64 i586) * libirs-devel-9.16.6-150300.22.47.1 * libirs1601-9.16.6-150300.22.47.1 * bind-debuginfo-9.16.6-150300.22.47.1 * bind-chrootenv-9.16.6-150300.22.47.1 * bind-utils-9.16.6-150300.22.47.1 * libirs1601-debuginfo-9.16.6-150300.22.47.1 * libns1604-9.16.6-150300.22.47.1 * libdns1605-debuginfo-9.16.6-150300.22.47.1 * bind-utils-debuginfo-9.16.6-150300.22.47.1 * libisc1606-9.16.6-150300.22.47.1 * libbind9-1600-debuginfo-9.16.6-150300.22.47.1 * libisc1606-debuginfo-9.16.6-150300.22.47.1 * bind-devel-9.16.6-150300.22.47.1 * bind-9.16.6-150300.22.47.1 * libbind9-1600-9.16.6-150300.22.47.1 * libdns1605-9.16.6-150300.22.47.1 * libisccc1600-9.16.6-150300.22.47.1 * libisccfg1600-debuginfo-9.16.6-150300.22.47.1 * libns1604-debuginfo-9.16.6-150300.22.47.1 * libisccfg1600-9.16.6-150300.22.47.1 * bind-debugsource-9.16.6-150300.22.47.1 * libisccc1600-debuginfo-9.16.6-150300.22.47.1 * openSUSE Leap 15.3 (noarch) * python3-bind-9.16.6-150300.22.47.1 * bind-doc-9.16.6-150300.22.47.1 * Basesystem Module 15-SP6 (aarch64 ppc64le s390x x86_64) * libdns1605-9.16.6-150300.22.47.1 * libirs1601-debuginfo-9.16.6-150300.22.47.1 * libirs-devel-9.16.6-150300.22.47.1 * libirs1601-9.16.6-150300.22.47.1 * libisccfg1600-debuginfo-9.16.6-150300.22.47.1 * libisccfg1600-9.16.6-150300.22.47.1 * bind-debugsource-9.16.6-150300.22.47.1 * libisc1606-debuginfo-9.16.6-150300.22.47.1 * libdns1605-debuginfo-9.16.6-150300.22.47.1 * bind-debuginfo-9.16.6-150300.22.47.1 * libisc1606-9.16.6-150300.22.47.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (aarch64 x86_64) * libirs-devel-9.16.6-150300.22.47.1 * libirs1601-9.16.6-150300.22.47.1 * bind-debuginfo-9.16.6-150300.22.47.1 * bind-chrootenv-9.16.6-150300.22.47.1 * bind-utils-9.16.6-150300.22.47.1 * libirs1601-debuginfo-9.16.6-150300.22.47.1 * libns1604-9.16.6-150300.22.47.1 * libdns1605-debuginfo-9.16.6-150300.22.47.1 * bind-utils-debuginfo-9.16.6-150300.22.47.1 * libisc1606-9.16.6-150300.22.47.1 * libbind9-1600-debuginfo-9.16.6-150300.22.47.1 * libisc1606-debuginfo-9.16.6-150300.22.47.1 * bind-devel-9.16.6-150300.22.47.1 * bind-9.16.6-150300.22.47.1 * libbind9-1600-9.16.6-150300.22.47.1 * libdns1605-9.16.6-150300.22.47.1 * libisccc1600-9.16.6-150300.22.47.1 * libisccfg1600-debuginfo-9.16.6-150300.22.47.1 * libns1604-debuginfo-9.16.6-150300.22.47.1 * libisccfg1600-9.16.6-150300.22.47.1 * bind-debugsource-9.16.6-150300.22.47.1 * libisccc1600-debuginfo-9.16.6-150300.22.47.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (noarch) * python3-bind-9.16.6-150300.22.47.1 * bind-doc-9.16.6-150300.22.47.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (aarch64 ppc64le s390x x86_64) * libirs-devel-9.16.6-150300.22.47.1 * libirs1601-9.16.6-150300.22.47.1 * bind-debuginfo-9.16.6-150300.22.47.1 * bind-chrootenv-9.16.6-150300.22.47.1 * bind-utils-9.16.6-150300.22.47.1 * libirs1601-debuginfo-9.16.6-150300.22.47.1 * libns1604-9.16.6-150300.22.47.1 * libdns1605-debuginfo-9.16.6-150300.22.47.1 * bind-utils-debuginfo-9.16.6-150300.22.47.1 * libisc1606-9.16.6-150300.22.47.1 * libbind9-1600-debuginfo-9.16.6-150300.22.47.1 * libisc1606-debuginfo-9.16.6-150300.22.47.1 * bind-devel-9.16.6-150300.22.47.1 * bind-9.16.6-150300.22.47.1 * libbind9-1600-9.16.6-150300.22.47.1 * libdns1605-9.16.6-150300.22.47.1 * libisccc1600-9.16.6-150300.22.47.1 * libisccfg1600-debuginfo-9.16.6-150300.22.47.1 * libns1604-debuginfo-9.16.6-150300.22.47.1 * libisccfg1600-9.16.6-150300.22.47.1 * bind-debugsource-9.16.6-150300.22.47.1 * libisccc1600-debuginfo-9.16.6-150300.22.47.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (noarch) * python3-bind-9.16.6-150300.22.47.1 * bind-doc-9.16.6-150300.22.47.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (ppc64le x86_64) * libirs-devel-9.16.6-150300.22.47.1 * libirs1601-9.16.6-150300.22.47.1 * bind-debuginfo-9.16.6-150300.22.47.1 * bind-chrootenv-9.16.6-150300.22.47.1 * bind-utils-9.16.6-150300.22.47.1 * libirs1601-debuginfo-9.16.6-150300.22.47.1 * libns1604-9.16.6-150300.22.47.1 * libdns1605-debuginfo-9.16.6-150300.22.47.1 * bind-utils-debuginfo-9.16.6-150300.22.47.1 * libisc1606-9.16.6-150300.22.47.1 * libbind9-1600-debuginfo-9.16.6-150300.22.47.1 * libisc1606-debuginfo-9.16.6-150300.22.47.1 * bind-devel-9.16.6-150300.22.47.1 * bind-9.16.6-150300.22.47.1 * libbind9-1600-9.16.6-150300.22.47.1 * libdns1605-9.16.6-150300.22.47.1 * libisccc1600-9.16.6-150300.22.47.1 * libisccfg1600-debuginfo-9.16.6-150300.22.47.1 * libns1604-debuginfo-9.16.6-150300.22.47.1 * libisccfg1600-9.16.6-150300.22.47.1 * bind-debugsource-9.16.6-150300.22.47.1 * libisccc1600-debuginfo-9.16.6-150300.22.47.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (noarch) * python3-bind-9.16.6-150300.22.47.1 * bind-doc-9.16.6-150300.22.47.1 * SUSE Enterprise Storage 7.1 (aarch64 x86_64) * libirs-devel-9.16.6-150300.22.47.1 * libirs1601-9.16.6-150300.22.47.1 * bind-debuginfo-9.16.6-150300.22.47.1 * bind-chrootenv-9.16.6-150300.22.47.1 * bind-utils-9.16.6-150300.22.47.1 * libirs1601-debuginfo-9.16.6-150300.22.47.1 * libns1604-9.16.6-150300.22.47.1 * libdns1605-debuginfo-9.16.6-150300.22.47.1 * bind-utils-debuginfo-9.16.6-150300.22.47.1 * libisc1606-9.16.6-150300.22.47.1 * libbind9-1600-debuginfo-9.16.6-150300.22.47.1 * libisc1606-debuginfo-9.16.6-150300.22.47.1 * bind-devel-9.16.6-150300.22.47.1 * bind-9.16.6-150300.22.47.1 * libbind9-1600-9.16.6-150300.22.47.1 * libdns1605-9.16.6-150300.22.47.1 * libisccc1600-9.16.6-150300.22.47.1 * libisccfg1600-debuginfo-9.16.6-150300.22.47.1 * libns1604-debuginfo-9.16.6-150300.22.47.1 * libisccfg1600-9.16.6-150300.22.47.1 * bind-debugsource-9.16.6-150300.22.47.1 * libisccc1600-debuginfo-9.16.6-150300.22.47.1 * SUSE Enterprise Storage 7.1 (noarch) * python3-bind-9.16.6-150300.22.47.1 * bind-doc-9.16.6-150300.22.47.1 ## References: * https://www.suse.com/security/cve/CVE-2024-1737.html * https://www.suse.com/security/cve/CVE-2024-1975.html * https://bugzilla.suse.com/show_bug.cgi?id=1228256 * https://bugzilla.suse.com/show_bug.cgi?id=1228257 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Wed Aug 7 08:30:15 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Wed, 07 Aug 2024 08:30:15 -0000 Subject: SUSE-SU-2024:2809-1: moderate: Security update for shadow Message-ID: <172301941520.9296.4826045251641504011@smelt2.prg2.suse.org> # Security update for shadow Announcement ID: SUSE-SU-2024:2809-1 Rating: moderate References: * bsc#1228770 Cross-References: * CVE-2013-4235 CVSS scores: * CVE-2013-4235 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H * CVE-2013-4235 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:N Affected Products: * openSUSE Leap Micro 5.5 * SUSE Linux Enterprise Micro 5.5 An update that solves one vulnerability can now be installed. ## Description: This update for shadow fixes the following issues: * Fixed not copying of skel files (bsc#1228770) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap Micro 5.5 zypper in -t patch openSUSE-Leap-Micro-5.5-2024-2809=1 * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2024-2809=1 ## Package List: * openSUSE Leap Micro 5.5 (noarch) * login_defs-4.8.1-150500.3.9.1 * openSUSE Leap Micro 5.5 (aarch64 s390x x86_64) * shadow-4.8.1-150500.3.9.1 * shadow-debugsource-4.8.1-150500.3.9.1 * shadow-debuginfo-4.8.1-150500.3.9.1 * SUSE Linux Enterprise Micro 5.5 (noarch) * login_defs-4.8.1-150500.3.9.1 * SUSE Linux Enterprise Micro 5.5 (aarch64 ppc64le s390x x86_64) * shadow-4.8.1-150500.3.9.1 * shadow-debugsource-4.8.1-150500.3.9.1 * shadow-debuginfo-4.8.1-150500.3.9.1 ## References: * https://www.suse.com/security/cve/CVE-2013-4235.html * https://bugzilla.suse.com/show_bug.cgi?id=1228770 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Wed Aug 7 08:30:17 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Wed, 07 Aug 2024 08:30:17 -0000 Subject: SUSE-SU-2024:2808-1: moderate: Security update for shadow Message-ID: <172301941728.9296.12490642411461233692@smelt2.prg2.suse.org> # Security update for shadow Announcement ID: SUSE-SU-2024:2808-1 Rating: moderate References: * bsc#1228770 Cross-References: * CVE-2013-4235 CVSS scores: * CVE-2013-4235 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H * CVE-2013-4235 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:N Affected Products: * Basesystem Module 15-SP6 * openSUSE Leap 15.6 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 An update that solves one vulnerability can now be installed. ## Description: This update for shadow fixes the following issues: * Fixed not copying of skel files (bsc#1228770) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch SUSE-2024-2808=1 openSUSE-SLE-15.6-2024-2808=1 * Basesystem Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP6-2024-2808=1 ## Package List: * openSUSE Leap 15.6 (noarch) * login_defs-4.8.1-150600.17.6.1 * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64 i586) * shadow-4.8.1-150600.17.6.1 * shadow-debugsource-4.8.1-150600.17.6.1 * shadow-debuginfo-4.8.1-150600.17.6.1 * Basesystem Module 15-SP6 (noarch) * login_defs-4.8.1-150600.17.6.1 * Basesystem Module 15-SP6 (aarch64 ppc64le s390x x86_64) * shadow-4.8.1-150600.17.6.1 * shadow-debugsource-4.8.1-150600.17.6.1 * shadow-debuginfo-4.8.1-150600.17.6.1 ## References: * https://www.suse.com/security/cve/CVE-2013-4235.html * https://bugzilla.suse.com/show_bug.cgi?id=1228770 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Wed Aug 7 08:30:20 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Wed, 07 Aug 2024 08:30:20 -0000 Subject: SUSE-SU-2024:2807-1: moderate: Security update for shadow Message-ID: <172301942050.9296.706889048366603360@smelt2.prg2.suse.org> # Security update for shadow Announcement ID: SUSE-SU-2024:2807-1 Rating: moderate References: * bsc#1228770 Cross-References: * CVE-2013-4235 CVSS scores: * CVE-2013-4235 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H * CVE-2013-4235 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:N Affected Products: * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Micro for Rancher 5.4 An update that solves one vulnerability can now be installed. ## Description: This update for shadow fixes the following issues: * Fixed not copying of skel files (bsc#1228770) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Micro for Rancher 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2024-2807=1 * SUSE Linux Enterprise Micro 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2024-2807=1 ## Package List: * SUSE Linux Enterprise Micro for Rancher 5.4 (noarch) * login_defs-4.8.1-150400.3.12.1 * SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 s390x x86_64) * shadow-debuginfo-4.8.1-150400.3.12.1 * shadow-debugsource-4.8.1-150400.3.12.1 * shadow-4.8.1-150400.3.12.1 * SUSE Linux Enterprise Micro 5.4 (noarch) * login_defs-4.8.1-150400.3.12.1 * SUSE Linux Enterprise Micro 5.4 (aarch64 s390x x86_64) * shadow-debuginfo-4.8.1-150400.3.12.1 * shadow-debugsource-4.8.1-150400.3.12.1 * shadow-4.8.1-150400.3.12.1 ## References: * https://www.suse.com/security/cve/CVE-2013-4235.html * https://bugzilla.suse.com/show_bug.cgi?id=1228770 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Wed Aug 7 08:30:22 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Wed, 07 Aug 2024 08:30:22 -0000 Subject: SUSE-SU-2024:2806-1: moderate: Security update for shadow Message-ID: <172301942230.9296.13373452710129189030@smelt2.prg2.suse.org> # Security update for shadow Announcement ID: SUSE-SU-2024:2806-1 Rating: moderate References: * bsc#1228770 Cross-References: * CVE-2013-4235 CVSS scores: * CVE-2013-4235 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H * CVE-2013-4235 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:N Affected Products: * openSUSE Leap 15.3 * SUSE Linux Enterprise Micro 5.1 * SUSE Linux Enterprise Micro 5.2 * SUSE Linux Enterprise Micro for Rancher 5.2 An update that solves one vulnerability can now be installed. ## Description: This update for shadow fixes the following issues: * Fixed not copying of skel files (bsc#1228770) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.3 zypper in -t patch SUSE-2024-2806=1 * SUSE Linux Enterprise Micro 5.1 zypper in -t patch SUSE-SUSE-MicroOS-5.1-2024-2806=1 * SUSE Linux Enterprise Micro 5.2 zypper in -t patch SUSE-SUSE-MicroOS-5.2-2024-2806=1 * SUSE Linux Enterprise Micro for Rancher 5.2 zypper in -t patch SUSE-SUSE-MicroOS-5.2-2024-2806=1 ## Package List: * openSUSE Leap 15.3 (noarch) * login_defs-4.8.1-150300.4.18.1 * openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64 i586) * shadow-4.8.1-150300.4.18.1 * shadow-debuginfo-4.8.1-150300.4.18.1 * shadow-debugsource-4.8.1-150300.4.18.1 * SUSE Linux Enterprise Micro 5.1 (noarch) * login_defs-4.8.1-150300.4.18.1 * SUSE Linux Enterprise Micro 5.1 (aarch64 s390x x86_64) * shadow-4.8.1-150300.4.18.1 * shadow-debuginfo-4.8.1-150300.4.18.1 * shadow-debugsource-4.8.1-150300.4.18.1 * SUSE Linux Enterprise Micro 5.2 (noarch) * login_defs-4.8.1-150300.4.18.1 * SUSE Linux Enterprise Micro 5.2 (aarch64 s390x x86_64) * shadow-4.8.1-150300.4.18.1 * shadow-debuginfo-4.8.1-150300.4.18.1 * shadow-debugsource-4.8.1-150300.4.18.1 * SUSE Linux Enterprise Micro for Rancher 5.2 (noarch) * login_defs-4.8.1-150300.4.18.1 * SUSE Linux Enterprise Micro for Rancher 5.2 (aarch64 s390x x86_64) * shadow-4.8.1-150300.4.18.1 * shadow-debuginfo-4.8.1-150300.4.18.1 * shadow-debugsource-4.8.1-150300.4.18.1 ## References: * https://www.suse.com/security/cve/CVE-2013-4235.html * https://bugzilla.suse.com/show_bug.cgi?id=1228770 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Wed Aug 7 08:30:24 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Wed, 07 Aug 2024 08:30:24 -0000 Subject: SUSE-SU-2024:2805-1: moderate: Security update for shadow Message-ID: <172301942444.9296.2958470296942493811@smelt2.prg2.suse.org> # Security update for shadow Announcement ID: SUSE-SU-2024:2805-1 Rating: moderate References: * bsc#916845 Cross-References: * CVE-2013-4235 CVSS scores: * CVE-2013-4235 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H * CVE-2013-4235 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:N Affected Products: * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 An update that solves one vulnerability can now be installed. ## Description: This update for shadow fixes the following issues: * CVE-2013-4235: Fixed TOCTOU race condition (bsc#916845) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise High Performance Computing 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-2805=1 * SUSE Linux Enterprise Server 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-2805=1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-2805=1 ## Package List: * SUSE Linux Enterprise High Performance Computing 12 SP5 (aarch64 x86_64) * shadow-debugsource-4.2.1-36.15.1 * shadow-debuginfo-4.2.1-36.15.1 * shadow-4.2.1-36.15.1 * SUSE Linux Enterprise Server 12 SP5 (aarch64 ppc64le s390x x86_64) * shadow-debugsource-4.2.1-36.15.1 * shadow-debuginfo-4.2.1-36.15.1 * shadow-4.2.1-36.15.1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 (ppc64le x86_64) * shadow-debugsource-4.2.1-36.15.1 * shadow-debuginfo-4.2.1-36.15.1 * shadow-4.2.1-36.15.1 ## References: * https://www.suse.com/security/cve/CVE-2013-4235.html * https://bugzilla.suse.com/show_bug.cgi?id=916845 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Wed Aug 7 08:30:26 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Wed, 07 Aug 2024 08:30:26 -0000 Subject: SUSE-SU-2024:2804-1: moderate: Security update for shadow Message-ID: <172301942627.9296.4769337256877757954@smelt2.prg2.suse.org> # Security update for shadow Announcement ID: SUSE-SU-2024:2804-1 Rating: moderate References: * bsc#1228770 Cross-References: * CVE-2013-4235 CVSS scores: * CVE-2013-4235 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H * CVE-2013-4235 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:N Affected Products: * Basesystem Module 15-SP5 * openSUSE Leap 15.4 * openSUSE Leap 15.5 * SUSE Linux Enterprise Desktop 15 SP5 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro for Rancher 5.3 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 An update that solves one vulnerability can now be installed. ## Description: This update for shadow fixes the following issues: * Fixed not copying of skel files (bsc#1228770) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch SUSE-2024-2804=1 * openSUSE Leap 15.5 zypper in -t patch openSUSE-SLE-15.5-2024-2804=1 * SUSE Linux Enterprise Micro for Rancher 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2024-2804=1 * SUSE Linux Enterprise Micro 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2024-2804=1 * Basesystem Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP5-2024-2804=1 ## Package List: * openSUSE Leap 15.4 (noarch) * login_defs-4.8.1-150400.10.21.1 * openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586) * shadow-debuginfo-4.8.1-150400.10.21.1 * shadow-4.8.1-150400.10.21.1 * shadow-debugsource-4.8.1-150400.10.21.1 * openSUSE Leap 15.5 (noarch) * login_defs-4.8.1-150400.10.21.1 * openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64) * shadow-debuginfo-4.8.1-150400.10.21.1 * shadow-4.8.1-150400.10.21.1 * shadow-debugsource-4.8.1-150400.10.21.1 * SUSE Linux Enterprise Micro for Rancher 5.3 (noarch) * login_defs-4.8.1-150400.10.21.1 * SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 s390x x86_64) * shadow-debuginfo-4.8.1-150400.10.21.1 * shadow-4.8.1-150400.10.21.1 * shadow-debugsource-4.8.1-150400.10.21.1 * SUSE Linux Enterprise Micro 5.3 (noarch) * login_defs-4.8.1-150400.10.21.1 * SUSE Linux Enterprise Micro 5.3 (aarch64 s390x x86_64) * shadow-debuginfo-4.8.1-150400.10.21.1 * shadow-4.8.1-150400.10.21.1 * shadow-debugsource-4.8.1-150400.10.21.1 * Basesystem Module 15-SP5 (noarch) * login_defs-4.8.1-150400.10.21.1 * Basesystem Module 15-SP5 (aarch64 ppc64le s390x x86_64) * shadow-debuginfo-4.8.1-150400.10.21.1 * shadow-4.8.1-150400.10.21.1 * shadow-debugsource-4.8.1-150400.10.21.1 ## References: * https://www.suse.com/security/cve/CVE-2013-4235.html * https://bugzilla.suse.com/show_bug.cgi?id=1228770 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Wed Aug 7 08:30:29 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Wed, 07 Aug 2024 08:30:29 -0000 Subject: SUSE-SU-2024:2803-1: moderate: Security update for ffmpeg-4 Message-ID: <172301942941.9296.665959450329479610@smelt2.prg2.suse.org> # Security update for ffmpeg-4 Announcement ID: SUSE-SU-2024:2803-1 Rating: moderate References: * bsc#1223304 * bsc#1227296 Cross-References: * CVE-2023-51798 * CVE-2024-32230 CVSS scores: * CVE-2023-51798 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2024-32230 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:H Affected Products: * openSUSE Leap 15.4 * openSUSE Leap 15.5 * SUSE Linux Enterprise Desktop 15 SP5 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Linux Enterprise Workstation Extension 15 SP5 * SUSE Package Hub 15 15-SP5 An update that solves two vulnerabilities can now be installed. ## Description: This update for ffmpeg-4 fixes the following issues: * CVE-2024-32230: Fixed buffer overflow due to negative-size-param bug in load_input_picture() (bsc#1227296). * CVE-2023-51798: Fixed floating point exception in the via the interpolate function in libavfilter/vf_minterpolate.c (bsc#1223304). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch SUSE-2024-2803=1 * openSUSE Leap 15.5 zypper in -t patch openSUSE-SLE-15.5-2024-2803=1 * SUSE Package Hub 15 15-SP5 zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP5-2024-2803=1 * SUSE Linux Enterprise Workstation Extension 15 SP5 zypper in -t patch SUSE-SLE-Product-WE-15-SP5-2024-2803=1 ## Package List: * openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586) * libswresample3_9-4.4-150400.3.37.1 * libavformat58_76-debuginfo-4.4-150400.3.37.1 * ffmpeg-4-libavfilter-devel-4.4-150400.3.37.1 * ffmpeg-4-libavresample-devel-4.4-150400.3.37.1 * libavformat58_76-4.4-150400.3.37.1 * ffmpeg-4-debuginfo-4.4-150400.3.37.1 * libavcodec58_134-4.4-150400.3.37.1 * ffmpeg-4-debugsource-4.4-150400.3.37.1 * ffmpeg-4-libavcodec-devel-4.4-150400.3.37.1 * libavfilter7_110-debuginfo-4.4-150400.3.37.1 * libpostproc55_9-4.4-150400.3.37.1 * libswresample3_9-debuginfo-4.4-150400.3.37.1 * libavresample4_0-4.4-150400.3.37.1 * libavcodec58_134-debuginfo-4.4-150400.3.37.1 * ffmpeg-4-libavutil-devel-4.4-150400.3.37.1 * libpostproc55_9-debuginfo-4.4-150400.3.37.1 * libavdevice58_13-debuginfo-4.4-150400.3.37.1 * libavdevice58_13-4.4-150400.3.37.1 * ffmpeg-4-private-devel-4.4-150400.3.37.1 * ffmpeg-4-libavdevice-devel-4.4-150400.3.37.1 * ffmpeg-4-libswresample-devel-4.4-150400.3.37.1 * libavfilter7_110-4.4-150400.3.37.1 * libavutil56_70-debuginfo-4.4-150400.3.37.1 * ffmpeg-4-libavformat-devel-4.4-150400.3.37.1 * libavutil56_70-4.4-150400.3.37.1 * libswscale5_9-4.4-150400.3.37.1 * ffmpeg-4-libpostproc-devel-4.4-150400.3.37.1 * ffmpeg-4-libswscale-devel-4.4-150400.3.37.1 * libswscale5_9-debuginfo-4.4-150400.3.37.1 * libavresample4_0-debuginfo-4.4-150400.3.37.1 * ffmpeg-4-4.4-150400.3.37.1 * openSUSE Leap 15.4 (x86_64) * libswresample3_9-32bit-debuginfo-4.4-150400.3.37.1 * libavresample4_0-32bit-debuginfo-4.4-150400.3.37.1 * libavutil56_70-32bit-4.4-150400.3.37.1 * libavresample4_0-32bit-4.4-150400.3.37.1 * libswscale5_9-32bit-4.4-150400.3.37.1 * libpostproc55_9-32bit-4.4-150400.3.37.1 * libavformat58_76-32bit-4.4-150400.3.37.1 * libavdevice58_13-32bit-debuginfo-4.4-150400.3.37.1 * libavdevice58_13-32bit-4.4-150400.3.37.1 * libavcodec58_134-32bit-debuginfo-4.4-150400.3.37.1 * libavfilter7_110-32bit-debuginfo-4.4-150400.3.37.1 * libswscale5_9-32bit-debuginfo-4.4-150400.3.37.1 * libavutil56_70-32bit-debuginfo-4.4-150400.3.37.1 * libavfilter7_110-32bit-4.4-150400.3.37.1 * libpostproc55_9-32bit-debuginfo-4.4-150400.3.37.1 * libavcodec58_134-32bit-4.4-150400.3.37.1 * libswresample3_9-32bit-4.4-150400.3.37.1 * libavformat58_76-32bit-debuginfo-4.4-150400.3.37.1 * openSUSE Leap 15.4 (aarch64_ilp32) * libswresample3_9-64bit-debuginfo-4.4-150400.3.37.1 * libavformat58_76-64bit-4.4-150400.3.37.1 * libavfilter7_110-64bit-4.4-150400.3.37.1 * libavformat58_76-64bit-debuginfo-4.4-150400.3.37.1 * libavresample4_0-64bit-debuginfo-4.4-150400.3.37.1 * libavutil56_70-64bit-debuginfo-4.4-150400.3.37.1 * libswresample3_9-64bit-4.4-150400.3.37.1 * libswscale5_9-64bit-4.4-150400.3.37.1 * libswscale5_9-64bit-debuginfo-4.4-150400.3.37.1 * libavcodec58_134-64bit-debuginfo-4.4-150400.3.37.1 * libavcodec58_134-64bit-4.4-150400.3.37.1 * libavfilter7_110-64bit-debuginfo-4.4-150400.3.37.1 * libavdevice58_13-64bit-debuginfo-4.4-150400.3.37.1 * libavresample4_0-64bit-4.4-150400.3.37.1 * libavdevice58_13-64bit-4.4-150400.3.37.1 * libavutil56_70-64bit-4.4-150400.3.37.1 * libpostproc55_9-64bit-debuginfo-4.4-150400.3.37.1 * libpostproc55_9-64bit-4.4-150400.3.37.1 * openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64) * libswresample3_9-4.4-150400.3.37.1 * libavformat58_76-debuginfo-4.4-150400.3.37.1 * ffmpeg-4-libavfilter-devel-4.4-150400.3.37.1 * ffmpeg-4-libavresample-devel-4.4-150400.3.37.1 * libavformat58_76-4.4-150400.3.37.1 * ffmpeg-4-debuginfo-4.4-150400.3.37.1 * libavcodec58_134-4.4-150400.3.37.1 * ffmpeg-4-debugsource-4.4-150400.3.37.1 * ffmpeg-4-libavcodec-devel-4.4-150400.3.37.1 * libavfilter7_110-debuginfo-4.4-150400.3.37.1 * libpostproc55_9-4.4-150400.3.37.1 * libswresample3_9-debuginfo-4.4-150400.3.37.1 * libavresample4_0-4.4-150400.3.37.1 * libavcodec58_134-debuginfo-4.4-150400.3.37.1 * ffmpeg-4-libavutil-devel-4.4-150400.3.37.1 * libpostproc55_9-debuginfo-4.4-150400.3.37.1 * libavdevice58_13-debuginfo-4.4-150400.3.37.1 * libavdevice58_13-4.4-150400.3.37.1 * ffmpeg-4-private-devel-4.4-150400.3.37.1 * ffmpeg-4-libavdevice-devel-4.4-150400.3.37.1 * ffmpeg-4-libswresample-devel-4.4-150400.3.37.1 * libavfilter7_110-4.4-150400.3.37.1 * libavutil56_70-debuginfo-4.4-150400.3.37.1 * ffmpeg-4-libavformat-devel-4.4-150400.3.37.1 * libavutil56_70-4.4-150400.3.37.1 * libswscale5_9-4.4-150400.3.37.1 * ffmpeg-4-libpostproc-devel-4.4-150400.3.37.1 * ffmpeg-4-libswscale-devel-4.4-150400.3.37.1 * libswscale5_9-debuginfo-4.4-150400.3.37.1 * libavresample4_0-debuginfo-4.4-150400.3.37.1 * ffmpeg-4-4.4-150400.3.37.1 * openSUSE Leap 15.5 (x86_64) * libswresample3_9-32bit-debuginfo-4.4-150400.3.37.1 * libavresample4_0-32bit-debuginfo-4.4-150400.3.37.1 * libavutil56_70-32bit-4.4-150400.3.37.1 * libavresample4_0-32bit-4.4-150400.3.37.1 * libswscale5_9-32bit-4.4-150400.3.37.1 * libpostproc55_9-32bit-4.4-150400.3.37.1 * libavformat58_76-32bit-4.4-150400.3.37.1 * libavdevice58_13-32bit-debuginfo-4.4-150400.3.37.1 * libavdevice58_13-32bit-4.4-150400.3.37.1 * libavcodec58_134-32bit-debuginfo-4.4-150400.3.37.1 * libavfilter7_110-32bit-debuginfo-4.4-150400.3.37.1 * libswscale5_9-32bit-debuginfo-4.4-150400.3.37.1 * libavutil56_70-32bit-debuginfo-4.4-150400.3.37.1 * libavfilter7_110-32bit-4.4-150400.3.37.1 * libpostproc55_9-32bit-debuginfo-4.4-150400.3.37.1 * libavcodec58_134-32bit-4.4-150400.3.37.1 * libswresample3_9-32bit-4.4-150400.3.37.1 * libavformat58_76-32bit-debuginfo-4.4-150400.3.37.1 * SUSE Package Hub 15 15-SP5 (aarch64 ppc64le s390x x86_64) * libswresample3_9-4.4-150400.3.37.1 * libavformat58_76-debuginfo-4.4-150400.3.37.1 * ffmpeg-4-libavfilter-devel-4.4-150400.3.37.1 * ffmpeg-4-libavresample-devel-4.4-150400.3.37.1 * libavformat58_76-4.4-150400.3.37.1 * ffmpeg-4-debuginfo-4.4-150400.3.37.1 * libavcodec58_134-4.4-150400.3.37.1 * ffmpeg-4-debugsource-4.4-150400.3.37.1 * ffmpeg-4-libavcodec-devel-4.4-150400.3.37.1 * libavfilter7_110-debuginfo-4.4-150400.3.37.1 * libpostproc55_9-4.4-150400.3.37.1 * libswresample3_9-debuginfo-4.4-150400.3.37.1 * libavresample4_0-4.4-150400.3.37.1 * libavcodec58_134-debuginfo-4.4-150400.3.37.1 * ffmpeg-4-libavutil-devel-4.4-150400.3.37.1 * libpostproc55_9-debuginfo-4.4-150400.3.37.1 * libavdevice58_13-debuginfo-4.4-150400.3.37.1 * libavdevice58_13-4.4-150400.3.37.1 * ffmpeg-4-private-devel-4.4-150400.3.37.1 * ffmpeg-4-libavdevice-devel-4.4-150400.3.37.1 * ffmpeg-4-libswresample-devel-4.4-150400.3.37.1 * libavfilter7_110-4.4-150400.3.37.1 * libavutil56_70-debuginfo-4.4-150400.3.37.1 * ffmpeg-4-libavformat-devel-4.4-150400.3.37.1 * libavutil56_70-4.4-150400.3.37.1 * libswscale5_9-4.4-150400.3.37.1 * ffmpeg-4-libpostproc-devel-4.4-150400.3.37.1 * ffmpeg-4-libswscale-devel-4.4-150400.3.37.1 * libswscale5_9-debuginfo-4.4-150400.3.37.1 * libavresample4_0-debuginfo-4.4-150400.3.37.1 * ffmpeg-4-4.4-150400.3.37.1 * SUSE Linux Enterprise Workstation Extension 15 SP5 (x86_64) * ffmpeg-4-debugsource-4.4-150400.3.37.1 * libswresample3_9-4.4-150400.3.37.1 * libavformat58_76-debuginfo-4.4-150400.3.37.1 * libswresample3_9-debuginfo-4.4-150400.3.37.1 * libavutil56_70-debuginfo-4.4-150400.3.37.1 * libavcodec58_134-debuginfo-4.4-150400.3.37.1 * libswscale5_9-debuginfo-4.4-150400.3.37.1 * libavformat58_76-4.4-150400.3.37.1 * libavutil56_70-4.4-150400.3.37.1 * ffmpeg-4-debuginfo-4.4-150400.3.37.1 * libavcodec58_134-4.4-150400.3.37.1 * libswscale5_9-4.4-150400.3.37.1 ## References: * https://www.suse.com/security/cve/CVE-2023-51798.html * https://www.suse.com/security/cve/CVE-2024-32230.html * https://bugzilla.suse.com/show_bug.cgi?id=1223304 * https://bugzilla.suse.com/show_bug.cgi?id=1227296 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Wed Aug 7 08:32:17 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Wed, 07 Aug 2024 08:32:17 -0000 Subject: SUSE-SU-2024:2802-1: important: Security update for the Linux Kernel Message-ID: <172301953794.9296.2641800504959766584@smelt2.prg2.suse.org> # Security update for the Linux Kernel Announcement ID: SUSE-SU-2024:2802-1 Rating: important References: * bsc#1194869 * bsc#1215199 * bsc#1215587 * bsc#1218442 * bsc#1218730 * bsc#1218820 * bsc#1219832 * bsc#1220138 * bsc#1220427 * bsc#1220430 * bsc#1220942 * bsc#1221057 * bsc#1221647 * bsc#1221654 * bsc#1221656 * bsc#1221659 * bsc#1222326 * bsc#1222328 * bsc#1222438 * bsc#1222463 * bsc#1222768 * bsc#1222775 * bsc#1222779 * bsc#1222893 * bsc#1223010 * bsc#1223021 * bsc#1223570 * bsc#1223731 * bsc#1223740 * bsc#1223778 * bsc#1223804 * bsc#1223806 * bsc#1223807 * bsc#1223813 * bsc#1223815 * bsc#1223836 * bsc#1223863 * bsc#1224414 * bsc#1224422 * bsc#1224490 * bsc#1224499 * bsc#1224512 * bsc#1224516 * bsc#1224544 * bsc#1224545 * bsc#1224589 * bsc#1224604 * bsc#1224636 * bsc#1224641 * bsc#1224743 * bsc#1224767 * bsc#1225088 * bsc#1225172 * bsc#1225272 * bsc#1225489 * bsc#1225600 * bsc#1225601 * bsc#1225711 * bsc#1225717 * bsc#1225719 * bsc#1225744 * bsc#1225745 * bsc#1225746 * bsc#1225752 * bsc#1225753 * bsc#1225757 * bsc#1225805 * bsc#1225810 * bsc#1225830 * bsc#1225835 * bsc#1225839 * bsc#1225840 * bsc#1225843 * bsc#1225847 * bsc#1225851 * bsc#1225856 * bsc#1225894 * bsc#1225895 * bsc#1225896 * bsc#1226202 * bsc#1226213 * bsc#1226502 * bsc#1226519 * bsc#1226750 * bsc#1226757 * bsc#1226783 * bsc#1226866 * bsc#1226883 * bsc#1226915 * bsc#1226993 * bsc#1227103 * bsc#1227149 * bsc#1227282 * bsc#1227362 * bsc#1227363 * bsc#1227383 * bsc#1227432 * bsc#1227433 * bsc#1227434 * bsc#1227435 * bsc#1227443 * bsc#1227446 * bsc#1227447 * bsc#1227487 * bsc#1227573 * bsc#1227626 * bsc#1227716 * bsc#1227719 * bsc#1227723 * bsc#1227730 * bsc#1227736 * bsc#1227755 * bsc#1227757 * bsc#1227762 * bsc#1227763 * bsc#1227779 * bsc#1227780 * bsc#1227783 * bsc#1227786 * bsc#1227788 * bsc#1227789 * bsc#1227797 * bsc#1227800 * bsc#1227801 * bsc#1227803 * bsc#1227806 * bsc#1227813 * bsc#1227814 * bsc#1227836 * bsc#1227855 * bsc#1227862 * bsc#1227866 * bsc#1227886 * bsc#1227899 * bsc#1227910 * bsc#1227913 * bsc#1227926 * bsc#1228090 * bsc#1228192 * bsc#1228193 * bsc#1228211 * bsc#1228269 * bsc#1228289 * bsc#1228327 * bsc#1228328 * bsc#1228403 * bsc#1228405 * bsc#1228408 * bsc#1228417 * jsc#PED-8644 * jsc#PED-8688 * jsc#PED-8701 * jsc#PED-8954 Cross-References: * CVE-2023-38417 * CVE-2023-47210 * CVE-2023-51780 * CVE-2023-52435 * CVE-2023-52472 * CVE-2023-52751 * CVE-2023-52775 * CVE-2024-25741 * CVE-2024-26615 * CVE-2024-26623 * CVE-2024-26633 * CVE-2024-26635 * CVE-2024-26636 * CVE-2024-26641 * CVE-2024-26663 * CVE-2024-26665 * CVE-2024-26691 * CVE-2024-26734 * CVE-2024-26785 * CVE-2024-26826 * CVE-2024-26863 * CVE-2024-26944 * CVE-2024-27012 * CVE-2024-27015 * CVE-2024-27016 * CVE-2024-27019 * CVE-2024-27020 * CVE-2024-27025 * CVE-2024-27064 * CVE-2024-27065 * CVE-2024-27402 * CVE-2024-27404 * CVE-2024-35805 * CVE-2024-35853 * CVE-2024-35854 * CVE-2024-35890 * CVE-2024-35893 * CVE-2024-35899 * CVE-2024-35908 * CVE-2024-35934 * CVE-2024-35942 * CVE-2024-36003 * CVE-2024-36004 * CVE-2024-36889 * CVE-2024-36901 * CVE-2024-36902 * CVE-2024-36909 * CVE-2024-36910 * CVE-2024-36911 * CVE-2024-36912 * CVE-2024-36913 * CVE-2024-36914 * CVE-2024-36922 * CVE-2024-36930 * CVE-2024-36940 * CVE-2024-36941 * CVE-2024-36942 * CVE-2024-36944 * CVE-2024-36946 * CVE-2024-36947 * CVE-2024-36949 * CVE-2024-36950 * CVE-2024-36951 * CVE-2024-36955 * CVE-2024-36959 * CVE-2024-36974 * CVE-2024-38558 * CVE-2024-38586 * CVE-2024-38598 * CVE-2024-38604 * CVE-2024-38659 * CVE-2024-39276 * CVE-2024-39468 * CVE-2024-39472 * CVE-2024-39473 * CVE-2024-39474 * CVE-2024-39475 * CVE-2024-39479 * CVE-2024-39481 * CVE-2024-39482 * CVE-2024-39487 * CVE-2024-39490 * CVE-2024-39494 * CVE-2024-39496 * CVE-2024-39498 * CVE-2024-39502 * CVE-2024-39504 * CVE-2024-39507 * CVE-2024-40901 * CVE-2024-40906 * CVE-2024-40908 * CVE-2024-40919 * CVE-2024-40923 * CVE-2024-40925 * CVE-2024-40928 * CVE-2024-40931 * CVE-2024-40935 * CVE-2024-40937 * CVE-2024-40940 * CVE-2024-40947 * CVE-2024-40948 * CVE-2024-40953 * CVE-2024-40960 * CVE-2024-40961 * CVE-2024-40966 * CVE-2024-40970 * CVE-2024-40972 * CVE-2024-40975 * CVE-2024-40979 * CVE-2024-40998 * CVE-2024-40999 * CVE-2024-41006 * CVE-2024-41011 * CVE-2024-41013 * CVE-2024-41014 * CVE-2024-41017 * CVE-2024-41090 * CVE-2024-41091 CVSS scores: * CVE-2023-38417 ( SUSE ): 4.3 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2023-47210 ( SUSE ): 4.7 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L * CVE-2023-51780 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-51780 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-52435 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52435 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52472 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2023-52472 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52751 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52775 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N * CVE-2024-25741 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:L * CVE-2024-26615 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26623 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26633 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26635 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2024-26636 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26641 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2024-26663 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26665 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26691 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26734 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26785 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26826 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26863 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26944 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2024-27012 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27012 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27015 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27015 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27016 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27016 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27019 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27019 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2024-27020 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27020 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-27025 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2024-27064 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27065 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27402 ( SUSE ): 5.8 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2024-27404 ( SUSE ): 5.8 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2024-35805 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35853 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35854 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35890 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35893 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35899 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35908 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35934 ( SUSE ): 2.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-35942 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-36003 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36004 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36889 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N * CVE-2024-36901 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36901 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36902 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36902 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36909 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2024-36910 ( SUSE ): 6.0 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N * CVE-2024-36911 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2024-36912 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2024-36913 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2024-36914 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36922 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36930 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36930 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36940 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2024-36941 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36942 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L * CVE-2024-36944 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36946 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N * CVE-2024-36947 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2024-36949 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36950 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36951 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36955 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-36959 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36974 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-38558 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L * CVE-2024-38586 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38598 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38604 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38659 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:L/A:H * CVE-2024-39276 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39468 ( SUSE ): 4.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39472 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L * CVE-2024-39472 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39473 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39473 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39474 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39474 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39475 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39475 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39479 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2024-39479 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-39481 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39481 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39482 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L * CVE-2024-39482 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39487 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2024-39490 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-39494 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-39494 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-39496 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-39496 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-39498 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39502 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2024-39504 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39507 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40901 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L * CVE-2024-40906 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40908 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40919 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40923 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40925 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40928 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-40931 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2024-40935 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40937 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-40940 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40947 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40948 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40953 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40960 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40961 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40966 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40970 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40972 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40975 ( SUSE ): 2.1 CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-40979 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40998 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40999 ( SUSE ): 3.6 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L * CVE-2024-41006 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L * CVE-2024-41011 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-41013 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2024-41014 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-41017 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-41090 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H * CVE-2024-41091 ( SUSE ): 6.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H Affected Products: * Basesystem Module 15-SP6 * Development Tools Module 15-SP6 * Legacy Module 15-SP6 * openSUSE Leap 15.6 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise High Availability Extension 15 SP6 * SUSE Linux Enterprise Live Patching 15-SP6 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Linux Enterprise Workstation Extension 15 SP6 An update that solves 118 vulnerabilities, contains four features and has 31 security fixes can now be installed. ## Description: The SUSE Linux Enterprise 15 SP6 kernel was updated to receive various security bugfixes. The following security bugs were fixed: * CVE-2023-47210: wifi: iwlwifi: bump FW API to 90 for BZ/SC devices (bsc#1225601, bsc#1225600). * CVE-2023-52435: net: prevent mss overflow in skb_segment() (bsc#1220138). * CVE-2023-52751: smb: client: fix use-after-free in smb2_query_info_compound() (bsc#1225489). * CVE-2023-52775: net/smc: avoid data corruption caused by decline (bsc#1225088). * CVE-2024-26615: net/smc: fix illegal rmb_desc access in SMC-D connection dump (bsc#1220942). * CVE-2024-26623: pds_core: Prevent race issues involving the adminq (bsc#1221057). * CVE-2024-26633: ip6_tunnel: fix NEXTHDR_FRAGMENT handling in ip6_tnl_parse_tlv_enc_lim() (bsc#1221647). * CVE-2024-26635: llc: Drop support for ETH_P_TR_802_2 (bsc#1221656). * CVE-2024-26636: llc: make llc_ui_sendmsg() more robust against bonding changes (bsc#1221659). * CVE-2024-26641: ip6_tunnel: make sure to pull inner header in __ip6_tnl_rcv() (bsc#1221654). * CVE-2024-26663: tipc: Check the bearer type before calling tipc_udp_nl_bearer_add() (bsc#1222326). * CVE-2024-26665: tunnels: fix out of bounds access when building IPv6 PMTU error (bsc#1222328). * CVE-2024-26691: KVM: arm64: Fix circular locking dependency (bsc#1222463). * CVE-2024-26734: devlink: fix possible use-after-free and memory leaks in devlink_init() (bsc#1222438). * CVE-2024-26785: iommufd: Fix protection fault in iommufd_test_syz_conv_iova (bsc#1222779). * CVE-2024-26826: mptcp: fix data re-injection from stale subflow (bsc#1223010). * CVE-2024-26863: hsr: Fix uninit-value access in hsr_get_node() (bsc#1223021). * CVE-2024-26944: btrfs: zoned: fix lock ordering in btrfs_zone_activate() (bsc#1223731). * CVE-2024-27012: netfilter: nf_tables: restore set elements when delete set fails (bsc#1223804). * CVE-2024-27015: netfilter: flowtable: incorrect pppoe tuple (bsc#1223806). * CVE-2024-27016: netfilter: flowtable: validate pppoe header (bsc#1223807). * CVE-2024-27019: netfilter: nf_tables: Fix potential data-race in __nft_obj_type_get() (bsc#1223813) * CVE-2024-27020: netfilter: nf_tables: Fix potential data-race in __nft_expr_type_get() (bsc#1223815) * CVE-2024-27025: nbd: null check for nla_nest_start (bsc#1223778) * CVE-2024-27064: netfilter: nf_tables: Fix a memory leak in nf_tables_updchain (bsc#1223740). * CVE-2024-27065: netfilter: nf_tables: do not compare internal table flags on updates (bsc#1223836). * CVE-2024-27402: phonet/pep: fix racy skb_queue_empty() use (bsc#1224414). * CVE-2024-27404: mptcp: fix data races on remote_id (bsc#1224422) * CVE-2024-35805: dm snapshot: fix lockup in dm_exception_table_exit (bsc#1224743). * CVE-2024-35853: mlxsw: spectrum_acl_tcam: Fix memory leak during rehash (bsc#1224604). * CVE-2024-35854: Fixed possible use-after-free during rehash (bsc#1224636). * CVE-2024-35890: gro: fix ownership transfer (bsc#1224516). * CVE-2024-35893: net/sched: act_skbmod: prevent kernel-infoleak (bsc#1224512) * CVE-2024-35899: netfilter: nf_tables: flush pending destroy work before exit_net release (bsc#1224499) * CVE-2024-35908: tls: get psock ref after taking rxlock to avoid leak (bsc#1224490) * CVE-2024-35934: net/smc: reduce rtnl pressure in smc_pnet_create_pnetids_list() (bsc#1224641) * CVE-2024-35942: pmdomain: imx8mp-blk-ctrl: imx8mp_blk: Add fdcc clock to hdmimix domain (bsc#1224589). * CVE-2024-36003: ice: fix LAG and VF lock dependency in ice_reset_vf() (bsc#1224544). * CVE-2024-36004: i40e: Do not use WQ_MEM_RECLAIM flag for workqueue (bsc#1224545) * CVE-2024-36901: ipv6: prevent NULL dereference in ip6_output() (bsc#1225711) * CVE-2024-36902: ipv6: fib6_rules: avoid possible NULL dereference in fib6_rule_action() (bsc#1225719). * CVE-2024-36909: Drivers: hv: vmbus: Do not free ring buffers that couldn't be re-encrypted (bsc#1225744). * CVE-2024-36910: uio_hv_generic: Do not free decrypted memory (bsc#1225717). * CVE-2024-36911: hv_netvsc: Do not free decrypted memory (bsc#1225745). * CVE-2024-36912: Drivers: hv: vmbus: Track decrypted status in vmbus_gpadl (bsc#1225752). * CVE-2024-36913: Drivers: hv: vmbus: Leak pages if set_memory_encrypted() fails (bsc#1225753). * CVE-2024-36914: drm/amd/display: Skip on writeback when it's not applicable (bsc#1225757). * CVE-2024-36946: phonet: fix rtm_phonet_notify() skb allocation (bsc#1225851). * CVE-2024-36974: net/sched: taprio: always validate TCA_TAPRIO_ATTR_PRIOMAP (bsc#1226519). * CVE-2024-38558: net: openvswitch: fix overwriting ct original tuple for ICMPv6 (bsc#1226783). * CVE-2024-38586: r8169: Fix possible ring buffer corruption on fragmented Tx packets (bsc#1226750). * CVE-2024-38598: md: fix resync softlockup when bitmap size is less than array size (bsc#1226757). * CVE-2024-38604: block: refine the EOF check in blkdev_iomap_begin (bsc#1226866). * CVE-2024-38659: enic: Validate length of nl attributes in enic_set_vf_port (bsc#1226883). * CVE-2024-39276: ext4: fix mb_cache_entry's e_refcnt leak in ext4_xattr_block_cache_find() (bsc#1226993). * CVE-2024-39468: smb: client: fix deadlock in smb2_find_smb_tcon() (bsc#1227103. * CVE-2024-39472: xfs: fix log recovery buffer allocation for the legacy h_size fixup (bsc#1227432). * CVE-2024-39474: mm/vmalloc: fix vmalloc which may return null if called with __GFP_NOFAIL (bsc#1227434). * CVE-2024-39482: bcache: fix variable length array abuse in btree_iter (bsc#1227447). * CVE-2024-39487: bonding: Fix out-of-bounds read in bond_option_arp_ip_targets_set() (bsc#1227573) * CVE-2024-39490: ipv6: sr: fix missing sk_buff release in seg6_input_core (bsc#1227626). * CVE-2024-39494: ima: Fix use-after-free on a dentry's dname.name (bsc#1227716). * CVE-2024-39496: btrfs: zoned: fix use-after-free due to race with dev replace (bsc#1227719). * CVE-2024-39498: drm/mst: Fix NULL pointer dereference at drm_dp_add_payload_part2 (bsc#1227723) * CVE-2024-39502: ionic: fix use after netif_napi_del() (bsc#1227755). * CVE-2024-39504: netfilter: nft_inner: validate mandatory meta and payload (bsc#1227757). * CVE-2024-39507: net: hns3: fix kernel crash problem in concurrent scenario (bsc#1227730). * CVE-2024-40901: scsi: mpt3sas: Avoid test/set_bit() operating in non- allocated memory (bsc#1227762). * CVE-2024-40906: net/mlx5: Always stop health timer during driver removal (bsc#1227763). * CVE-2024-40908: bpf: Set run context for rawtp test_run callback (bsc#1227783). * CVE-2024-40919: bnxt_en: Adjust logging of firmware messages in case of released token in __hwrm_send() (bsc#1227779). * CVE-2024-40923: vmxnet3: disable rx data ring on dma allocation failure (bsc#1227786). * CVE-2024-40925: block: fix request.queuelist usage in flush (bsc#1227789). * CVE-2024-40928: net: ethtool: fix the error condition in ethtool_get_phy_stats_ethtool() (bsc#1227788). * CVE-2024-40931: mptcp: ensure snd_una is properly initialized on connect (bsc#1227780). * CVE-2024-40935: cachefiles: flush all requests after setting CACHEFILES_DEAD (bsc#1227797). * CVE-2024-40937: gve: Clear napi->skb before dev_kfree_skb_any() (bsc#1227836). * CVE-2024-40940: net/mlx5: Fix tainted pointer delete is case of flow rules creation fail (bsc#1227800). * CVE-2024-40947: ima: Avoid blocking in RCU read-side critical section (bsc#1227803). * CVE-2024-40948: mm/page_table_check: fix crash on ZONE_DEVICE (bsc#1227801). * CVE-2024-40953: KVM: Fix a data race on last_boosted_vcpu in kvm_vcpu_on_spin() (bsc#1227806). * CVE-2024-40960: ipv6: prevent possible NULL dereference in rt6_probe() (bsc#1227813). * CVE-2024-40961: ipv6: prevent possible NULL deref in fib6_nh_init() (bsc#1227814). * CVE-2024-40966: kABI: tty: add the option to have a tty reject a new ldisc (bsc#1227886). * CVE-2024-40970: Avoid hw_desc array overrun in dw-axi-dmac (bsc#1227899). * CVE-2024-40972: ext4: fold quota accounting into ext4_xattr_inode_lookup_create() (bsc#1227910). * CVE-2024-40975: platform/x86: x86-android-tablets: Unregister devices in reverse order (bsc#1227926). * CVE-2024-40998: ext4: fix uninitialized ratelimit_state->lock access in __ext4_fill_super() (bsc#1227866). * CVE-2024-40999: net: ena: Add validation for completion descriptors consistency (bsc#1227913). * CVE-2024-41006: netrom: Fix a memory leak in nr_heartbeat_expiry() (bsc#1227862). * CVE-2024-41013: xfs: do not walk off the end of a directory data block (bsc#1228405). * CVE-2024-41014: xfs: add bounds checking to xlog_recover_process_data (bsc#1228408). * CVE-2024-41017: jfs: do not walk off the end of ealist (bsc#1228403). * CVE-2024-41090: tap: add missing verification for short frame (bsc#1228328). * CVE-2024-41091: tun: add missing verification for short frame (bsc#1228327). The following non-security bugs were fixed: * ACPI: EC: Abort address space access upon error (stable-fixes). * ACPI: EC: Avoid returning AE_OK on errors in address space handler (stable- fixes). * ACPI: processor_idle: Fix invalid comparison with insertion sort for latency (git-fixes). * ALSA: PCM: Allow resume only for suspended streams (stable-fixes). * ALSA: dmaengine: Synchronize dma channel after drop() (stable-fixes). * ALSA: dmaengine_pcm: terminate dmaengine before synchronize (stable-fixes). * ALSA: emux: improve patch ioctl data validation (stable-fixes). * ALSA: hda/conexant: Mute speakers at suspend / shutdown (bsc#1228269). * ALSA: hda/generic: Add a helper to mute speakers at suspend/shutdown (bsc#1228269). * ALSA: hda/realtek: Enable Mute LED on HP 250 G7 (stable-fixes). * ALSA: hda/realtek: Enable headset mic on Positivo SU C1400 (stable-fixes). * ALSA: hda/realtek: Fix the speaker output on Samsung Galaxy Book Pro 360 (stable-fixes). * ALSA: hda/realtek: Limit mic boost on VAIO PRO PX (stable-fixes). * ALSA: hda/realtek: add quirk for Clevo V5[46]0TU (stable-fixes). * ALSA: hda/realtek: cs35l41: Fixup remaining asus strix models (git-fixes). * ALSA: hda/realtek: fix mute/micmute LEDs do not work for EliteBook 645/665 G11 (stable-fixes). * ALSA: hda/relatek: Enable Mute LED on HP Laptop 15-gw0xxx (stable-fixes). * ALSA: hda/tas2781: Add new quirk for Lenovo Hera2 Laptop (stable-fixes). * ALSA: hda: cs35l41: Fix swapped l/r audio channels for Lenovo ThinBook 13x Gen4 (git-fixes). * ALSA: pcm_dmaengine: Do not synchronize DMA channel when DMA is paused (git- fixes). * ALSA: seq: ump: Skip useless ports for static blocks (git-fixes). * ALSA: ump: Do not update FB name for static blocks (git-fixes). * ALSA: ump: Force 1 Group for MIDI1 FBs (git-fixes). * ALSA: usb-audio: Add a quirk for Sonix HD USB Camera (stable-fixes). * ALSA: usb-audio: Fix microphone sound on HD webcam (stable-fixes). * ALSA: usb-audio: Move HD Webcam quirk to the right place (git-fixes). * ASoC: Intel: use soc_intel_is_byt_cr() only when IOSF_MBI is reachable (git- fixes). * ASoC: SOF: Intel: hda-pcm: Limit the maximum number of periods by MAX_BDL_ENTRIES (stable-fixes). * ASoC: SOF: Intel: hda: fix null deref on system suspend entry (git-fixes). * ASoC: SOF: imx8m: Fix DSP control regmap retrieval (git-fixes). * ASoC: SOF: ipc4-topology: Preserve the DMA Link ID for ChainDMA on unprepare (git-fixes). * ASoC: SOF: ipc4-topology: Use correct queue_id for requesting input pin format (stable-fixes). * ASoC: SOF: sof-audio: Skip unprepare for in-use widgets on error rollback (stable-fixes). * ASoC: TAS2781: Fix tasdev_load_calibrated_data() (git-fixes). * ASoC: amd: Adjust error handling in case of absent codec device (git-fixes). * ASoC: amd: yc: Fix non-functional mic on ASUS M5602RA (stable-fixes). * ASoC: amd: yc: Support mic on Lenovo Thinkpad E16 Gen 2 (bsc#1228269). * ASoC: cs35l56: Accept values greater than 0 as IRQ numbers (git-fixes). * ASoC: fsl: fsl_qmc_audio: Check devm_kasprintf() returned value (git-fixes). * ASoC: max98088: Check for clk_prepare_enable() error (git-fixes). * ASoC: qcom: Adjust issues in case of DT error in asoc_qcom_lpass_cpu_platform_probe() (git-fixes). * ASoC: rt711-sdw: add missing readable registers (stable-fixes). * ASoC: rt722-sdca-sdw: add debounce time for type detection (stable-fixes). * ASoC: rt722-sdca-sdw: add silence detection register as volatile (stable- fixes). * ASoC: sof: amd: fix for firmware reload failure in Vangogh platform (git- fixes). * ASoC: ti: davinci-mcasp: Set min period size using FIFO config (stable- fixes). * ASoC: ti: omap-hdmi: Fix too long driver name (stable-fixes). * ASoC: topology: Do not assign fields that are already set (stable-fixes). * ASoC: topology: Fix references to freed memory (stable-fixes). * ASoc: tas2781: Enable RCA-based playback without DSP firmware download (git- fixes). * Bluetooth: ISO: Check socket flag instead of hcon (git-fixes). * Bluetooth: Ignore too large handle values in BIG (git-fixes). * Bluetooth: btintel: Refactor btintel_set_ppag() (git-fixes). * Bluetooth: btnxpuart: Add handling for boot-signature timeout errors (git- fixes). * Bluetooth: btnxpuart: Enable Power Save feature on startup (stable-fixes). * Bluetooth: hci_bcm4377: Fix msgid release (git-fixes). * Bluetooth: hci_bcm4377: Use correct unit for timeouts (git-fixes). * Bluetooth: hci_core: cancel all works upon hci_unregister_dev() (stable- fixes). * Bluetooth: hci_event: Fix setting of unicast qos interval (git-fixes). * Bluetooth: hci_event: Set QoS encryption from BIGInfo report (git-fixes). * Bluetooth: qca: Fix BT enable failure again for QCA6390 after warm reboot (git-fixes). * Bluetooth: qca: set power_ctrl_enabled on NULL returned by gpiod_get_optional() (git-fixes). * Enable CONFIG_SCHED_CLUSTER=y on arm64 (jsc#PED-8701). * HID: Ignore battery for ELAN touchscreens 2F2C and 4116 (stable-fixes). * HID: wacom: Modify pen IDs (git-fixes). * Input: ads7846 - use spi_device_id table (stable-fixes). * Input: elan_i2c - do not leave interrupt disabled on suspend failure (git- fixes). * Input: elantech - fix touchpad state on resume for Lenovo N24 (stable- fixes). * Input: ff-core - prefer struct_size over open coded arithmetic (stable- fixes). * Input: i8042 - add Ayaneo Kun to i8042 quirk table (stable-fixes). * Input: qt1050 - handle CHIP_ID reading error (git-fixes). * Input: silead - Always support 10 fingers (stable-fixes). * Input: xpad - add support for ASUS ROG RAIKIRI PRO (stable-fixes). * KVM: SEV-ES: Delegate LBR virtualization to the processor (git-fixes). * KVM: SEV-ES: Disallow SEV-ES guests when X86_FEATURE_LBRV is absent (git- fixes). * KVM: SVM: WARN on vNMI + NMI window iff NMIs are outright masked (git- fixes). * KVM: x86: Always sync PIR to IRR prior to scanning I/O APIC routes (git- fixes). * NFS: Fix READ_PLUS when server does not support OP_READ_PLUS (git-fixes). * NFS: add barriers when testing for NFS_FSDATA_BLOCKED (git-fixes). * NFSD: Fix checksum mismatches in the duplicate reply cache (git-fixes). * NFSv4.1 enforce rootpath check in fs_location query (git-fixes). * NFSv4.x: by default serialize open/close operations (bsc#1223863 bsc#1227362). * NFSv4: Fixup smatch warning for ambiguous return (git-fixes). * PCI/ASPM: Update save_state when configuration changes (bsc#1226915) * PCI/DPC: Fix use-after-free on concurrent DPC and hot-removal (git-fixes). * PCI: Do not wait for disconnected devices when resuming (git-fixes). * PCI: Extend ACS configurability (bsc#1228090). * PCI: Fix resource double counting on remove & rescan (git-fixes). * PCI: Introduce cleanup helpers for device reference counts and locks (stable-fixes). * PCI: dw-rockchip: Fix initial PERST# GPIO value (git-fixes). * PCI: dwc: Fix index 0 incorrectly being interpreted as a free ATU slot (git- fixes). * PCI: endpoint: Clean up error handling in vpci_scan_bus() (git-fixes). * PCI: endpoint: Fix error handling in epf_ntb_epc_cleanup() (git-fixes). * PCI: endpoint: pci-epf-test: Make use of cached 'epc_features' in pci_epf_test_core_init() (git-fixes). * PCI: keystone: Do not enable BAR 0 for AM654x (git-fixes). * PCI: keystone: Fix NULL pointer dereference in case of DT error in ks_pcie_setup_rc_app_regs() (git-fixes). * PCI: keystone: Relocate ks_pcie_set/clear_dbi_mode() (git-fixes). * PCI: qcom-ep: Disable resources unconditionally during PERST# assert (git- fixes). * PCI: rcar: Demote WARN() to dev_warn_ratelimited() in rcar_pcie_wakeup() (git-fixes). * PCI: rockchip: Use GPIOD_OUT_LOW flag while requesting ep_gpio (git-fixes). * PCI: tegra194: Set EP alignment restriction for inbound ATU (git-fixes). * PCI: vmd: Create domain symlink before pci_bus_add_devices() (bsc#1227363). * RDMA/mana_ib: Ignore optional access flags for MRs (git-fixes). * RDMA/restrack: Fix potential invalid address access (git-fixes) * Revert "drm/bridge: tc358767: Set default CLRSIPO count" (stable-fixes). * Revert "gfs2: fix glock shrinker ref issues" (git-fixes). * Revert "leds: led-core: Fix refcount leak in of_led_get()" (git-fixes). * Revert "usb: musb: da8xx: Set phy in OTG mode by default" (stable-fixes). * Revert "wifi: ath11k: call ath11k_mac_fils_discovery() without condition" (bsc#1227149). * Revert "wifi: ath12k: use ATH12K_PCI_IRQ_DP_OFFSET for DP IRQ" (bsc#1227149). * Revert "wifi: iwlwifi: bump FW API to 90 for BZ/SC devices" (bsc#1227149). * SUNRPC: Fix gss_free_in_token_pages() (git-fixes). * SUNRPC: Fix loop termination condition in gss_free_in_token_pages() (git- fixes). * SUNRPC: avoid soft lockup when transmitting UDP to reachable server (bsc#1225272). * SUNRPC: return proper error from gss_wrap_req_priv (git-fixes). * USB: Add USB_QUIRK_NO_SET_INTF quirk for START BP-850k (stable-fixes). * USB: core: Fix duplicate endpoint bug by clearing reserved bits in the descriptor (git-fixes). * USB: serial: mos7840: fix crash on resume (git-fixes). * USB: serial: option: add Fibocom FM350-GL (stable-fixes). * USB: serial: option: add Netprisma LCUK54 series modules (stable-fixes). * USB: serial: option: add Rolling RW350-GL variants (stable-fixes). * USB: serial: option: add Telit FN912 rmnet compositions (stable-fixes). * USB: serial: option: add Telit generic core-dump composition (stable-fixes). * USB: serial: option: add support for Foxconn T99W651 (stable-fixes). * Update config files (bsc#1227282). Update the CONFIG_LSM option to include the selinux LSM in the default set of LSMs. The selinux LSM will not get enabled because it is preceded by apparmor, which is the first exclusive LSM. Updating CONFIG_LSM resolves failures that result in the system not booting up when "security=selinux selinux=1" is passed to the kernel and SELinux policies are installed. * Update config files for mt76 stuff (bsc#1227149) * Update config files: adjust for Arm CONFIG_MT798X_WMAC (bsc#1227149) * Update config files: update for the realtek wifi driver updates (bsc#1227149) * X.509: Fix the parser of extended key usage for length (bsc#1218820). * arm64/io: Provide a WC friendly __iowriteXX_copy() (bsc#1226502) * arm64/io: add constant-argument check (bsc#1226502 git-fixes) * arm64: dts: freescale: imx8mm-verdin: enable hysteresis on slow input (git- fixes) * arm64: dts: imx8qm-mek: fix gpio number for reg_usdhc2_vmmc (git-fixes) * arm64: dts: imx93-11x11-evk: Remove the 'no-sdio' property (git-fixes) * arm64: dts: rockchip: Add mdio and ethernet-phy nodes to (git-fixes) * arm64: dts: rockchip: Add missing power-domains for rk356x vop_mmu (git- fixes) * arm64: dts: rockchip: Add pinctrl for UART0 to rk3308-rock-pi-s (git-fixes) * arm64: dts: rockchip: Add sdmmc related properties on (git-fixes) * arm64: dts: rockchip: Add sound-dai-cells for RK3368 (git-fixes) * arm64: dts: rockchip: Drop invalid mic-in-differential on (git-fixes) * arm64: dts: rockchip: Fix SD NAND and eMMC init on rk3308-rock-pi-s (git- fixes) * arm64: dts: rockchip: Fix mic-in-differential usage on (git-fixes) * arm64: dts: rockchip: Fix mic-in-differential usage on rk3566-roc-pc (git- fixes) * arm64: dts: rockchip: Fix the DCDC_REG2 minimum voltage on Quartz64 (git- fixes) * arm64: dts: rockchip: Fix the value of `dlg,jack-det-rate` mismatch (git- fixes) * arm64: dts: rockchip: Increase VOP clk rate on RK3328 (git-fixes) * arm64: dts: rockchip: Rename LED related pinctrl nodes on (git-fixes) * arm64: dts: rockchip: Update WIFi/BT related nodes on (git-fixes) * arm64: dts: rockchip: fix PMIC interrupt pin on ROCK Pi E (git-fixes) * ata: libata-scsi: Fix offsets for the fixed format sense data (git-fixes). * auxdisplay: ht16k33: Drop reference after LED registration (git-fixes). * block: Move checking GENHD_FL_NO_PART to bdev_add_partition() (bsc#1226213). * bluetooth/hci: disallow setting handle bigger than HCI_CONN_HANDLE_MAX (git- fixes). * bus: mhi: host: allow MHI client drivers to provide the firmware via a pointer (bsc#1227149). * bytcr_rt5640 : inverse jack detect for Archos 101 cesium (stable-fixes). * cachefiles: add output string to cachefiles_obj_[get|put]_ondemand_fd (git- fixes). * can: kvaser_usb: Explicitly initialize family in leafimx driver_info struct (git-fixes). * can: kvaser_usb: fix return value for hif_usb_send_regout (stable-fixes). * cdrom: rearrange last_media_change check to avoid unintentional overflow (stable-fixes). * ceph: fix incorrect kmalloc size of pagevec mempool (bsc#1228417). * char: tpm: Fix possible memory leak in tpm_bios_measurements_open() (git- fixes). * checkpatch: really skip LONG_LINE_* when LONG_LINE is ignored (git-fixes). * cifs: Add a laundromat thread for cached directories (git-fixes, bsc#1225172). * clk: davinci: da8xx-cfgchip: Initialize clk_init_data before use (git- fixes). * clk: mediatek: mt8183: Only enable runtime PM on mt8183-mfgcfg (git-fixes). * clk: qcom: clk-alpha-pll: set ALPHA_EN bit for Stromer Plus PLLs (git- fixes). * clk: qcom: gcc-sm6350: Fix gpll6* & gpll7 parents (git-fixes). * config/arm64: Enable CoreSight PMU drivers (bsc#1228289 jsc#PED-7859) * cpufreq/amd-pstate: Fix the scaling_max_freq setting on shared memory CPPC systems (git-fixes). * cpufreq: ti-cpufreq: Handle deferred probe with dev_err_probe() (git-fixes). * crypto/ecdh: make ecdh_compute_value() to zeroize the public key (bsc#1222768). * crypto/ecdsa: make ecdsa_ecc_ctx_deinit() to zeroize the public key (bsc#1222768). * crypto: aead,cipher - zeroize key buffer after use (stable-fixes). * crypto: ccp - Fix null pointer dereference in __sev_snp_shutdown_locked (git-fixes). * crypto: ecdh - explicitly zeroize private_key (stable-fixes). * crypto: ecdsa - Fix the public key format description (git-fixes). * crypto: hisilicon/debugfs - Fix debugfs uninit process issue (stable-fixes). * crypto: qat - extend scope of lock in adf_cfg_add_key_value_param() (git- fixes). * decompress_bunzip2: fix rare decompression failure (git-fixes). * devres: Fix devm_krealloc() wasting memory (git-fixes). * devres: Fix memory leakage caused by driver API devm_free_percpu() (git- fixes). * dlm: fix user space lock decision to copy lvb (git-fixes). * dma: fix call order in dmam_free_coherent (git-fixes). * dmaengine: ti: k3-udma: Fix BCHAN count with UHC and HC channels (git- fixes). * docs: crypto: async-tx-api: fix broken code example (git-fixes). * drivers/xen: Improve the late XenStore init protocol (git-fixes). * drivers: soc: xilinx: check return status of get_api_version() (git-fixes). * drm/amd/amdgpu: Fix uninitialized variable warnings (git-fixes). * drm/amd/display: ASSERT when failing to find index by plane/stream id (stable-fixes). * drm/amd/display: Account for cursor prefetch BW in DML1 mode support (stable-fixes). * drm/amd/display: Add refresh rate range check (stable-fixes). * drm/amd/display: Check index msg_id before read or write (stable-fixes). * drm/amd/display: Check pipe offset before setting vblank (stable-fixes). * drm/amd/display: Fix array-index-out-of-bounds in dml2/FCLKChangeSupport (stable-fixes). * drm/amd/display: Fix overlapping copy within dml_core_mode_programming (stable-fixes). * drm/amd/display: Fix refresh rate range for some panel (stable-fixes). * drm/amd/display: Fix uninitialized variables in DM (stable-fixes). * drm/amd/display: Move 'struct scaler_data' off stack (git-fixes). * drm/amd/display: Send DP_TOTAL_LTTPR_CNT during detection if LTTPR is present (stable-fixes). * drm/amd/display: Skip finding free audio for unknown engine_id (stable- fixes). * drm/amd/display: Skip pipe if the pipe idx not set properly (stable-fixes). * drm/amd/display: Update efficiency bandwidth for dcn351 (stable-fixes). * drm/amd/display: Workaround register access in idle race with cursor (stable-fixes). * drm/amd/display: change dram_clock_latency to 34us for dcn35 (stable-fixes). * drm/amd/pm: Fix aldebaran pcie speed reporting (git-fixes). * drm/amd/pm: remove logically dead code for renoir (git-fixes). * drm/amdgpu/atomfirmware: fix parsing of vram_info (stable-fixes). * drm/amdgpu/atomfirmware: silence UBSAN warning (stable-fixes). * drm/amdgpu: Check if NBIO funcs are NULL in amdgpu_device_baco_exit (git- fixes). * drm/amdgpu: Fix memory range calculation (git-fixes). * drm/amdgpu: Fix signedness bug in sdma_v4_0_process_trap_irq() (git-fixes). * drm/amdgpu: Fix uninitialized variable warnings (stable-fixes). * drm/amdgpu: Indicate CU havest info to CP (stable-fixes). * drm/amdgpu: Initialize timestamp for some legacy SOCs (stable-fixes). * drm/amdgpu: Remove GC HW IP 9.3.0 from noretry=1 (git-fixes). * drm/amdgpu: Using uninitialized value *size when calling amdgpu_vce_cs_reloc (stable-fixes). * drm/amdgpu: avoid using null object of framebuffer (stable-fixes). * drm/amdgpu: fix locking scope when flushing tlb (stable-fixes). * drm/amdgpu: fix the warning about the expression (int)size - len (stable- fixes). * drm/amdgpu: fix uninitialized scalar variable warning (stable-fixes). * drm/amdgpu: silence UBSAN warning (stable-fixes). * drm/amdkfd: Fix CU Masking for GFX 9.4.3 (git-fixes). * drm/amdkfd: Let VRAM allocations go to GTT domain on small APUs (stable- fixes). * drm/arm/komeda: Fix komeda probe failing if there are no links in the secondary pipeline (git-fixes). * drm/bridge: it6505: fix hibernate to resume no display issue (git-fixes). * drm/bridge: samsung-dsim: Set P divider based on min/max of fin pll (git- fixes). * drm/dp_mst: Fix all mstb marked as not probed after suspend/resume (git- fixes). * drm/etnaviv: fix DMA direction handling for cached RW buffers (git-fixes). * drm/exynos: dp: drop driver owner initialization (stable-fixes). * drm/fbdev-dma: Fix framebuffer mode for big endian devices (git-fixes). * drm/fbdev-generic: Fix framebuffer on big endian devices (git-fixes). * drm/gma500: fix null pointer dereference in cdv_intel_lvds_get_modes (git- fixes). * drm/gma500: fix null pointer dereference in psb_intel_lvds_get_modes (git- fixes). * drm/i915/dp: Do not switch the LTTPR mode on an active link (git-fixes). * drm/i915/gt: Do not consider preemption during execlists_dequeue for gen8 (git-fixes). * drm/lima: Mark simple_ondemand governor as softdep (git-fixes). * drm/lima: fix shared irq handling on driver remove (stable-fixes). * drm/mediatek: Add DRM_MODE_ROTATE_0 to rotation property (git-fixes). * drm/mediatek: Add OVL compatible name for MT8195 (git-fixes). * drm/mediatek: Add missing plane settings when async update (git-fixes). * drm/mediatek: Call drm_atomic_helper_shutdown() at shutdown time (stable- fixes). * drm/mediatek: Fix XRGB setting error in Mixer (git-fixes). * drm/mediatek: Fix XRGB setting error in OVL (git-fixes). * drm/mediatek: Fix bit depth overwritten for mtk_ovl_set bit_depth() (git- fixes). * drm/mediatek: Fix destination alpha error in OVL (git-fixes). * drm/mediatek: Remove less-than-zero comparison of an unsigned value (git- fixes). * drm/mediatek: Set DRM mode configs accordingly (git-fixes). * drm/mediatek: Support DRM plane alpha in Mixer (git-fixes). * drm/mediatek: Support DRM plane alpha in OVL (git-fixes). * drm/mediatek: Support RGBA8888 and RGBX8888 in OVL on MT8195 (git-fixes). * drm/mediatek: Turn off the layers with zero width or height (git-fixes). * drm/mediatek: Use 8-bit alpha in ETHDR (git-fixes). * drm/meson: fix canvas release in bind function (git-fixes). * drm/mgag200: Bind I2C lifetime to DRM device (git-fixes). * drm/mgag200: Set DDC timeout in milliseconds (git-fixes). * drm/mipi-dsi: Fix theoretical int overflow in mipi_dsi_dcs_write_seq() (git- fixes). * drm/mipi-dsi: Fix theoretical int overflow in mipi_dsi_generic_write_seq() (git-fixes). * drm/msm/dpu: drop validity checks for clear_pending_flush() ctl op (git- fixes). * drm/msm/dpu: fix encoder irq wait skip (git-fixes). * drm/msm/dsi: set VIDEO_COMPRESSION_MODE_CTRL_WC (git-fixes). * drm/msm/mdp5: Remove MDP_CAP_SRC_SPLIT from msm8x53_config (git-fixes). * drm/nouveau/dispnv04: fix null pointer dereference in nv17_tv_get_hd_modes (stable-fixes). * drm/nouveau/dispnv04: fix null pointer dereference in nv17_tv_get_ld_modes (stable-fixes). * drm/nouveau: fix null pointer dereference in nouveau_connector_get_modes (git-fixes). * drm/panel: boe-tv101wum-nl6: Check for errors on the NOP in prepare() (git- fixes). * drm/panel: boe-tv101wum-nl6: If prepare fails, disable GPIO before regulators (git-fixes). * drm/panel: himax-hx8394: Handle errors from mipi_dsi_dcs_set_display_on() better (git-fixes). * drm/panel: ilitek-ili9881c: Fix warning with GPIO controllers that sleep (stable-fixes). * drm/panel: ilitek-ili9882t: Check for errors on the NOP in prepare() (git- fixes). * drm/panel: ilitek-ili9882t: If prepare fails, disable GPIO before regulators (git-fixes). * drm/panfrost: Mark simple_ondemand governor as softdep (git-fixes). * drm/qxl: Add check for drm_cvt_mode (git-fixes). * drm/radeon/radeon_display: Decrease the size of allocated memory (stable- fixes). * drm/radeon: check bo_va->bo is non-NULL before using it (stable-fixes). * drm/rockchip: vop2: Fix the port mux of VP2 (git-fixes). * drm/ttm: Always take the bo delayed cleanup path for imported bos (git- fixes). * drm/udl: Remove DRM_CONNECTOR_POLL_HPD (git-fixes). * drm/vmwgfx: Fix missing HYPERVISOR_GUEST dependency (stable-fixes). * drm: panel-orientation-quirks: Add quirk for Aya Neo KUN (stable-fixes). * drm: panel-orientation-quirks: Add quirk for Valve Galileo (stable-fixes). * drm: zynqmp_dpsub: Fix an error handling path in zynqmp_dpsub_probe() (git- fixes). * drm: zynqmp_kms: Fix AUX bus not getting unregistered (git-fixes). * eeprom: at24: Probe for DDR3 thermal sensor in the SPD case (stable-fixes). * eeprom: digsy_mtc: Fix 93xx46 driver probe failure (git-fixes). * erofs: ensure m_llen is reset to 0 if metadata is invalid (git-fixes). * exfat: fix potential deadlock on __exfat_get_dentry_set (git-fixes). * f2fs: fix error path of __f2fs_build_free_nids (git-fixes). * filelock: fix potential use-after-free in posix_lock_inode (git-fixes). * firmware: cs_dsp: Fix overflow checking of wmfw header (git-fixes). * firmware: cs_dsp: Prevent buffer overrun when processing V2 alg headers (git-fixes). * firmware: cs_dsp: Return error if block header overflows file (git-fixes). * firmware: cs_dsp: Use strnlen() on name fields in V1 wmfw files (git-fixes). * firmware: cs_dsp: Validate payload length before processing block (git- fixes). * firmware: dmi: Stop decoding on broken entry (stable-fixes). * firmware: turris-mox-rwtm: Do not complete if there are no waiters (git- fixes). * firmware: turris-mox-rwtm: Fix checking return value of wait_for_completion_timeout() (git-fixes). * firmware: turris-mox-rwtm: Initialize completion before mailbox (git-fixes). * fs/file: fix the check in find_next_fd() (git-fixes). * fs/pipe: Fix lockdep false-positive in watchqueue pipe_write() (git-fixes). * fuse: verify {g,u}id mount options correctly (bsc#1228193). * gfs2: Do not forget to complete delayed withdraw (git-fixes). * gfs2: Fix "ignore unlock failures after withdraw" (git-fixes). * gfs2: Fix invalid metadata access in punch_hole (git-fixes). * gfs2: Get rid of gfs2_alloc_blocks generation parameter (git-fixes). * gfs2: Rename gfs2_lookup_{ simple => meta } (git-fixes). * gfs2: Use mapping->gfp_mask for metadata inodes (git-fixes). * gfs2: convert to ctime accessor functions (git-fixes). * gpio: mc33880: Convert comma to semicolon (git-fixes). * gpio: pca953x: fix pca953x_irq_bus_sync_unlock race (stable-fixes). * hfsplus: fix to avoid false alarm of circular locking (git-fixes). * hfsplus: fix uninit-value in copy_name (git-fixes). * hpet: Support 32-bit userspace (git-fixes). * hwmon: (adt7475) Fix default duty on fan is disabled (git-fixes). * hwmon: (max6697) Fix swapped temp{1,8} critical alarms (git-fixes). * hwmon: (max6697) Fix underflow when writing limit attributes (git-fixes). * hwrng: amd - Convert PCIBIOS_* return codes to errnos (git-fixes). * hwrng: core - Fix wrong quality calculation at hw rng registration (git- fixes). * i2c: i801: Annotate apanel_addr as __ro_after_init (stable-fixes). * i2c: mark HostNotify target address as used (git-fixes). * i2c: pnx: Fix potential deadlock warning from del_timer_sync() call in isr (git-fixes). * i2c: rcar: bring hardware to known state when probing (git-fixes). * i2c: testunit: avoid re-issued work after read message (git-fixes). * i2c: testunit: correct Kconfig description (git-fixes). * i40e: fix: remove needless retries of NVM update (bsc#1227736). * iio: Fix the sorting functionality in iio_gts_build_avail_time_table (git- fixes). * iio: frequency: adrf6780: rm clk provider include (git-fixes). * iio: pressure: bmp280: Fix BMP580 temperature reading (stable-fixes). * iio: pressure: fix some word spelling errors (stable-fixes). * input: Add event code for accessibility key (stable-fixes). * input: Add support for "Do Not Disturb" (stable-fixes). * interconnect: qcom: qcm2290: Fix mas_snoc_bimc RPM master ID (git-fixes). * iommu/amd: Fix panic accessing amd_iommu_enable_faulting (bsc#1224767). * iommu/arm-smmu-v3: Free MSIs in case of ENOMEM (git-fixes). * iommu/vt-d: Allocate DMAR fault interrupts locally (bsc#1224767). * iommu/vt-d: Improve ITE fault handling if target device isn't present (git- fixes). * iommu: Fix compilation without CONFIG_IOMMU_INTEL (git-fixes). * ipmi: ssif_bmc: prevent integer overflow on 32bit systems (git-fixes). * iwlwifi: fw: fix more kernel-doc warnings (bsc#1227149). * iwlwifi: mvm: Drop unused fw_trips_index[] from iwl_mvm_thermal_device (bsc#1227149). * iwlwifi: mvm: Populate trip table before registering thermal zone (bsc#1227149). * iwlwifi: mvm: Use for_each_thermal_trip() for walking trip points (bsc#1227149). * jffs2: Fix potential illegal address access in jffs2_free_inode (git-fixes). * jfs: Fix array-index-out-of-bounds in diFree (git-fixes). * jfs: xattr: fix buffer overflow for invalid xattr (bsc#1227383). * kABI workaround for wireless updates (bsc#1227149). * kabi/severities: cleanup and update for WiFi driver entries (bsc#1227149) * kabi/severities: cover all ath/ _drivers (bsc#1227149) All symbols in ath/_ network drivers are local and can be ignored * kabi/severities: cover all mt76 modules (bsc#1227149) * kabi/severities: ignore amd pds internal symbols * kabi/severities: ignore kABI changes Realtek WiFi drivers (bsc#1227149) All those symbols are local and used for its own helpers * kabi: Use __iowriteXX_copy_inlined for in-kernel modules (bsc#1226502) * kbuild: avoid build error when single DTB is turned into composite DTB (git- fixes). * kconfig: gconf: give a proper initial state to the Save button (stable- fixes). * kconfig: remove wrong expr_trans_bool() (stable-fixes). * kernel-binary: vdso: Own module_dir * knfsd: LOOKUP can return an illegal error value (git-fixes). * kobject_uevent: Fix OOB access within zap_modalias_env() (git-fixes). * kprobe/ftrace: bail out if ftrace was killed (git-fixes). * kprobe/ftrace: fix build error due to bad function definition (git-fixes). * kunit: Fix checksum tests on big endian CPUs (git-fixed). * leds: flash: leds-qcom-flash: Test the correct variable in init (git-fixes). * leds: mt6360: Fix memory leak in mt6360_init_isnk_properties() (git-fixes). * leds: ss4200: Convert PCIBIOS_* return codes to errnos (git-fixes). * leds: trigger: Unregister sysfs attributes before calling deactivate() (git- fixes). * leds: triggers: Flush pending brightness before activating trigger (git- fixes). * lib: objagg: Fix general protection fault (git-fixes). * lib: objagg: Fix spelling (git-fixes). * lib: test_objagg: Fix spelling (git-fixes). * libceph: fix race between delayed_work() and ceph_monc_stop() (bsc#1228192). * mISDN: Fix a use after free in hfcmulti_tx() (git-fixes). * mISDN: fix MISDN_TIME_STAMP handling (git-fixes). * mac802154: fix time calculation in ieee802154_configure_durations() (git- fixes). * mailbox: mtk-cmdq: Move devm_mbox_controller_register() after devm_pm_runtime_enable() (git-fixes). * media: dvb-frontends: tda10048: Fix integer overflow (stable-fixes). * media: dvb-frontends: tda18271c2dd: Remove casting during div (stable- fixes). * media: dvb-usb: Fix unexpected infinite loop in dvb_usb_read_remote_control() (git-fixes). * media: dvb-usb: dib0700_devices: Add missing release_firmware() (stable- fixes). * media: dvb: as102-fe: Fix as10x_register_addr packing (stable-fixes). * media: dvbdev: Initialize sbuf (stable-fixes). * media: dw2102: Do not translate i2c read into write (stable-fixes). * media: dw2102: fix a potential buffer overflow (git-fixes). * media: i2c: Fix imx412 exposure control (git-fixes). * media: imon: Fix race getting ictx->lock (git-fixes). * media: imx-jpeg: Drop initial source change event if capture has been setup (git-fixes). * media: imx-jpeg: Remove some redundant error logs (git-fixes). * media: imx-pxp: Fix ERR_PTR dereference in pxp_probe() (git-fixes). * media: pci: ivtv: Add check for DMA map result (git-fixes). * media: rcar-vin: Fix YUYV8_1X16 handling for CSI-2 (git-fixes). * media: renesas: vsp1: Fix _irqsave and _irq mix (git-fixes). * media: renesas: vsp1: Store RPF partition configuration per RPF instance (git-fixes). * media: s2255: Use refcount_t instead of atomic_t for num_channels (stable- fixes). * media: uvcvideo: Fix integer overflow calculating timestamp (git-fixes). * media: uvcvideo: Override default flags (git-fixes). * media: v4l: async: Fix NULL pointer dereference in adding ancillary links (git-fixes). * media: v4l: subdev: Fix typo in documentation (git-fixes). * media: venus: fix use after free in vdec_close (git-fixes). * media: venus: flush all buffers in output plane streamoff (git-fixes). * mei: demote client disconnect warning on suspend to debug (stable-fixes). * mfd: omap-usb-tll: Use struct_size to allocate tll (git-fixes). * mfd: pm8008: Fix regmap irq chip initialisation (git-fixes). * misc: fastrpc: Avoid updating PD type for capability request (git-fixes). * misc: fastrpc: Copy the complete capability structure to user (git-fixes). * misc: fastrpc: Fix DSP capabilities request (git-fixes). * misc: fastrpc: Fix memory leak in audio daemon attach operation (git-fixes). * misc: fastrpc: Fix ownership reassignment of remote heap (git-fixes). * misc: fastrpc: Restrict untrusted app to attach to privileged PD (git- fixes). * mt76: connac: move more mt7921/mt7915 mac shared code in connac lib (bsc#1227149). * mt76: mt7996: rely on mt76_sta_stats in mt76_wcid (bsc#1227149). * mtd: partitions: redboot: Added conversion of operands to a larger type (stable-fixes). * net/dcb: check for detached device before executing callbacks (bsc#1215587). * net: ethernet: mtk_wed: introduce mtk_wed_buf structure (bsc#1227149). * net: ethernet: mtk_wed: rename mtk_rxbm_desc in mtk_wed_bm_desc (bsc#1227149). * net: fill in MODULE_DESCRIPTION()s in kuba@'s modules (bsc#1227149). * net: hns3: Remove io_stop_wc() calls after __iowrite64_copy() (bsc#1226502) * net: mac802154: Fix racy device stats updates by DEV_STATS_INC() and DEV_STATS_ADD() (stable-fixes). * net: mana: Fix possible double free in error handling path (git-fixes). * net: mana: Fix the extra HZ in mana_hwc_send_request (git-fixes). * net: phy: microchip: lan87xx: reinit PHY after cable test (git-fixes). * net: phy: phy_device: Fix PHY LED blinking code comment (git-fixes). * net: usb: qmi_wwan: add Telit FN912 compositions (stable-fixes). * nfc/nci: Add the inconsistency check between the input data length and count (stable-fixes). * nfs: Block on write congestion (bsc#1218442). * nfs: Drop pointless check from nfs_commit_release_pages() (bsc#1218442). * nfs: Fix up kabi after adding write_congestion_wait (bsc#1218442). * nfs: Handle error of rpc_proc_register() in nfs_net_init() (git-fixes). * nfs: Properly initialize server->writeback (bsc#1218442). * nfs: drop the incorrect assertion in nfs_swap_rw() (git-fixes). * nfs: fix undefined behavior in nfs_block_bits() (git-fixes). * nfs: keep server info for remounts (git-fixes). * nfsd: hold a lighter-weight client reference over CB_RECALL_ANY (git-fixes). * nilfs2: add missing check for inode numbers on directory entries (stable- fixes). * nilfs2: avoid undefined behavior in nilfs_cnt32_ge macro (git-fixes). * nilfs2: convert persistent object allocator to use kmap_local (git-fixes). * nilfs2: fix incorrect inode allocation from reserved inodes (git-fixes). * nilfs2: fix inode number range checks (stable-fixes). * ocfs2: fix DIO failure due to insufficient transaction credits (git-fixes). * ocfs2: fix races between hole punching and AIO+DIO (git-fixes). * ocfs2: use coarse time for new created files (git-fixes). * orangefs: fix out-of-bounds fsid access (git-fixes). * pNFS/filelayout: fixup pNfs allocation modes (git-fixes). * phy: cadence-torrent: Check return value on register read (git-fixes). * pinctrl: core: fix possible memory leak when pinctrl_enable() fails (git- fixes). * pinctrl: freescale: mxs: Fix refcount of child (git-fixes). * pinctrl: renesas: r8a779g0: FIX PWM suffixes (git-fixes). * pinctrl: renesas: r8a779g0: Fix (H)SCIF1 suffixes (git-fixes). * pinctrl: renesas: r8a779g0: Fix (H)SCIF3 suffixes (git-fixes). * pinctrl: renesas: r8a779g0: Fix CANFD5 suffix (git-fixes). * pinctrl: renesas: r8a779g0: Fix FXR_TXEN[AB] suffixes (git-fixes). * pinctrl: renesas: r8a779g0: Fix IRQ suffixes (git-fixes). * pinctrl: renesas: r8a779g0: Fix TCLK suffixes (git-fixes). * pinctrl: renesas: r8a779g0: Fix TPU suffixes (git-fixes). * pinctrl: rockchip: update rk3308 iomux routes (git-fixes). * pinctrl: single: fix possible memory leak when pinctrl_enable() fails (git- fixes). * pinctrl: ti: ti-iodelay: fix possible memory leak when pinctrl_enable() fails (git-fixes). * platform/chrome: cros_ec_debugfs: fix wrong EC message version (git-fixes). * platform/x86: lg-laptop: Change ACPI device id (stable-fixes). * platform/x86: lg-laptop: Remove LGEX0815 hotkey handling (stable-fixes). * platform/x86: lg-laptop: Use ACPI device handle when evaluating WMAB/WMBB (stable-fixes). * platform/x86: toshiba_acpi: Fix array out-of-bounds access (git-fixes). * platform/x86: toshiba_acpi: Fix quickstart quirk handling (git-fixes). * platform/x86: touchscreen_dmi: Add info for GlobalSpace SolT IVW 11.6" tablet (stable-fixes). * platform/x86: touchscreen_dmi: Add info for the EZpad 6s Pro (stable-fixes). * platform/x86: wireless-hotkey: Add support for LG Airplane Button (stable- fixes). * power: supply: ab8500: Fix error handling when calling iio_read_channel_processed() (git-fixes). * power: supply: ingenic: Fix some error handling paths in ingenic_battery_get_property() (git-fixes). * powerpc/64s/radix/kfence: map __kfence_pool at page granularity (bsc#1223570 ltc#205770). * powerpc/prom: Add CPU info to hardware description string later (bsc#1215199). * powerpc/pseries: Fix scv instruction crash with kexec (bsc#1194869). * powerpc/rtas: Prevent Spectre v1 gadget construction in sys_rtas() (bsc#1227487). * pwm: stm32: Always do lazy disabling (git-fixes). * regmap-i2c: Subtract reg size from max_write (stable-fixes). * remoteproc: imx_rproc: Fix refcount mistake in imx_rproc_addr_init (git- fixes). * remoteproc: imx_rproc: Skip over memory region when node value is NULL (git- fixes). * remoteproc: k3-r5: Fix IPC-only mode detection (git-fixes). * remoteproc: stm32_rproc: Fix mailbox interrupts queuing (git-fixes). * rpcrdma: fix handling for RDMA_CM_EVENT_DEVICE_REMOVAL (git-fixes). * rtc: abx80x: Fix return value of nvmem callback on read (git-fixes). * rtc: cmos: Fix return value of nvmem callbacks (git-fixes). * rtc: interface: Add RTC offset to alarm after fix-up (git-fixes). * rtc: isl1208: Fix return value of nvmem callbacks (git-fixes). * s390: Implement __iowrite32_copy() (bsc#1226502) * s390: Stop using weak symbols for __iowrite64_copy() (bsc#1226502) * saa7134: Unchecked i2c_transfer function result fixed (git-fixes). * selftests/sigaltstack: Fix ppc64 GCC build (git-fixes). * selftests: fix OOM in msg_zerocopy selftest (git-fixes). * selftests: make order checking verbose in msg_zerocopy selftest (git-fixes). * serial: imx: Raise TX trigger level to 8 (stable-fixes). * smb3: allow controlling length of time directory entries are cached with dir leases (git-fixes, bsc#1225172). * smb3: allow controlling maximum number of cached directories (git-fixes, bsc#1225172). * smb3: do not start laundromat thread when dir leases disabled (git-fixes, bsc#1225172). * smb: client: do not start laundromat thread on nohandlecache (git-fixes, bsc#1225172). * smb: client: make laundromat a delayed worker (git-fixes, bsc#1225172). * smb: client: prevent new fids from being removed by laundromat (git-fixes, bsc#1225172). * soc: qcom: pdr: fix parsing of domains lists (git-fixes). * soc: qcom: pdr: protect locator_addr with the main mutex (git-fixes). * soc: qcom: pmic_glink: Handle the return value of pmic_glink_init (git- fixes). * soc: qcom: rpmh-rsc: Ensure irqs are not disabled by rpmh_rsc_send_data() callers (git-fixes). * soc: ti: wkup_m3_ipc: Send NULL dummy message instead of pointer message (stable-fixes). * soc: xilinx: rename cpu_number1 to dummy_cpu_number (git-fixes). * spi: atmel-quadspi: Add missing check for clk_prepare (git-fixes). * spi: cadence: Ensure data lines set to low during dummy-cycle period (stable-fixes). * spi: imx: Do not expect DMA for i.MX{25,35,50,51,53} cspi devices (stable- fixes). * spi: microchip-core: defer asserting chip select until just before write to TX FIFO (git-fixes). * spi: microchip-core: ensure TX and RX FIFOs are empty at start of a transfer (git-fixes). * spi: microchip-core: fix the issues in the isr (git-fixes). * spi: microchip-core: only disable SPI controller when register value change requires it (git-fixes). * spi: mux: set ctlr->bits_per_word_mask (stable-fixes). * spi: spi-microchip-core: Fix the number of chip selects supported (git- fixes). * spi: spidev: add correct compatible for Rohm BH2228FV (git-fixes). * sunrpc: fix NFSACL RPC retry on soft mount (git-fixes). * supported.conf: Add support for v4l2-dv-timings (jsc#PED-8644) * supported.conf: mark vdpa modules supported (jsc#PED-8954) * supported.conf: update for mt76 stuff (bsc#1227149) * thermal/drivers/mediatek/lvts_thermal: Check NULL ptr on lvts_data (stable- fixes). * tools/memory-model: Fix bug in lock.cat (git-fixes). * tools/power turbostat: Remember global max_die_id (stable-fixes). * tools/power/cpupower: Fix Pstate frequency reporting on AMD Family 1Ah CPUs (stable-fixes). * tracefs: Add missing lockdown check to tracefs_create_dir() (git-fixes). * tracing/net_sched: NULL pointer dereference in perf_trace_qdisc_reset() (git-fixes). * tracing: Build event generation tests only as modules (git-fixes). * usb: dwc3: core: Add DWC31 version 2.00a controller (stable-fixes). * usb: dwc3: core: Workaround for CSR read timeout (stable-fixes). * usb: dwc3: pci: add support for the Intel Panther Lake (stable-fixes). * usb: gadget: configfs: Prevent OOB read/write in usb_string_copy() (stable- fixes). * usb: gadget: printer: SS+ support (stable-fixes). * usb: typec: ucsi: Ack also failed Get Error commands (git-fixes). * usb: typec: ucsi: Never send a lone connector change ack (stable-fixes). * usb: ucsi: stm32: fix command completion handling (git-fixes). * usb: xhci: prevent potential failure in handle_tx_event() for Transfer events without TRB (stable-fixes). * vmlinux.lds.h: catch .bss..L* sections into BSS") (git-fixes). * watchdog: rzg2l_wdt: Check return status of pm_runtime_put() (git-fixes). * watchdog: rzg2l_wdt: Use pm_runtime_resume_and_get() (git-fixes). * watchdog: rzn1: Convert comma to semicolon (git-fixes). * wifi: add HAS_IOPORT dependencies (bsc#1227149). * wifi: ar5523: Remove unnecessary (void*) conversions (bsc#1227149). * wifi: ath10/11/12k: Use alloc_ordered_workqueue() to create ordered workqueues (bsc#1227149). * wifi: ath10k: Annotate struct ath10k_ce_ring with __counted_by (bsc#1227149). * wifi: ath10k: Convert to platform remove callback returning void (bsc#1227149). * wifi: ath10k: Drop checks that are always false (bsc#1227149). * wifi: ath10k: Drop cleaning of driver data from probe error path and remove (bsc#1227149). * wifi: ath10k: Fix a few spelling errors (bsc#1227149). * wifi: ath10k: Fix enum ath10k_fw_crash_dump_type kernel-doc (bsc#1227149). * wifi: ath10k: Fix htt_data_tx_completion kernel-doc warning (bsc#1227149). * wifi: ath10k: Remove unnecessary (void*) conversions (bsc#1227149). * wifi: ath10k: Remove unused struct ath10k_htc_frame (bsc#1227149). * wifi: ath10k: Update Qualcomm Innovation Center, Inc. copyrights (bsc#1227149). * wifi: ath10k: Use DECLARE_FLEX_ARRAY() for ath10k_htc_record (bsc#1227149). * wifi: ath10k: Use list_count_nodes() (bsc#1227149). * wifi: ath10k: add missing wmi_10_4_feature_mask documentation (bsc#1227149). * wifi: ath10k: add support to allow broadcast action frame RX (bsc#1227149). * wifi: ath10k: consistently use kstrtoX_from_user() functions (bsc#1227149). * wifi: ath10k: correctly document enum wmi_tlv_tx_pause_id (bsc#1227149). * wifi: ath10k: drop HTT_DATA_TX_STATUS_DOWNLOAD_FAIL (bsc#1227149). * wifi: ath10k: fix Wvoid-pointer-to-enum-cast warning (bsc#1227149). * wifi: ath10k: fix htt_q_state_conf & htt_q_state kernel-doc (bsc#1227149). * wifi: ath10k: improve structure padding (bsc#1227149). * wifi: ath10k: indicate to mac80211 scan complete with aborted flag for ATH10K_SCAN_STARTING state (bsc#1227149). * wifi: ath10k: remove ath10k_htc_record::pauload[] (bsc#1227149). * wifi: ath10k: remove duplicate memset() in 10.4 TDLS peer update (bsc#1227149). * wifi: ath10k: remove struct wmi_pdev_chanlist_update_event (bsc#1227149). * wifi: ath10k: remove unused template structs (bsc#1227149). * wifi: ath10k: replace ENOTSUPP with EOPNOTSUPP (bsc#1227149). * wifi: ath10k: replace deprecated strncpy with memcpy (bsc#1227149). * wifi: ath10k: simplify __ath10k_htt_tx_txq_recalc() (bsc#1227149). * wifi: ath10k: simplify ath10k_peer_create() (bsc#1227149). * wifi: ath10k: use flexible array in struct wmi_host_mem_chunks (bsc#1227149). * wifi: ath10k: use flexible array in struct wmi_tdls_peer_capabilities (bsc#1227149). * wifi: ath10k: use flexible arrays for WMI start scan TLVs (bsc#1227149). * wifi: ath11k: Add HTT stats for PHY reset case (bsc#1227149). * wifi: ath11k: Add coldboot calibration support for QCN9074 (bsc#1227149). * wifi: ath11k: Allow ath11k to boot without caldata in ftm mode (bsc#1227149). * wifi: ath11k: Consistently use ath11k_vif_to_arvif() (bsc#1227149). * wifi: ath11k: Consolidate WMI peer flags (bsc#1227149). * wifi: ath11k: Convert to platform remove callback returning void (bsc#1227149). * wifi: ath11k: Do not directly use scan_flags in struct scan_req_params (bsc#1227149). * wifi: ath11k: EMA beacon support (bsc#1227149). * wifi: ath11k: Fix a few spelling errors (bsc#1227149). * wifi: ath11k: Fix ath11k_htc_record flexible record (bsc#1227149). * wifi: ath11k: Introduce and use ath11k_sta_to_arsta() (bsc#1227149). * wifi: ath11k: MBSSID beacon support (bsc#1227149). * wifi: ath11k: MBSSID configuration during vdev create/start (bsc#1227149). * wifi: ath11k: MBSSID parameter configuration in AP mode (bsc#1227149). * wifi: ath11k: Really consistently use ath11k_vif_to_arvif() (bsc#1227149). * wifi: ath11k: Relocate the func ath11k_mac_bitrate_mask_num_ht_rates() and change hweight16 to hweight8 (bsc#1227149). * wifi: ath11k: Remove ath11k_base::bd_api (bsc#1227149). * wifi: ath11k: Remove cal_done check during probe (bsc#1227149). * wifi: ath11k: Remove obsolete struct wmi_peer_flags_map *peer_flags (bsc#1227149). * wifi: ath11k: Remove scan_flags union from struct scan_req_params (bsc#1227149). * wifi: ath11k: Remove struct ath11k::ops (bsc#1227149). * wifi: ath11k: Remove unneeded semicolon (bsc#1227149). * wifi: ath11k: Remove unused declarations (bsc#1227149). * wifi: ath11k: Remove unused struct ath11k_htc_frame (bsc#1227149). * wifi: ath11k: Send HT fixed rate in WMI peer fixed param (bsc#1227149). * wifi: ath11k: Split coldboot calibration hw_param (bsc#1227149). * wifi: ath11k: Update Qualcomm Innovation Center, Inc. copyrights (bsc#1227149). * wifi: ath11k: Use device_get_match_data() (bsc#1227149). * wifi: ath11k: Use list_count_nodes() (bsc#1227149). * wifi: ath11k: add WMI event debug messages (bsc#1227149). * wifi: ath11k: add WMI_TLV_SERVICE_EXT_TPC_REG_SUPPORT service bit (bsc#1227149). * wifi: ath11k: add chip id board name while searching board-2.bin for WCN6855 (bsc#1227149). * wifi: ath11k: add firmware-2.bin support (bsc#1227149). * wifi: ath11k: add handler for WMI_VDEV_SET_TPC_POWER_CMDID (bsc#1227149). * wifi: ath11k: add parse of transmit power envelope element (bsc#1227149). * wifi: ath11k: add parsing of phy bitmap for reg rules (bsc#1227149). * wifi: ath11k: add support for QCA2066 (bsc#1227149). * wifi: ath11k: add support to select 6 GHz regulatory type (bsc#1227149). * wifi: ath11k: ath11k_debugfs_register(): fix format-truncation warning (bsc#1227149). * wifi: ath11k: avoid forward declaration of ath11k_mac_start_vdev_delay() (bsc#1227149). * wifi: ath11k: call ath11k_mac_fils_discovery() without condition (bsc#1227149). * wifi: ath11k: constify MHI channel and controller configs (bsc#1227149). * wifi: ath11k: debug: add ATH11K_DBG_CE (bsc#1227149). * wifi: ath11k: debug: remove unused ATH11K_DBG_ANY (bsc#1227149). * wifi: ath11k: debug: use all upper case in ATH11k_DBG_HAL (bsc#1227149). * wifi: ath11k: do not use %pK (bsc#1227149). * wifi: ath11k: document HAL_RX_BUF_RBM_SW4_BM (bsc#1227149). * wifi: ath11k: dp: cleanup debug message (bsc#1227149). * wifi: ath11k: driver settings for MBSSID and EMA (bsc#1227149). * wifi: ath11k: drop NULL pointer check in ath11k_update_per_peer_tx_stats() (bsc#1227149). * wifi: ath11k: drop redundant check in ath11k_dp_rx_mon_dest_process() (bsc#1227149). * wifi: ath11k: enable 36 bit mask for stream DMA (bsc#1227149). * wifi: ath11k: factory test mode support (bsc#1227149). * wifi: ath11k: fill parameters for vdev set tpc power WMI command (bsc#1227149). * wifi: ath11k: fix CAC running state during virtual interface start (bsc#1227149). * wifi: ath11k: fix IOMMU errors on buffer rings (bsc#1227149). * wifi: ath11k: fix RCU documentation in ath11k_mac_op_ipv6_changed() (git- fixes). * wifi: ath11k: fix WCN6750 firmware crash caused by 17 num_vdevs (bsc#1227149). * wifi: ath11k: fix Wvoid-pointer-to-enum-cast warning (bsc#1227149). * wifi: ath11k: fix a possible dead lock caused by ab->base_lock (bsc#1227149). * wifi: ath11k: fix ath11k_mac_op_remain_on_channel() stack usage (bsc#1227149). * wifi: ath11k: fix connection failure due to unexpected peer delete (bsc#1227149). * wifi: ath11k: fix tid bitmap is 0 in peer rx mu stats (bsc#1227149). * wifi: ath11k: fix wrong definition of CE ring's base address (git-fixes). * wifi: ath11k: fix wrong handling of CCMP256 and GCMP ciphers (git-fixes). * wifi: ath11k: hal: cleanup debug message (bsc#1227149). * wifi: ath11k: htc: cleanup debug messages (bsc#1227149). * wifi: ath11k: initialize eirp_power before use (bsc#1227149). * wifi: ath11k: mac: fix struct ieee80211_sband_iftype_data handling (bsc#1227149). * wifi: ath11k: mhi: add a warning message for MHI_CB_EE_RDDM crash (bsc#1227149). * wifi: ath11k: move pci.ops registration ahead (bsc#1227149). * wifi: ath11k: move power type check to ASSOC stage when connecting to 6 GHz AP (bsc#1227149). * wifi: ath11k: move references from rsvd2 to info fields (bsc#1227149). * wifi: ath11k: pci: cleanup debug logging (bsc#1227149). * wifi: ath11k: print debug level in debug messages (bsc#1227149). * wifi: ath11k: provide address list if chip supports 2 stations (bsc#1227149). * wifi: ath11k: qmi: refactor ath11k_qmi_m3_load() (bsc#1227149). * wifi: ath11k: refactor ath11k_wmi_tlv_parse_alloc() (bsc#1227149). * wifi: ath11k: refactor setting country code logic (stable-fixes). * wifi: ath11k: refactor vif parameter configurations (bsc#1227149). * wifi: ath11k: rely on mac80211 debugfs handling for vif (bsc#1227149). * wifi: ath11k: remove ath11k_htc_record::pauload[] (bsc#1227149). * wifi: ath11k: remove invalid peer create logic (bsc#1227149). * wifi: ath11k: remove manual mask names from debug messages (bsc#1227149). * wifi: ath11k: remove unnecessary (void*) conversions (bsc#1227149). * wifi: ath11k: remove unsupported event handlers (bsc#1227149). * wifi: ath11k: remove unused function ath11k_tm_event_wmi() (bsc#1227149). * wifi: ath11k: remove unused members of 'struct ath11k_base' (bsc#1227149). * wifi: ath11k: remove unused scan_events from struct scan_req_params (bsc#1227149). * wifi: ath11k: rename MBSSID fields in wmi_vdev_up_cmd (bsc#1227149). * wifi: ath11k: rename ath11k_start_vdev_delay() (bsc#1227149). * wifi: ath11k: rename the sc naming convention to ab (bsc#1227149). * wifi: ath11k: rename the wmi_sc naming convention to wmi_ab (bsc#1227149). * wifi: ath11k: replace ENOTSUPP with EOPNOTSUPP (bsc#1227149). * wifi: ath11k: restore country code during resume (git-fixes). * wifi: ath11k: save max transmit power in vdev start response event from firmware (bsc#1227149). * wifi: ath11k: save power spectral density(PSD) of regulatory rule (bsc#1227149). * wifi: ath11k: simplify ath11k_mac_validate_vht_he_fixed_rate_settings() (bsc#1227149). * wifi: ath11k: simplify the code with module_platform_driver (bsc#1227149). * wifi: ath11k: store cur_regulatory_info for each radio (bsc#1227149). * wifi: ath11k: support 2 station interfaces (bsc#1227149). * wifi: ath11k: update proper pdev/vdev id for testmode command (bsc#1227149). * wifi: ath11k: update regulatory rules when connect to AP on 6 GHz band for station (bsc#1227149). * wifi: ath11k: update regulatory rules when interface added (bsc#1227149). * wifi: ath11k: use RCU when accessing struct inet6_dev::ac_list (bsc#1227149). * wifi: ath11k: use WMI_VDEV_SET_TPC_POWER_CMDID when EXT_TPC_REG_SUPPORT for 6 GHz (bsc#1227149). * wifi: ath11k: use kstrtoul_from_user() where appropriate (bsc#1227149). * wifi: ath11k: use select for CRYPTO_MICHAEL_MIC (bsc#1227149). * wifi: ath11k: wmi: add unified command debug messages (bsc#1227149). * wifi: ath11k: wmi: cleanup error handling in ath11k_wmi_send_init_country_cmd() (bsc#1227149). * wifi: ath11k: wmi: use common error handling style (bsc#1227149). * wifi: ath11k: workaround too long expansion sparse warnings (bsc#1227149). * wifi: ath12k: Add logic to write QRTR node id to scratch (bsc#1227149). * wifi: ath12k: Add missing qmi_txn_cancel() calls (bsc#1227149). * wifi: ath12k: Add support to parse new WMI event for 6 GHz regulatory (bsc#1227149). * wifi: ath12k: Consistently use ath12k_vif_to_arvif() (bsc#1227149). * wifi: ath12k: Consolidate WMI peer flags (bsc#1227149). * wifi: ath12k: Correct 6 GHz frequency value in rx status (git-fixes). * wifi: ath12k: Do not drop tx_status in failure case (git-fixes). * wifi: ath12k: Do not use scan_flags from struct ath12k_wmi_scan_req_arg (bsc#1227149). * wifi: ath12k: Enable Mesh support for QCN9274 (bsc#1227149). * wifi: ath12k: Fix a few spelling errors (bsc#1227149). * wifi: ath12k: Fix tx completion ring (WBM2SW) setup failure (git-fixes). * wifi: ath12k: Fix uninitialized use of ret in ath12k_mac_allocate() (bsc#1227149). * wifi: ath12k: Introduce and use ath12k_sta_to_arsta() (bsc#1227149). * wifi: ath12k: Introduce the container for mac80211 hw (bsc#1227149). * wifi: ath12k: Make QMI message rules const (bsc#1227149). * wifi: ath12k: Optimize the mac80211 hw data access (bsc#1227149). * wifi: ath12k: Read board id to support split-PHY QCN9274 (bsc#1227149). * wifi: ath12k: Refactor the mac80211 hw access from link/radio (bsc#1227149). * wifi: ath12k: Remove ath12k_base::bd_api (bsc#1227149). * wifi: ath12k: Remove obsolete struct wmi_peer_flags_map *peer_flags (bsc#1227149). * wifi: ath12k: Remove some dead code (bsc#1227149). * wifi: ath12k: Remove struct ath12k::ops (bsc#1227149). * wifi: ath12k: Remove unnecessary (void*) conversions (bsc#1227149). * wifi: ath12k: Remove unnecessary struct qmi_txn initializers (bsc#1227149). * wifi: ath12k: Remove unused declarations (bsc#1227149). * wifi: ath12k: Remove unused scan_flags from struct ath12k_wmi_scan_req_arg (bsc#1227149). * wifi: ath12k: Set default beacon mode to burst mode (bsc#1227149). * wifi: ath12k: Use initializers for QMI message buffers (bsc#1227149). * wifi: ath12k: Use msdu_end to check MCBC (bsc#1227149). * wifi: ath12k: Use pdev_id rather than mac_id to get pdev (bsc#1227149). * wifi: ath12k: WMI support to process EHT capabilities (bsc#1227149). * wifi: ath12k: add 320 MHz bandwidth enums (bsc#1227149). * wifi: ath12k: add CE and ext IRQ flag to indicate irq_handler (bsc#1227149). * wifi: ath12k: add EHT PHY modes (bsc#1227149). * wifi: ath12k: add MAC id support in WBM error path (bsc#1227149). * wifi: ath12k: add MLO header in peer association (bsc#1227149). * wifi: ath12k: add P2P IE in beacon template (bsc#1227149). * wifi: ath12k: add QMI PHY capability learn support (bsc#1227149). * wifi: ath12k: add WMI support for EHT peer (bsc#1227149). * wifi: ath12k: add ath12k_qmi_free_resource() for recovery (bsc#1227149). * wifi: ath12k: add fallback board name without variant while searching board-2.bin (bsc#1227149). * wifi: ath12k: add firmware-2.bin support (bsc#1227149). * wifi: ath12k: add handler for scan event WMI_SCAN_EVENT_DEQUEUED (bsc#1227149). * wifi: ath12k: add keep backward compatibility of PHY mode to avoid firmware crash (bsc#1227149). * wifi: ath12k: add msdu_end structure for WCN7850 (bsc#1227149). * wifi: ath12k: add parsing of phy bitmap for reg rules (bsc#1227149). * wifi: ath12k: add processing for TWT disable event (bsc#1227149). * wifi: ath12k: add processing for TWT enable event (bsc#1227149). * wifi: ath12k: add qmi_cnss_feature_bitmap field to hardware parameters (bsc#1227149). * wifi: ath12k: add rcu lock for ath12k_wmi_p2p_noa_event() (bsc#1227149). * wifi: ath12k: add read variant from SMBIOS for download board data (bsc#1227149). * wifi: ath12k: add string type to search board data in board-2.bin for WCN7850 (bsc#1227149). * wifi: ath12k: add support for BA1024 (bsc#1227149). * wifi: ath12k: add support for collecting firmware log (bsc#1227149). * wifi: ath12k: add support for hardware rfkill for WCN7850 (bsc#1227149). * wifi: ath12k: add support for peer meta data version (bsc#1227149). * wifi: ath12k: add support one MSI vector (bsc#1227149). * wifi: ath12k: add support to search regdb data in board-2.bin for WCN7850 (bsc#1227149). * wifi: ath12k: add wait operation for tx management packets for flush from mac80211 (bsc#1227149). * wifi: ath12k: advertise P2P dev support for WCN7850 (bsc#1227149). * wifi: ath12k: allow specific mgmt frame tx while vdev is not up (bsc#1227149). * wifi: ath12k: ath12k_start_vdev_delay(): convert to use ar (bsc#1227149). * wifi: ath12k: avoid deadlock by change ieee80211_queue_work for regd_update_work (bsc#1227149). * wifi: ath12k: avoid duplicated vdev stop (git-fixes). * wifi: ath12k: avoid explicit HW conversion argument in Rxdma replenish (bsc#1227149). * wifi: ath12k: avoid explicit RBM id argument in Rxdma replenish (bsc#1227149). * wifi: ath12k: avoid explicit mac id argument in Rxdma replenish (bsc#1227149). * wifi: ath12k: avoid repeated hw access from ar (bsc#1227149). * wifi: ath12k: avoid repeated wiphy access from hw (bsc#1227149). * wifi: ath12k: call ath12k_mac_fils_discovery() without condition (bsc#1227149). * wifi: ath12k: change DMA direction while mapping reinjected packets (git- fixes). * wifi: ath12k: change MAC buffer ring size to 2048 (bsc#1227149). * wifi: ath12k: change WLAN_SCAN_PARAMS_MAX_IE_LEN from 256 to 512 (bsc#1227149). * wifi: ath12k: change interface combination for P2P mode (bsc#1227149). * wifi: ath12k: change to initialize recovery variables earlier in ath12k_core_reset() (bsc#1227149). * wifi: ath12k: change to treat alpha code na as world wide regdomain (bsc#1227149). * wifi: ath12k: change to use dynamic memory for channel list of scan (bsc#1227149). * wifi: ath12k: check M3 buffer size as well whey trying to reuse it (bsc#1227149). * wifi: ath12k: check hardware major version for WCN7850 (bsc#1227149). * wifi: ath12k: configure RDDM size to MHI for device recovery (bsc#1227149). * wifi: ath12k: configure puncturing bitmap (bsc#1227149). * wifi: ath12k: correct the data_type from QMI_OPT_FLAG to QMI_UNSIGNED_1_BYTE for mlo_capable (bsc#1227149). * wifi: ath12k: delete the timer rx_replenish_retry during rmmod (bsc#1227149). * wifi: ath12k: designating channel frequency for ROC scan (bsc#1227149). * wifi: ath12k: disable QMI PHY capability learn in split-phy QCN9274 (bsc#1227149). * wifi: ath12k: do not drop data frames from unassociated stations (bsc#1227149). * wifi: ath12k: do not restore ASPM in case of single MSI vector (bsc#1227149). * wifi: ath12k: drop NULL pointer check in ath12k_update_per_peer_tx_stats() (bsc#1227149). * wifi: ath12k: drop failed transmitted frames from metric calculation (git- fixes). * wifi: ath12k: enable 320 MHz bandwidth for 6 GHz band in EHT PHY capability for WCN7850 (bsc#1227149). * wifi: ath12k: enable 802.11 power save mode in station mode (bsc#1227149). * wifi: ath12k: enable IEEE80211_HW_SINGLE_SCAN_ON_ALL_BANDS for WCN7850 (bsc#1227149). * wifi: ath12k: fetch correct pdev id from WMI_SERVICE_READY_EXT_EVENTID (bsc#1227149). * wifi: ath12k: fix PCI read and write (bsc#1227149). * wifi: ath12k: fix WARN_ON during ath12k_mac_update_vif_chan (bsc#1227149). * wifi: ath12k: fix broken structure wmi_vdev_create_cmd (bsc#1227149). * wifi: ath12k: fix conf_mutex in ath12k_mac_op_unassign_vif_chanctx() (bsc#1227149). * wifi: ath12k: fix debug messages (bsc#1227149). * wifi: ath12k: fix fetching MCBC flag for QCN9274 (bsc#1227149). * wifi: ath12k: fix firmware assert during insmod in memory segment mode (bsc#1227149). * wifi: ath12k: fix firmware crash during reo reinject (git-fixes). * wifi: ath12k: fix invalid m3 buffer address (bsc#1227149). * wifi: ath12k: fix invalid memory access while processing fragmented packets (git-fixes). * wifi: ath12k: fix kernel crash during resume (bsc#1227149). * wifi: ath12k: fix license in p2p.c and p2p.h (bsc#1227149). * wifi: ath12k: fix peer metadata parsing (git-fixes). * wifi: ath12k: fix potential wmi_mgmt_tx_queue race condition (bsc#1227149). * wifi: ath12k: fix radar detection in 160 MHz (bsc#1227149). * wifi: ath12k: fix recovery fail while firmware crash when doing channel switch (bsc#1227149). * wifi: ath12k: fix the error handler of rfkill config (bsc#1227149). * wifi: ath12k: fix the issue that the multicast/broadcast indicator is not read correctly for WCN7850 (bsc#1227149). * wifi: ath12k: fix the problem that down grade phy mode operation (bsc#1227149). * wifi: ath12k: fix wrong definition of CE ring's base address (git-fixes). * wifi: ath12k: fix wrong definitions of hal_reo_update_rx_queue (bsc#1227149). * wifi: ath12k: get msi_data again after request_irq is called (bsc#1227149). * wifi: ath12k: implement handling of P2P NoA event (bsc#1227149). * wifi: ath12k: implement remain on channel for P2P mode (bsc#1227149). * wifi: ath12k: increase vdev setup timeout (bsc#1227149). * wifi: ath12k: indicate NON MBSSID vdev by default during vdev start (bsc#1227149). * wifi: ath12k: indicate scan complete for scan canceled when scan running (bsc#1227149). * wifi: ath12k: indicate to mac80211 scan complete with aborted flag for ATH12K_SCAN_STARTING state (bsc#1227149). * wifi: ath12k: move HE capabilities processing to a new function (bsc#1227149). * wifi: ath12k: move peer delete after vdev stop of station for WCN7850 (bsc#1227149). * wifi: ath12k: parse WMI service ready ext2 event (bsc#1227149). * wifi: ath12k: peer assoc for 320 MHz (bsc#1227149). * wifi: ath12k: prepare EHT peer assoc parameters (bsc#1227149). * wifi: ath12k: propagate EHT capabilities to userspace (bsc#1227149). * wifi: ath12k: refactor DP Rxdma ring structure (bsc#1227149). * wifi: ath12k: refactor QMI MLO host capability helper function (bsc#1227149). * wifi: ath12k: refactor ath12k_bss_assoc() (bsc#1227149). * wifi: ath12k: refactor ath12k_mac_allocate() and ath12k_mac_destroy() (bsc#1227149). * wifi: ath12k: refactor ath12k_mac_op_ampdu_action() (bsc#1227149). * wifi: ath12k: refactor ath12k_mac_op_conf_tx() (bsc#1227149). * wifi: ath12k: refactor ath12k_mac_op_config() (bsc#1227149). * wifi: ath12k: refactor ath12k_mac_op_configure_filter() (bsc#1227149). * wifi: ath12k: refactor ath12k_mac_op_flush() (bsc#1227149). * wifi: ath12k: refactor ath12k_mac_op_start() (bsc#1227149). * wifi: ath12k: refactor ath12k_mac_op_stop() (bsc#1227149). * wifi: ath12k: refactor ath12k_mac_op_update_vif_offload() (bsc#1227149). * wifi: ath12k: refactor ath12k_mac_register() and ath12k_mac_unregister() (bsc#1227149). * wifi: ath12k: refactor ath12k_mac_setup_channels_rates() (bsc#1227149). * wifi: ath12k: refactor ath12k_wmi_tlv_parse_alloc() (bsc#1227149). * wifi: ath12k: refactor multiple MSI vector implementation (bsc#1227149). * wifi: ath12k: refactor the rfkill worker (bsc#1227149). * wifi: ath12k: register EHT mesh capabilities (bsc#1227149). * wifi: ath12k: relax list iteration in ath12k_mac_vif_unref() (bsc#1227149). * wifi: ath12k: relocate ath12k_dp_pdev_pre_alloc() call (bsc#1227149). * wifi: ath12k: remove hal_desc_sz from hw params (bsc#1227149). * wifi: ath12k: remove redundant memset() in ath12k_hal_reo_qdesc_setup() (bsc#1227149). * wifi: ath12k: remove the unused scan_events from ath12k_wmi_scan_req_arg (bsc#1227149). * wifi: ath12k: remove unused ATH12K_BD_IE_BOARD_EXT (bsc#1227149). * wifi: ath12k: rename HE capabilities setup/copy functions (bsc#1227149). * wifi: ath12k: rename the sc naming convention to ab (bsc#1227149). * wifi: ath12k: rename the wmi_sc naming convention to wmi_ab (bsc#1227149). * wifi: ath12k: replace ENOTSUPP with EOPNOTSUPP (bsc#1227149). * wifi: ath12k: send WMI_PEER_REORDER_QUEUE_SETUP_CMDID when ADDBA session starts (bsc#1227149). * wifi: ath12k: set IRQ affinity to CPU0 in case of one MSI vector (bsc#1227149). * wifi: ath12k: set PERST pin no pull request for WCN7850 (bsc#1227149). * wifi: ath12k: split hal_ops to support RX TLVs word mask compaction (bsc#1227149). * wifi: ath12k: subscribe required word mask from rx tlv (bsc#1227149). * wifi: ath12k: support default regdb while searching board-2.bin for WCN7850 (bsc#1227149). * wifi: ath12k: trigger station disconnect on hardware restart (bsc#1227149). * wifi: ath12k: use ATH12K_PCI_IRQ_DP_OFFSET for DP IRQ (bsc#1227149). * wifi: ath12k: use correct flag field for 320 MHz channels (bsc#1227149). * wifi: ath12k: use select for CRYPTO_MICHAEL_MIC (bsc#1227149). * wifi: ath5k: Convert to platform remove callback returning void (bsc#1227149). * wifi: ath5k: Remove redundant dev_err() (bsc#1227149). * wifi: ath5k: ath5k_hw_get_median_noise_floor(): use swap() (bsc#1227149). * wifi: ath5k: remove phydir check from ath5k_debug_init_device() (bsc#1227149). * wifi: ath5k: remove unnecessary (void*) conversions (bsc#1227149). * wifi: ath5k: remove unused ath5k_eeprom_info::ee_antenna (bsc#1227149). * wifi: ath5k: replace deprecated strncpy with strscpy (bsc#1227149). * wifi: ath6kl: Remove error checking for debugfs_create_dir() (bsc#1227149). * wifi: ath6kl: remove unnecessary (void*) conversions (bsc#1227149). * wifi: ath6kl: replace deprecated strncpy with memcpy (bsc#1227149). * wifi: ath9k: Convert to platform remove callback returning void (bsc#1227149). * wifi: ath9k: Remove unnecessary (void*) conversions (bsc#1227149). * wifi: ath9k: Remove unnecessary ternary operators (bsc#1227149). * wifi: ath9k: Remove unused declarations (bsc#1227149). * wifi: ath9k: avoid using uninitialized array (bsc#1227149). * wifi: ath9k: clean up function ath9k_hif_usb_resume (bsc#1227149). * wifi: ath9k: consistently use kstrtoX_from_user() functions (bsc#1227149). * wifi: ath9k: delete some unused/duplicate macros (bsc#1227149). * wifi: ath9k: fix parameter check in ath9k_init_debug() (bsc#1227149). * wifi: ath9k: remove redundant assignment to variable ret (bsc#1227149). * wifi: ath9k: reset survey of current channel after a scan started (bsc#1227149). * wifi: ath9k: simplify ar9003_hw_process_ini() (bsc#1227149). * wifi: ath9k: use u32 for txgain indexes (bsc#1227149). * wifi: ath9k: work around memset overflow warning (bsc#1227149). * wifi: ath9k_htc: fix format-truncation warning (bsc#1227149). * wifi: ath: Use is_multicast_ether_addr() to check multicast Ether address (bsc#1227149). * wifi: ath: dfs_pattern_detector: Use flex array to simplify code (bsc#1227149). * wifi: ath: remove unused-but-set parameter (bsc#1227149). * wifi: ath: work around false-positive stringop-overread warning (bsc#1227149). * wifi: atk10k: Do not opencode ath10k_pci_priv() in ath10k_ahb_priv() (bsc#1227149). * wifi: atmel: remove unused ioctl function (bsc#1227149). * wifi: b43: silence sparse warnings (bsc#1227149). * wifi: brcm80211: replace deprecated strncpy with strscpy (bsc#1227149). * wifi: brcmfmac: Annotate struct brcmf_gscan_config with __counted_by (bsc#1227149). * wifi: brcmfmac: Detect corner error case earlier with log (bsc#1227149). * wifi: brcmfmac: add linefeed at end of file (bsc#1227149). * wifi: brcmfmac: allow per-vendor event handling (bsc#1227149). * wifi: brcmfmac: do not cast hidden SSID attribute value to boolean (bsc#1227149). * wifi: brcmfmac: do not pass hidden SSID attribute as value directly (bsc#1227149). * wifi: brcmfmac: export firmware interface functions (bsc#1227149). * wifi: brcmfmac: firmware: Annotate struct brcmf_fw_request with __counted_by (bsc#1227149). * wifi: brcmfmac: fix format-truncation warnings (bsc#1227149). * wifi: brcmfmac: fix gnu_printf warnings (bsc#1227149). * wifi: brcmfmac: fweh: Add __counted_by for struct brcmf_fweh_queue_item and use struct_size() (bsc#1227149). * wifi: brcmfmac: fweh: Fix boot crash on Raspberry Pi 4 (bsc#1227149). * wifi: brcmfmac: move feature overrides before feature_disable (bsc#1227149). * wifi: brcmsmac: LCN PHY code is used for BCM4313 2G-only device (git-fixes). * wifi: brcmsmac: cleanup SCB-related data types (bsc#1227149). * wifi: brcmsmac: fix gnu_printf warnings (bsc#1227149). * wifi: brcmsmac: phy: Remove unreachable code (bsc#1227149). * wifi: brcmsmac: remove more unused data types (bsc#1227149). * wifi: brcmsmac: remove unused data type (bsc#1227149). * wifi: brcmsmac: replace deprecated strncpy with memcpy (bsc#1227149). * wifi: brcmsmac: silence sparse warnings (bsc#1227149). * wifi: brcmutil: use helper function pktq_empty() instead of open code (bsc#1227149). * wifi: carl9170: Remove redundant assignment to pointer super (bsc#1227149). * wifi: carl9170: remove unnecessary (void*) conversions (bsc#1227149). * wifi: cfg80211: Add support for setting TID to link mapping (bsc#1227149). * wifi: cfg80211: Allow AP/P2PGO to indicate port authorization to peer STA/P2PClient (bsc#1227149). * wifi: cfg80211: Extend support for scanning while MLO connected (bsc#1227149). * wifi: cfg80211: Fix typo in documentation (bsc#1227149). * wifi: cfg80211: Handle specific BSSID in 6GHz scanning (bsc#1227149). * wifi: cfg80211: Include operating class 137 in 6GHz band (bsc#1227149). * wifi: cfg80211: OWE DH IE handling offload (bsc#1227149). * wifi: cfg80211: Replace ENOTSUPP with EOPNOTSUPP (bsc#1227149). * wifi: cfg80211: Schedule regulatory check on BSS STA channel change (bsc#1227149). * wifi: cfg80211: Update the default DSCP-to-UP mapping (bsc#1227149). * wifi: cfg80211: add BSS usage reporting (bsc#1227149). * wifi: cfg80211: add RNR with reporting AP information (bsc#1227149). * wifi: cfg80211: add a flag to disable wireless extensions (bsc#1227149). * wifi: cfg80211: add local_state_change to deauth trace (bsc#1227149). * wifi: cfg80211: add locked debugfs wrappers (bsc#1227149). * wifi: cfg80211: add support for SPP A-MSDUs (bsc#1227149). * wifi: cfg80211: address several kerneldoc warnings (bsc#1227149). * wifi: cfg80211: allow reg update by driver even if wiphy->regd is set (bsc#1227149). * wifi: cfg80211: annotate iftype_data pointer with sparse (bsc#1227149). * wifi: cfg80211: avoid double free if updating BSS fails (bsc#1227149). * wifi: cfg80211: call reg_call_notifier on beacon hints (bsc#1227149). * wifi: cfg80211: check RTNL when iterating devices (bsc#1227149). * wifi: cfg80211: check wiphy mutex is held for wdev mutex (bsc#1227149). * wifi: cfg80211: consume both probe response and beacon IEs (bsc#1227149). * wifi: cfg80211: detect stuck ECSA element in probe resp (bsc#1227149). * wifi: cfg80211: ensure cfg80211_bss_update frees IEs on error (bsc#1227149). * wifi: cfg80211: export DFS CAC time and usable state helper functions (bsc#1227149). * wifi: cfg80211: expose nl80211_chan_width_to_mhz for wide sharing (bsc#1227149). * wifi: cfg80211: fix 6 GHz scan request building (stable-fixes). * wifi: cfg80211: fix CQM for non-range use (bsc#1227149). * wifi: cfg80211: fix header kernel-doc typos (bsc#1227149). * wifi: cfg80211: fix kernel-doc for wiphy_delayed_work_flush() (bsc#1227149). * wifi: cfg80211: fix spelling & punctutation (bsc#1227149). * wifi: cfg80211: fix typo in cfg80211_calculate_bitrate_he() (git-fixes). * wifi: cfg80211: generate an ML element for per-STA profiles (bsc#1227149). * wifi: cfg80211: handle 2x996 RU allocation in cfg80211_calculate_bitrate_he() (git-fixes). * wifi: cfg80211: handle UHB AP and STA power type (bsc#1227149). * wifi: cfg80211: hold wiphy lock in cfg80211_any_wiphy_oper_chan() (bsc#1227149). * wifi: cfg80211: hold wiphy mutex for send_interface (bsc#1227149). * wifi: cfg80211: improve documentation for flag fields (bsc#1227149). * wifi: cfg80211: introduce cfg80211_ssid_eq() (bsc#1227149). * wifi: cfg80211: make RX assoc data const (bsc#1227149). * wifi: cfg80211: make read-only array centers_80mhz static const (bsc#1227149). * wifi: cfg80211: modify prototype for change_beacon (bsc#1227149). * wifi: cfg80211: reg: Support P2P operation on DFS channels (bsc#1227149). * wifi: cfg80211: reg: describe return values in kernel-doc (bsc#1227149). * wifi: cfg80211: reg: fix various kernel-doc issues (bsc#1227149). * wifi: cfg80211: reg: hold wiphy mutex for wdev iteration (bsc#1227149). * wifi: cfg80211: remove scan_width support (bsc#1227149). * wifi: cfg80211: remove wdev mutex (bsc#1227149). * wifi: cfg80211: rename UHB to 6 GHz (bsc#1227149). * wifi: cfg80211: report per-link errors during association (bsc#1227149). * wifi: cfg80211: report unprotected deauth/disassoc in wowlan (bsc#1227149). * wifi: cfg80211: restrict NL80211_ATTR_TXQ_QUANTUM values (git-fixes). * wifi: cfg80211: save power spectral density(psd) of regulatory rule (bsc#1227149). * wifi: cfg80211: set correct param change count in ML element (bsc#1227149). * wifi: cfg80211: sme: hold wiphy lock for wdev iteration (bsc#1227149). * wifi: cfg80211: sort certificates in build (bsc#1227149). * wifi: cfg80211: split struct cfg80211_ap_settings (bsc#1227149). * wifi: cfg80211: validate HE operation element parsing (bsc#1227149). * wifi: cfg80211: wext: add extra SIOCSIWSCAN data check (stable-fixes). * wifi: cfg80211: wext: convert return value to kernel-doc (bsc#1227149). * wifi: cfg80211: wext: set ssids=NULL for passive scans (git-fixes). * wifi: cw1200: Avoid processing an invalid TIM IE (bsc#1227149). * wifi: cw1200: Convert to GPIO descriptors (bsc#1227149). * wifi: cw1200: fix __le16 sparse warnings (bsc#1227149). * wifi: cw1200: restore endian swapping (bsc#1227149). * wifi: drivers: Explicitly include correct DT includes (bsc#1227149). * wifi: fill in MODULE_DESCRIPTION()s for Broadcom WLAN (bsc#1227149). * wifi: fill in MODULE_DESCRIPTION()s for ar5523 (bsc#1227149). * wifi: fill in MODULE_DESCRIPTION()s for mt76 drivers (bsc#1227149). * wifi: fill in MODULE_DESCRIPTION()s for p54spi (bsc#1227149). * wifi: fill in MODULE_DESCRIPTION()s for wcn36xx (bsc#1227149). * wifi: fill in MODULE_DESCRIPTION()s for wilc1000 (bsc#1227149). * wifi: fill in MODULE_DESCRIPTION()s for wl1251 and wl12xx (bsc#1227149). * wifi: fill in MODULE_DESCRIPTION()s for wl18xx (bsc#1227149). * wifi: fill in MODULE_DESCRIPTION()s for wlcore (bsc#1227149). * wifi: hostap: Add __counted_by for struct prism2_download_data and use struct_size() (bsc#1227149). * wifi: hostap: fix stringop-truncations GCC warning (bsc#1227149). * wifi: hostap: remove unused ioctl function (bsc#1227149). * wifi: ieee80211: add UL-bandwidth definition of trigger frame (bsc#1227149). * wifi: ieee80211: add definitions for negotiated TID to Link map (bsc#1227149). * wifi: ieee80211: check for NULL in ieee80211_mle_size_ok() (stable-fixes). * wifi: iwlmei: do not send SAP messages if AMT is disabled (bsc#1227149). * wifi: iwlmei: do not send nic info with invalid mac address (bsc#1227149). * wifi: iwlmei: send HOST_GOES_DOWN message even if wiamt is disabled (bsc#1227149). * wifi: iwlmei: send driver down SAP message only if wiamt is enabled (bsc#1227149). * wifi: iwlmvm: fw: Add new OEM vendor to tas approved list (bsc#1227149). * wifi: iwlwifi: Add rf_mapping of new wifi7 devices (bsc#1227149). * wifi: iwlwifi: Add support for PPAG cmd v5 and PPAG revision 3 (bsc#1227149). * wifi: iwlwifi: Add support for new 802.11be device (bsc#1227149). * wifi: iwlwifi: Do not mark DFS channels as NO-IR (bsc#1227149). * wifi: iwlwifi: Extract common prph mac/phy regions data dump logic (bsc#1227149). * wifi: iwlwifi: Fix spelling mistake "SESION" -> "SESSION" (bsc#1227149). * wifi: iwlwifi: Use request_module_nowait (bsc#1227149). * wifi: iwlwifi: abort scan when rfkill on but device enabled (bsc#1227149). * wifi: iwlwifi: add HONOR to PPAG approved list (bsc#1227149). * wifi: iwlwifi: add Razer to ppag approved list (bsc#1227149). * wifi: iwlwifi: add mapping of a periphery register crf for WH RF (bsc#1227149). * wifi: iwlwifi: add new RF support for wifi7 (bsc#1227149). * wifi: iwlwifi: add support for SNPS DPHYIP region type (bsc#1227149). * wifi: iwlwifi: add support for a wiphy_work rx handler (bsc#1227149). * wifi: iwlwifi: add support for activating UNII-1 in WW via BIOS (bsc#1227149). * wifi: iwlwifi: add support for new ini region types (bsc#1227149). * wifi: iwlwifi: adjust rx_phyinfo debugfs to MLO (bsc#1227149). * wifi: iwlwifi: always have 'uats_enabled' (bsc#1227149). * wifi: iwlwifi: api: clean up some kernel-doc/typos (bsc#1227149). * wifi: iwlwifi: api: dbg-tlv: fix up kernel-doc (bsc#1227149). * wifi: iwlwifi: api: fix a small upper/lower-case typo (bsc#1227149). * wifi: iwlwifi: api: fix center_freq label in PHY diagram (bsc#1227149). * wifi: iwlwifi: api: fix constant version to match FW (bsc#1227149). * wifi: iwlwifi: api: fix kernel-doc reference (bsc#1227149). * wifi: iwlwifi: bump FW API to 84 for AX/BZ/SC devices (bsc#1227149). * wifi: iwlwifi: bump FW API to 86 for AX/BZ/SC devices (bsc#1227149). * wifi: iwlwifi: bump FW API to 87 for AX/BZ/SC devices (bsc#1227149). * wifi: iwlwifi: bump FW API to 88 for AX/BZ/SC devices (bsc#1227149). * wifi: iwlwifi: cancel session protection only if there is one (bsc#1227149). * wifi: iwlwifi: change link id in time event to s8 (bsc#1227149). * wifi: iwlwifi: check for kmemdup() return value in iwl_parse_tlv_firmware() (bsc#1227149). * wifi: iwlwifi: cleanup BT Shared Single Antenna code (bsc#1227149). * wifi: iwlwifi: cleanup sending PER_CHAIN_LIMIT_OFFSET_CMD (bsc#1227149). * wifi: iwlwifi: cleanup uefi variables loading (bsc#1227149). * wifi: iwlwifi: clear link_id in time_event (bsc#1227149). * wifi: iwlwifi: dbg-tlv: avoid extra allocation/copy (bsc#1227149). * wifi: iwlwifi: dbg-tlv: use struct_size() for allocation (bsc#1227149). * wifi: iwlwifi: disable 160 MHz based on subsystem device ID (bsc#1227149). * wifi: iwlwifi: disable eSR when BT is active (bsc#1227149). * wifi: iwlwifi: disable multi rx queue for 9000 (bsc#1227149). * wifi: iwlwifi: do not check TAS block list size twice (bsc#1227149). * wifi: iwlwifi: do not use TRUE/FALSE with bool (bsc#1227149). * wifi: iwlwifi: drop NULL pointer check in iwl_mvm_tzone_set_trip_temp() (bsc#1227149). * wifi: iwlwifi: dvm: remove kernel-doc warnings (bsc#1227149). * wifi: iwlwifi: error-dump: fix kernel-doc issues (bsc#1227149). * wifi: iwlwifi: fail NIC access fast on dead NIC (bsc#1227149). * wifi: iwlwifi: fix #ifdef CONFIG_ACPI check (bsc#1227149). * wifi: iwlwifi: fix iwl_mvm_get_valid_rx_ant() (git-fixes). * wifi: iwlwifi: fix opmode start/stop race (bsc#1227149). * wifi: iwlwifi: fix some kernel-doc issues (bsc#1227149). * wifi: iwlwifi: fix system commands group ordering (bsc#1227149). * wifi: iwlwifi: fix the rf step and flavor bits range (bsc#1227149). * wifi: iwlwifi: fw: Add support for UATS table in UHB (bsc#1227149). * wifi: iwlwifi: fw: Fix debugfs command sending (bsc#1227149). * wifi: iwlwifi: fw: allow vmalloc for PNVM image (bsc#1227149). * wifi: iwlwifi: fw: dbg: ensure correct config name sizes (bsc#1227149). * wifi: iwlwifi: fw: disable firmware debug asserts (bsc#1227149). * wifi: iwlwifi: fw: file: clean up kernel-doc (bsc#1227149). * wifi: iwlwifi: fw: file: do not use [0] for variable arrays (bsc#1227149). * wifi: iwlwifi: fw: fix compiler warning for NULL string print (bsc#1227149). * wifi: iwlwifi: fw: increase fw_version string size (bsc#1227149). * wifi: iwlwifi: fw: reconstruct the API/CAPA enum number (bsc#1227149). * wifi: iwlwifi: fw: replace deprecated strncpy with strscpy_pad (bsc#1227149). * wifi: iwlwifi: handle per-phy statistics from fw (bsc#1227149). * wifi: iwlwifi: implement GLAI ACPI table loading (bsc#1227149). * wifi: iwlwifi: implement can_activate_links callback (bsc#1227149). * wifi: iwlwifi: implement enable/disable for China 2022 regulatory (bsc#1227149). * wifi: iwlwifi: iwl-fh.h: fix kernel-doc issues (bsc#1227149). * wifi: iwlwifi: iwl-trans.h: clean up kernel-doc (bsc#1227149). * wifi: iwlwifi: iwlmvm: handle unprotected deauth/disassoc in d3 (bsc#1227149). * wifi: iwlwifi: load b0 version of ucode for HR1/HR2 (bsc#1227149). * wifi: iwlwifi: make TB reallocation a debug message (bsc#1227149). * wifi: iwlwifi: make time_events MLO aware (bsc#1227149). * wifi: iwlwifi: mei: return error from register when not built (bsc#1227149). * wifi: iwlwifi: mvm: Add basic link selection logic (bsc#1227149). * wifi: iwlwifi: mvm: Add support for removing responder TKs (bsc#1227149). * wifi: iwlwifi: mvm: Allow DFS concurrent operation (bsc#1227149). * wifi: iwlwifi: mvm: Configure the link mapping for non-MLD FW (bsc#1227149). * wifi: iwlwifi: mvm: Correctly report TSF data in scan complete (bsc#1227149). * wifi: iwlwifi: mvm: Declare support for secure LTF measurement (bsc#1227149). * wifi: iwlwifi: mvm: Do not warn if valid link pair was not found (bsc#1227149). * wifi: iwlwifi: mvm: Do not warn on invalid link on scan complete (bsc#1227149). * wifi: iwlwifi: mvm: Extend support for P2P service discovery (bsc#1227149). * wifi: iwlwifi: mvm: Fix FTM initiator flags (bsc#1227149). * wifi: iwlwifi: mvm: Fix scan abort handling with HW rfkill (stable-fixes). * wifi: iwlwifi: mvm: Fix unreachable code path (bsc#1227149). * wifi: iwlwifi: mvm: Handle BIGTK cipher in kek_kck cmd (stable-fixes). * wifi: iwlwifi: mvm: Keep connection in case of missed beacons during RX (bsc#1227149). * wifi: iwlwifi: mvm: Return success if link could not be removed (bsc#1227149). * wifi: iwlwifi: mvm: Use the link ID provided in scan request (bsc#1227149). * wifi: iwlwifi: mvm: add US/Canada MCC to API (bsc#1227149). * wifi: iwlwifi: mvm: add a debug print when we get a BAR (bsc#1227149). * wifi: iwlwifi: mvm: add a debugfs hook to clear the monitor data (bsc#1227149). * wifi: iwlwifi: mvm: add a per-link debugfs (bsc#1227149). * wifi: iwlwifi: mvm: add a print when sending RLC command (bsc#1227149). * wifi: iwlwifi: mvm: add start mac ctdp sum calculation debugfs handler (bsc#1227149). * wifi: iwlwifi: mvm: add support for TID to link mapping neg request (bsc#1227149). * wifi: iwlwifi: mvm: add support for new wowlan_info_notif (bsc#1227149). * wifi: iwlwifi: mvm: advertise MLO only if EHT is enabled (bsc#1227149). * wifi: iwlwifi: mvm: advertise support for SCS traffic description (bsc#1227149). * wifi: iwlwifi: mvm: advertise support for protected ranging negotiation (bsc#1227149). * wifi: iwlwifi: mvm: always update keys in D3 exit (bsc#1227149). * wifi: iwlwifi: mvm: avoid garbage iPN (bsc#1227149). * wifi: iwlwifi: mvm: calculate EMLSR mode after connection (bsc#1227149). * wifi: iwlwifi: mvm: check AP supports EMLSR (bsc#1227149). * wifi: iwlwifi: mvm: check for iwl_mvm_mld_update_sta() errors (bsc#1227149). * wifi: iwlwifi: mvm: check link more carefully (bsc#1227149). * wifi: iwlwifi: mvm: check own capabilities for EMLSR (bsc#1227149). * wifi: iwlwifi: mvm: cleanup MLO and non-MLO unification code (bsc#1227149). * wifi: iwlwifi: mvm: combine condition/warning (bsc#1227149). * wifi: iwlwifi: mvm: consider having one active link (bsc#1227149). * wifi: iwlwifi: mvm: const-ify chandef pointers (bsc#1227149). * wifi: iwlwifi: mvm: cycle FW link on chanctx removal (bsc#1227149). * wifi: iwlwifi: mvm: d3: avoid intermediate/early mutex unlock (bsc#1227149). * wifi: iwlwifi: mvm: d3: disconnect on GTK rekey failure (bsc#1227149). * wifi: iwlwifi: mvm: d3: fix WoWLAN command version lookup (stable-fixes). * wifi: iwlwifi: mvm: d3: implement suspend with MLO (bsc#1227149). * wifi: iwlwifi: mvm: debugfs for fw system stats (bsc#1227149). * wifi: iwlwifi: mvm: define RX queue sync timeout as a macro (bsc#1227149). * wifi: iwlwifi: mvm: disable MLO for the time being (bsc#1227149). * wifi: iwlwifi: mvm: disallow puncturing in US/Canada (bsc#1227149). * wifi: iwlwifi: mvm: disconnect long CSA only w/o alternative (bsc#1227149). * wifi: iwlwifi: mvm: disconnect station vifs if recovery failed (bsc#1227149). * wifi: iwlwifi: mvm: do not abort queue sync in CT-kill (bsc#1227149). * wifi: iwlwifi: mvm: do not add dummy phy context (bsc#1227149). * wifi: iwlwifi: mvm: do not always disable EMLSR due to BT coex (bsc#1227149). * wifi: iwlwifi: mvm: do not do duplicate detection for nullfunc packets (bsc#1227149). * wifi: iwlwifi: mvm: do not limit VLP/AFC to UATS-enabled (git-fixes). * wifi: iwlwifi: mvm: do not send BT_COEX_CI command on new devices (bsc#1227149). * wifi: iwlwifi: mvm: do not send NDPs for new tx devices (bsc#1227149). * wifi: iwlwifi: mvm: do not send STA_DISABLE_TX_CMD for newer firmware (bsc#1227149). * wifi: iwlwifi: mvm: do not send the smart fifo command if not needed (bsc#1227149). * wifi: iwlwifi: mvm: do not set trigger frame padding in AP mode (bsc#1227149). * wifi: iwlwifi: mvm: do not support reduced tx power on ack for new devices (bsc#1227149). * wifi: iwlwifi: mvm: do not wake up rx_sync_waitq upon RFKILL (git-fixes). * wifi: iwlwifi: mvm: enable FILS DF Tx on non-PSC channel (bsc#1227149). * wifi: iwlwifi: mvm: enable HE TX/RX <242 tone RU on new RFs (bsc#1227149). * wifi: iwlwifi: mvm: expand queue sync warning messages (bsc#1227149). * wifi: iwlwifi: mvm: extend alive timeout to 2 seconds (bsc#1227149). * wifi: iwlwifi: mvm: fix ROC version check (bsc#1227149). * wifi: iwlwifi: mvm: fix SB CFG check (bsc#1227149). * wifi: iwlwifi: mvm: fix a battery life regression (bsc#1227149). * wifi: iwlwifi: mvm: fix a crash on 7265 (bsc#1227149). * wifi: iwlwifi: mvm: fix kernel-doc (bsc#1227149). * wifi: iwlwifi: mvm: fix link ID management (bsc#1227149). * wifi: iwlwifi: mvm: fix recovery flow in CSA (bsc#1227149). * wifi: iwlwifi: mvm: fix regdb initialization (bsc#1227149). * wifi: iwlwifi: mvm: fix the PHY context resolution for p2p device (bsc#1227149). * wifi: iwlwifi: mvm: fix the TXF mapping for BZ devices (bsc#1227149). * wifi: iwlwifi: mvm: fix the key PN index (bsc#1227149). * wifi: iwlwifi: mvm: fix thermal kernel-doc (bsc#1227149). * wifi: iwlwifi: mvm: fold the ref++ into iwl_mvm_phy_ctxt_add (bsc#1227149). * wifi: iwlwifi: mvm: handle BA session teardown in RF-kill (stable-fixes). * wifi: iwlwifi: mvm: handle debugfs names more carefully (bsc#1227149). * wifi: iwlwifi: mvm: handle link-STA allocation in restart (bsc#1227149). * wifi: iwlwifi: mvm: implement ROC version 3 (bsc#1227149). * wifi: iwlwifi: mvm: implement new firmware API for statistics (bsc#1227149). * wifi: iwlwifi: mvm: increase session protection after CSA (bsc#1227149). * wifi: iwlwifi: mvm: introduce PHY_CONTEXT_CMD_API_VER_5 (bsc#1227149). * wifi: iwlwifi: mvm: introduce esr_disable_reason (bsc#1227149). * wifi: iwlwifi: mvm: iterate active links for STA queues (bsc#1227149). * wifi: iwlwifi: mvm: limit EHT 320 MHz MCS for STEP URM (bsc#1227149). * wifi: iwlwifi: mvm: limit pseudo-D3 to 60 seconds (bsc#1227149). * wifi: iwlwifi: mvm: log dropped frames (bsc#1227149). * wifi: iwlwifi: mvm: log dropped packets due to MIC error (bsc#1227149). * wifi: iwlwifi: mvm: make "pldr_sync" mode effective (bsc#1227149). * wifi: iwlwifi: mvm: make functions public (bsc#1227149). * wifi: iwlwifi: mvm: make pldr_sync AX210 specific (bsc#1227149). * wifi: iwlwifi: mvm: move BA notif messages before action (bsc#1227149). * wifi: iwlwifi: mvm: move RU alloc B2 placement (bsc#1227149). * wifi: iwlwifi: mvm: move listen interval to constants (bsc#1227149). * wifi: iwlwifi: mvm: offload IGTK in AP if BIGTK is supported (bsc#1227149). * wifi: iwlwifi: mvm: partially support PHY context version 6 (bsc#1227149). * wifi: iwlwifi: mvm: pick the version of SESSION_PROTECTION_NOTIF (bsc#1227149). * wifi: iwlwifi: mvm: properly set 6 GHz channel direct probe option (stable- fixes). * wifi: iwlwifi: mvm: reduce maximum RX A-MPDU size (bsc#1227149). * wifi: iwlwifi: mvm: refactor TX rate handling (bsc#1227149). * wifi: iwlwifi: mvm: refactor duplicate chanctx condition (bsc#1227149). * wifi: iwlwifi: mvm: remove EHT code from mac80211.c (bsc#1227149). * wifi: iwlwifi: mvm: remove IWL_MVM_STATUS_NEED_FLUSH_P2P (bsc#1227149). * wifi: iwlwifi: mvm: remove flags for enable/disable beacon filter (bsc#1227149). * wifi: iwlwifi: mvm: remove one queue sync on BA session stop (bsc#1227149). * wifi: iwlwifi: mvm: remove set_tim callback for MLD ops (bsc#1227149). * wifi: iwlwifi: mvm: remove stale STA link data during restart (stable- fixes). * wifi: iwlwifi: mvm: rework debugfs handling (bsc#1227149). * wifi: iwlwifi: mvm: show dump even for pldr_sync (bsc#1227149). * wifi: iwlwifi: mvm: show skb_mac_gso_segment() failure reason (bsc#1227149). * wifi: iwlwifi: mvm: simplify the reorder buffer (bsc#1227149). * wifi: iwlwifi: mvm: skip adding debugfs symlink for reconfig (bsc#1227149). * wifi: iwlwifi: mvm: support CSA with MLD (bsc#1227149). * wifi: iwlwifi: mvm: support SPP A-MSDUs (bsc#1227149). * wifi: iwlwifi: mvm: support flush on AP interfaces (bsc#1227149). * wifi: iwlwifi: mvm: support injection antenna control (bsc#1227149). * wifi: iwlwifi: mvm: support iwl_dev_tx_power_cmd_v8 (bsc#1227149). * wifi: iwlwifi: mvm: support set_antenna() (bsc#1227149). * wifi: iwlwifi: mvm: unlock mvm if there is no primary link (bsc#1227149). * wifi: iwlwifi: mvm: use fast balance scan in case of an active P2P GO (bsc#1227149). * wifi: iwlwifi: mvm: use the new command to clear the internal buffer (bsc#1227149). * wifi: iwlwifi: mvm: work around A-MSDU size problem (bsc#1227149). * wifi: iwlwifi: no power save during transition to D3 (bsc#1227149). * wifi: iwlwifi: nvm-parse: advertise common packet padding (bsc#1227149). * wifi: iwlwifi: nvm: parse the VLP/AFC bit from regulatory (bsc#1227149). * wifi: iwlwifi: pcie: (re-)assign BAR0 on driver bind (bsc#1227149). * wifi: iwlwifi: pcie: Add new PCI device id and CNVI (bsc#1227149). * wifi: iwlwifi: pcie: clean up WFPM control bits (bsc#1227149). * wifi: iwlwifi: pcie: clean up device removal work (bsc#1227149). * wifi: iwlwifi: pcie: clean up gen1/gen2 TFD unmap (bsc#1227149). * wifi: iwlwifi: pcie: do not allow hw-rfkill to stop device on gen2 (bsc#1227149). * wifi: iwlwifi: pcie: dump CSRs before removal (bsc#1227149). * wifi: iwlwifi: pcie: enable TOP fatal error interrupt (bsc#1227149). * wifi: iwlwifi: pcie: fix kernel-doc issues (bsc#1227149). * wifi: iwlwifi: pcie: get_crf_id() can be void (bsc#1227149). * wifi: iwlwifi: pcie: give up mem read if HW is dead (bsc#1227149). * wifi: iwlwifi: pcie: move gen1 TB handling to header (bsc#1227149). * wifi: iwlwifi: pcie: point invalid TFDs to invalid data (bsc#1227149). * wifi: iwlwifi: pcie: propagate iwl_pcie_gen2_apm_init() error (bsc#1227149). * wifi: iwlwifi: pcie: rescan bus if no parent (bsc#1227149). * wifi: iwlwifi: prepare for reading DSM from UEFI (bsc#1227149). * wifi: iwlwifi: prepare for reading PPAG table from UEFI (bsc#1227149). * wifi: iwlwifi: prepare for reading SAR tables from UEFI (bsc#1227149). * wifi: iwlwifi: prepare for reading SPLC from UEFI (bsc#1227149). * wifi: iwlwifi: prepare for reading TAS table from UEFI (bsc#1227149). * wifi: iwlwifi: properly check if link is active (bsc#1227149). * wifi: iwlwifi: properly set WIPHY_FLAG_SUPPORTS_EXT_KEK_KCK (stable-fixes). * wifi: iwlwifi: queue: fix kernel-doc (bsc#1227149). * wifi: iwlwifi: queue: improve warning for no skb in reclaim (bsc#1227149). * wifi: iwlwifi: queue: move iwl_txq_gen2_set_tb() up (bsc#1227149). * wifi: iwlwifi: read DSM func 2 for specific RF types (bsc#1227149). * wifi: iwlwifi: read DSM functions from UEFI (bsc#1227149). * wifi: iwlwifi: read ECKV table from UEFI (bsc#1227149). * wifi: iwlwifi: read PPAG table from UEFI (bsc#1227149). * wifi: iwlwifi: read SAR tables from UEFI (bsc#1227149). * wifi: iwlwifi: read SPLC from UEFI (bsc#1227149). * wifi: iwlwifi: read WRDD table from UEFI (bsc#1227149). * wifi: iwlwifi: read WTAS table from UEFI (bsc#1227149). * wifi: iwlwifi: read mac step from aux register (bsc#1227149). * wifi: iwlwifi: refactor RX tracing (bsc#1227149). * wifi: iwlwifi: remove 'def_rx_queue' struct member (bsc#1227149). * wifi: iwlwifi: remove Gl A-step remnants (bsc#1227149). * wifi: iwlwifi: remove WARN from read_mem32() (bsc#1227149). * wifi: iwlwifi: remove async command callback (bsc#1227149). * wifi: iwlwifi: remove dead-code (bsc#1227149). * wifi: iwlwifi: remove extra kernel-doc (bsc#1227149). * wifi: iwlwifi: remove memory check for LMAC error address (bsc#1227149). * wifi: iwlwifi: remove retry loops in start (bsc#1227149). * wifi: iwlwifi: remove unused function prototype (bsc#1227149). * wifi: iwlwifi: replace ENOTSUPP with EOPNOTSUPP (bsc#1227149). * wifi: iwlwifi: return negative -EINVAL instead of positive EINVAL (bsc#1227149). * wifi: iwlwifi: rfi: use a single DSM function for all RFI configurations (bsc#1227149). * wifi: iwlwifi: send EDT table to FW (bsc#1227149). * wifi: iwlwifi: separate TAS 'read-from-BIOS' and 'send-to-FW' flows (bsc#1227149). * wifi: iwlwifi: simplify getting DSM from ACPI (bsc#1227149). * wifi: iwlwifi: skip affinity setting on non-SMP (bsc#1227149). * wifi: iwlwifi: skip opmode start retries on dead transport (bsc#1227149). * wifi: iwlwifi: small cleanups in PPAG table flows (bsc#1227149). * wifi: iwlwifi: support link command version 2 (bsc#1227149). * wifi: iwlwifi: support link id in SESSION_PROTECTION_NOTIF (bsc#1227149). * wifi: iwlwifi: support link_id in SESSION_PROTECTION cmd (bsc#1227149). * wifi: iwlwifi: take SGOM and UATS code out of ACPI ifdef (bsc#1227149). * wifi: iwlwifi: take send-DSM-to-FW flows out of ACPI ifdef (bsc#1227149). * wifi: iwlwifi: trace full frames with TX status request (bsc#1227149). * wifi: iwlwifi: update context info structure definitions (bsc#1227149). * wifi: iwlwifi: use system_unbound_wq for debug dump (bsc#1227149). * wifi: iwlwifi: validate PPAG table when sent to FW (bsc#1227149). * wifi: lib80211: remove unused variables iv32 and iv16 (bsc#1227149). * wifi: libertas: Follow renaming of SPI "master" to "controller" (bsc#1227149). * wifi: libertas: add missing calls to cancel_work_sync() (bsc#1227149). * wifi: libertas: cleanup SDIO reset (bsc#1227149). * wifi: libertas: handle possible spu_write_u16() errors (bsc#1227149). * wifi: libertas: prefer kstrtoX() for simple integer conversions (bsc#1227149). * wifi: libertas: simplify list operations in free_if_spi_card() (bsc#1227149). * wifi: libertas: use convenient lists to manage SDIO packets (bsc#1227149). * wifi: mac80211: Add __counted_by for struct ieee802_11_elems and use struct_size() (bsc#1227149). * wifi: mac80211: Avoid address calculations via out of bounds array indexing (stable-fixes). * wifi: mac80211: Check if we had first beacon with relevant links (bsc#1227149). * wifi: mac80211: Do not force off-channel for management Tx with MLO (bsc#1227149). * wifi: mac80211: Do not include crypto/algapi.h (bsc#1227149). * wifi: mac80211: Extend support for scanning while MLO connected (bsc#1227149). * wifi: mac80211: Fix SMPS handling in the context of MLO (bsc#1227149). * wifi: mac80211: Notify the low level driver on change in MLO valid links (bsc#1227149). * wifi: mac80211: Print local link address during authentication (bsc#1227149). * wifi: mac80211: Recalc offload when monitor stop (git-fixes). * wifi: mac80211: Remove unused function declarations (bsc#1227149). * wifi: mac80211: Rename and update IEEE80211_VIF_DISABLE_SMPS_OVERRIDE (bsc#1227149). * wifi: mac80211: Replace ENOTSUPP with EOPNOTSUPP (bsc#1227149). * wifi: mac80211: Sanity check tx bitrate if not provided by driver (bsc#1227149). * wifi: mac80211: Schedule regulatory channels check on bandwith change (bsc#1227149). * wifi: mac80211: Skip association timeout update after comeback rejection (bsc#1227149). * wifi: mac80211: add a driver callback to add vif debugfs (bsc#1227149). * wifi: mac80211: add a driver callback to check active_links (bsc#1227149). * wifi: mac80211: add a flag to disallow puncturing (bsc#1227149). * wifi: mac80211: add back SPDX identifier (bsc#1227149). * wifi: mac80211: add ieee80211_tdls_sta_link_id() (stable-fixes). * wifi: mac80211: add link id to ieee80211_gtk_rekey_add() (bsc#1227149). * wifi: mac80211: add link id to mgd_prepare_tx() (bsc#1227149). * wifi: mac80211: add more ops assertions (bsc#1227149). * wifi: mac80211: add more warnings about inserting sta info (bsc#1227149). * wifi: mac80211: add support for SPP A-MSDUs (bsc#1227149). * wifi: mac80211: add support for mld in ieee80211_chswitch_done (bsc#1227149). * wifi: mac80211: add support for parsing TID to Link mapping element (bsc#1227149). * wifi: mac80211: add/remove driver debugfs entries as appropriate (bsc#1227149). * wifi: mac80211: additions to change_beacon() (bsc#1227149). * wifi: mac80211: address some kerneldoc warnings (bsc#1227149). * wifi: mac80211: allow 64-bit radiotap timestamps (bsc#1227149). * wifi: mac80211: allow for_each_sta_active_link() under RCU (bsc#1227149). * wifi: mac80211: apply mcast rate only if interface is up (stable-fixes). * wifi: mac80211: cancel multi-link reconf work on disconnect (git-fixes). * wifi: mac80211: chanctx emulation set CHANGE_CHANNEL when in_reconfig (git- fixes). * wifi: mac80211: check EHT/TTLM action frame length (bsc#1227149). * wifi: mac80211: check wiphy mutex in ops (bsc#1227149). * wifi: mac80211: cleanup airtime arithmetic with ieee80211_sta_keep_active() (bsc#1227149). * wifi: mac80211: cleanup auth_data only if association continues (bsc#1227149). * wifi: mac80211: convert A-MPDU work to wiphy work (bsc#1227149). * wifi: mac80211: correctly set active links upon TTLM (bsc#1227149). * wifi: mac80211: correcty limit wider BW TDLS STAs (git-fixes). * wifi: mac80211: debugfs: lock wiphy instead of RTNL (bsc#1227149). * wifi: mac80211: describe return values in kernel-doc (bsc#1227149). * wifi: mac80211: disable softirqs for queued frame handling (git-fixes). * wifi: mac80211: do not connect to an AP while it's in a CSA process (bsc#1227149). * wifi: mac80211: do not re-add debugfs entries during resume (bsc#1227149). * wifi: mac80211: do not select link ID if not provided in scan request (bsc#1227149). * wifi: mac80211: do not set ESS capab bit in assoc request (bsc#1227149). * wifi: mac80211: drop robust action frames before assoc (bsc#1227149). * wifi: mac80211: drop spurious WARN_ON() in ieee80211_ibss_csa_beacon() (bsc#1227149). * wifi: mac80211: ethtool: always hold wiphy mutex (bsc#1227149). * wifi: mac80211: ethtool: hold wiphy mutex (bsc#1227149). * wifi: mac80211: expand __ieee80211_data_to_8023() status (bsc#1227149). * wifi: mac80211: extend wiphy lock in interface removal (bsc#1227149). * wifi: mac80211: fix BA session teardown race (bsc#1227149). * wifi: mac80211: fix BSS_CHANGED_UNSOL_BCAST_PROBE_RESP (bsc#1227149). * wifi: mac80211: fix SMPS status handling (bsc#1227149). * wifi: mac80211: fix TXQ error path and cleanup (bsc#1227149). * wifi: mac80211: fix UBSAN noise in ieee80211_prep_hw_scan() (stable-fixes). * wifi: mac80211: fix a expired vs. cancel race in roc (bsc#1227149). * wifi: mac80211: fix advertised TTLM scheduling (bsc#1227149). * wifi: mac80211: fix another key installation error path (bsc#1227149). * wifi: mac80211: fix change_address deadlock during unregister (bsc#1227149). * wifi: mac80211: fix channel switch link data (bsc#1227149). * wifi: mac80211: fix driver debugfs for vif type change (bsc#1227149). * wifi: mac80211: fix error path key leak (bsc#1227149). * wifi: mac80211: fix header kernel-doc typos (bsc#1227149). * wifi: mac80211: fix ieee80211_drop_unencrypted_mgmt return type/value (bsc#1227149). * wifi: mac80211: fix monitor channel with chanctx emulation (bsc#1227149). * wifi: mac80211: fix potential key leak (bsc#1227149). * wifi: mac80211: fix spelling typo in comment (bsc#1227149). * wifi: mac80211: fix unsolicited broadcast probe config (bsc#1227149). * wifi: mac80211: fix various kernel-doc issues (bsc#1227149). * wifi: mac80211: fixes in FILS discovery updates (bsc#1227149). * wifi: mac80211: flush STA queues on unauthorization (bsc#1227149). * wifi: mac80211: flush wiphy work where appropriate (bsc#1227149). * wifi: mac80211: handle debugfs when switching to/from MLO (bsc#1227149). * wifi: mac80211: handle tasklet frames before stopping (stable-fixes). * wifi: mac80211: hold wiphy lock in netdev/link debugfs (bsc#1227149). * wifi: mac80211: hold wiphy_lock around concurrency checks (bsc#1227149). * wifi: mac80211: improve CSA/ECSA connection refusal (bsc#1227149). * wifi: mac80211: initialize SMPS mode correctly (bsc#1227149). * wifi: mac80211: lock wiphy for aggregation debugfs (bsc#1227149). * wifi: mac80211: lock wiphy in IP address notifier (bsc#1227149). * wifi: mac80211: make mgd_protect_tdls_discover MLO-aware (bsc#1227149). * wifi: mac80211: mesh: Remove unused function declaration mesh_ids_set_default() (bsc#1227149). * wifi: mac80211: mesh: fix some kdoc warnings (bsc#1227149). * wifi: mac80211: mesh: init nonpeer_pm to active by default in mesh sdata (stable-fixes). * wifi: mac80211: move CSA finalize to wiphy work (bsc#1227149). * wifi: mac80211: move DFS CAC work to wiphy work (bsc#1227149). * wifi: mac80211: move TDLS work to wiphy work (bsc#1227149). * wifi: mac80211: move color change finalize to wiphy work (bsc#1227149). * wifi: mac80211: move dynamic PS to wiphy work (bsc#1227149). * wifi: mac80211: move filter reconfig to wiphy work (bsc#1227149). * wifi: mac80211: move key tailroom work to wiphy work (bsc#1227149). * wifi: mac80211: move link activation work to wiphy work (bsc#1227149). * wifi: mac80211: move monitor work to wiphy work (bsc#1227149). * wifi: mac80211: move tspec work to wiphy work (bsc#1227149). * wifi: mac80211: process and save negotiated TID to Link mapping request (bsc#1227149). * wifi: mac80211: purge TX queues in flush_queues flow (bsc#1227149). * wifi: mac80211: reduce iflist_mtx (bsc#1227149). * wifi: mac80211: reject MLO channel configuration if not supported (bsc#1227149). * wifi: mac80211: relax RCU check in for_each_vif_active_link() (bsc#1227149). * wifi: mac80211: remove RX_DROP_UNUSABLE (bsc#1227149). * wifi: mac80211: remove ampdu_mlme.mtx (bsc#1227149). * wifi: mac80211: remove chanctx_mtx (bsc#1227149). * wifi: mac80211: remove key_mtx (bsc#1227149). * wifi: mac80211: remove local->mtx (bsc#1227149). * wifi: mac80211: remove redundant ML element check (bsc#1227149). * wifi: mac80211: remove shifted rate support (bsc#1227149). * wifi: mac80211: remove sta_mtx (bsc#1227149). * wifi: mac80211: remove unnecessary struct forward declaration (bsc#1227149). * wifi: mac80211: rename ieee80211_tx_status() to ieee80211_tx_status_skb() (bsc#1227149). * wifi: mac80211: rename struct cfg80211_rx_assoc_resp to cfg80211_rx_assoc_resp_data (bsc#1227149). * wifi: mac80211: report per-link error during association (bsc#1227149). * wifi: mac80211: reset negotiated TTLM on disconnect (git-fixes). * wifi: mac80211: rework RX timestamp flags (bsc#1227149). * wifi: mac80211: rework ack_frame_id handling a bit (bsc#1227149). * wifi: mac80211: rx.c: fix sentence grammar (bsc#1227149). * wifi: mac80211: set wiphy for virtual monitors (bsc#1227149). * wifi: mac80211: simplify non-chanctx drivers (bsc#1227149). * wifi: mac80211: split ieee80211_drop_unencrypted_mgmt() return value (bsc#1227149). * wifi: mac80211: sta_info.c: fix sentence grammar (bsc#1227149). * wifi: mac80211: support antenna control in injection (bsc#1227149). * wifi: mac80211: support handling of advertised TID-to-link mapping (bsc#1227149). * wifi: mac80211: take MBSSID/EHT data also from probe resp (bsc#1227149). * wifi: mac80211: take wiphy lock for MAC addr change (bsc#1227149). * wifi: mac80211: tx: clarify conditions in if statement (bsc#1227149). * wifi: mac80211: update beacon counters per link basis (bsc#1227149). * wifi: mac80211: update some locking documentation (bsc#1227149). * wifi: mac80211: update the rx_chains after set_antenna() (bsc#1227149). * wifi: mac80211: use bandwidth indication element for CSA (bsc#1227149). * wifi: mac80211: use deflink and fix typo in link ID check (bsc#1227149). * wifi: mac80211: use wiphy locked debugfs for sdata/link (bsc#1227149). * wifi: mac80211: use wiphy locked debugfs helpers for agg_status (bsc#1227149). * wifi: mt7601u: delete dead code checking debugfs returns (bsc#1227149). * wifi: mt7601u: replace strlcpy() with strscpy() (bsc#1227149). * wifi: mt76: Annotate struct mt76_rx_tid with __counted_by (bsc#1227149). * wifi: mt76: Convert to platform remove callback returning void (bsc#1227149). * wifi: mt76: Remove redundant assignment to variable tidno (bsc#1227149). * wifi: mt76: Remove unnecessary (void*) conversions (bsc#1227149). * wifi: mt76: Replace strlcpy() with strscpy() (bsc#1227149). * wifi: mt76: Use PTR_ERR_OR_ZERO() to simplify code (bsc#1227149). * wifi: mt76: add DMA mapping error check in mt76_alloc_txwi() (bsc#1227149). * wifi: mt76: add ability to explicitly forbid LED registration with DT (bsc#1227149). * wifi: mt76: add support for providing eeprom in nvmem cells (bsc#1227149). * wifi: mt76: add tx_nss histogram to ethtool stats (bsc#1227149). * wifi: mt76: change txpower init to per-phy (bsc#1227149). * wifi: mt76: check sta rx control frame to multibss capability (bsc#1227149). * wifi: mt76: check txs format before getting skb by pid (bsc#1227149). * wifi: mt76: check vif type before reporting cca and csa (bsc#1227149). * wifi: mt76: connac: add MBSSID support for mt7996 (bsc#1227149). * wifi: mt76: connac: add beacon duplicate TX mode support for mt7996 (bsc#1227149). * wifi: mt76: connac: add beacon protection support for mt7996 (bsc#1227149). * wifi: mt76: connac: add connac3 mac library (bsc#1227149). * wifi: mt76: connac: add data field in struct tlv (bsc#1227149). * wifi: mt76: connac: add eht support for phy mode config (bsc#1227149). * wifi: mt76: connac: add eht support for tx power (bsc#1227149). * wifi: mt76: connac: add firmware support for mt7992 (bsc#1227149). * wifi: mt76: connac: add more unified command IDs (bsc#1227149). * wifi: mt76: connac: add more unified event IDs (bsc#1227149). * wifi: mt76: connac: add new definition of tx descriptor (bsc#1227149). * wifi: mt76: connac: add support for dsp firmware download (bsc#1227149). * wifi: mt76: connac: add support to set ifs time by mcu command (bsc#1227149). * wifi: mt76: connac: add thermal protection support for mt7996 (bsc#1227149). * wifi: mt76: connac: check for null before dereferencing (bsc#1227149). * wifi: mt76: connac: export functions for mt7925 (bsc#1227149). * wifi: mt76: connac: introduce helper for mt7925 chipset (bsc#1227149). * wifi: mt76: connac: set correct muar_idx for mt799x chipsets (bsc#1227149). * wifi: mt76: connac: set fixed_bw bit in TX descriptor for fixed rate frames (bsc#1227149). * wifi: mt76: connac: use muar idx 0xe for non-mt799x as well (bsc#1227149). * wifi: mt76: disable HW AMSDU when using fixed rate (bsc#1227149). * wifi: mt76: dma: introduce __mt76_dma_queue_reset utility routine (bsc#1227149). * wifi: mt76: enable UNII-4 channel 177 support (bsc#1227149). * wifi: mt76: fix race condition related to checking tx queue fill status (bsc#1227149). * wifi: mt76: fix the issue of missing txpwr settings from ch153 to ch177 (bsc#1227149). * wifi: mt76: fix typo in mt76_get_of_eeprom_from_nvmem function (bsc#1227149). * wifi: mt76: increase MT_QFLAG_WED_TYPE size (bsc#1227149). * wifi: mt76: introduce mt76_queue_is_wed_tx_free utility routine (bsc#1227149). * wifi: mt76: introduce wed pointer in mt76_queue (bsc#1227149). * wifi: mt76: limit support of precal loading for mt7915 to MTD only (bsc#1227149). * wifi: mt76: make mt76_get_of_eeprom static again (bsc#1227149). * wifi: mt76: mmio: move mt76_mmio_wed_{init,release}_rx_buf in common code (bsc#1227149). * wifi: mt76: move ampdu_state in mt76_wcid (bsc#1227149). * wifi: mt76: move mt76_mmio_wed_offload_{enable,disable} in common code (bsc#1227149). * wifi: mt76: move mt76_net_setup_tc in common code (bsc#1227149). * wifi: mt76: move rate info in mt76_vif (bsc#1227149). * wifi: mt76: move wed reset common code in mt76 module (bsc#1227149). * wifi: mt76: mt7603: add missing register initialization for MT7628 (bsc#1227149). * wifi: mt76: mt7603: disable A-MSDU tx support on MT7628 (bsc#1227149). * wifi: mt76: mt7603: fix beacon interval after disabling a single vif (bsc#1227149). * wifi: mt76: mt7603: fix tx filter/flush function (bsc#1227149). * wifi: mt76: mt7603: rely on shared poll_list field (bsc#1227149). * wifi: mt76: mt7603: rely on shared sta_poll_list and sta_poll_lock (bsc#1227149). * wifi: mt76: mt7615: add missing chanctx ops (bsc#1227149). * wifi: mt76: mt7615: enable BSS_CHANGED_MU_GROUPS support (bsc#1227149). * wifi: mt76: mt7615: rely on shared poll_list field (bsc#1227149). * wifi: mt76: mt7615: rely on shared sta_poll_list and sta_poll_lock (bsc#1227149). * wifi: mt76: mt76_connac3: move lmac queue enumeration in mt76_connac3_mac.h (bsc#1227149). * wifi: mt76: mt76x02: fix return value check in mt76x02_mac_process_rx (bsc#1227149). * wifi: mt76: mt76x2u: add netgear wdna3100v3 to device table (bsc#1227149). * wifi: mt76: mt7915 add tc offloading support (bsc#1227149). * wifi: mt76: mt7915: accumulate mu-mimo ofdma muru stats (bsc#1227149). * wifi: mt76: mt7915: add locking for accessing mapped registers (bsc#1227149). * wifi: mt76: mt7915: add missing chanctx ops (bsc#1227149). * wifi: mt76: mt7915: add support for MT7981 (bsc#1227149). * wifi: mt76: mt7915: also MT7981 is 3T3R but nss2 on 5 GHz band (bsc#1227149). * wifi: mt76: mt7915: disable WFDMA Tx/Rx during SER recovery (bsc#1227149). * wifi: mt76: mt7915: drop return in mt7915_sta_statistics (bsc#1227149). * wifi: mt76: mt7915: fix EEPROM offset of TSSI flag on MT7981 (bsc#1227149). * wifi: mt76: mt7915: fix error recovery with WED enabled (bsc#1227149). * wifi: mt76: mt7915: fix monitor mode issues (bsc#1227149). * wifi: mt76: mt7915: move mib_stats structure in mt76.h (bsc#1227149). * wifi: mt76: mt7915: move poll_list in mt76_wcid (bsc#1227149). * wifi: mt76: mt7915: move sta_poll_list and sta_poll_lock in mt76_dev (bsc#1227149). * wifi: mt76: mt7915: report tx retries/failed counts for non-WED path (bsc#1227149). * wifi: mt76: mt7915: update mpdu density capability (bsc#1227149). * wifi: mt76: mt7915: update mt798x_wmac_adie_patch_7976 (bsc#1227149). * wifi: mt76: mt7921: Support temp sensor (bsc#1227149). * wifi: mt76: mt7921: add 6GHz power type support for clc (bsc#1227149). * wifi: mt76: mt7921: convert acpisar and clc pointers to void (bsc#1227149). * wifi: mt76: mt7921: enable set txpower for UNII-4 (bsc#1227149). * wifi: mt76: mt7921: fix 6GHz disabled by the missing default CLC config (bsc#1227149). * wifi: mt76: mt7921: fix CLC command timeout when suspend/resume (bsc#1227149). * wifi: mt76: mt7921: fix a potential association failure upon resuming (bsc#1227149). * wifi: mt76: mt7921: fix kernel panic by accessing invalid 6GHz channel info (bsc#1227149). * wifi: mt76: mt7921: fix suspend issue on MediaTek COB platform (bsc#1227149). * wifi: mt76: mt7921: fix the unfinished command of regd_notifier before suspend (bsc#1227149). * wifi: mt76: mt7921: fix wrong 6Ghz power type (bsc#1227149). * wifi: mt76: mt7921: get regulatory information from the clc event (bsc#1227149). * wifi: mt76: mt7921: get rid of MT7921_RESET_TIMEOUT marco (bsc#1227149). * wifi: mt76: mt7921: make mt7921_mac_sta_poll static (bsc#1227149). * wifi: mt76: mt7921: move acpi_sar code in mt792x-lib module (bsc#1227149). * wifi: mt76: mt7921: move common register definition in mt792x_regs.h (bsc#1227149). * wifi: mt76: mt7921: move connac nic capability handling to mt7921 (bsc#1227149). * wifi: mt76: mt7921: move debugfs shared code in mt792x-lib module (bsc#1227149). * wifi: mt76: mt7921: move dma shared code in mt792x-lib module (bsc#1227149). * wifi: mt76: mt7921: move hif_ops macro in mt792x.h (bsc#1227149). * wifi: mt76: mt7921: move init shared code in mt792x-lib module (bsc#1227149). * wifi: mt76: mt7921: move mac shared code in mt792x-lib module (bsc#1227149). * wifi: mt76: mt7921: move mt7921_dma_init in pci.c (bsc#1227149). * wifi: mt76: mt7921: move mt7921u_disconnect mt792x-lib (bsc#1227149). * wifi: mt76: mt7921: move mt792x_hw_dev in mt792x.h (bsc#1227149). * wifi: mt76: mt7921: move mt792x_mutex_{acquire/release} in mt792x.h (bsc#1227149). * wifi: mt76: mt7921: move runtime-pm pci code in mt792x-lib (bsc#1227149). * wifi: mt76: mt7921: move shared runtime-pm code on mt792x-lib (bsc#1227149). * wifi: mt76: mt7921: reduce the size of MCU firmware download Rx queue (bsc#1227149). * wifi: mt76: mt7921: rely on mib_stats shared definition (bsc#1227149). * wifi: mt76: mt7921: rely on shared poll_list field (bsc#1227149). * wifi: mt76: mt7921: rely on shared sta_poll_list and sta_poll_lock (bsc#1227149). * wifi: mt76: mt7921: remove macro duplication in regs.h (bsc#1227149). * wifi: mt76: mt7921: rename mt7921_dev in mt792x_dev (bsc#1227149). * wifi: mt76: mt7921: rename mt7921_hif_ops in mt792x_hif_ops (bsc#1227149). * wifi: mt76: mt7921: rename mt7921_phy in mt792x_phy (bsc#1227149). * wifi: mt76: mt7921: rename mt7921_sta in mt792x_sta (bsc#1227149). * wifi: mt76: mt7921: rename mt7921_vif in mt792x_vif (bsc#1227149). * wifi: mt76: mt7921: support 5.9/6GHz channel config in acpi (bsc#1227149). * wifi: mt76: mt7921: update the channel usage when the regd domain changed (bsc#1227149). * wifi: mt76: mt7921e: report tx retries/failed counts in tx free event (bsc#1227149). * wifi: mt76: mt7925: add Mediatek Wi-Fi7 driver for mt7925 chips (bsc#1227149). * wifi: mt76: mt7925: add flow to avoid chip bt function fail (bsc#1227149). * wifi: mt76: mt7925: add support to set ifs time by mcu command (bsc#1227149). * wifi: mt76: mt7925: ensure 4-byte alignment for suspend & wow command (bsc#1227149). * wifi: mt76: mt7925: fix SAP no beacon issue in 5Ghz and 6Ghz band (bsc#1227149). * wifi: mt76: mt7925: fix WoW failed in encrypted mode (bsc#1227149). * wifi: mt76: mt7925: fix connect to 80211b mode fail in 2Ghz band (bsc#1227149). * wifi: mt76: mt7925: fix fw download fail (bsc#1227149). * wifi: mt76: mt7925: fix mcu query command fail (bsc#1227149). * wifi: mt76: mt7925: fix the wrong data type for scan command (bsc#1227149). * wifi: mt76: mt7925: fix the wrong header translation config (bsc#1227149). * wifi: mt76: mt7925: fix typo in mt7925_init_he_caps (bsc#1227149). * wifi: mt76: mt7925: fix wmm queue mapping (bsc#1227149). * wifi: mt76: mt7925: remove iftype from mt7925_init_eht_caps signature (bsc#1227149). * wifi: mt76: mt7925: support temperature sensor (bsc#1227149). * wifi: mt76: mt7925: update PCIe DMA settings (bsc#1227149). * wifi: mt76: mt7925e: fix use-after-free in free_irq() (bsc#1227149). * wifi: mt76: mt792x: add the illegal value check for mtcl table of acpi (bsc#1227149). * wifi: mt76: mt792x: fix ethtool warning (bsc#1227149). * wifi: mt76: mt792x: introduce mt792x-lib module (bsc#1227149). * wifi: mt76: mt792x: introduce mt792x-usb module (bsc#1227149). * wifi: mt76: mt792x: introduce mt792x_irq_map (bsc#1227149). * wifi: mt76: mt792x: move MT7921_PM_TIMEOUT and MT7921_HW_SCAN_TIMEOUT in common code (bsc#1227149). * wifi: mt76: mt792x: move more dma shared code in mt792x_dma (bsc#1227149). * wifi: mt76: mt792x: move mt7921_load_firmware in mt792x-lib module (bsc#1227149). * wifi: mt76: mt792x: move mt7921_skb_add_usb_sdio_hdr in mt792x module (bsc#1227149). * wifi: mt76: mt792x: move shared structure definition in mt792x.h (bsc#1227149). * wifi: mt76: mt792x: move some common usb code in mt792x module (bsc#1227149). * wifi: mt76: mt792x: support mt7925 chip init (bsc#1227149). * wifi: mt76: mt792x: update the country list of EU for ACPI SAR (bsc#1227149). * wifi: mt76: mt792xu: enable dmashdl support (bsc#1227149). * wifi: mt76: mt7996: Add mcu commands for getting sta tx statistic (bsc#1227149). * wifi: mt76: mt7996: Use DECLARE_FLEX_ARRAY() and fix -Warray-bounds warnings (bsc#1227149). * wifi: mt76: mt7996: add DMA support for mt7992 (bsc#1227149). * wifi: mt76: mt7996: add TX statistics for EHT mode in debugfs (bsc#1227149). * wifi: mt76: mt7996: add muru support (bsc#1227149). * wifi: mt76: mt7996: add sanity checks for background radar trigger (stable- fixes). * wifi: mt76: mt7996: add support for variants with auxiliary RX path (bsc#1227149). * wifi: mt76: mt7996: add thermal sensor device support (bsc#1227149). * wifi: mt76: mt7996: add txpower setting support (bsc#1227149). * wifi: mt76: mt7996: adjust WFDMA settings to improve performance (bsc#1227149). * wifi: mt76: mt7996: adjust interface num and wtbl size for mt7992 (bsc#1227149). * wifi: mt76: mt7996: align the format of fixed rate command (bsc#1227149). * wifi: mt76: mt7996: check txs format before getting skb by pid (bsc#1227149). * wifi: mt76: mt7996: disable WFDMA Tx/Rx during SER recovery (bsc#1227149). * wifi: mt76: mt7996: drop return in mt7996_sta_statistics (bsc#1227149). * wifi: mt76: mt7996: enable BSS_CHANGED_MU_GROUPS support (bsc#1227149). * wifi: mt76: mt7996: enable PPDU-TxS to host (bsc#1227149). * wifi: mt76: mt7996: enable VHT extended NSS BW feature (bsc#1227149). * wifi: mt76: mt7996: ensure 4-byte alignment for beacon commands (bsc#1227149). * wifi: mt76: mt7996: fix alignment of sta info event (bsc#1227149). * wifi: mt76: mt7996: fix fortify warning (bsc#1227149). * wifi: mt76: mt7996: fix fw loading timeout (bsc#1227149). * wifi: mt76: mt7996: fix mt7996_mcu_all_sta_info_event struct packing (bsc#1227149). * wifi: mt76: mt7996: fix potential memory leakage when reading chip temperature (bsc#1227149). * wifi: mt76: mt7996: fix size of txpower MCU command (bsc#1227149). * wifi: mt76: mt7996: fix uninitialized variable in mt7996_irq_tasklet() (bsc#1227149). * wifi: mt76: mt7996: fix uninitialized variable in parsing txfree (bsc#1227149). * wifi: mt76: mt7996: get tx_retries and tx_failed from txfree (bsc#1227149). * wifi: mt76: mt7996: handle IEEE80211_RC_SMPS_CHANGED (bsc#1227149). * wifi: mt76: mt7996: increase tx token size (bsc#1227149). * wifi: mt76: mt7996: introduce mt7996_band_valid() (bsc#1227149). * wifi: mt76: mt7996: mark GCMP IGTK unsupported (bsc#1227149). * wifi: mt76: mt7996: move radio ctrl commands to proper functions (bsc#1227149). * wifi: mt76: mt7996: only set vif teardown cmds at remove interface (bsc#1227149). * wifi: mt76: mt7996: rely on mib_stats shared definition (bsc#1227149). * wifi: mt76: mt7996: rely on shared poll_list field (bsc#1227149). * wifi: mt76: mt7996: rely on shared sta_poll_list and sta_poll_lock (bsc#1227149). * wifi: mt76: mt7996: remove TXS queue setting (bsc#1227149). * wifi: mt76: mt7996: remove periodic MPDU TXS request (bsc#1227149). * wifi: mt76: mt7996: rework ampdu params setting (bsc#1227149). * wifi: mt76: mt7996: rework register offsets for mt7992 (bsc#1227149). * wifi: mt76: mt7996: set DMA mask to 36 bits for boards with more than 4GB of RAM (bsc#1227149). * wifi: mt76: mt7996: support more options for mt7996_set_bitrate_mask() (bsc#1227149). * wifi: mt76: mt7996: support mt7992 eeprom loading (bsc#1227149). * wifi: mt76: mt7996: support per-band LED control (bsc#1227149). * wifi: mt76: mt7996: switch to mcu command for TX GI report (bsc#1227149). * wifi: mt76: mt7996: use u16 for val field in mt7996_mcu_set_rro signature (bsc#1227149). * wifi: mt76: permit to load precal from NVMEM cell for mt7915 (bsc#1227149). * wifi: mt76: permit to use alternative cell name to eeprom NVMEM load (bsc#1227149). * wifi: mt76: reduce spin_lock_bh held up in mt76_dma_rx_cleanup (bsc#1227149). * wifi: mt76: replace skb_put with skb_put_zero (stable-fixes). * wifi: mt76: report non-binding skb tx rate when WED is active (bsc#1227149). * wifi: mt76: set page_pool napi pointer for mmio devices (bsc#1227149). * wifi: mt76: split get_of_eeprom in subfunction (bsc#1227149). * wifi: mt76: usb: create a dedicated queue for psd traffic (bsc#1227149). * wifi: mt76: usb: store usb endpoint in mt76_queue (bsc#1227149). * wifi: mt76: use atomic iface iteration for pre-TBTT work (bsc#1227149). * wifi: mt76: use chainmask for power delta calculation (bsc#1227149). * wifi: mwifiex: Drop unused headers (bsc#1227149). * wifi: mwifiex: Fix interface type change (git-fixes). * wifi: mwifiex: Refactor 1-element array into flexible array in struct mwifiex_ie_types_chan_list_param_set (bsc#1227149). * wifi: mwifiex: Replace one-element array with flexible-array member in struct mwifiex_ie_types_rxba_sync (bsc#1227149). * wifi: mwifiex: Set WIPHY_FLAG_NETNS_OK flag (bsc#1227149). * wifi: mwifiex: Use default @max_active for workqueues (bsc#1227149). * wifi: mwifiex: Use helpers to check multicast addresses (bsc#1227149). * wifi: mwifiex: Use list_count_nodes() (bsc#1227149). * wifi: mwifiex: cleanup adapter data (bsc#1227149). * wifi: mwifiex: cleanup private data structures (bsc#1227149). * wifi: mwifiex: cleanup struct mwifiex_sdio_mpa_rx (bsc#1227149). * wifi: mwifiex: drop BUG_ON from TX paths (bsc#1227149). * wifi: mwifiex: fix comment typos in SDIO module (bsc#1227149). * wifi: mwifiex: followup PCIE and related cleanups (bsc#1227149). * wifi: mwifiex: handle possible mwifiex_write_reg() errors (bsc#1227149). * wifi: mwifiex: handle possible sscanf() errors (bsc#1227149). * wifi: mwifiex: mwifiex_process_sleep_confirm_resp(): remove unused priv variable (bsc#1227149). * wifi: mwifiex: prefer strscpy() over strlcpy() (bsc#1227149). * wifi: mwifiex: simplify PCIE write operations (bsc#1227149). * wifi: mwifiex: use MODULE_FIRMWARE to add firmware files metadata (bsc#1227149). * wifi: mwifiex: use cfg80211_ssid_eq() instead of mwifiex_ssid_cmp() (bsc#1227149). * wifi: mwifiex: use is_zero_ether_addr() instead of ether_addr_equal() (bsc#1227149). * wifi: mwifiex: use kstrtoX_from_user() in debugfs handlers (bsc#1227149). * wifi: nl80211: Extend del pmksa support for SAE and OWE security (bsc#1227149). * wifi: nl80211: Remove unused declaration nl80211_pmsr_dump_results() (bsc#1227149). * wifi: nl80211: additions to NL80211_CMD_SET_BEACON (bsc#1227149). * wifi: nl80211: allow reporting wakeup for unprot deauth/disassoc (bsc#1227149). * wifi: nl80211: fixes to FILS discovery updates (bsc#1227149). * wifi: nl80211: refactor nl80211_send_mlme_event() arguments (bsc#1227149). * wifi: p54: Add missing MODULE_FIRMWARE macro (bsc#1227149). * wifi: p54: Annotate struct p54_cal_database with __counted_by (bsc#1227149). * wifi: p54: fix GCC format truncation warning with wiphy->fw_version (bsc#1227149). * wifi: plfxlc: Drop unused include (bsc#1227149). * wifi: radiotap: add bandwidth definition of EHT U-SIG (bsc#1227149). * wifi: remove unused argument of ieee80211_get_tdls_action() (bsc#1227149). * wifi: rsi: fix restricted __le32 degrades to integer sparse warnings (bsc#1227149). * wifi: rsi: rsi_91x_coex: Remove unnecessary (void*) conversions (bsc#1227149). * wifi: rsi: rsi_91x_debugfs: Remove unnecessary (void*) conversions (bsc#1227149). * wifi: rsi: rsi_91x_hal: Remove unnecessary conversions (bsc#1227149). * wifi: rsi: rsi_91x_mac80211: Remove unnecessary conversions (bsc#1227149). * wifi: rsi: rsi_91x_main: Remove unnecessary (void*) conversions (bsc#1227149). * wifi: rsi: rsi_91x_sdio: Remove unnecessary (void*) conversions (bsc#1227149). * wifi: rsi: rsi_91x_sdio_ops: Remove unnecessary (void*) conversions (bsc#1227149). * wifi: rsi: rsi_91x_usb: Remove unnecessary (void*) conversions (bsc#1227149). * wifi: rsi: rsi_91x_usb_ops: Remove unnecessary (void*) conversions (bsc#1227149). * wifi: rt2x00: Simplify bool conversion (bsc#1227149). * wifi: rt2x00: correct MAC_SYS_CTRL register RX mask in R-Calibration (bsc#1227149). * wifi: rt2x00: disable RTS threshold for rt2800 by default (bsc#1227149). * wifi: rt2x00: fix MT7620 low RSSI issue (bsc#1227149). * wifi: rt2x00: fix rt2800 watchdog function (bsc#1227149). * wifi: rt2x00: fix the typo in comments (bsc#1227149). * wifi: rt2x00: improve MT7620 register initialization (bsc#1227149). * wifi: rt2x00: introduce DMA busy check watchdog for rt2800 (bsc#1227149). * wifi: rt2x00: limit MT7620 TX power based on eeprom calibration (bsc#1227149). * wifi: rt2x00: make watchdog param per device (bsc#1227149). * wifi: rt2x00: remove redundant check if u8 array element is less than zero (bsc#1227149). * wifi: rt2x00: remove useless code in rt2x00queue_create_tx_descriptor() (bsc#1227149). * wifi: rt2x00: rework MT7620 PA/LNA RF calibration (bsc#1227149). * wifi: rt2x00: rework MT7620 channel config function (bsc#1227149). * wifi: rt2x00: silence sparse warnings (bsc#1227149). * wifi: rt2x00: simplify rt2x00crypto_rx_insert_iv() (bsc#1227149). * wifi: rtl8xxxu: 8188e: convert usage of priv->vif to priv->vifs[0] (bsc#1227149). * wifi: rtl8xxxu: 8188f: Limit TX power index (git-fixes). * wifi: rtl8xxxu: Actually use macid in rtl8xxxu_gen2_report_connect (bsc#1227149). * wifi: rtl8xxxu: Add TP-Link TL-WN823N V2 (bsc#1227149). * wifi: rtl8xxxu: Add a description about the device ID 0x7392:0xb722 (bsc#1227149). * wifi: rtl8xxxu: Add beacon functions (bsc#1227149). * wifi: rtl8xxxu: Add parameter force to rtl8xxxu_refresh_rate_mask (bsc#1227149). * wifi: rtl8xxxu: Add parameter macid to update_rate_mask (bsc#1227149). * wifi: rtl8xxxu: Add parameter role to report_connect (bsc#1227149). * wifi: rtl8xxxu: Add set_tim() callback (bsc#1227149). * wifi: rtl8xxxu: Add sta_add() and sta_remove() callbacks (bsc#1227149). * wifi: rtl8xxxu: Add start_ap() callback (bsc#1227149). * wifi: rtl8xxxu: Allow creating interface in AP mode (bsc#1227149). * wifi: rtl8xxxu: Allow setting rts threshold to -1 (bsc#1227149). * wifi: rtl8xxxu: Clean up filter configuration (bsc#1227149). * wifi: rtl8xxxu: Declare AP mode support for 8188f (bsc#1227149). * wifi: rtl8xxxu: Enable AP mode for RTL8192EU (bsc#1227149). * wifi: rtl8xxxu: Enable AP mode for RTL8192FU (bsc#1227149). * wifi: rtl8xxxu: Enable AP mode for RTL8710BU (RTL8188GU) (bsc#1227149). * wifi: rtl8xxxu: Enable AP mode for RTL8723BU (bsc#1227149). * wifi: rtl8xxxu: Enable hw seq for mgmt/non-QoS data frames (bsc#1227149). * wifi: rtl8xxxu: Fix LED control code of RTL8192FU (bsc#1227149). * wifi: rtl8xxxu: Fix off by one initial RTS rate (bsc#1227149). * wifi: rtl8xxxu: Put the macid in txdesc (bsc#1227149). * wifi: rtl8xxxu: Remove usage of ieee80211_get_tx_rate() (bsc#1227149). * wifi: rtl8xxxu: Remove usage of tx_info->control.rates[0].flags (bsc#1227149). * wifi: rtl8xxxu: Rename some registers (bsc#1227149). * wifi: rtl8xxxu: Select correct queue for beacon frames (bsc#1227149). * wifi: rtl8xxxu: Set maximum number of supported stations (bsc#1227149). * wifi: rtl8xxxu: Support USB RX aggregation for the newer chips (bsc#1227149). * wifi: rtl8xxxu: Support new chip RTL8192FU (bsc#1227149). * wifi: rtl8xxxu: add hw crypto support for AP mode (bsc#1227149). * wifi: rtl8xxxu: add macids for STA mode (bsc#1227149). * wifi: rtl8xxxu: add missing number of sec cam entries for all variants (bsc#1227149). * wifi: rtl8xxxu: check vif before using in rtl8xxxu_tx() (bsc#1227149). * wifi: rtl8xxxu: convert EN_DESC_ID of TX descriptor to le32 type (bsc#1227149). * wifi: rtl8xxxu: declare concurrent mode support for 8188f (bsc#1227149). * wifi: rtl8xxxu: do not parse CFO, if both interfaces are connected in STA mode (bsc#1227149). * wifi: rtl8xxxu: enable MFP support with security flag of RX descriptor (bsc#1227149). * wifi: rtl8xxxu: enable channel switch support (bsc#1227149). * wifi: rtl8xxxu: extend check for matching bssid to both interfaces (bsc#1227149). * wifi: rtl8xxxu: extend wifi connected check to both interfaces (bsc#1227149). * wifi: rtl8xxxu: fix error messages (bsc#1227149). * wifi: rtl8xxxu: fix mixed declarations in rtl8xxxu_set_aifs() (bsc#1227149). * wifi: rtl8xxxu: make instances of iface limit and combination to be static const (bsc#1227149). * wifi: rtl8xxxu: make supporting AP mode only on port 0 transparent (bsc#1227149). * wifi: rtl8xxxu: mark TOTOLINK N150UA V5/N150UA-B as tested (bsc#1227149). * wifi: rtl8xxxu: prepare supporting two virtual interfaces (bsc#1227149). * wifi: rtl8xxxu: remove assignment of priv->vif in rtl8xxxu_bss_info_changed() (bsc#1227149). * wifi: rtl8xxxu: remove obsolete priv->vif (bsc#1227149). * wifi: rtl8xxxu: rtl8xxxu_rx_complete(): remove unnecessary return (bsc#1227149). * wifi: rtl8xxxu: support multiple interface in start_ap() (bsc#1227149). * wifi: rtl8xxxu: support multiple interfaces in bss_info_changed() (bsc#1227149). * wifi: rtl8xxxu: support multiple interfaces in configure_filter() (bsc#1227149). * wifi: rtl8xxxu: support multiple interfaces in set_aifs() (bsc#1227149). * wifi: rtl8xxxu: support multiple interfaces in update_beacon_work_callback() (bsc#1227149). * wifi: rtl8xxxu: support multiple interfaces in watchdog_callback() (bsc#1227149). * wifi: rtl8xxxu: support multiple interfaces in {add,remove}_interface() (bsc#1227149). * wifi: rtl8xxxu: support setting bssid register for multiple interfaces (bsc#1227149). * wifi: rtl8xxxu: support setting linktype for both interfaces (bsc#1227149). * wifi: rtl8xxxu: support setting mac address register for both interfaces (bsc#1227149). * wifi: rtl8xxxu: update rate mask per sta (bsc#1227149). * wifi: rtlwifi: Convert to use PCIe capability accessors (bsc#1227149). * wifi: rtlwifi: Ignore IEEE80211_CONF_CHANGE_RETRY_LIMITS (bsc#1227149). * wifi: rtlwifi: Remove bridge vendor/device ids (bsc#1227149). * wifi: rtlwifi: Remove rtl_intf_ops.read_efuse_byte (bsc#1227149). * wifi: rtlwifi: Remove unused PCI related defines and struct (bsc#1227149). * wifi: rtlwifi: Speed up firmware loading for USB (bsc#1227149). * wifi: rtlwifi: cleanup USB interface (bsc#1227149). * wifi: rtlwifi: cleanup few rtlxxx_tx_fill_desc() routines (bsc#1227149). * wifi: rtlwifi: cleanup few rtlxxxx_set_hw_reg() routines (bsc#1227149). * wifi: rtlwifi: cleanup struct rtl_hal (bsc#1227149). * wifi: rtlwifi: cleanup struct rtl_phy (bsc#1227149). * wifi: rtlwifi: cleanup struct rtl_ps_ctl (bsc#1227149). * wifi: rtlwifi: drop chk_switch_dmdp() from HAL interface (bsc#1227149). * wifi: rtlwifi: drop fill_fake_txdesc() from HAL interface (bsc#1227149). * wifi: rtlwifi: drop pre_fill_tx_bd_desc() from HAL interface (bsc#1227149). * wifi: rtlwifi: drop unused const_amdpci_aspm (bsc#1227149). * wifi: rtlwifi: remove misused flag from HAL data (bsc#1227149). * wifi: rtlwifi: remove unreachable code in rtl92d_dm_check_edca_turbo() (bsc#1227149). * wifi: rtlwifi: remove unused dualmac control leftovers (bsc#1227149). * wifi: rtlwifi: remove unused timer and related code (bsc#1227149). * wifi: rtlwifi: rtl8192cu: Fix 2T2R chip type detection (bsc#1227149). * wifi: rtlwifi: rtl8192cu: Fix TX aggregation (bsc#1227149). * wifi: rtlwifi: rtl8192de: Do not read register in _rtl92de_query_rxphystatus (bsc#1227149). * wifi: rtlwifi: rtl8723: Remove unused function rtl8723_cmd_send_packet() (bsc#1227149). * wifi: rtlwifi: rtl8821ae: Access full PMCS reg and use pci_regs.h (bsc#1227149). * wifi: rtlwifi: rtl8821ae: Add pdev into _rtl8821ae_clear_pci_pme_status() (bsc#1227149). * wifi: rtlwifi: rtl8821ae: Remove unnecessary PME_Status bit set (bsc#1227149). * wifi: rtlwifi: rtl8821ae: Reverse PM Capability exists check (bsc#1227149). * wifi: rtlwifi: rtl8821ae: Use pci_find_capability() (bsc#1227149). * wifi: rtlwifi: rtl8821ae: phy: remove some useless code (bsc#1227149). * wifi: rtlwifi: rtl8821ae: phy: using calculate_bit_shift() (bsc#1227149). * wifi: rtlwifi: rtl92ee_dm_dynamic_primary_cca_check(): fix typo in function name (bsc#1227149). * wifi: rtlwifi: rtl_usb: Store the endpoint addresses (bsc#1227149). * wifi: rtlwifi: rtl_usb: Use sync register writes (bsc#1227149). * wifi: rtlwifi: set initial values for unexpected cases of USB endpoint priority (bsc#1227149). * wifi: rtlwifi: simplify LED management (bsc#1227149). * wifi: rtlwifi: simplify TX command fill callbacks (bsc#1227149). * wifi: rtlwifi: simplify rtl_action_proc() and rtl_tx_agg_start() (bsc#1227149). * wifi: rtlwifi: use convenient list_count_nodes() (bsc#1227149). * wifi: rtlwifi: use eth_broadcast_addr() to assign broadcast address (bsc#1227149). * wifi: rtlwifi: use helper function rtl_get_hdr() (bsc#1227149). * wifi: rtlwifi: use unsigned long for bt_coexist_8723 timestamp (bsc#1227149). * wifi: rtlwifi: use unsigned long for rtl_bssid_entry timestamp (bsc#1227149). * wifi: rtw88: 8821c: tweak CCK TX filter setting for SRRC regulation (bsc#1227149). * wifi: rtw88: 8821c: update TX power limit to V67 (bsc#1227149). * wifi: rtw88: 8822c: update TX power limit to V70 (bsc#1227149). * wifi: rtw88: 8822ce: refine power parameters for RFE type 5 (bsc#1227149). * wifi: rtw88: Add support for the SDIO based RTL8723DS chipset (bsc#1227149). * wifi: rtw88: Fix AP mode incorrect DTIM behavior (bsc#1227149). * wifi: rtw88: Fix action frame transmission fail before association (bsc#1227149). * wifi: rtw88: Skip high queue in hci_flush (bsc#1227149). * wifi: rtw88: Stop high queue during scan (bsc#1227149). * wifi: rtw88: Use random MAC when efuse MAC invalid (bsc#1227149). * wifi: rtw88: add missing unwind goto for __rtw_download_firmware() (bsc#1227149). * wifi: rtw88: debug: add to check if debug mask is enabled (bsc#1227149). * wifi: rtw88: debug: remove wrapper of rtw_dbg() (bsc#1227149). * wifi: rtw88: dump firmware debug information in abnormal state (bsc#1227149). * wifi: rtw88: fix incorrect error codes in rtw_debugfs_copy_from_user (bsc#1227149). * wifi: rtw88: fix incorrect error codes in rtw_debugfs_set_* (bsc#1227149). * wifi: rtw88: fix not entering PS mode after AP stops (bsc#1227149). * wifi: rtw88: fix typo rtw8822cu_probe (bsc#1227149). * wifi: rtw88: process VO packets without workqueue to avoid PTK rekey failed (bsc#1227149). * wifi: rtw88: refine register based H2C command (bsc#1227149). * wifi: rtw88: regd: configure QATAR and UK (bsc#1227149). * wifi: rtw88: regd: update regulatory map to R64-R42 (bsc#1227149). * wifi: rtw88: remove unused USB bulkout size set (bsc#1227149). * wifi: rtw88: remove unused and set but unused leftovers (bsc#1227149). * wifi: rtw88: rtw8723d: Implement RTL8723DS (SDIO) efuse parsing (bsc#1227149). * wifi: rtw88: simplify __rtw_tx_work() (bsc#1227149). * wifi: rtw88: simplify vif iterators (bsc#1227149). * wifi: rtw88: use cfg80211_ssid_eq() instead of rtw_ssid_equal() (bsc#1227149). * wifi: rtw88: use kstrtoX_from_user() in debugfs handlers (bsc#1227149). * wifi: rtw88: use struct instead of macros to set TX desc (bsc#1227149). * wifi: rtw89: 52c: rfk: disable DPK during MCC (bsc#1227149). * wifi: rtw89: 52c: rfk: refine MCC channel info notification (bsc#1227149). * wifi: rtw89: 8851b: add 8851B basic chip_info (bsc#1227149). * wifi: rtw89: 8851b: add 8851be to Makefile and Kconfig (bsc#1227149). * wifi: rtw89: 8851b: add BT coexistence support function (bsc#1227149). * wifi: rtw89: 8851b: add DLE mem and HFC quota (bsc#1227149). * wifi: rtw89: 8851b: add MAC configurations to chip_info (bsc#1227149). * wifi: rtw89: 8851b: add NCTL post table (bsc#1227149). * wifi: rtw89: 8851b: add RF configurations (bsc#1227149). * wifi: rtw89: 8851b: add TX power related functions (bsc#1227149). * wifi: rtw89: 8851b: add basic power on function (bsc#1227149). * wifi: rtw89: 8851b: add set channel function (bsc#1227149). * wifi: rtw89: 8851b: add set_channel_rf() (bsc#1227149). * wifi: rtw89: 8851b: add support WoWLAN to 8851B (bsc#1227149). * wifi: rtw89: 8851b: add to parse efuse content (bsc#1227149). * wifi: rtw89: 8851b: add to read efuse version to recognize hardware version B (bsc#1227149). * wifi: rtw89: 8851b: configure CRASH_TRIGGER feature for 8851B (bsc#1227149). * wifi: rtw89: 8851b: configure GPIO according to RFE type (bsc#1227149). * wifi: rtw89: 8851b: configure to force 1 TX power value (bsc#1227149). * wifi: rtw89: 8851b: enable hw_scan support (bsc#1227149). * wifi: rtw89: 8851b: fill BB related capabilities to chip_info (bsc#1227149). * wifi: rtw89: 8851b: rfk: Fix spelling mistake KIP_RESOTRE -> KIP_RESTORE (bsc#1227149). * wifi: rtw89: 8851b: rfk: add AACK (bsc#1227149). * wifi: rtw89: 8851b: rfk: add DACK (bsc#1227149). * wifi: rtw89: 8851b: rfk: add DPK (bsc#1227149). * wifi: rtw89: 8851b: rfk: add IQK (bsc#1227149). * wifi: rtw89: 8851b: rfk: add LCK track (bsc#1227149). * wifi: rtw89: 8851b: rfk: add RCK (bsc#1227149). * wifi: rtw89: 8851b: rfk: add RX DCK (bsc#1227149). * wifi: rtw89: 8851b: rfk: add TSSI (bsc#1227149). * wifi: rtw89: 8851b: rfk: update IQK to version 0x8 (bsc#1227149). * wifi: rtw89: 8851b: update RF radio A parameters to R28 (bsc#1227149). * wifi: rtw89: 8851b: update TX power tables to R28 (bsc#1227149). * wifi: rtw89: 8851b: update TX power tables to R34 (bsc#1227149). * wifi: rtw89: 8851b: update TX power tables to R37 (bsc#1227149). * wifi: rtw89: 8851be: add 8851BE PCI entry and fill PCI capabilities (bsc#1227149). * wifi: rtw89: 8852b: fix definition of KIP register number (git-fixes). * wifi: rtw89: 8852b: update TX power tables to R35 (bsc#1227149). * wifi: rtw89: 8852b: update TX power tables to R36 (bsc#1227149). * wifi: rtw89: 8852c: Fix TSSI causes transmit power inaccuracy (bsc#1227149). * wifi: rtw89: 8852c: Update bandedge parameters for better performance (bsc#1227149). * wifi: rtw89: 8852c: add quirk to set PCI BER for certain platforms (bsc#1227149). * wifi: rtw89: 8852c: declare to support two chanctx (bsc#1227149). * wifi: rtw89: 8852c: read RX gain offset from efuse for 6GHz channels (bsc#1227149). * wifi: rtw89: 8852c: update RF radio A/B parameters to R63 (bsc#1227149). * wifi: rtw89: 8852c: update TX power tables to R63 with 6 GHz power type (1 of 3) (bsc#1227149). * wifi: rtw89: 8852c: update TX power tables to R63 with 6 GHz power type (2 of 3) (bsc#1227149). * wifi: rtw89: 8852c: update TX power tables to R63 with 6 GHz power type (3 of 3) (bsc#1227149). * wifi: rtw89: 8852c: update TX power tables to R67 (bsc#1227149). * wifi: rtw89: 8922a: add 8922A basic chip info (bsc#1227149). * wifi: rtw89: 8922a: add BTG functions to assist BT coexistence to control TX/RX (bsc#1227149). * wifi: rtw89: 8922a: add NCTL pre-settings for WiFi 7 chips (bsc#1227149). * wifi: rtw89: 8922a: add RF read/write v2 (bsc#1227149). * wifi: rtw89: 8922a: add SER IMR tables (bsc#1227149). * wifi: rtw89: 8922a: add TX power related ops (bsc#1227149). * wifi: rtw89: 8922a: add chip_ops related to BB init (bsc#1227149). * wifi: rtw89: 8922a: add chip_ops to get thermal value (bsc#1227149). * wifi: rtw89: 8922a: add chip_ops::bb_preinit to enable BB before downloading firmware (bsc#1227149). * wifi: rtw89: 8922a: add chip_ops::cfg_txrx_path (bsc#1227149). * wifi: rtw89: 8922a: add chip_ops::rfk_hw_init (bsc#1227149). * wifi: rtw89: 8922a: add chip_ops::rfk_init_late to do initial RF calibrations later (bsc#1227149). * wifi: rtw89: 8922a: add chip_ops::{enable,disable}_bb_rf (bsc#1227149). * wifi: rtw89: 8922a: add coexistence helpers of SW grant (bsc#1227149). * wifi: rtw89: 8922a: add helper of set_channel (bsc#1227149). * wifi: rtw89: 8922a: add ieee80211_ops::hw_scan (bsc#1227149). * wifi: rtw89: 8922a: add more fields to beacon H2C command to support multi- links (bsc#1227149). * wifi: rtw89: 8922a: add power on/off functions (bsc#1227149). * wifi: rtw89: 8922a: add register definitions of H2C, C2H, page, RRSR and EDCCA (bsc#1227149). * wifi: rtw89: 8922a: add set_channel BB part (bsc#1227149). * wifi: rtw89: 8922a: add set_channel MAC part (bsc#1227149). * wifi: rtw89: 8922a: add set_channel RF part (bsc#1227149). * wifi: rtw89: 8922a: configure CRASH_TRIGGER FW feature (bsc#1227149). * wifi: rtw89: 8922a: correct register definition and merge IO for ctrl_nbtg_bt_tx() (bsc#1227149). * wifi: rtw89: 8922a: declare to support two chanctx (bsc#1227149). * wifi: rtw89: 8922a: dump MAC registers when SER occurs (bsc#1227149). * wifi: rtw89: 8922a: extend and add quota number (bsc#1227149). * wifi: rtw89: 8922a: hook handlers of TX/RX descriptors to chip_ops (bsc#1227149). * wifi: rtw89: 8922a: implement AP mode related reg for BE generation (bsc#1227149). * wifi: rtw89: 8922a: implement {stop,resume}_sch_tx and cfg_ppdu (bsc#1227149). * wifi: rtw89: 8922a: read efuse content from physical map (bsc#1227149). * wifi: rtw89: 8922a: read efuse content via efuse map struct from logic map (bsc#1227149). * wifi: rtw89: 8922a: rfk: implement chip_ops to call RF calibrations (bsc#1227149). * wifi: rtw89: 8922a: set RX gain along with set_channel operation (bsc#1227149). * wifi: rtw89: 8922a: set chip_ops FEM and GPIO to NULL (bsc#1227149). * wifi: rtw89: 8922a: set memory heap address for secure firmware (bsc#1227149). * wifi: rtw89: 8922a: update BA CAM number to 24 (bsc#1227149). * wifi: rtw89: 8922a: update the register used in DIG and the DIG flow (bsc#1227149). * wifi: rtw89: 8922ae: add 8922AE PCI entry and basic info (bsc#1227149). * wifi: rtw89: 8922ae: add v2 interrupt handlers for 8922AE (bsc#1227149). * wifi: rtw89: Add EHT rate mask as parameters of RA H2C command (bsc#1227149). * wifi: rtw89: Fix array index mistake in rtw89_sta_info_get_iter() (git- fixes). * wifi: rtw89: Fix clang -Wimplicit-fallthrough in rtw89_query_sar() (bsc#1227149). * wifi: rtw89: Introduce Time Averaged SAR (TAS) feature (bsc#1227149). * wifi: rtw89: Refine active scan behavior in 6 GHz (bsc#1227149). * wifi: rtw89: Set default CQM config if not present (bsc#1227149). * wifi: rtw89: TX power stuffs replace confusing naming of _max with _num (bsc#1227149). * wifi: rtw89: Update EHT PHY beamforming capability (bsc#1227149). * wifi: rtw89: acpi: process 6 GHz band policy from DSM (bsc#1227149). * wifi: rtw89: add C2H RA event V1 to support WiFi 7 chips (bsc#1227149). * wifi: rtw89: add C2H event handlers of RFK log and report (bsc#1227149). * wifi: rtw89: add CFO XTAL registers field to support 8851B (bsc#1227149). * wifi: rtw89: add DBCC H2C to notify firmware the status (bsc#1227149). * wifi: rtw89: add EHT capabilities for WiFi 7 chips (bsc#1227149). * wifi: rtw89: add EHT radiotap in monitor mode (bsc#1227149). * wifi: rtw89: add EVM and SNR statistics to debugfs (bsc#1227149). * wifi: rtw89: add EVM for antenna diversity (bsc#1227149). * wifi: rtw89: add H2C RA command V1 to support WiFi 7 chips (bsc#1227149). * wifi: rtw89: add H2C command to download beacon frame for WiFi 7 chips (bsc#1227149). * wifi: rtw89: add RSSI based antenna diversity (bsc#1227149). * wifi: rtw89: add RSSI statistics for the case of antenna diversity to debugfs (bsc#1227149). * wifi: rtw89: add XTAL SI for WiFi 7 chips (bsc#1227149). * wifi: rtw89: add chip_info::chip_gen to determine chip generation (bsc#1227149). * wifi: rtw89: add chip_info::txwd_info size to generalize TX WD submit (bsc#1227149). * wifi: rtw89: add chip_ops::h2c_ba_cam() to configure BA CAM (bsc#1227149). * wifi: rtw89: add chip_ops::query_rxdesc() and rxd_len as helpers to support newer chips (bsc#1227149). * wifi: rtw89: add chip_ops::update_beacon to abstract update beacon operation (bsc#1227149). * wifi: rtw89: add firmware H2C command of BA CAM V1 (bsc#1227149). * wifi: rtw89: add firmware parser for v1 format (bsc#1227149). * wifi: rtw89: add firmware suit for BB MCU 0/1 (bsc#1227149). * wifi: rtw89: add function prototype for coex request duration (bsc#1227149). * wifi: rtw89: add mac_gen pointer to access mac port registers (bsc#1227149). * wifi: rtw89: add mlo_dbcc_mode for WiFi 7 chips (bsc#1227149). * wifi: rtw89: add new H2C command to pause/sleep transmitting by MAC ID (bsc#1227149). * wifi: rtw89: add new H2C for PS mode in 802.11be chip (bsc#1227149). * wifi: rtw89: add reserved size as factor of DLE used size (bsc#1227149). * wifi: rtw89: add subband index of primary channel to struct rtw89_chan (bsc#1227149). * wifi: rtw89: add to display hardware rates v1 histogram in debugfs (bsc#1227149). * wifi: rtw89: add to fill TX descriptor for firmware command v2 (bsc#1227149). * wifi: rtw89: add to fill TX descriptor v2 (bsc#1227149). * wifi: rtw89: add to parse firmware elements of BB and RF tables (bsc#1227149). * wifi: rtw89: add to query RX descriptor format v2 (bsc#1227149). * wifi: rtw89: add tx_wake notify for 8851B (bsc#1227149). * wifi: rtw89: add wait/completion for abort scan (bsc#1227149). * wifi: rtw89: adjust init_he_cap() to add EHT cap into iftype_data (bsc#1227149). * wifi: rtw89: advertise missing extended scan feature (bsc#1227149). * wifi: rtw89: avoid stringop-overflow warning (bsc#1227149). * wifi: rtw89: call rtw89_chan_get() by vif chanctx if aware of vif (bsc#1227149). * wifi: rtw89: chan: MCC take reconfig into account (bsc#1227149). * wifi: rtw89: chan: add sub-entity swap function to cover replacing (bsc#1227149). * wifi: rtw89: chan: move handling from add/remove to assign/unassign for MLO (bsc#1227149). * wifi: rtw89: chan: support MCC on Wi-Fi 7 chips (bsc#1227149). * wifi: rtw89: chan: tweak bitmap recalc ahead before MLO (bsc#1227149). * wifi: rtw89: chan: tweak weight recalc ahead before MLO (bsc#1227149). * wifi: rtw89: change naming of BA CAM from V1 to V0_EXT (bsc#1227149). * wifi: rtw89: change qutoa to DBCC by default for WiFi 7 chips (bsc#1227149). * wifi: rtw89: change supported bandwidths of chip_info to bit mask (bsc#1227149). * wifi: rtw89: cleanup firmware elements parsing (bsc#1227149). * wifi: rtw89: cleanup private data structures (bsc#1227149). * wifi: rtw89: cleanup rtw89_iqk_info and related code (bsc#1227149). * wifi: rtw89: coex: Add Bluetooth RSSI level information (bsc#1227149). * wifi: rtw89: coex: Add Pre-AGC control to enhance Wi-Fi RX performance (bsc#1227149). * wifi: rtw89: coex: Add coexistence policy to decrease WiFi packet CRC-ERR (bsc#1227149). * wifi: rtw89: coex: Fix wrong Wi-Fi role info and FDDT parameter members (bsc#1227149). * wifi: rtw89: coex: Record down Wi-Fi initial mode information (bsc#1227149). * wifi: rtw89: coex: Reorder H2C command index to align with firmware (bsc#1227149). * wifi: rtw89: coex: Set Bluetooth scan low-priority when Wi-Fi link/scan (bsc#1227149). * wifi: rtw89: coex: Still show hardware grant signal info even Wi-Fi is PS (bsc#1227149). * wifi: rtw89: coex: To improve Wi-Fi performance while BT is idle (bsc#1227149). * wifi: rtw89: coex: Translate antenna configuration from ID to string (bsc#1227149). * wifi: rtw89: coex: Update BTG control related logic (bsc#1227149). * wifi: rtw89: coex: Update RF parameter control setting logic (bsc#1227149). * wifi: rtw89: coex: Update coexistence policy for Wi-Fi LPS (bsc#1227149). * wifi: rtw89: coex: When Bluetooth not available do not set power/gain (bsc#1227149). * wifi: rtw89: coex: add BTC ctrl_info version 7 and related logic (bsc#1227149). * wifi: rtw89: coex: add annotation __counted_by() for struct rtw89_btc_btf_set_slot_table (bsc#1227149). * wifi: rtw89: coex: add annotation __counted_by() to struct rtw89_btc_btf_set_mon_reg (bsc#1227149). * wifi: rtw89: coex: add init_info H2C command format version 7 (bsc#1227149). * wifi: rtw89: coex: add return value to ensure H2C command is success or not (bsc#1227149). * wifi: rtw89: coex: fix configuration for shared antenna for 8922A (bsc#1227149). * wifi: rtw89: coex: use struct assignment to replace memcpy() to append TDMA content (bsc#1227149). * wifi: rtw89: configure PPDU max user by chip (bsc#1227149). * wifi: rtw89: consider RX info for WiFi 7 chips (bsc#1227149). * wifi: rtw89: consolidate registers of mac port to struct (bsc#1227149). * wifi: rtw89: correct PHY register offset for PHY-1 (bsc#1227149). * wifi: rtw89: correct the DCFO tracking flow to improve CFO compensation (bsc#1227149). * wifi: rtw89: debug: add FW log component for scan (bsc#1227149). * wifi: rtw89: debug: add debugfs entry to disable dynamic mechanism (bsc#1227149). * wifi: rtw89: debug: add to check if debug mask is enabled (bsc#1227149). * wifi: rtw89: debug: remove wrapper of rtw89_debug() (bsc#1227149). * wifi: rtw89: debug: show txpwr table according to chip gen (bsc#1227149). * wifi: rtw89: debug: txpwr table access only valid page according to chip (bsc#1227149). * wifi: rtw89: debug: txpwr table supports Wi-Fi 7 chips (bsc#1227149). * wifi: rtw89: declare EXT NSS BW of VHT capability (bsc#1227149). * wifi: rtw89: declare MCC in interface combination (bsc#1227149). * wifi: rtw89: define hardware rate v1 for WiFi 7 chips (bsc#1227149). * wifi: rtw89: differentiate narrow_bw_ru_dis setting according to chip gen (bsc#1227149). * wifi: rtw89: disable RTS when broadcast/multicast (bsc#1227149). * wifi: rtw89: download firmware with five times retry (bsc#1227149). * wifi: rtw89: drop TIMING_BEACON_ONLY and sync beacon TSF by self (bsc#1227149). * wifi: rtw89: enlarge supported length of read_reg debugfs entry (bsc#1227149). * wifi: rtw89: extend PHY status parser to support WiFi 7 chips (bsc#1227149). * wifi: rtw89: fix HW scan not aborting properly (git-fixes). * wifi: rtw89: fix HW scan timeout due to TSF sync issue (bsc#1227149). * wifi: rtw89: fix a width vs precision bug (bsc#1227149). * wifi: rtw89: fix disabling concurrent mode TX hang issue (bsc#1227149). * wifi: rtw89: fix misbehavior of TX beacon in concurrent mode (bsc#1227149). * wifi: rtw89: fix not entering PS mode after AP stops (bsc#1227149). * wifi: rtw89: fix spelling typo of IQK debug messages (bsc#1227149). * wifi: rtw89: fix typo of rtw89_fw_h2c_mcc_macid_bitmap() (bsc#1227149). * wifi: rtw89: fw: add H2C command to reset CMAC table for WiFi 7 (bsc#1227149). * wifi: rtw89: fw: add H2C command to reset DMAC table for WiFi 7 (bsc#1227149). * wifi: rtw89: fw: add H2C command to update security CAM v2 (bsc#1227149). * wifi: rtw89: fw: add checking type for variant type of firmware (bsc#1227149). * wifi: rtw89: fw: add chip_ops to update CMAC table to associated station (bsc#1227149). * wifi: rtw89: fw: add definition of H2C command and C2H event for MRC series (bsc#1227149). * wifi: rtw89: fw: add version field to BB MCU firmware element (bsc#1227149). * wifi: rtw89: fw: consider checksum length of security data (bsc#1227149). * wifi: rtw89: fw: download firmware with key data for secure boot (bsc#1227149). * wifi: rtw89: fw: extend JOIN H2C command to support WiFi 7 chips (bsc#1227149). * wifi: rtw89: fw: extend program counter dump for Wi-Fi 7 chip (bsc#1227149). * wifi: rtw89: fw: fill CMAC table to associated station for WiFi 7 chips (bsc#1227149). * wifi: rtw89: fw: generalize download firmware flow by mac_gen pointers (bsc#1227149). * wifi: rtw89: fw: implement MRC H2C command functions (bsc#1227149). * wifi: rtw89: fw: implement supported functions of download firmware for WiFi 7 chips (bsc#1227149). * wifi: rtw89: fw: load TX power track tables from fw_element (bsc#1227149). * wifi: rtw89: fw: move polling function of firmware path ready to an individual function (bsc#1227149). * wifi: rtw89: fw: parse secure section from firmware file (bsc#1227149). * wifi: rtw89: fw: propagate an argument include_bb for BB MCU firmware (bsc#1227149). * wifi: rtw89: fw: read firmware secure information from efuse (bsc#1227149). * wifi: rtw89: fw: refine download flow to support variant firmware suits (bsc#1227149). * wifi: rtw89: fw: scan offload prohibit all 6 GHz channel if no 6 GHz sband (bsc#1227149). * wifi: rtw89: fw: update TX AMPDU parameter to CMAC table (bsc#1227149). * wifi: rtw89: fw: use struct to fill BA CAM H2C commands (bsc#1227149). * wifi: rtw89: fw: use struct to fill JOIN H2C command (bsc#1227149). * wifi: rtw89: get data rate mode/NSS/MCS v1 from RX descriptor (bsc#1227149). * wifi: rtw89: indicate TX power by rate table inside RFE parameter (bsc#1227149). * wifi: rtw89: indicate TX shape table inside RFE parameter (bsc#1227149). * wifi: rtw89: initialize antenna for antenna diversity (bsc#1227149). * wifi: rtw89: initialize multi-channel handling (bsc#1227149). * wifi: rtw89: introduce infrastructure of firmware elements (bsc#1227149). * wifi: rtw89: introduce realtek ACPI DSM method (bsc#1227149). * wifi: rtw89: introduce v1 format of firmware header (bsc#1227149). * wifi: rtw89: load BB parameters to PHY-1 (bsc#1227149). * wifi: rtw89: load RFK log format string from firmware file (bsc#1227149). * wifi: rtw89: load TX power by rate when RFE parms setup (bsc#1227149). * wifi: rtw89: load TX power related tables from FW elements (bsc#1227149). * wifi: rtw89: mac: Fix spelling mistakes "notfify" -> "notify" (bsc#1227149). * wifi: rtw89: mac: add coexistence helpers {cfg/get}_plt (bsc#1227149). * wifi: rtw89: mac: add feature_init to initialize BA CAM V1 (bsc#1227149). * wifi: rtw89: mac: add flags to check if CMAC and DMAC are enabled (bsc#1227149). * wifi: rtw89: mac: add mac_gen_def::band1_offset to map MAC band1 register address (bsc#1227149). * wifi: rtw89: mac: add registers of MU-EDCA parameters for WiFi 7 chips (bsc#1227149). * wifi: rtw89: mac: add suffix _ax to MAC functions (bsc#1227149). * wifi: rtw89: mac: add sys_init and filter option for WiFi 7 chips (bsc#1227149). * wifi: rtw89: mac: add to access efuse for WiFi 7 chips (bsc#1227149). * wifi: rtw89: mac: add to get DLE reserved quota (bsc#1227149). * wifi: rtw89: mac: check queue empty according to chip gen (bsc#1227149). * wifi: rtw89: mac: correct MUEDCA setting for MAC-1 (bsc#1227149). * wifi: rtw89: mac: define internal memory address for WiFi 7 chip (bsc#1227149). * wifi: rtw89: mac: define register address of rx_filter to generalize code (bsc#1227149). * wifi: rtw89: mac: do bf_monitor only if WiFi 6 chips (bsc#1227149). * wifi: rtw89: mac: functions to configure hardware engine and quota for WiFi 7 chips (bsc#1227149). * wifi: rtw89: mac: generalize code to indirectly access WiFi internal memory (bsc#1227149). * wifi: rtw89: mac: generalize register of MU-EDCA switch according to chip gen (bsc#1227149). * wifi: rtw89: mac: get TX power control register according to chip gen (bsc#1227149). * wifi: rtw89: mac: handle C2H receive/done ACK in interrupt context (bsc#1227149). * wifi: rtw89: mac: implement MRC C2H event handling (bsc#1227149). * wifi: rtw89: mac: implement to configure TX/RX engines for WiFi 7 chips (bsc#1227149). * wifi: rtw89: mac: move code related to hardware engine to individual functions (bsc#1227149). * wifi: rtw89: mac: refine SER setting during WiFi CPU power on (bsc#1227149). * wifi: rtw89: mac: reset PHY-1 hardware when going to enable/disable (bsc#1227149). * wifi: rtw89: mac: return held quota of DLE when changing MAC-1 (bsc#1227149). * wifi: rtw89: mac: set bf_assoc capabilities according to chip gen (bsc#1227149). * wifi: rtw89: mac: set bfee_ctrl() according to chip gen (bsc#1227149). * wifi: rtw89: mac: update RTS threshold according to chip gen (bsc#1227149). * wifi: rtw89: mac: use mac_gen pointer to access about efuse (bsc#1227149). * wifi: rtw89: mac: use pointer to access functions of hardware engine and quota (bsc#1227149). * wifi: rtw89: mcc: consider and determine BT duration (bsc#1227149). * wifi: rtw89: mcc: deal with BT slot change (bsc#1227149). * wifi: rtw89: mcc: deal with P2P PS change (bsc#1227149). * wifi: rtw89: mcc: deal with beacon NoA if GO exists (bsc#1227149). * wifi: rtw89: mcc: decide pattern and calculate parameters (bsc#1227149). * wifi: rtw89: mcc: fill fundamental configurations (bsc#1227149). * wifi: rtw89: mcc: fix NoA start time when GO is auxiliary (bsc#1227149). * wifi: rtw89: mcc: initialize start flow (bsc#1227149). * wifi: rtw89: mcc: track beacon offset and update when needed (bsc#1227149). * wifi: rtw89: mcc: trigger FW to start/stop MCC (bsc#1227149). * wifi: rtw89: mcc: update role bitmap when changed (bsc#1227149). * wifi: rtw89: modify the register setting and the flow of CFO tracking (bsc#1227149). * wifi: rtw89: move software DCFO compensation setting to proper position (bsc#1227149). * wifi: rtw89: only reset BB/RF for existing WiFi 6 chips while starting up (bsc#1227149). * wifi: rtw89: packet offload wait for FW response (bsc#1227149). * wifi: rtw89: parse EHT information from RX descriptor and PPDU status packet (bsc#1227149). * wifi: rtw89: parse TX EHT rate selected by firmware from RA C2H report (bsc#1227149). * wifi: rtw89: parse and print out RFK log from C2H events (bsc#1227149). * wifi: rtw89: pause/proceed MCC for ROC and HW scan (bsc#1227149). * wifi: rtw89: pci: add LTR v2 for WiFi 7 chip (bsc#1227149). * wifi: rtw89: pci: add PCI generation information to pci_info for each chip (bsc#1227149). * wifi: rtw89: pci: add new RX ring design to determine full RX ring efficiently (bsc#1227149). * wifi: rtw89: pci: add pre_deinit to be called after probe complete (bsc#1227149). * wifi: rtw89: pci: correct interrupt mitigation register for 8852CE (bsc#1227149). * wifi: rtw89: pci: define PCI ring address for WiFi 7 chips (bsc#1227149). * wifi: rtw89: pci: fix interrupt enable mask for HALT C2H of RTL8851B (bsc#1227149). * wifi: rtw89: pci: generalize code of PCI control DMA IO for WiFi 7 (bsc#1227149). * wifi: rtw89: pci: generalize interrupt status bits of interrupt handlers (bsc#1227149). * wifi: rtw89: pci: implement PCI CLK/ASPM/L1SS for WiFi 7 chips (bsc#1227149). * wifi: rtw89: pci: implement PCI mac_post_init for WiFi 7 chips (bsc#1227149). * wifi: rtw89: pci: implement PCI mac_pre_init for WiFi 7 chips (bsc#1227149). * wifi: rtw89: pci: interrupt v2 refine IMR for SER (bsc#1227149). * wifi: rtw89: pci: reset BDRAM according to chip gen (bsc#1227149). * wifi: rtw89: pci: stop/start DMA for level 1 recovery according to chip gen (bsc#1227149). * wifi: rtw89: pci: update SER timer unit and timeout time (bsc#1227149). * wifi: rtw89: pci: update interrupt mitigation register for 8922AE (bsc#1227149). * wifi: rtw89: pci: use DBI function for 8852AE/8852BE/8851BE (bsc#1227149). * wifi: rtw89: pci: use gen_def pointer to configure mac_{pre,post}_init and clear PCI ring index (bsc#1227149). * wifi: rtw89: pci: validate RX tag for RXQ and RPQ (bsc#1227149). * wifi: rtw89: phy: add BB wrapper of TX power for WiFi 7 chips (bsc#1227149). * wifi: rtw89: phy: add parser to support RX gain dynamic setting flow (bsc#1227149). * wifi: rtw89: phy: add phy_gen_def::cr_base to support WiFi 7 chips (bsc#1227149). * wifi: rtw89: phy: change naming related BT coexistence functions (bsc#1227149). * wifi: rtw89: phy: dynamically adjust EDCCA threshold (bsc#1227149). * wifi: rtw89: phy: extend TX power common stuffs for Wi-Fi 7 chips (bsc#1227149). * wifi: rtw89: phy: generalize valid bit of BSS color (bsc#1227149). * wifi: rtw89: phy: ignore special data from BB parameter file (bsc#1227149). * wifi: rtw89: phy: modify register setting of ENV_MNTR, PHYSTS and DIG (bsc#1227149). * wifi: rtw89: phy: move bb_gain_info used by WiFi 6 chips to union (bsc#1227149). * wifi: rtw89: phy: print out RFK log with formatted string (bsc#1227149). * wifi: rtw89: phy: rate pattern handles HW rate by chip gen (bsc#1227149). * wifi: rtw89: phy: refine helpers used for raw TX power (bsc#1227149). * wifi: rtw89: phy: set TX power RU limit according to chip gen (bsc#1227149). * wifi: rtw89: phy: set TX power by rate according to chip gen (bsc#1227149). * wifi: rtw89: phy: set TX power limit according to chip gen (bsc#1227149). * wifi: rtw89: phy: set TX power offset according to chip gen (bsc#1227149). * wifi: rtw89: phy: set channel_info for WiFi 7 chips (bsc#1227149). * wifi: rtw89: prepare scan leaf functions for wifi 7 ICs (bsc#1227149). * wifi: rtw89: process regulatory for 6 GHz power type (bsc#1227149). * wifi: rtw89: provide functions to configure NoA for beacon update (bsc#1227149). * wifi: rtw89: recognize log format from firmware file (bsc#1227149). * wifi: rtw89: reference quota mode when setting Tx power (bsc#1227149). * wifi: rtw89: refine H2C command that pause transmitting by MAC ID (bsc#1227149). * wifi: rtw89: refine add_chan H2C command to encode_bits (bsc#1227149). * wifi: rtw89: refine bandwidth 160MHz uplink OFDMA performance (bsc#1227149). * wifi: rtw89: refine clearing supported bands to check 2/5 GHz first (bsc#1227149). * wifi: rtw89: refine element naming used by queue empty check (bsc#1227149). * wifi: rtw89: refine hardware scan C2H events (bsc#1227149). * wifi: rtw89: refine packet offload delete flow of 6 GHz probe (bsc#1227149). * wifi: rtw89: refine packet offload handling under SER (bsc#1227149). * wifi: rtw89: refine remain on channel flow to improve P2P connection (bsc#1227149). * wifi: rtw89: refine rtw89_correct_cck_chan() by rtw89_hw_to_nl80211_band() (bsc#1227149). * wifi: rtw89: refine uplink trigger based control mechanism (bsc#1227149). * wifi: rtw89: regd: configure Thailand in regulation type (bsc#1227149). * wifi: rtw89: regd: handle policy of 6 GHz according to BIOS (bsc#1227149). * wifi: rtw89: regd: judge 6 GHz according to chip and BIOS (bsc#1227149). * wifi: rtw89: regd: judge UNII-4 according to BIOS and chip (bsc#1227149). * wifi: rtw89: regd: update regulatory map to R64-R40 (bsc#1227149). * wifi: rtw89: regd: update regulatory map to R64-R43 (bsc#1227149). * wifi: rtw89: regd: update regulatory map to R65-R44 (bsc#1227149). * wifi: rtw89: release bit in rtw89_fw_h2c_del_pkt_offload() (bsc#1227149). * wifi: rtw89: return failure if needed firmware elements are not recognized (bsc#1227149). * wifi: rtw89: rfk: add H2C command to trigger DACK (bsc#1227149). * wifi: rtw89: rfk: add H2C command to trigger DPK (bsc#1227149). * wifi: rtw89: rfk: add H2C command to trigger IQK (bsc#1227149). * wifi: rtw89: rfk: add H2C command to trigger RX DCK (bsc#1227149). * wifi: rtw89: rfk: add H2C command to trigger TSSI (bsc#1227149). * wifi: rtw89: rfk: add H2C command to trigger TXGAPK (bsc#1227149). * wifi: rtw89: rfk: add a completion to wait RF calibration report from C2H event (bsc#1227149). * wifi: rtw89: rfk: disable driver tracking during MCC (bsc#1227149). * wifi: rtw89: rfk: send channel information to firmware for RF calibrations (bsc#1227149). * wifi: rtw89: sar: let caller decide the center frequency to query (bsc#1227149). * wifi: rtw89: scan offload wait for FW done ACK (bsc#1227149). * wifi: rtw89: ser: L1 add pre-M0 and post-M0 states (bsc#1227149). * wifi: rtw89: ser: reset total_sta_assoc and tdls_peer when L2 (bsc#1227149). * wifi: rtw89: set TX power without precondition during setting channel (bsc#1227149). * wifi: rtw89: set capability of TX antenna diversity (bsc#1227149). * wifi: rtw89: set entry size of address CAM to H2C field by chip (bsc#1227149). * wifi: rtw89: show EHT rate in debugfs (bsc#1227149). * wifi: rtw89: support U-NII-4 channels on 5GHz band (bsc#1227149). * wifi: rtw89: support firmware log with formatted text (bsc#1227149). * wifi: rtw89: suppress the log for specific SER called CMDPSR_FRZTO (bsc#1227149). * wifi: rtw89: tweak H2C TX waiting function for SER (bsc#1227149). * wifi: rtw89: update DMA function with different generation (bsc#1227149). * wifi: rtw89: update ps_state register for chips with different generation (bsc#1227149). * wifi: rtw89: update scan C2H messages for wifi 7 IC (bsc#1227149). * wifi: rtw89: update suspend/resume for different generation (bsc#1227149). * wifi: rtw89: use PLCP information to match BSS_COLOR and AID (bsc#1227149). * wifi: rtw89: use chip_info::small_fifo_size to choose debug_mask (bsc#1227149). * wifi: rtw89: use flexible array member in rtw89_btc_btf_tlv (bsc#1227149). * wifi: rtw89: use struct and le32_get_bits to access RX info (bsc#1227149). * wifi: rtw89: use struct and le32_get_bits() to access RX descriptor (bsc#1227149). * wifi: rtw89: use struct and le32_get_bits() to access received PHY status IEs (bsc#1227149). * wifi: rtw89: use struct rtw89_phy_sts_ie0 instead of macro to access PHY IE0 status (bsc#1227149). * wifi: rtw89: use struct to access RA report (bsc#1227149). * wifi: rtw89: use struct to access firmware C2H event header (bsc#1227149). * wifi: rtw89: use struct to access register-based H2C/C2H (bsc#1227149). * wifi: rtw89: use struct to fill H2C command to download beacon frame (bsc#1227149). * wifi: rtw89: use struct to parse firmware header (bsc#1227149). * wifi: rtw89: use struct to set RA H2C command (bsc#1227149). * wifi: rtw89: wow: move release offload packet earlier for WoWLAN mode (bsc#1227149). * wifi: rtw89: wow: refine WoWLAN flows of HCI interrupts and low power mode (bsc#1227149). * wifi: rtw89: wow: set security engine options for 802.11ax chips only (bsc#1227149). * wifi: rtw89: wow: update WoWLAN reason register for different chips (bsc#1227149). * wifi: rtw89: wow: update WoWLAN status register for different generation (bsc#1227149). * wifi: rtw89: wow: update config mac function with different generation (bsc#1227149). * wifi: ti: wlcore: sdio: Drop unused include (bsc#1227149). * wifi: virt_wifi: avoid reporting connection success with wrong SSID (git- fixes). * wifi: virt_wifi: do not use strlen() in const context (git-fixes). * wifi: wcn36xx: Annotate struct wcn36xx_hal_ind_msg with __counted_by (bsc#1227149). * wifi: wcn36xx: Convert to platform remove callback returning void (bsc#1227149). * wifi: wcn36xx: remove unnecessary (void*) conversions (bsc#1227149). * wifi: wext: avoid extra calls to strlen() in ieee80211_bss() (bsc#1227149). * wifi: wfx: Use devm_kmemdup to replace devm_kmalloc + memcpy (bsc#1227149). * wifi: wfx: allow to send frames during ROC (bsc#1227149). * wifi: wfx: fix power_save setting when AP is stopped (bsc#1227149). * wifi: wfx: implement wfx_remain_on_channel() (bsc#1227149). * wifi: wfx: introduce hif_scan_uniq() (bsc#1227149). * wifi: wfx: move wfx_skb_*() out of the header file (bsc#1227149). * wifi: wfx: relocate wfx_rate_mask_to_hw() (bsc#1227149). * wifi: wfx: scan_lock is global to the device (bsc#1227149). * wifi: wfx: simplify exclusion between scan and Rx filters (bsc#1227149). * wifi: wil6210: fw: Replace zero-length arrays with DECLARE_FLEX_ARRAY() helper (bsc#1227149). * wifi: wil6210: wmi: Replace zero-length array with DECLARE_FLEX_ARRAY() helper (bsc#1227149). * wifi: wilc1000: Increase ASSOC response buffer (bsc#1227149). * wifi: wilc1000: Remove unused declarations (bsc#1227149). * wifi: wilc1000: add SPI commands retry mechanism (bsc#1227149). * wifi: wilc1000: add back-off algorithm to balance tx queue packets (bsc#1227149). * wifi: wilc1000: add missing read critical sections around vif list traversal (bsc#1227149). * wifi: wilc1000: always release SDIO host in wilc_sdio_cmd53() (bsc#1227149). * wifi: wilc1000: cleanup struct wilc_conn_info (bsc#1227149). * wifi: wilc1000: correct CRC7 calculation (bsc#1227149). * wifi: wilc1000: fix declarations ordering (bsc#1227149). * wifi: wilc1000: fix driver_handler when committing initial configuration (bsc#1227149). * wifi: wilc1000: fix ies_len type in connect path (git-fixes). * wifi: wilc1000: fix incorrect power down sequence (bsc#1227149). * wifi: wilc1000: remove AKM suite be32 conversion for external auth request (bsc#1227149). * wifi: wilc1000: remove setting msg.spi (bsc#1227149). * wifi: wilc1000: remove use of has_thrpt_enh3 flag (bsc#1227149). * wifi: wilc1000: set preamble size to auto as default in wilc_init_fw_config() (bsc#1227149). * wifi: wilc1000: simplify remain on channel support (bsc#1227149). * wifi: wilc1000: simplify wilc_scan() (bsc#1227149). * wifi: wilc1000: split deeply nested RCU list traversal in dedicated helper (bsc#1227149). * wifi: wilc1000: use SRCU instead of RCU for vif list traversal (bsc#1227149). * wifi: wilc1000: validate chip id during bus probe (bsc#1227149). * wifi: wl1251: replace deprecated strncpy with strscpy (bsc#1227149). * wifi: wl18xx: replace deprecated strncpy with strscpy (bsc#1227149). * wifi: wlcore: boot: replace deprecated strncpy with strscpy (bsc#1227149). * wifi: wlcore: main: replace deprecated strncpy with strscpy (bsc#1227149). * wifi: wlcore: sdio: Rate limit wl12xx_sdio_raw_{read,write}() failures warns (bsc#1227149). * wifi: wlcore: sdio: Use module_sdio_driver macro to simplify the code (bsc#1227149). * wifi: zd1211rw: fix typo "tranmits" (bsc#1227149). * wifi: zd1211rw: remove __nocast from zd_addr_t (bsc#1227149). * wifi: zd1211rw: silence sparse warnings (bsc#1227149). * wlcore: spi: Remove redundant of_match_ptr() (bsc#1227149). * x86/amd_nb: Check for invalid SMN reads (git-fixes). * x86/apic: Force native_apic_mem_read() to use the MOV instruction (git- fixes). * x86/asm: Fix build of UML with KASAN (git-fixes). * x86/bhi: Avoid warning in #DB handler due to BHI mitigation :(git-fixes). * x86/boot: Ignore NMIs during very early boot (git-fixes). * x86/cpu: Provide default cache line size if not enumerated (git-fixes). * x86/csum: Fix clang -Wuninitialized in csum_partial() (git-fixes). * x86/csum: Improve performance of `csum_partial` (git-fixes). * x86/csum: Remove unnecessary odd handling (git-fixes). * x86/csum: clean up `csum_partial' further (git-fixes). * x86/fpu: Fix AMD X86_BUG_FXSAVE_LEAK fixup (git-fixes). * x86/head/64: Move the __head definition to <asm/init.h> (git-fixes). * x86/insn: Add VEX versions of VPDPBUSD, VPDPBUSDS, VPDPWSSD and VPDPWSSDS (git-fixes). * x86/kconfig: Add as-instr64 macro to properly evaluate AS_WRUSS (git-fixes). * x86/resctrl: Read supported bandwidth sources from CPUID (git-fixes). * x86/resctrl: Remove redundant variable in mbm_config_write_domain() (git- fixes). * x86/shstk: Make return uprobe work with shadow stack (git-fixes). * x86/speculation, objtool: Use absolute relocations for annotations (git- fixes). * x86: Stop using weak symbols for __iowrite32_copy() (bsc#1226502) * xen/x86: add extra pages to unpopulated-alloc if available (git-fixes). * xfs: Add cond_resched to block unmap range and reflink remap path (bsc#1228211). * xfs: use roundup_pow_of_two instead of ffs during xlog_find_tail (git- fixes). * xhci: always resume roothubs if xHC was reset during resume (stable-fixes). ## Special Instructions and Notes: * Please reboot the system after installing this update. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch SUSE-2024-2802=1 openSUSE-SLE-15.6-2024-2802=1 * Basesystem Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP6-2024-2802=1 * Development Tools Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Development-Tools-15-SP6-2024-2802=1 * Legacy Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Legacy-15-SP6-2024-2802=1 * SUSE Linux Enterprise Live Patching 15-SP6 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP6-2024-2802=1 Please note that this is the initial kernel livepatch without fixes itself, this package is later updated by separate standalone kernel livepatch updates. * SUSE Linux Enterprise High Availability Extension 15 SP6 zypper in -t patch SUSE-SLE-Product-HA-15-SP6-2024-2802=1 * SUSE Linux Enterprise Workstation Extension 15 SP6 zypper in -t patch SUSE-SLE-Product-WE-15-SP6-2024-2802=1 ## Package List: * openSUSE Leap 15.6 (noarch nosrc) * kernel-docs-6.4.0-150600.23.17.3 * openSUSE Leap 15.6 (noarch) * kernel-docs-html-6.4.0-150600.23.17.3 * kernel-source-vanilla-6.4.0-150600.23.17.1 * kernel-devel-6.4.0-150600.23.17.1 * kernel-macros-6.4.0-150600.23.17.1 * kernel-source-6.4.0-150600.23.17.1 * openSUSE Leap 15.6 (nosrc ppc64le x86_64) * kernel-debug-6.4.0-150600.23.17.1 * openSUSE Leap 15.6 (ppc64le x86_64) * kernel-debug-livepatch-devel-6.4.0-150600.23.17.1 * kernel-debug-debugsource-6.4.0-150600.23.17.1 * kernel-debug-devel-6.4.0-150600.23.17.1 * kernel-debug-devel-debuginfo-6.4.0-150600.23.17.1 * kernel-debug-debuginfo-6.4.0-150600.23.17.1 * openSUSE Leap 15.6 (x86_64) * kernel-debug-vdso-debuginfo-6.4.0-150600.23.17.1 * kernel-default-vdso-debuginfo-6.4.0-150600.23.17.1 * kernel-kvmsmall-vdso-debuginfo-6.4.0-150600.23.17.1 * kernel-debug-vdso-6.4.0-150600.23.17.1 * kernel-default-vdso-6.4.0-150600.23.17.1 * kernel-kvmsmall-vdso-6.4.0-150600.23.17.1 * openSUSE Leap 15.6 (aarch64 ppc64le x86_64) * kernel-kvmsmall-devel-6.4.0-150600.23.17.1 * kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.17.1 * kernel-kvmsmall-devel-debuginfo-6.4.0-150600.23.17.1 * kernel-kvmsmall-debugsource-6.4.0-150600.23.17.1 * kernel-default-base-6.4.0-150600.23.17.1.150600.12.6.2 * kernel-default-base-rebuild-6.4.0-150600.23.17.1.150600.12.6.2 * kernel-kvmsmall-debuginfo-6.4.0-150600.23.17.1 * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64) * kernel-default-debugsource-6.4.0-150600.23.17.1 * ocfs2-kmp-default-6.4.0-150600.23.17.1 * kernel-default-devel-debuginfo-6.4.0-150600.23.17.1 * kernel-default-optional-6.4.0-150600.23.17.1 * reiserfs-kmp-default-debuginfo-6.4.0-150600.23.17.1 * cluster-md-kmp-default-debuginfo-6.4.0-150600.23.17.1 * kernel-default-devel-6.4.0-150600.23.17.1 * gfs2-kmp-default-debuginfo-6.4.0-150600.23.17.1 * kselftests-kmp-default-6.4.0-150600.23.17.1 * dlm-kmp-default-debuginfo-6.4.0-150600.23.17.1 * kernel-default-extra-debuginfo-6.4.0-150600.23.17.1 * kernel-obs-build-6.4.0-150600.23.17.1 * kernel-obs-build-debugsource-6.4.0-150600.23.17.1 * kselftests-kmp-default-debuginfo-6.4.0-150600.23.17.1 * dlm-kmp-default-6.4.0-150600.23.17.1 * kernel-obs-qa-6.4.0-150600.23.17.1 * kernel-default-livepatch-6.4.0-150600.23.17.1 * kernel-syms-6.4.0-150600.23.17.1 * reiserfs-kmp-default-6.4.0-150600.23.17.1 * kernel-default-optional-debuginfo-6.4.0-150600.23.17.1 * kernel-default-extra-6.4.0-150600.23.17.1 * kernel-default-livepatch-devel-6.4.0-150600.23.17.1 * ocfs2-kmp-default-debuginfo-6.4.0-150600.23.17.1 * cluster-md-kmp-default-6.4.0-150600.23.17.1 * gfs2-kmp-default-6.4.0-150600.23.17.1 * kernel-default-debuginfo-6.4.0-150600.23.17.1 * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64 nosrc) * kernel-default-6.4.0-150600.23.17.1 * openSUSE Leap 15.6 (aarch64 nosrc ppc64le x86_64) * kernel-kvmsmall-6.4.0-150600.23.17.1 * openSUSE Leap 15.6 (ppc64le s390x x86_64) * kernel-livepatch-6_4_0-150600_23_17-default-1-150600.13.3.1 * kernel-livepatch-6_4_0-150600_23_17-default-debuginfo-1-150600.13.3.1 * kernel-livepatch-SLE15-SP6_Update_3-debugsource-1-150600.13.3.1 * openSUSE Leap 15.6 (nosrc s390x) * kernel-zfcpdump-6.4.0-150600.23.17.1 * openSUSE Leap 15.6 (s390x) * kernel-zfcpdump-debuginfo-6.4.0-150600.23.17.1 * kernel-zfcpdump-debugsource-6.4.0-150600.23.17.1 * openSUSE Leap 15.6 (nosrc) * dtb-aarch64-6.4.0-150600.23.17.1 * openSUSE Leap 15.6 (aarch64) * kernel-64kb-devel-6.4.0-150600.23.17.1 * dtb-nvidia-6.4.0-150600.23.17.1 * dtb-amazon-6.4.0-150600.23.17.1 * dtb-apple-6.4.0-150600.23.17.1 * dtb-rockchip-6.4.0-150600.23.17.1 * dtb-marvell-6.4.0-150600.23.17.1 * dtb-xilinx-6.4.0-150600.23.17.1 * reiserfs-kmp-64kb-debuginfo-6.4.0-150600.23.17.1 * dtb-mediatek-6.4.0-150600.23.17.1 * dtb-arm-6.4.0-150600.23.17.1 * cluster-md-kmp-64kb-debuginfo-6.4.0-150600.23.17.1 * dtb-exynos-6.4.0-150600.23.17.1 * kernel-64kb-extra-debuginfo-6.4.0-150600.23.17.1 * dtb-cavium-6.4.0-150600.23.17.1 * kselftests-kmp-64kb-debuginfo-6.4.0-150600.23.17.1 * ocfs2-kmp-64kb-6.4.0-150600.23.17.1 * dlm-kmp-64kb-6.4.0-150600.23.17.1 * gfs2-kmp-64kb-debuginfo-6.4.0-150600.23.17.1 * kernel-64kb-livepatch-devel-6.4.0-150600.23.17.1 * cluster-md-kmp-64kb-6.4.0-150600.23.17.1 * kernel-64kb-extra-6.4.0-150600.23.17.1 * dtb-freescale-6.4.0-150600.23.17.1 * dtb-allwinner-6.4.0-150600.23.17.1 * kernel-64kb-debugsource-6.4.0-150600.23.17.1 * kernel-64kb-devel-debuginfo-6.4.0-150600.23.17.1 * dtb-altera-6.4.0-150600.23.17.1 * reiserfs-kmp-64kb-6.4.0-150600.23.17.1 * dlm-kmp-64kb-debuginfo-6.4.0-150600.23.17.1 * dtb-renesas-6.4.0-150600.23.17.1 * kernel-64kb-optional-6.4.0-150600.23.17.1 * kernel-64kb-optional-debuginfo-6.4.0-150600.23.17.1 * kernel-64kb-debuginfo-6.4.0-150600.23.17.1 * dtb-qcom-6.4.0-150600.23.17.1 * dtb-amd-6.4.0-150600.23.17.1 * dtb-socionext-6.4.0-150600.23.17.1 * dtb-sprd-6.4.0-150600.23.17.1 * ocfs2-kmp-64kb-debuginfo-6.4.0-150600.23.17.1 * kselftests-kmp-64kb-6.4.0-150600.23.17.1 * dtb-broadcom-6.4.0-150600.23.17.1 * dtb-amlogic-6.4.0-150600.23.17.1 * dtb-hisilicon-6.4.0-150600.23.17.1 * dtb-apm-6.4.0-150600.23.17.1 * gfs2-kmp-64kb-6.4.0-150600.23.17.1 * dtb-lg-6.4.0-150600.23.17.1 * openSUSE Leap 15.6 (aarch64 nosrc) * kernel-64kb-6.4.0-150600.23.17.1 * Basesystem Module 15-SP6 (aarch64 nosrc) * kernel-64kb-6.4.0-150600.23.17.1 * Basesystem Module 15-SP6 (aarch64) * kernel-64kb-devel-6.4.0-150600.23.17.1 * kernel-64kb-debuginfo-6.4.0-150600.23.17.1 * kernel-64kb-debugsource-6.4.0-150600.23.17.1 * kernel-64kb-devel-debuginfo-6.4.0-150600.23.17.1 * Basesystem Module 15-SP6 (aarch64 ppc64le s390x x86_64 nosrc) * kernel-default-6.4.0-150600.23.17.1 * Basesystem Module 15-SP6 (aarch64 ppc64le x86_64) * kernel-default-base-6.4.0-150600.23.17.1.150600.12.6.2 * Basesystem Module 15-SP6 (aarch64 ppc64le s390x x86_64) * kernel-default-debugsource-6.4.0-150600.23.17.1 * kernel-default-devel-6.4.0-150600.23.17.1 * kernel-default-debuginfo-6.4.0-150600.23.17.1 * kernel-default-devel-debuginfo-6.4.0-150600.23.17.1 * Basesystem Module 15-SP6 (noarch) * kernel-devel-6.4.0-150600.23.17.1 * kernel-macros-6.4.0-150600.23.17.1 * Basesystem Module 15-SP6 (nosrc s390x) * kernel-zfcpdump-6.4.0-150600.23.17.1 * Basesystem Module 15-SP6 (s390x) * kernel-zfcpdump-debuginfo-6.4.0-150600.23.17.1 * kernel-zfcpdump-debugsource-6.4.0-150600.23.17.1 * Development Tools Module 15-SP6 (noarch nosrc) * kernel-docs-6.4.0-150600.23.17.3 * Development Tools Module 15-SP6 (aarch64 ppc64le s390x x86_64) * kernel-syms-6.4.0-150600.23.17.1 * kernel-obs-build-6.4.0-150600.23.17.1 * kernel-obs-build-debugsource-6.4.0-150600.23.17.1 * Development Tools Module 15-SP6 (noarch) * kernel-source-6.4.0-150600.23.17.1 * Legacy Module 15-SP6 (nosrc) * kernel-default-6.4.0-150600.23.17.1 * Legacy Module 15-SP6 (aarch64 ppc64le s390x x86_64) * kernel-default-debugsource-6.4.0-150600.23.17.1 * kernel-default-debuginfo-6.4.0-150600.23.17.1 * reiserfs-kmp-default-6.4.0-150600.23.17.1 * reiserfs-kmp-default-debuginfo-6.4.0-150600.23.17.1 * SUSE Linux Enterprise Live Patching 15-SP6 (nosrc) * kernel-default-6.4.0-150600.23.17.1 * SUSE Linux Enterprise Live Patching 15-SP6 (ppc64le s390x x86_64) * kernel-default-debugsource-6.4.0-150600.23.17.1 * kernel-livepatch-SLE15-SP6_Update_3-debugsource-1-150600.13.3.1 * kernel-default-livepatch-devel-6.4.0-150600.23.17.1 * kernel-default-livepatch-6.4.0-150600.23.17.1 * kernel-livepatch-6_4_0-150600_23_17-default-1-150600.13.3.1 * kernel-livepatch-6_4_0-150600_23_17-default-debuginfo-1-150600.13.3.1 * kernel-default-debuginfo-6.4.0-150600.23.17.1 * SUSE Linux Enterprise High Availability Extension 15 SP6 (aarch64 ppc64le s390x x86_64) * kernel-default-debugsource-6.4.0-150600.23.17.1 * ocfs2-kmp-default-6.4.0-150600.23.17.1 * gfs2-kmp-default-debuginfo-6.4.0-150600.23.17.1 * dlm-kmp-default-6.4.0-150600.23.17.1 * cluster-md-kmp-default-debuginfo-6.4.0-150600.23.17.1 * ocfs2-kmp-default-debuginfo-6.4.0-150600.23.17.1 * dlm-kmp-default-debuginfo-6.4.0-150600.23.17.1 * cluster-md-kmp-default-6.4.0-150600.23.17.1 * gfs2-kmp-default-6.4.0-150600.23.17.1 * kernel-default-debuginfo-6.4.0-150600.23.17.1 * SUSE Linux Enterprise High Availability Extension 15 SP6 (nosrc) * kernel-default-6.4.0-150600.23.17.1 * SUSE Linux Enterprise Workstation Extension 15 SP6 (nosrc) * kernel-default-6.4.0-150600.23.17.1 * SUSE Linux Enterprise Workstation Extension 15 SP6 (x86_64) * kernel-default-debugsource-6.4.0-150600.23.17.1 * kernel-default-debuginfo-6.4.0-150600.23.17.1 * kernel-default-extra-debuginfo-6.4.0-150600.23.17.1 * kernel-default-extra-6.4.0-150600.23.17.1 ## References: * https://www.suse.com/security/cve/CVE-2023-38417.html * https://www.suse.com/security/cve/CVE-2023-47210.html * https://www.suse.com/security/cve/CVE-2023-51780.html * https://www.suse.com/security/cve/CVE-2023-52435.html * https://www.suse.com/security/cve/CVE-2023-52472.html * https://www.suse.com/security/cve/CVE-2023-52751.html * https://www.suse.com/security/cve/CVE-2023-52775.html * https://www.suse.com/security/cve/CVE-2024-25741.html * https://www.suse.com/security/cve/CVE-2024-26615.html * https://www.suse.com/security/cve/CVE-2024-26623.html * https://www.suse.com/security/cve/CVE-2024-26633.html * https://www.suse.com/security/cve/CVE-2024-26635.html * https://www.suse.com/security/cve/CVE-2024-26636.html * https://www.suse.com/security/cve/CVE-2024-26641.html * https://www.suse.com/security/cve/CVE-2024-26663.html * https://www.suse.com/security/cve/CVE-2024-26665.html * https://www.suse.com/security/cve/CVE-2024-26691.html * https://www.suse.com/security/cve/CVE-2024-26734.html * https://www.suse.com/security/cve/CVE-2024-26785.html * https://www.suse.com/security/cve/CVE-2024-26826.html * https://www.suse.com/security/cve/CVE-2024-26863.html * https://www.suse.com/security/cve/CVE-2024-26944.html * https://www.suse.com/security/cve/CVE-2024-27012.html * https://www.suse.com/security/cve/CVE-2024-27015.html * https://www.suse.com/security/cve/CVE-2024-27016.html * https://www.suse.com/security/cve/CVE-2024-27019.html * https://www.suse.com/security/cve/CVE-2024-27020.html * https://www.suse.com/security/cve/CVE-2024-27025.html * https://www.suse.com/security/cve/CVE-2024-27064.html * https://www.suse.com/security/cve/CVE-2024-27065.html * https://www.suse.com/security/cve/CVE-2024-27402.html * https://www.suse.com/security/cve/CVE-2024-27404.html * https://www.suse.com/security/cve/CVE-2024-35805.html * https://www.suse.com/security/cve/CVE-2024-35853.html * https://www.suse.com/security/cve/CVE-2024-35854.html * https://www.suse.com/security/cve/CVE-2024-35890.html * https://www.suse.com/security/cve/CVE-2024-35893.html * https://www.suse.com/security/cve/CVE-2024-35899.html * https://www.suse.com/security/cve/CVE-2024-35908.html * https://www.suse.com/security/cve/CVE-2024-35934.html * https://www.suse.com/security/cve/CVE-2024-35942.html * https://www.suse.com/security/cve/CVE-2024-36003.html * https://www.suse.com/security/cve/CVE-2024-36004.html * https://www.suse.com/security/cve/CVE-2024-36889.html * https://www.suse.com/security/cve/CVE-2024-36901.html * https://www.suse.com/security/cve/CVE-2024-36902.html * https://www.suse.com/security/cve/CVE-2024-36909.html * https://www.suse.com/security/cve/CVE-2024-36910.html * https://www.suse.com/security/cve/CVE-2024-36911.html * https://www.suse.com/security/cve/CVE-2024-36912.html * https://www.suse.com/security/cve/CVE-2024-36913.html * https://www.suse.com/security/cve/CVE-2024-36914.html * https://www.suse.com/security/cve/CVE-2024-36922.html * https://www.suse.com/security/cve/CVE-2024-36930.html * https://www.suse.com/security/cve/CVE-2024-36940.html * https://www.suse.com/security/cve/CVE-2024-36941.html * https://www.suse.com/security/cve/CVE-2024-36942.html * https://www.suse.com/security/cve/CVE-2024-36944.html * https://www.suse.com/security/cve/CVE-2024-36946.html * https://www.suse.com/security/cve/CVE-2024-36947.html * https://www.suse.com/security/cve/CVE-2024-36949.html * https://www.suse.com/security/cve/CVE-2024-36950.html * https://www.suse.com/security/cve/CVE-2024-36951.html * https://www.suse.com/security/cve/CVE-2024-36955.html * https://www.suse.com/security/cve/CVE-2024-36959.html * https://www.suse.com/security/cve/CVE-2024-36974.html * https://www.suse.com/security/cve/CVE-2024-38558.html * https://www.suse.com/security/cve/CVE-2024-38586.html * https://www.suse.com/security/cve/CVE-2024-38598.html * https://www.suse.com/security/cve/CVE-2024-38604.html * https://www.suse.com/security/cve/CVE-2024-38659.html * https://www.suse.com/security/cve/CVE-2024-39276.html * https://www.suse.com/security/cve/CVE-2024-39468.html * https://www.suse.com/security/cve/CVE-2024-39472.html * https://www.suse.com/security/cve/CVE-2024-39473.html * https://www.suse.com/security/cve/CVE-2024-39474.html * https://www.suse.com/security/cve/CVE-2024-39475.html * https://www.suse.com/security/cve/CVE-2024-39479.html * https://www.suse.com/security/cve/CVE-2024-39481.html * https://www.suse.com/security/cve/CVE-2024-39482.html * https://www.suse.com/security/cve/CVE-2024-39487.html * https://www.suse.com/security/cve/CVE-2024-39490.html * https://www.suse.com/security/cve/CVE-2024-39494.html * https://www.suse.com/security/cve/CVE-2024-39496.html * https://www.suse.com/security/cve/CVE-2024-39498.html * https://www.suse.com/security/cve/CVE-2024-39502.html * https://www.suse.com/security/cve/CVE-2024-39504.html * https://www.suse.com/security/cve/CVE-2024-39507.html * https://www.suse.com/security/cve/CVE-2024-40901.html * https://www.suse.com/security/cve/CVE-2024-40906.html * https://www.suse.com/security/cve/CVE-2024-40908.html * https://www.suse.com/security/cve/CVE-2024-40919.html * https://www.suse.com/security/cve/CVE-2024-40923.html * https://www.suse.com/security/cve/CVE-2024-40925.html * https://www.suse.com/security/cve/CVE-2024-40928.html * https://www.suse.com/security/cve/CVE-2024-40931.html * https://www.suse.com/security/cve/CVE-2024-40935.html * https://www.suse.com/security/cve/CVE-2024-40937.html * https://www.suse.com/security/cve/CVE-2024-40940.html * https://www.suse.com/security/cve/CVE-2024-40947.html * https://www.suse.com/security/cve/CVE-2024-40948.html * https://www.suse.com/security/cve/CVE-2024-40953.html * https://www.suse.com/security/cve/CVE-2024-40960.html * https://www.suse.com/security/cve/CVE-2024-40961.html * https://www.suse.com/security/cve/CVE-2024-40966.html * https://www.suse.com/security/cve/CVE-2024-40970.html * https://www.suse.com/security/cve/CVE-2024-40972.html * https://www.suse.com/security/cve/CVE-2024-40975.html * https://www.suse.com/security/cve/CVE-2024-40979.html * https://www.suse.com/security/cve/CVE-2024-40998.html * https://www.suse.com/security/cve/CVE-2024-40999.html * https://www.suse.com/security/cve/CVE-2024-41006.html * https://www.suse.com/security/cve/CVE-2024-41011.html * https://www.suse.com/security/cve/CVE-2024-41013.html * https://www.suse.com/security/cve/CVE-2024-41014.html * https://www.suse.com/security/cve/CVE-2024-41017.html * https://www.suse.com/security/cve/CVE-2024-41090.html * https://www.suse.com/security/cve/CVE-2024-41091.html * https://bugzilla.suse.com/show_bug.cgi?id=1194869 * https://bugzilla.suse.com/show_bug.cgi?id=1215199 * https://bugzilla.suse.com/show_bug.cgi?id=1215587 * https://bugzilla.suse.com/show_bug.cgi?id=1218442 * https://bugzilla.suse.com/show_bug.cgi?id=1218730 * https://bugzilla.suse.com/show_bug.cgi?id=1218820 * https://bugzilla.suse.com/show_bug.cgi?id=1219832 * https://bugzilla.suse.com/show_bug.cgi?id=1220138 * https://bugzilla.suse.com/show_bug.cgi?id=1220427 * https://bugzilla.suse.com/show_bug.cgi?id=1220430 * https://bugzilla.suse.com/show_bug.cgi?id=1220942 * https://bugzilla.suse.com/show_bug.cgi?id=1221057 * https://bugzilla.suse.com/show_bug.cgi?id=1221647 * https://bugzilla.suse.com/show_bug.cgi?id=1221654 * https://bugzilla.suse.com/show_bug.cgi?id=1221656 * https://bugzilla.suse.com/show_bug.cgi?id=1221659 * https://bugzilla.suse.com/show_bug.cgi?id=1222326 * https://bugzilla.suse.com/show_bug.cgi?id=1222328 * https://bugzilla.suse.com/show_bug.cgi?id=1222438 * https://bugzilla.suse.com/show_bug.cgi?id=1222463 * https://bugzilla.suse.com/show_bug.cgi?id=1222768 * https://bugzilla.suse.com/show_bug.cgi?id=1222775 * https://bugzilla.suse.com/show_bug.cgi?id=1222779 * https://bugzilla.suse.com/show_bug.cgi?id=1222893 * https://bugzilla.suse.com/show_bug.cgi?id=1223010 * https://bugzilla.suse.com/show_bug.cgi?id=1223021 * https://bugzilla.suse.com/show_bug.cgi?id=1223570 * https://bugzilla.suse.com/show_bug.cgi?id=1223731 * https://bugzilla.suse.com/show_bug.cgi?id=1223740 * https://bugzilla.suse.com/show_bug.cgi?id=1223778 * https://bugzilla.suse.com/show_bug.cgi?id=1223804 * https://bugzilla.suse.com/show_bug.cgi?id=1223806 * https://bugzilla.suse.com/show_bug.cgi?id=1223807 * https://bugzilla.suse.com/show_bug.cgi?id=1223813 * https://bugzilla.suse.com/show_bug.cgi?id=1223815 * https://bugzilla.suse.com/show_bug.cgi?id=1223836 * https://bugzilla.suse.com/show_bug.cgi?id=1223863 * https://bugzilla.suse.com/show_bug.cgi?id=1224414 * https://bugzilla.suse.com/show_bug.cgi?id=1224422 * https://bugzilla.suse.com/show_bug.cgi?id=1224490 * https://bugzilla.suse.com/show_bug.cgi?id=1224499 * https://bugzilla.suse.com/show_bug.cgi?id=1224512 * https://bugzilla.suse.com/show_bug.cgi?id=1224516 * https://bugzilla.suse.com/show_bug.cgi?id=1224544 * https://bugzilla.suse.com/show_bug.cgi?id=1224545 * https://bugzilla.suse.com/show_bug.cgi?id=1224589 * https://bugzilla.suse.com/show_bug.cgi?id=1224604 * https://bugzilla.suse.com/show_bug.cgi?id=1224636 * https://bugzilla.suse.com/show_bug.cgi?id=1224641 * https://bugzilla.suse.com/show_bug.cgi?id=1224743 * https://bugzilla.suse.com/show_bug.cgi?id=1224767 * https://bugzilla.suse.com/show_bug.cgi?id=1225088 * https://bugzilla.suse.com/show_bug.cgi?id=1225172 * https://bugzilla.suse.com/show_bug.cgi?id=1225272 * https://bugzilla.suse.com/show_bug.cgi?id=1225489 * https://bugzilla.suse.com/show_bug.cgi?id=1225600 * https://bugzilla.suse.com/show_bug.cgi?id=1225601 * https://bugzilla.suse.com/show_bug.cgi?id=1225711 * https://bugzilla.suse.com/show_bug.cgi?id=1225717 * https://bugzilla.suse.com/show_bug.cgi?id=1225719 * https://bugzilla.suse.com/show_bug.cgi?id=1225744 * https://bugzilla.suse.com/show_bug.cgi?id=1225745 * https://bugzilla.suse.com/show_bug.cgi?id=1225746 * https://bugzilla.suse.com/show_bug.cgi?id=1225752 * https://bugzilla.suse.com/show_bug.cgi?id=1225753 * https://bugzilla.suse.com/show_bug.cgi?id=1225757 * https://bugzilla.suse.com/show_bug.cgi?id=1225805 * https://bugzilla.suse.com/show_bug.cgi?id=1225810 * https://bugzilla.suse.com/show_bug.cgi?id=1225830 * https://bugzilla.suse.com/show_bug.cgi?id=1225835 * https://bugzilla.suse.com/show_bug.cgi?id=1225839 * https://bugzilla.suse.com/show_bug.cgi?id=1225840 * https://bugzilla.suse.com/show_bug.cgi?id=1225843 * https://bugzilla.suse.com/show_bug.cgi?id=1225847 * https://bugzilla.suse.com/show_bug.cgi?id=1225851 * https://bugzilla.suse.com/show_bug.cgi?id=1225856 * https://bugzilla.suse.com/show_bug.cgi?id=1225894 * https://bugzilla.suse.com/show_bug.cgi?id=1225895 * https://bugzilla.suse.com/show_bug.cgi?id=1225896 * https://bugzilla.suse.com/show_bug.cgi?id=1226202 * https://bugzilla.suse.com/show_bug.cgi?id=1226213 * https://bugzilla.suse.com/show_bug.cgi?id=1226502 * https://bugzilla.suse.com/show_bug.cgi?id=1226519 * https://bugzilla.suse.com/show_bug.cgi?id=1226750 * https://bugzilla.suse.com/show_bug.cgi?id=1226757 * https://bugzilla.suse.com/show_bug.cgi?id=1226783 * https://bugzilla.suse.com/show_bug.cgi?id=1226866 * https://bugzilla.suse.com/show_bug.cgi?id=1226883 * https://bugzilla.suse.com/show_bug.cgi?id=1226915 * https://bugzilla.suse.com/show_bug.cgi?id=1226993 * https://bugzilla.suse.com/show_bug.cgi?id=1227103 * https://bugzilla.suse.com/show_bug.cgi?id=1227149 * https://bugzilla.suse.com/show_bug.cgi?id=1227282 * https://bugzilla.suse.com/show_bug.cgi?id=1227362 * https://bugzilla.suse.com/show_bug.cgi?id=1227363 * https://bugzilla.suse.com/show_bug.cgi?id=1227383 * https://bugzilla.suse.com/show_bug.cgi?id=1227432 * https://bugzilla.suse.com/show_bug.cgi?id=1227433 * https://bugzilla.suse.com/show_bug.cgi?id=1227434 * https://bugzilla.suse.com/show_bug.cgi?id=1227435 * https://bugzilla.suse.com/show_bug.cgi?id=1227443 * https://bugzilla.suse.com/show_bug.cgi?id=1227446 * https://bugzilla.suse.com/show_bug.cgi?id=1227447 * https://bugzilla.suse.com/show_bug.cgi?id=1227487 * https://bugzilla.suse.com/show_bug.cgi?id=1227573 * https://bugzilla.suse.com/show_bug.cgi?id=1227626 * https://bugzilla.suse.com/show_bug.cgi?id=1227716 * https://bugzilla.suse.com/show_bug.cgi?id=1227719 * https://bugzilla.suse.com/show_bug.cgi?id=1227723 * https://bugzilla.suse.com/show_bug.cgi?id=1227730 * https://bugzilla.suse.com/show_bug.cgi?id=1227736 * https://bugzilla.suse.com/show_bug.cgi?id=1227755 * https://bugzilla.suse.com/show_bug.cgi?id=1227757 * https://bugzilla.suse.com/show_bug.cgi?id=1227762 * https://bugzilla.suse.com/show_bug.cgi?id=1227763 * https://bugzilla.suse.com/show_bug.cgi?id=1227779 * https://bugzilla.suse.com/show_bug.cgi?id=1227780 * https://bugzilla.suse.com/show_bug.cgi?id=1227783 * https://bugzilla.suse.com/show_bug.cgi?id=1227786 * https://bugzilla.suse.com/show_bug.cgi?id=1227788 * https://bugzilla.suse.com/show_bug.cgi?id=1227789 * https://bugzilla.suse.com/show_bug.cgi?id=1227797 * https://bugzilla.suse.com/show_bug.cgi?id=1227800 * https://bugzilla.suse.com/show_bug.cgi?id=1227801 * https://bugzilla.suse.com/show_bug.cgi?id=1227803 * https://bugzilla.suse.com/show_bug.cgi?id=1227806 * https://bugzilla.suse.com/show_bug.cgi?id=1227813 * https://bugzilla.suse.com/show_bug.cgi?id=1227814 * https://bugzilla.suse.com/show_bug.cgi?id=1227836 * https://bugzilla.suse.com/show_bug.cgi?id=1227855 * https://bugzilla.suse.com/show_bug.cgi?id=1227862 * https://bugzilla.suse.com/show_bug.cgi?id=1227866 * https://bugzilla.suse.com/show_bug.cgi?id=1227886 * https://bugzilla.suse.com/show_bug.cgi?id=1227899 * https://bugzilla.suse.com/show_bug.cgi?id=1227910 * https://bugzilla.suse.com/show_bug.cgi?id=1227913 * https://bugzilla.suse.com/show_bug.cgi?id=1227926 * https://bugzilla.suse.com/show_bug.cgi?id=1228090 * https://bugzilla.suse.com/show_bug.cgi?id=1228192 * https://bugzilla.suse.com/show_bug.cgi?id=1228193 * https://bugzilla.suse.com/show_bug.cgi?id=1228211 * https://bugzilla.suse.com/show_bug.cgi?id=1228269 * https://bugzilla.suse.com/show_bug.cgi?id=1228289 * https://bugzilla.suse.com/show_bug.cgi?id=1228327 * https://bugzilla.suse.com/show_bug.cgi?id=1228328 * https://bugzilla.suse.com/show_bug.cgi?id=1228403 * https://bugzilla.suse.com/show_bug.cgi?id=1228405 * https://bugzilla.suse.com/show_bug.cgi?id=1228408 * https://bugzilla.suse.com/show_bug.cgi?id=1228417 * https://jira.suse.com/browse/PED-8644 * https://jira.suse.com/browse/PED-8688 * https://jira.suse.com/browse/PED-8701 * https://jira.suse.com/browse/PED-8954 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Wed Aug 7 08:32:26 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Wed, 07 Aug 2024 08:32:26 -0000 Subject: SUSE-SU-2024:2801-1: critical: Security update for docker Message-ID: <172301954641.9296.5783566863362360748@smelt2.prg2.suse.org> # Security update for docker Announcement ID: SUSE-SU-2024:2801-1 Rating: critical References: * bsc#1214855 * bsc#1219267 * bsc#1219268 * bsc#1219438 * bsc#1221916 * bsc#1223409 * bsc#1228324 Cross-References: * CVE-2024-23651 * CVE-2024-23652 * CVE-2024-23653 * CVE-2024-41110 CVSS scores: * CVE-2024-23651 ( SUSE ): 7.4 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2024-23651 ( NVD ): 7.4 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N * CVE-2024-23652 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:H * CVE-2024-23652 ( NVD ): 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H * CVE-2024-23653 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2024-23653 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2024-41110 ( SUSE ): 9.9 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H Affected Products: * Containers Module 15-SP5 * Containers Module 15-SP6 * openSUSE Leap 15.5 * openSUSE Leap 15.6 * openSUSE Leap Micro 5.5 * SUSE Enterprise Storage 7.1 * SUSE Linux Enterprise High Performance Computing 15 SP2 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 * SUSE Linux Enterprise High Performance Computing 15 SP3 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise Micro 5.1 * SUSE Linux Enterprise Micro 5.2 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Micro for Rancher 5.2 * SUSE Linux Enterprise Micro for Rancher 5.3 * SUSE Linux Enterprise Micro for Rancher 5.4 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Server 15 SP2 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 * SUSE Linux Enterprise Server 15 SP3 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 An update that solves four vulnerabilities and has three security fixes can now be installed. ## Description: This update for docker fixes the following issues: * CVE-2024-23651: Fixed arbitrary files write due to race condition on mounts (bsc#1219267) * CVE-2024-23652: Fixed insufficient validation of parent directory on mount (bsc#1219268) * CVE-2024-23653: Fixed insufficient validation on entitlement on container creation via buildkit (bsc#1219438) * CVE-2024-41110: A Authz zero length regression that could lead to authentication bypass was fixed (bsc#1228324) Other fixes: * Update to Docker 25.0.6-ce. See upstream changelog online at * Update to Docker 25.0.5-ce (bsc#1223409) * Fix BuildKit's symlink resolution logic to correctly handle non-lexical symlinks. (bsc#1221916) * Write volume options atomically so sudden system crashes won't result in future Docker starts failing due to empty files. (bsc#1214855) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap Micro 5.5 zypper in -t patch openSUSE-Leap-Micro-5.5-2024-2801=1 * openSUSE Leap 15.5 zypper in -t patch openSUSE-SLE-15.5-2024-2801=1 * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2024-2801=1 * SUSE Linux Enterprise Micro for Rancher 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2024-2801=1 * SUSE Linux Enterprise Micro 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2024-2801=1 * SUSE Linux Enterprise Micro for Rancher 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2024-2801=1 * SUSE Linux Enterprise Micro 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2024-2801=1 * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2024-2801=1 * Containers Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Containers-15-SP5-2024-2801=1 * Containers Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Containers-15-SP6-2024-2801=1 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 zypper in -t patch SUSE-SLE-Product-HPC-15-SP2-LTSS-2024-2801=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 zypper in -t patch SUSE-SLE-Product-HPC-15-SP3-LTSS-2024-2801=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2024-2801=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2024-2801=1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 zypper in -t patch SUSE-SLE-Product-SLES-15-SP2-LTSS-2024-2801=1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 zypper in -t patch SUSE-SLE-Product-SLES-15-SP3-LTSS-2024-2801=1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2024-2801=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP2-2024-2801=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP3-2024-2801=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2024-2801=1 * SUSE Enterprise Storage 7.1 zypper in -t patch SUSE-Storage-7.1-2024-2801=1 * SUSE Linux Enterprise Micro 5.1 zypper in -t patch SUSE-SUSE-MicroOS-5.1-2024-2801=1 * SUSE Linux Enterprise Micro 5.2 zypper in -t patch SUSE-SUSE-MicroOS-5.2-2024-2801=1 * SUSE Linux Enterprise Micro for Rancher 5.2 zypper in -t patch SUSE-SUSE-MicroOS-5.2-2024-2801=1 ## Package List: * openSUSE Leap Micro 5.5 (aarch64 s390x x86_64) * docker-debuginfo-25.0.6_ce-150000.203.1 * docker-25.0.6_ce-150000.203.1 * openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64) * docker-debuginfo-25.0.6_ce-150000.203.1 * docker-25.0.6_ce-150000.203.1 * openSUSE Leap 15.5 (noarch) * docker-bash-completion-25.0.6_ce-150000.203.1 * docker-rootless-extras-25.0.6_ce-150000.203.1 * docker-zsh-completion-25.0.6_ce-150000.203.1 * docker-fish-completion-25.0.6_ce-150000.203.1 * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64) * docker-debuginfo-25.0.6_ce-150000.203.1 * docker-25.0.6_ce-150000.203.1 * openSUSE Leap 15.6 (noarch) * docker-bash-completion-25.0.6_ce-150000.203.1 * docker-rootless-extras-25.0.6_ce-150000.203.1 * docker-zsh-completion-25.0.6_ce-150000.203.1 * docker-fish-completion-25.0.6_ce-150000.203.1 * SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 s390x x86_64) * docker-debuginfo-25.0.6_ce-150000.203.1 * docker-25.0.6_ce-150000.203.1 * SUSE Linux Enterprise Micro 5.3 (aarch64 s390x x86_64) * docker-debuginfo-25.0.6_ce-150000.203.1 * docker-25.0.6_ce-150000.203.1 * SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 s390x x86_64) * docker-debuginfo-25.0.6_ce-150000.203.1 * docker-25.0.6_ce-150000.203.1 * SUSE Linux Enterprise Micro 5.4 (aarch64 s390x x86_64) * docker-debuginfo-25.0.6_ce-150000.203.1 * docker-25.0.6_ce-150000.203.1 * SUSE Linux Enterprise Micro 5.5 (aarch64 ppc64le s390x x86_64) * docker-debuginfo-25.0.6_ce-150000.203.1 * docker-25.0.6_ce-150000.203.1 * Containers Module 15-SP5 (aarch64 ppc64le s390x x86_64) * docker-debuginfo-25.0.6_ce-150000.203.1 * docker-25.0.6_ce-150000.203.1 * Containers Module 15-SP5 (noarch) * docker-bash-completion-25.0.6_ce-150000.203.1 * docker-rootless-extras-25.0.6_ce-150000.203.1 * Containers Module 15-SP6 (aarch64 ppc64le s390x x86_64) * docker-debuginfo-25.0.6_ce-150000.203.1 * docker-25.0.6_ce-150000.203.1 * Containers Module 15-SP6 (noarch) * docker-bash-completion-25.0.6_ce-150000.203.1 * docker-rootless-extras-25.0.6_ce-150000.203.1 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 (aarch64 x86_64) * docker-debuginfo-25.0.6_ce-150000.203.1 * docker-25.0.6_ce-150000.203.1 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 (noarch) * docker-bash-completion-25.0.6_ce-150000.203.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (aarch64 x86_64) * docker-debuginfo-25.0.6_ce-150000.203.1 * docker-25.0.6_ce-150000.203.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (noarch) * docker-bash-completion-25.0.6_ce-150000.203.1 * docker-fish-completion-25.0.6_ce-150000.203.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 x86_64) * docker-debuginfo-25.0.6_ce-150000.203.1 * docker-25.0.6_ce-150000.203.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (noarch) * docker-bash-completion-25.0.6_ce-150000.203.1 * docker-rootless-extras-25.0.6_ce-150000.203.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 x86_64) * docker-debuginfo-25.0.6_ce-150000.203.1 * docker-25.0.6_ce-150000.203.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (noarch) * docker-bash-completion-25.0.6_ce-150000.203.1 * docker-rootless-extras-25.0.6_ce-150000.203.1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (aarch64 ppc64le s390x x86_64) * docker-debuginfo-25.0.6_ce-150000.203.1 * docker-25.0.6_ce-150000.203.1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (noarch) * docker-bash-completion-25.0.6_ce-150000.203.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (aarch64 ppc64le s390x x86_64) * docker-debuginfo-25.0.6_ce-150000.203.1 * docker-25.0.6_ce-150000.203.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (noarch) * docker-bash-completion-25.0.6_ce-150000.203.1 * docker-fish-completion-25.0.6_ce-150000.203.1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (aarch64 ppc64le s390x x86_64) * docker-debuginfo-25.0.6_ce-150000.203.1 * docker-25.0.6_ce-150000.203.1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (noarch) * docker-bash-completion-25.0.6_ce-150000.203.1 * docker-rootless-extras-25.0.6_ce-150000.203.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 (ppc64le x86_64) * docker-debuginfo-25.0.6_ce-150000.203.1 * docker-25.0.6_ce-150000.203.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 (noarch) * docker-bash-completion-25.0.6_ce-150000.203.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (ppc64le x86_64) * docker-debuginfo-25.0.6_ce-150000.203.1 * docker-25.0.6_ce-150000.203.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (noarch) * docker-bash-completion-25.0.6_ce-150000.203.1 * docker-fish-completion-25.0.6_ce-150000.203.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64) * docker-debuginfo-25.0.6_ce-150000.203.1 * docker-25.0.6_ce-150000.203.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (noarch) * docker-bash-completion-25.0.6_ce-150000.203.1 * docker-rootless-extras-25.0.6_ce-150000.203.1 * SUSE Enterprise Storage 7.1 (aarch64 x86_64) * docker-debuginfo-25.0.6_ce-150000.203.1 * docker-25.0.6_ce-150000.203.1 * SUSE Enterprise Storage 7.1 (noarch) * docker-bash-completion-25.0.6_ce-150000.203.1 * docker-fish-completion-25.0.6_ce-150000.203.1 * SUSE Linux Enterprise Micro 5.1 (aarch64 s390x x86_64) * docker-debuginfo-25.0.6_ce-150000.203.1 * docker-25.0.6_ce-150000.203.1 * SUSE Linux Enterprise Micro 5.2 (aarch64 s390x x86_64) * docker-debuginfo-25.0.6_ce-150000.203.1 * docker-25.0.6_ce-150000.203.1 * SUSE Linux Enterprise Micro for Rancher 5.2 (aarch64 s390x x86_64) * docker-debuginfo-25.0.6_ce-150000.203.1 * docker-25.0.6_ce-150000.203.1 ## References: * https://www.suse.com/security/cve/CVE-2024-23651.html * https://www.suse.com/security/cve/CVE-2024-23652.html * https://www.suse.com/security/cve/CVE-2024-23653.html * https://www.suse.com/security/cve/CVE-2024-41110.html * https://bugzilla.suse.com/show_bug.cgi?id=1214855 * https://bugzilla.suse.com/show_bug.cgi?id=1219267 * https://bugzilla.suse.com/show_bug.cgi?id=1219268 * https://bugzilla.suse.com/show_bug.cgi?id=1219438 * https://bugzilla.suse.com/show_bug.cgi?id=1221916 * https://bugzilla.suse.com/show_bug.cgi?id=1223409 * https://bugzilla.suse.com/show_bug.cgi?id=1228324 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Wed Aug 7 12:30:11 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Wed, 07 Aug 2024 12:30:11 -0000 Subject: SUSE-SU-2024:2815-1: important: Security update for the Linux Kernel (Live Patch 41 for SLE 15 SP3) Message-ID: <172303381105.12638.2438690370165236710@smelt2.prg2.suse.org> # Security update for the Linux Kernel (Live Patch 41 for SLE 15 SP3) Announcement ID: SUSE-SU-2024:2815-1 Rating: important References: * bsc#1225013 * bsc#1225310 Cross-References: * CVE-2024-27398 * CVE-2024-35950 CVSS scores: * CVE-2024-27398 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35950 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.3 * SUSE Linux Enterprise High Performance Computing 15 SP3 * SUSE Linux Enterprise Live Patching 15-SP3 * SUSE Linux Enterprise Micro 5.1 * SUSE Linux Enterprise Micro 5.2 * SUSE Linux Enterprise Server 15 SP3 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 An update that solves two vulnerabilities can now be installed. ## Description: This update for the Linux Kernel 5.3.18-150300_59_150 fixes several issues. The following security issues were fixed: * CVE-2024-27398: Fixed use-after-free bug caused by sco_sock_timeout() (bsc#1225013). * CVE-2024-35950: drm/client: Fully protect modes with dev->mode_config.mutex (bsc#1225310). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.3 zypper in -t patch SUSE-2024-2815=1 * SUSE Linux Enterprise Live Patching 15-SP3 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP3-2024-2815=1 ## Package List: * openSUSE Leap 15.3 (ppc64le s390x x86_64) * kernel-livepatch-5_3_18-150300_59_150-default-9-150300.2.1 * kernel-livepatch-SLE15-SP3_Update_41-debugsource-9-150300.2.1 * kernel-livepatch-5_3_18-150300_59_150-default-debuginfo-9-150300.2.1 * openSUSE Leap 15.3 (x86_64) * kernel-livepatch-5_3_18-150300_59_150-preempt-debuginfo-9-150300.2.1 * kernel-livepatch-5_3_18-150300_59_150-preempt-9-150300.2.1 * SUSE Linux Enterprise Live Patching 15-SP3 (ppc64le s390x x86_64) * kernel-livepatch-5_3_18-150300_59_150-default-9-150300.2.1 ## References: * https://www.suse.com/security/cve/CVE-2024-27398.html * https://www.suse.com/security/cve/CVE-2024-35950.html * https://bugzilla.suse.com/show_bug.cgi?id=1225013 * https://bugzilla.suse.com/show_bug.cgi?id=1225310 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Wed Aug 7 12:30:19 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Wed, 07 Aug 2024 12:30:19 -0000 Subject: SUSE-SU-2024:2801-2: critical: Security update for docker Message-ID: <172303381901.12638.18218688306043766502@smelt2.prg2.suse.org> # Security update for docker Announcement ID: SUSE-SU-2024:2801-2 Rating: critical References: * bsc#1214855 * bsc#1219267 * bsc#1219268 * bsc#1219438 * bsc#1221916 * bsc#1223409 * bsc#1228324 Cross-References: * CVE-2024-23651 * CVE-2024-23652 * CVE-2024-23653 * CVE-2024-41110 CVSS scores: * CVE-2024-23651 ( SUSE ): 7.4 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2024-23651 ( NVD ): 7.4 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N * CVE-2024-23652 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:H * CVE-2024-23652 ( NVD ): 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H * CVE-2024-23653 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2024-23653 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2024-41110 ( SUSE ): 9.9 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H Affected Products: * Containers Module 15-SP5 * Containers Module 15-SP6 * openSUSE Leap 15.5 * openSUSE Leap 15.6 * openSUSE Leap Micro 5.5 * SUSE Enterprise Storage 7.1 * SUSE Linux Enterprise High Performance Computing 15 SP2 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 * SUSE Linux Enterprise High Performance Computing 15 SP3 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise Micro 5.1 * SUSE Linux Enterprise Micro 5.2 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Micro for Rancher 5.2 * SUSE Linux Enterprise Micro for Rancher 5.3 * SUSE Linux Enterprise Micro for Rancher 5.4 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Server 15 SP2 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 * SUSE Linux Enterprise Server 15 SP3 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 An update that solves four vulnerabilities and has three security fixes can now be installed. ## Description: RETRACTED: This update for docker fixes the following issues: * CVE-2024-23651: Fixed arbitrary files write due to race condition on mounts (bsc#1219267) * CVE-2024-23652: Fixed insufficient validation of parent directory on mount (bsc#1219268) * CVE-2024-23653: Fixed insufficient validation on entitlement on container creation via buildkit (bsc#1219438) * CVE-2024-41110: A Authz zero length regression that could lead to authentication bypass was fixed (bsc#1228324) Other fixes: * Update to Docker 25.0.6-ce. See upstream changelog online at * Update to Docker 25.0.5-ce (bsc#1223409) * Fix BuildKit's symlink resolution logic to correctly handle non-lexical symlinks. (bsc#1221916) * Write volume options atomically so sudden system crashes won't result in future Docker starts failing due to empty files. (bsc#1214855) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap Micro 5.5 zypper in -t patch openSUSE-Leap-Micro-5.5-2024-2801=1 * openSUSE Leap 15.5 zypper in -t patch openSUSE-SLE-15.5-2024-2801=1 * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2024-2801=1 * SUSE Linux Enterprise Micro for Rancher 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2024-2801=1 * SUSE Linux Enterprise Micro 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2024-2801=1 * SUSE Linux Enterprise Micro for Rancher 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2024-2801=1 * SUSE Linux Enterprise Micro 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2024-2801=1 * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2024-2801=1 * Containers Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Containers-15-SP5-2024-2801=1 * Containers Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Containers-15-SP6-2024-2801=1 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 zypper in -t patch SUSE-SLE-Product-HPC-15-SP2-LTSS-2024-2801=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 zypper in -t patch SUSE-SLE-Product-HPC-15-SP3-LTSS-2024-2801=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2024-2801=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2024-2801=1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 zypper in -t patch SUSE-SLE-Product-SLES-15-SP2-LTSS-2024-2801=1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 zypper in -t patch SUSE-SLE-Product-SLES-15-SP3-LTSS-2024-2801=1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2024-2801=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP2-2024-2801=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP3-2024-2801=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2024-2801=1 * SUSE Enterprise Storage 7.1 zypper in -t patch SUSE-Storage-7.1-2024-2801=1 * SUSE Linux Enterprise Micro 5.1 zypper in -t patch SUSE-SUSE-MicroOS-5.1-2024-2801=1 * SUSE Linux Enterprise Micro 5.2 zypper in -t patch SUSE-SUSE-MicroOS-5.2-2024-2801=1 * SUSE Linux Enterprise Micro for Rancher 5.2 zypper in -t patch SUSE-SUSE-MicroOS-5.2-2024-2801=1 ## Package List: * openSUSE Leap Micro 5.5 (aarch64 s390x x86_64) * docker-25.0.6_ce-150000.203.1 * docker-debuginfo-25.0.6_ce-150000.203.1 * openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64) * docker-25.0.6_ce-150000.203.1 * docker-debuginfo-25.0.6_ce-150000.203.1 * openSUSE Leap 15.5 (noarch) * docker-fish-completion-25.0.6_ce-150000.203.1 * docker-rootless-extras-25.0.6_ce-150000.203.1 * docker-bash-completion-25.0.6_ce-150000.203.1 * docker-zsh-completion-25.0.6_ce-150000.203.1 * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64) * docker-25.0.6_ce-150000.203.1 * docker-debuginfo-25.0.6_ce-150000.203.1 * openSUSE Leap 15.6 (noarch) * docker-fish-completion-25.0.6_ce-150000.203.1 * docker-rootless-extras-25.0.6_ce-150000.203.1 * docker-bash-completion-25.0.6_ce-150000.203.1 * docker-zsh-completion-25.0.6_ce-150000.203.1 * SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 s390x x86_64) * docker-25.0.6_ce-150000.203.1 * docker-debuginfo-25.0.6_ce-150000.203.1 * SUSE Linux Enterprise Micro 5.3 (aarch64 s390x x86_64) * docker-25.0.6_ce-150000.203.1 * docker-debuginfo-25.0.6_ce-150000.203.1 * SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 s390x x86_64) * docker-25.0.6_ce-150000.203.1 * docker-debuginfo-25.0.6_ce-150000.203.1 * SUSE Linux Enterprise Micro 5.4 (aarch64 s390x x86_64) * docker-25.0.6_ce-150000.203.1 * docker-debuginfo-25.0.6_ce-150000.203.1 * SUSE Linux Enterprise Micro 5.5 (aarch64 ppc64le s390x x86_64) * docker-25.0.6_ce-150000.203.1 * docker-debuginfo-25.0.6_ce-150000.203.1 * Containers Module 15-SP5 (aarch64 ppc64le s390x x86_64) * docker-25.0.6_ce-150000.203.1 * docker-debuginfo-25.0.6_ce-150000.203.1 * Containers Module 15-SP5 (noarch) * docker-rootless-extras-25.0.6_ce-150000.203.1 * docker-bash-completion-25.0.6_ce-150000.203.1 * Containers Module 15-SP6 (aarch64 ppc64le s390x x86_64) * docker-25.0.6_ce-150000.203.1 * docker-debuginfo-25.0.6_ce-150000.203.1 * Containers Module 15-SP6 (noarch) * docker-rootless-extras-25.0.6_ce-150000.203.1 * docker-bash-completion-25.0.6_ce-150000.203.1 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 (aarch64 x86_64) * docker-25.0.6_ce-150000.203.1 * docker-debuginfo-25.0.6_ce-150000.203.1 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 (noarch) * docker-bash-completion-25.0.6_ce-150000.203.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (aarch64 x86_64) * docker-25.0.6_ce-150000.203.1 * docker-debuginfo-25.0.6_ce-150000.203.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (noarch) * docker-fish-completion-25.0.6_ce-150000.203.1 * docker-bash-completion-25.0.6_ce-150000.203.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 x86_64) * docker-25.0.6_ce-150000.203.1 * docker-debuginfo-25.0.6_ce-150000.203.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (noarch) * docker-rootless-extras-25.0.6_ce-150000.203.1 * docker-bash-completion-25.0.6_ce-150000.203.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 x86_64) * docker-25.0.6_ce-150000.203.1 * docker-debuginfo-25.0.6_ce-150000.203.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (noarch) * docker-rootless-extras-25.0.6_ce-150000.203.1 * docker-bash-completion-25.0.6_ce-150000.203.1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (aarch64 ppc64le s390x x86_64) * docker-25.0.6_ce-150000.203.1 * docker-debuginfo-25.0.6_ce-150000.203.1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (noarch) * docker-bash-completion-25.0.6_ce-150000.203.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (aarch64 ppc64le s390x x86_64) * docker-25.0.6_ce-150000.203.1 * docker-debuginfo-25.0.6_ce-150000.203.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (noarch) * docker-fish-completion-25.0.6_ce-150000.203.1 * docker-bash-completion-25.0.6_ce-150000.203.1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (aarch64 ppc64le s390x x86_64) * docker-25.0.6_ce-150000.203.1 * docker-debuginfo-25.0.6_ce-150000.203.1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (noarch) * docker-rootless-extras-25.0.6_ce-150000.203.1 * docker-bash-completion-25.0.6_ce-150000.203.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 (ppc64le x86_64) * docker-25.0.6_ce-150000.203.1 * docker-debuginfo-25.0.6_ce-150000.203.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 (noarch) * docker-bash-completion-25.0.6_ce-150000.203.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (ppc64le x86_64) * docker-25.0.6_ce-150000.203.1 * docker-debuginfo-25.0.6_ce-150000.203.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (noarch) * docker-fish-completion-25.0.6_ce-150000.203.1 * docker-bash-completion-25.0.6_ce-150000.203.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64) * docker-25.0.6_ce-150000.203.1 * docker-debuginfo-25.0.6_ce-150000.203.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (noarch) * docker-rootless-extras-25.0.6_ce-150000.203.1 * docker-bash-completion-25.0.6_ce-150000.203.1 * SUSE Enterprise Storage 7.1 (aarch64 x86_64) * docker-25.0.6_ce-150000.203.1 * docker-debuginfo-25.0.6_ce-150000.203.1 * SUSE Enterprise Storage 7.1 (noarch) * docker-fish-completion-25.0.6_ce-150000.203.1 * docker-bash-completion-25.0.6_ce-150000.203.1 * SUSE Linux Enterprise Micro 5.1 (aarch64 s390x x86_64) * docker-25.0.6_ce-150000.203.1 * docker-debuginfo-25.0.6_ce-150000.203.1 * SUSE Linux Enterprise Micro 5.2 (aarch64 s390x x86_64) * docker-25.0.6_ce-150000.203.1 * docker-debuginfo-25.0.6_ce-150000.203.1 * SUSE Linux Enterprise Micro for Rancher 5.2 (aarch64 s390x x86_64) * docker-25.0.6_ce-150000.203.1 * docker-debuginfo-25.0.6_ce-150000.203.1 ## References: * https://www.suse.com/security/cve/CVE-2024-23651.html * https://www.suse.com/security/cve/CVE-2024-23652.html * https://www.suse.com/security/cve/CVE-2024-23653.html * https://www.suse.com/security/cve/CVE-2024-41110.html * https://bugzilla.suse.com/show_bug.cgi?id=1214855 * https://bugzilla.suse.com/show_bug.cgi?id=1219267 * https://bugzilla.suse.com/show_bug.cgi?id=1219268 * https://bugzilla.suse.com/show_bug.cgi?id=1219438 * https://bugzilla.suse.com/show_bug.cgi?id=1221916 * https://bugzilla.suse.com/show_bug.cgi?id=1223409 * https://bugzilla.suse.com/show_bug.cgi?id=1228324 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Wed Aug 7 12:30:22 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Wed, 07 Aug 2024 12:30:22 -0000 Subject: SUSE-SU-2024:2814-1: moderate: Security update for ffmpeg Message-ID: <172303382248.12638.11992932938720860305@smelt2.prg2.suse.org> # Security update for ffmpeg Announcement ID: SUSE-SU-2024:2814-1 Rating: moderate References: * bsc#1227296 Cross-References: * CVE-2024-32230 CVSS scores: * CVE-2024-32230 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:H Affected Products: * Desktop Applications Module 15-SP5 * Desktop Applications Module 15-SP6 * openSUSE Leap 15.5 * openSUSE Leap 15.6 * SUSE Linux Enterprise Desktop 15 SP5 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Linux Enterprise Workstation Extension 15 SP5 * SUSE Linux Enterprise Workstation Extension 15 SP6 * SUSE Package Hub 15 15-SP5 * SUSE Package Hub 15 15-SP6 An update that solves one vulnerability can now be installed. ## Description: This update for ffmpeg fixes the following issues: * CVE-2024-32230: Fixed buffer overflow due to negative-size-param bug at libavcodec/mpegvideo_enc.c in load_input_picture (bsc#1227296) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.5 zypper in -t patch openSUSE-SLE-15.5-2024-2814=1 * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2024-2814=1 * Desktop Applications Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Desktop-Applications-15-SP5-2024-2814=1 * Desktop Applications Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Desktop-Applications-15-SP6-2024-2814=1 * SUSE Package Hub 15 15-SP5 zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP5-2024-2814=1 * SUSE Package Hub 15 15-SP6 zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP6-2024-2814=1 * SUSE Linux Enterprise Workstation Extension 15 SP5 zypper in -t patch SUSE-SLE-Product-WE-15-SP5-2024-2814=1 * SUSE Linux Enterprise Workstation Extension 15 SP6 zypper in -t patch SUSE-SLE-Product-WE-15-SP6-2024-2814=1 ## Package List: * openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64) * libavfilter6-3.4.2-150200.11.50.1 * libavfilter-devel-3.4.2-150200.11.50.1 * libavutil55-3.4.2-150200.11.50.1 * libavutil55-debuginfo-3.4.2-150200.11.50.1 * libpostproc-devel-3.4.2-150200.11.50.1 * ffmpeg-debuginfo-3.4.2-150200.11.50.1 * libavfilter6-debuginfo-3.4.2-150200.11.50.1 * libswscale4-debuginfo-3.4.2-150200.11.50.1 * libavdevice-devel-3.4.2-150200.11.50.1 * libswresample2-3.4.2-150200.11.50.1 * libswscale-devel-3.4.2-150200.11.50.1 * libavresample3-debuginfo-3.4.2-150200.11.50.1 * libswscale4-3.4.2-150200.11.50.1 * ffmpeg-private-devel-3.4.2-150200.11.50.1 * libswresample-devel-3.4.2-150200.11.50.1 * libavutil-devel-3.4.2-150200.11.50.1 * libavresample3-3.4.2-150200.11.50.1 * libavformat57-debuginfo-3.4.2-150200.11.50.1 * libavformat57-3.4.2-150200.11.50.1 * libpostproc54-debuginfo-3.4.2-150200.11.50.1 * libavcodec57-debuginfo-3.4.2-150200.11.50.1 * libavresample-devel-3.4.2-150200.11.50.1 * ffmpeg-3.4.2-150200.11.50.1 * libavformat-devel-3.4.2-150200.11.50.1 * libavdevice57-3.4.2-150200.11.50.1 * libavcodec57-3.4.2-150200.11.50.1 * libavcodec-devel-3.4.2-150200.11.50.1 * ffmpeg-debugsource-3.4.2-150200.11.50.1 * libavdevice57-debuginfo-3.4.2-150200.11.50.1 * libswresample2-debuginfo-3.4.2-150200.11.50.1 * libpostproc54-3.4.2-150200.11.50.1 * openSUSE Leap 15.5 (x86_64) * libavutil55-32bit-3.4.2-150200.11.50.1 * libpostproc54-32bit-3.4.2-150200.11.50.1 * libswscale4-32bit-debuginfo-3.4.2-150200.11.50.1 * libavfilter6-32bit-3.4.2-150200.11.50.1 * libavfilter6-32bit-debuginfo-3.4.2-150200.11.50.1 * libavdevice57-32bit-debuginfo-3.4.2-150200.11.50.1 * libavresample3-32bit-3.4.2-150200.11.50.1 * libpostproc54-32bit-debuginfo-3.4.2-150200.11.50.1 * libswresample2-32bit-debuginfo-3.4.2-150200.11.50.1 * libavutil55-32bit-debuginfo-3.4.2-150200.11.50.1 * libavdevice57-32bit-3.4.2-150200.11.50.1 * libswresample2-32bit-3.4.2-150200.11.50.1 * libavcodec57-32bit-debuginfo-3.4.2-150200.11.50.1 * libswscale4-32bit-3.4.2-150200.11.50.1 * libavformat57-32bit-3.4.2-150200.11.50.1 * libavcodec57-32bit-3.4.2-150200.11.50.1 * libavformat57-32bit-debuginfo-3.4.2-150200.11.50.1 * libavresample3-32bit-debuginfo-3.4.2-150200.11.50.1 * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64) * libavfilter6-3.4.2-150200.11.50.1 * libavfilter-devel-3.4.2-150200.11.50.1 * libavutil55-3.4.2-150200.11.50.1 * libavutil55-debuginfo-3.4.2-150200.11.50.1 * libpostproc-devel-3.4.2-150200.11.50.1 * ffmpeg-debuginfo-3.4.2-150200.11.50.1 * libavfilter6-debuginfo-3.4.2-150200.11.50.1 * libswscale4-debuginfo-3.4.2-150200.11.50.1 * libavdevice-devel-3.4.2-150200.11.50.1 * libswresample2-3.4.2-150200.11.50.1 * libswscale-devel-3.4.2-150200.11.50.1 * libavresample3-debuginfo-3.4.2-150200.11.50.1 * libswscale4-3.4.2-150200.11.50.1 * ffmpeg-private-devel-3.4.2-150200.11.50.1 * libswresample-devel-3.4.2-150200.11.50.1 * libavutil-devel-3.4.2-150200.11.50.1 * libavresample3-3.4.2-150200.11.50.1 * libavformat57-debuginfo-3.4.2-150200.11.50.1 * libavformat57-3.4.2-150200.11.50.1 * libpostproc54-debuginfo-3.4.2-150200.11.50.1 * libavcodec57-debuginfo-3.4.2-150200.11.50.1 * libavresample-devel-3.4.2-150200.11.50.1 * ffmpeg-3.4.2-150200.11.50.1 * libavformat-devel-3.4.2-150200.11.50.1 * libavdevice57-3.4.2-150200.11.50.1 * libavcodec57-3.4.2-150200.11.50.1 * libavcodec-devel-3.4.2-150200.11.50.1 * ffmpeg-debugsource-3.4.2-150200.11.50.1 * libavdevice57-debuginfo-3.4.2-150200.11.50.1 * libswresample2-debuginfo-3.4.2-150200.11.50.1 * libpostproc54-3.4.2-150200.11.50.1 * openSUSE Leap 15.6 (x86_64) * libavutil55-32bit-3.4.2-150200.11.50.1 * libpostproc54-32bit-3.4.2-150200.11.50.1 * libswscale4-32bit-debuginfo-3.4.2-150200.11.50.1 * libavfilter6-32bit-3.4.2-150200.11.50.1 * libavfilter6-32bit-debuginfo-3.4.2-150200.11.50.1 * libavdevice57-32bit-debuginfo-3.4.2-150200.11.50.1 * libavresample3-32bit-3.4.2-150200.11.50.1 * libpostproc54-32bit-debuginfo-3.4.2-150200.11.50.1 * libswresample2-32bit-debuginfo-3.4.2-150200.11.50.1 * libavutil55-32bit-debuginfo-3.4.2-150200.11.50.1 * libavdevice57-32bit-3.4.2-150200.11.50.1 * libswresample2-32bit-3.4.2-150200.11.50.1 * libavcodec57-32bit-debuginfo-3.4.2-150200.11.50.1 * libswscale4-32bit-3.4.2-150200.11.50.1 * libavformat57-32bit-3.4.2-150200.11.50.1 * libavcodec57-32bit-3.4.2-150200.11.50.1 * libavformat57-32bit-debuginfo-3.4.2-150200.11.50.1 * libavresample3-32bit-debuginfo-3.4.2-150200.11.50.1 * Desktop Applications Module 15-SP5 (aarch64 ppc64le s390x x86_64) * libavcodec57-3.4.2-150200.11.50.1 * libpostproc54-debuginfo-3.4.2-150200.11.50.1 * libavutil55-3.4.2-150200.11.50.1 * libavutil55-debuginfo-3.4.2-150200.11.50.1 * ffmpeg-debugsource-3.4.2-150200.11.50.1 * ffmpeg-debuginfo-3.4.2-150200.11.50.1 * libavcodec57-debuginfo-3.4.2-150200.11.50.1 * libpostproc-devel-3.4.2-150200.11.50.1 * libswscale4-debuginfo-3.4.2-150200.11.50.1 * libswresample-devel-3.4.2-150200.11.50.1 * libswresample2-3.4.2-150200.11.50.1 * libavutil-devel-3.4.2-150200.11.50.1 * libswresample2-debuginfo-3.4.2-150200.11.50.1 * libswscale-devel-3.4.2-150200.11.50.1 * libswscale4-3.4.2-150200.11.50.1 * libpostproc54-3.4.2-150200.11.50.1 * Desktop Applications Module 15-SP6 (aarch64 ppc64le s390x x86_64) * libavcodec57-3.4.2-150200.11.50.1 * libpostproc54-debuginfo-3.4.2-150200.11.50.1 * libavutil55-3.4.2-150200.11.50.1 * libavutil55-debuginfo-3.4.2-150200.11.50.1 * ffmpeg-debugsource-3.4.2-150200.11.50.1 * ffmpeg-debuginfo-3.4.2-150200.11.50.1 * libavcodec57-debuginfo-3.4.2-150200.11.50.1 * libpostproc-devel-3.4.2-150200.11.50.1 * libswscale4-debuginfo-3.4.2-150200.11.50.1 * libswresample-devel-3.4.2-150200.11.50.1 * libswresample2-3.4.2-150200.11.50.1 * libavutil-devel-3.4.2-150200.11.50.1 * libswresample2-debuginfo-3.4.2-150200.11.50.1 * libswscale-devel-3.4.2-150200.11.50.1 * libswscale4-3.4.2-150200.11.50.1 * libpostproc54-3.4.2-150200.11.50.1 * SUSE Package Hub 15 15-SP5 (aarch64 ppc64le s390x x86_64) * libavfilter6-3.4.2-150200.11.50.1 * libavformat57-debuginfo-3.4.2-150200.11.50.1 * ffmpeg-debugsource-3.4.2-150200.11.50.1 * ffmpeg-debuginfo-3.4.2-150200.11.50.1 * libavfilter6-debuginfo-3.4.2-150200.11.50.1 * libavdevice57-debuginfo-3.4.2-150200.11.50.1 * libavresample3-debuginfo-3.4.2-150200.11.50.1 * libavresample3-3.4.2-150200.11.50.1 * libavformat57-3.4.2-150200.11.50.1 * ffmpeg-3.4.2-150200.11.50.1 * libavdevice57-3.4.2-150200.11.50.1 * SUSE Package Hub 15 15-SP6 (aarch64 ppc64le s390x x86_64) * libavfilter6-3.4.2-150200.11.50.1 * libavformat57-debuginfo-3.4.2-150200.11.50.1 * ffmpeg-debugsource-3.4.2-150200.11.50.1 * ffmpeg-debuginfo-3.4.2-150200.11.50.1 * libavfilter6-debuginfo-3.4.2-150200.11.50.1 * libavdevice57-debuginfo-3.4.2-150200.11.50.1 * libavresample3-debuginfo-3.4.2-150200.11.50.1 * libavresample3-3.4.2-150200.11.50.1 * libavformat57-3.4.2-150200.11.50.1 * ffmpeg-3.4.2-150200.11.50.1 * libavdevice57-3.4.2-150200.11.50.1 * SUSE Linux Enterprise Workstation Extension 15 SP5 (x86_64) * libavcodec-devel-3.4.2-150200.11.50.1 * libavformat57-debuginfo-3.4.2-150200.11.50.1 * ffmpeg-debugsource-3.4.2-150200.11.50.1 * ffmpeg-debuginfo-3.4.2-150200.11.50.1 * libavresample3-debuginfo-3.4.2-150200.11.50.1 * libavresample3-3.4.2-150200.11.50.1 * libavformat57-3.4.2-150200.11.50.1 * libavresample-devel-3.4.2-150200.11.50.1 * libavformat-devel-3.4.2-150200.11.50.1 * SUSE Linux Enterprise Workstation Extension 15 SP6 (x86_64) * libavcodec-devel-3.4.2-150200.11.50.1 * libavformat57-debuginfo-3.4.2-150200.11.50.1 * ffmpeg-debugsource-3.4.2-150200.11.50.1 * ffmpeg-debuginfo-3.4.2-150200.11.50.1 * libavresample3-debuginfo-3.4.2-150200.11.50.1 * libavresample3-3.4.2-150200.11.50.1 * libavformat57-3.4.2-150200.11.50.1 * libavresample-devel-3.4.2-150200.11.50.1 * libavformat-devel-3.4.2-150200.11.50.1 ## References: * https://www.suse.com/security/cve/CVE-2024-32230.html * https://bugzilla.suse.com/show_bug.cgi?id=1227296 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Wed Aug 7 12:30:25 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Wed, 07 Aug 2024 12:30:25 -0000 Subject: SUSE-SU-2024:2813-1: important: Security update for libnbd Message-ID: <172303382528.12638.15874144236397414840@smelt2.prg2.suse.org> # Security update for libnbd Announcement ID: SUSE-SU-2024:2813-1 Rating: important References: * bsc#1228872 Cross-References: * CVE-2024-7383 CVSS scores: * CVE-2024-7383 ( SUSE ): 7.6 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N * CVE-2024-7383 ( SUSE ): 7.4 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N Affected Products: * openSUSE Leap 15.6 * Server Applications Module 15-SP6 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 An update that solves one vulnerability can now be installed. ## Description: This update for libnbd fixes the following issues: * CVE-2024-7383: Fixed incorrect verification of a NBD server's certificate when using TLS to connect to the server (bsc#1228872) Other fixes: \- Update to version 1.18.5. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch SUSE-2024-2813=1 openSUSE-SLE-15.6-2024-2813=1 * Server Applications Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Server-Applications-15-SP6-2024-2813=1 ## Package List: * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64 i586) * python3-libnbd-1.18.5-150600.18.3.1 * libnbd-devel-1.18.5-150600.18.3.1 * libnbd-debuginfo-1.18.5-150600.18.3.1 * libnbd-devel-debuginfo-1.18.5-150600.18.3.1 * libnbd-debugsource-1.18.5-150600.18.3.1 * nbdfuse-debuginfo-1.18.5-150600.18.3.1 * nbdfuse-1.18.5-150600.18.3.1 * libnbd0-debuginfo-1.18.5-150600.18.3.1 * libnbd0-1.18.5-150600.18.3.1 * libnbd-1.18.5-150600.18.3.1 * python3-libnbd-debuginfo-1.18.5-150600.18.3.1 * openSUSE Leap 15.6 (noarch) * libnbd-bash-completion-1.18.5-150600.18.3.1 * Server Applications Module 15-SP6 (aarch64 ppc64le s390x x86_64) * libnbd-debuginfo-1.18.5-150600.18.3.1 * libnbd-debugsource-1.18.5-150600.18.3.1 * nbdfuse-debuginfo-1.18.5-150600.18.3.1 * nbdfuse-1.18.5-150600.18.3.1 * libnbd0-debuginfo-1.18.5-150600.18.3.1 * libnbd0-1.18.5-150600.18.3.1 * libnbd-1.18.5-150600.18.3.1 ## References: * https://www.suse.com/security/cve/CVE-2024-7383.html * https://bugzilla.suse.com/show_bug.cgi?id=1228872 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Wed Aug 7 16:30:10 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Wed, 07 Aug 2024 16:30:10 -0000 Subject: SUSE-SU-2024:2817-1: important: Security update for python-Django Message-ID: <172304821054.12604.14292899082557719928@smelt2.prg2.suse.org> # Security update for python-Django Announcement ID: SUSE-SU-2024:2817-1 Rating: important References: * bsc#1136468 * bsc#1198398 * bsc#1228629 * bsc#1228630 * bsc#1228631 * bsc#1228632 Cross-References: * CVE-2019-12308 * CVE-2022-28346 * CVE-2024-41989 * CVE-2024-41990 * CVE-2024-41991 * CVE-2024-42005 CVSS scores: * CVE-2019-12308 ( SUSE ): 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N * CVE-2019-12308 ( NVD ): 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N * CVE-2022-28346 ( SUSE ): 7.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L * CVE-2022-28346 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2024-41989 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-41990 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-41991 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-42005 ( SUSE ): 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.5 An update that solves six vulnerabilities can now be installed. ## Description: This update for python-Django fixes the following issues: * CVE-2024-42005: Fixed SQL injection in QuerySet.values() and values_list() (bsc#1228629) * CVE-2024-41989: Fixed Memory exhaustion in django.utils.numberformat.floatformat() (bsc#1228630) * CVE-2024-41990: Fixed denial-of-service vulnerability in django.utils.html.urlize() (bsc#1228631) * CVE-2024-41991: Fixed another denial-of-service vulnerability in django.utils.html.urlize() (bsc#1228632) * CVE-2022-28346: Fixed SQL injection in QuerySet.annotate(),aggregate() and extra() (bsc#1198398) * CVE-2019-12308: Fixed XSS in AdminURLFieldWidget (bsc#1136468) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.5 zypper in -t patch openSUSE-SLE-15.5-2024-2817=1 ## Package List: * openSUSE Leap 15.5 (noarch) * python3-Django-2.0.7-150000.1.27.1 ## References: * https://www.suse.com/security/cve/CVE-2019-12308.html * https://www.suse.com/security/cve/CVE-2022-28346.html * https://www.suse.com/security/cve/CVE-2024-41989.html * https://www.suse.com/security/cve/CVE-2024-41990.html * https://www.suse.com/security/cve/CVE-2024-41991.html * https://www.suse.com/security/cve/CVE-2024-42005.html * https://bugzilla.suse.com/show_bug.cgi?id=1136468 * https://bugzilla.suse.com/show_bug.cgi?id=1198398 * https://bugzilla.suse.com/show_bug.cgi?id=1228629 * https://bugzilla.suse.com/show_bug.cgi?id=1228630 * https://bugzilla.suse.com/show_bug.cgi?id=1228631 * https://bugzilla.suse.com/show_bug.cgi?id=1228632 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Wed Aug 7 16:30:14 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Wed, 07 Aug 2024 16:30:14 -0000 Subject: SUSE-SU-2024:2816-1: important: Security update for python-Django Message-ID: <172304821467.12604.289093233600858711@smelt2.prg2.suse.org> # Security update for python-Django Announcement ID: SUSE-SU-2024:2816-1 Rating: important References: * bsc#1228629 * bsc#1228630 * bsc#1228631 * bsc#1228632 Cross-References: * CVE-2024-41989 * CVE-2024-41990 * CVE-2024-41991 * CVE-2024-42005 CVSS scores: * CVE-2024-41989 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-41990 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-41991 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-42005 ( SUSE ): 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.6 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Package Hub 15 15-SP6 An update that solves four vulnerabilities can now be installed. ## Description: This update for python-Django fixes the following issues: * CVE-2024-42005: Fixed SQL injection in QuerySet.values() and values_list() (bsc#1228629) * CVE-2024-41989: Fixed Memory exhaustion in django.utils.numberformat.floatformat() (bsc#1228630) * CVE-2024-41990: Fixed denial-of-service vulnerability in django.utils.html.urlize() (bsc#1228631) * CVE-2024-41991: Fixed another denial-of-service vulnerability in django.utils.html.urlize() (bsc#1228632) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch SUSE-2024-2816=1 openSUSE-SLE-15.6-2024-2816=1 * SUSE Package Hub 15 15-SP6 zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP6-2024-2816=1 ## Package List: * openSUSE Leap 15.6 (noarch) * python311-Django-4.2.11-150600.3.6.1 * SUSE Package Hub 15 15-SP6 (noarch) * python311-Django-4.2.11-150600.3.6.1 ## References: * https://www.suse.com/security/cve/CVE-2024-41989.html * https://www.suse.com/security/cve/CVE-2024-41990.html * https://www.suse.com/security/cve/CVE-2024-41991.html * https://www.suse.com/security/cve/CVE-2024-42005.html * https://bugzilla.suse.com/show_bug.cgi?id=1228629 * https://bugzilla.suse.com/show_bug.cgi?id=1228630 * https://bugzilla.suse.com/show_bug.cgi?id=1228631 * https://bugzilla.suse.com/show_bug.cgi?id=1228632 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Thu Aug 8 16:30:02 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Thu, 08 Aug 2024 16:30:02 -0000 Subject: SUSE-SU-2024:2853-1: important: Security update for the Linux Kernel (Live Patch 15 for SLE 15 SP5) Message-ID: <172313460295.12336.5188004254803831956@smelt2.prg2.suse.org> # Security update for the Linux Kernel (Live Patch 15 for SLE 15 SP5) Announcement ID: SUSE-SU-2024:2853-1 Rating: important References: * bsc#1223683 Cross-References: * CVE-2024-26923 CVSS scores: * CVE-2024-26923 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.5 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Live Patching 15-SP5 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 An update that solves one vulnerability can now be installed. ## Description: This update for the Linux Kernel 5.14.21-150500_55_68 fixes one issue. The following security issue was fixed: * CVE-2024-26923: Fixed false-positive lockdep splat for spin_lock() in __unix_gc() (bsc#1223683). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.5 zypper in -t patch SUSE-2024-2853=1 * SUSE Linux Enterprise Live Patching 15-SP5 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP5-2024-2853=1 ## Package List: * openSUSE Leap 15.5 (ppc64le s390x x86_64) * kernel-livepatch-5_14_21-150500_55_68-default-2-150500.11.6.1 * kernel-livepatch-5_14_21-150500_55_68-default-debuginfo-2-150500.11.6.1 * kernel-livepatch-SLE15-SP5_Update_15-debugsource-2-150500.11.6.1 * SUSE Linux Enterprise Live Patching 15-SP5 (ppc64le s390x x86_64) * kernel-livepatch-5_14_21-150500_55_68-default-2-150500.11.6.1 * kernel-livepatch-5_14_21-150500_55_68-default-debuginfo-2-150500.11.6.1 * kernel-livepatch-SLE15-SP5_Update_15-debugsource-2-150500.11.6.1 ## References: * https://www.suse.com/security/cve/CVE-2024-26923.html * https://bugzilla.suse.com/show_bug.cgi?id=1223683 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Thu Aug 8 20:30:01 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Thu, 08 Aug 2024 20:30:01 -0000 Subject: SUSE-SU-2024:2852-1: important: Security update for the Linux Kernel (Live Patch 14 for SLE 15 SP5) Message-ID: <172314900153.1839.14691109717710580546@smelt2.prg2.suse.org> # Security update for the Linux Kernel (Live Patch 14 for SLE 15 SP5) Announcement ID: SUSE-SU-2024:2852-1 Rating: important References: * bsc#1223363 * bsc#1223683 * bsc#1225013 Cross-References: * CVE-2024-26828 * CVE-2024-26923 * CVE-2024-27398 CVSS scores: * CVE-2024-26828 ( SUSE ): 7.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:H * CVE-2024-26923 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-27398 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.5 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Live Patching 15-SP5 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 An update that solves three vulnerabilities can now be installed. ## Description: This update for the Linux Kernel 5.14.21-150500_55_65 fixes several issues. The following security issues were fixed: * CVE-2024-27398: Fixed use-after-free bug caused by sco_sock_timeout() (bsc#1225013). * CVE-2024-26923: Fixed false-positive lockdep splat for spin_lock() in __unix_gc() (bsc#1223683). * CVE-2024-26828: Fixed underflow in parse_server_interfaces() (bsc#1223363). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.5 zypper in -t patch SUSE-2024-2852=1 SUSE-2024-2856=1 * SUSE Linux Enterprise Live Patching 15-SP5 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP5-2024-2852=1 SUSE-SLE- Module-Live-Patching-15-SP5-2024-2856=1 ## Package List: * openSUSE Leap 15.5 (ppc64le s390x x86_64) * kernel-livepatch-5_14_21-150500_55_65-default-debuginfo-3-150500.11.6.1 * kernel-livepatch-SLE15-SP5_Update_14-debugsource-3-150500.11.6.1 * kernel-livepatch-5_14_21-150500_55_65-default-3-150500.11.6.1 * kernel-livepatch-5_14_21-150500_55_62-default-debuginfo-3-150500.11.6.1 * kernel-livepatch-5_14_21-150500_55_62-default-3-150500.11.6.1 * kernel-livepatch-SLE15-SP5_Update_13-debugsource-3-150500.11.6.1 * SUSE Linux Enterprise Live Patching 15-SP5 (ppc64le s390x x86_64) * kernel-livepatch-5_14_21-150500_55_65-default-debuginfo-3-150500.11.6.1 * kernel-livepatch-SLE15-SP5_Update_14-debugsource-3-150500.11.6.1 * kernel-livepatch-5_14_21-150500_55_65-default-3-150500.11.6.1 * kernel-livepatch-5_14_21-150500_55_62-default-debuginfo-3-150500.11.6.1 * kernel-livepatch-5_14_21-150500_55_62-default-3-150500.11.6.1 * kernel-livepatch-SLE15-SP5_Update_13-debugsource-3-150500.11.6.1 ## References: * https://www.suse.com/security/cve/CVE-2024-26828.html * https://www.suse.com/security/cve/CVE-2024-26923.html * https://www.suse.com/security/cve/CVE-2024-27398.html * https://bugzilla.suse.com/show_bug.cgi?id=1223363 * https://bugzilla.suse.com/show_bug.cgi?id=1223683 * https://bugzilla.suse.com/show_bug.cgi?id=1225013 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Thu Aug 8 20:30:15 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Thu, 08 Aug 2024 20:30:15 -0000 Subject: SUSE-SU-2024:2851-1: important: Security update for the Linux Kernel (Live Patch 11 for SLE 15 SP5) Message-ID: <172314901554.1839.9694487663069257686@smelt2.prg2.suse.org> # Security update for the Linux Kernel (Live Patch 11 for SLE 15 SP5) Announcement ID: SUSE-SU-2024:2851-1 Rating: important References: * bsc#1220145 * bsc#1220832 * bsc#1221302 * bsc#1222685 * bsc#1223059 * bsc#1223363 * bsc#1223514 * bsc#1223681 * bsc#1223683 * bsc#1225013 * bsc#1225310 Cross-References: * CVE-2022-48651 * CVE-2023-52502 * CVE-2023-6546 * CVE-2024-23307 * CVE-2024-26610 * CVE-2024-26828 * CVE-2024-26852 * CVE-2024-26923 * CVE-2024-26930 * CVE-2024-27398 * CVE-2024-35950 CVSS scores: * CVE-2022-48651 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-52502 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-6546 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-6546 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-23307 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-23307 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26610 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2024-26828 ( SUSE ): 7.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:H * CVE-2024-26852 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26923 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26930 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26930 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-27398 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35950 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.5 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Live Patching 15-SP5 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 An update that solves 11 vulnerabilities can now be installed. ## Description: This update for the Linux Kernel 5.14.21-150500_55_52 fixes several issues. The following security issues were fixed: * CVE-2024-27398: Fixed use-after-free bug caused by sco_sock_timeout() (bsc#1225013). * CVE-2024-35950: drm/client: Fully protect modes with dev->mode_config.mutex (bsc#1225310). * CVE-2024-26923: Fixed false-positive lockdep splat for spin_lock() in __unix_gc() (bsc#1223683). * CVE-2024-26930: Fixed double free of the ha->vp_map pointer (bsc#1223681). * CVE-2024-26828: Fixed underflow in parse_server_interfaces() (bsc#1223363). * CVE-2024-23307: Fixed Integer Overflow or Wraparound vulnerability in x86 and ARM md, raid, raid5 modules (bsc#1220145). * CVE-2024-26852: Fixed use-after-free in ip6_route_mpath_notify() (bsc#1223059). * CVE-2024-26610: Fixed memory corruption in wifi/iwlwifi (bsc#1221302). * CVE-2022-48651: Fixed an out-of-bound bug in ipvlan caused by unset skb->mac_header (bsc#1223514). * CVE-2023-52502: Fixed a race condition in nfc_llcp_sock_get() and nfc_llcp_sock_get_sn() (bsc#1220832). * CVE-2023-6546: Fixed a race condition in the GSM 0710 tty multiplexor via the GSMIOC_SETCONF ioctl that could lead to local privilege escalation (bsc#1222685). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.5 zypper in -t patch SUSE-2024-2851=1 * SUSE Linux Enterprise Live Patching 15-SP5 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP5-2024-2851=1 ## Package List: * openSUSE Leap 15.5 (ppc64le s390x x86_64) * kernel-livepatch-5_14_21-150500_55_52-default-5-150500.11.6.1 * kernel-livepatch-SLE15-SP5_Update_11-debugsource-5-150500.11.6.1 * kernel-livepatch-5_14_21-150500_55_52-default-debuginfo-5-150500.11.6.1 * SUSE Linux Enterprise Live Patching 15-SP5 (ppc64le s390x x86_64) * kernel-livepatch-5_14_21-150500_55_52-default-5-150500.11.6.1 * kernel-livepatch-SLE15-SP5_Update_11-debugsource-5-150500.11.6.1 * kernel-livepatch-5_14_21-150500_55_52-default-debuginfo-5-150500.11.6.1 ## References: * https://www.suse.com/security/cve/CVE-2022-48651.html * https://www.suse.com/security/cve/CVE-2023-52502.html * https://www.suse.com/security/cve/CVE-2023-6546.html * https://www.suse.com/security/cve/CVE-2024-23307.html * https://www.suse.com/security/cve/CVE-2024-26610.html * https://www.suse.com/security/cve/CVE-2024-26828.html * https://www.suse.com/security/cve/CVE-2024-26852.html * https://www.suse.com/security/cve/CVE-2024-26923.html * https://www.suse.com/security/cve/CVE-2024-26930.html * https://www.suse.com/security/cve/CVE-2024-27398.html * https://www.suse.com/security/cve/CVE-2024-35950.html * https://bugzilla.suse.com/show_bug.cgi?id=1220145 * https://bugzilla.suse.com/show_bug.cgi?id=1220832 * https://bugzilla.suse.com/show_bug.cgi?id=1221302 * https://bugzilla.suse.com/show_bug.cgi?id=1222685 * https://bugzilla.suse.com/show_bug.cgi?id=1223059 * https://bugzilla.suse.com/show_bug.cgi?id=1223363 * https://bugzilla.suse.com/show_bug.cgi?id=1223514 * https://bugzilla.suse.com/show_bug.cgi?id=1223681 * https://bugzilla.suse.com/show_bug.cgi?id=1223683 * https://bugzilla.suse.com/show_bug.cgi?id=1225013 * https://bugzilla.suse.com/show_bug.cgi?id=1225310 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Thu Aug 8 20:30:27 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Thu, 08 Aug 2024 20:30:27 -0000 Subject: SUSE-SU-2024:2850-1: important: Security update for the Linux Kernel (Live Patch 10 for SLE 15 SP5) Message-ID: <172314902712.1839.15468061838099688928@smelt2.prg2.suse.org> # Security update for the Linux Kernel (Live Patch 10 for SLE 15 SP5) Announcement ID: SUSE-SU-2024:2850-1 Rating: important References: * bsc#1219296 * bsc#1220145 * bsc#1220211 * bsc#1220828 * bsc#1220832 * bsc#1221302 * bsc#1222685 * bsc#1222882 * bsc#1223059 * bsc#1223363 * bsc#1223514 * bsc#1223681 * bsc#1223683 * bsc#1225013 * bsc#1225310 Cross-References: * CVE-2022-48651 * CVE-2023-52340 * CVE-2023-52502 * CVE-2023-6546 * CVE-2024-23307 * CVE-2024-26585 * CVE-2024-26610 * CVE-2024-26622 * CVE-2024-26766 * CVE-2024-26828 * CVE-2024-26852 * CVE-2024-26923 * CVE-2024-26930 * CVE-2024-27398 * CVE-2024-35950 CVSS scores: * CVE-2022-48651 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-52340 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52340 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52502 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-6546 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-6546 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-23307 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-23307 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26585 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26585 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26610 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2024-26622 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26766 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26828 ( SUSE ): 7.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:H * CVE-2024-26852 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26923 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26930 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26930 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-27398 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35950 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.5 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Live Patching 15-SP5 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 An update that solves 15 vulnerabilities can now be installed. ## Description: This update for the Linux Kernel 5.14.21-150500_55_49 fixes several issues. The following security issues were fixed: * CVE-2024-27398: Fixed use-after-free bug caused by sco_sock_timeout() (bsc#1225013). * CVE-2024-35950: drm/client: Fully protect modes with dev->mode_config.mutex (bsc#1225310). * CVE-2024-26923: Fixed false-positive lockdep splat for spin_lock() in __unix_gc() (bsc#1223683). * CVE-2024-26930: Fixed double free of the ha->vp_map pointer (bsc#1223681). * CVE-2024-26828: Fixed underflow in parse_server_interfaces() (bsc#1223363). * CVE-2024-23307: Fixed Integer Overflow or Wraparound vulnerability in x86 and ARM md, raid, raid5 modules (bsc#1220145). * CVE-2024-26852: Fixed use-after-free in ip6_route_mpath_notify() (bsc#1223059). * CVE-2024-26610: Fixed memory corruption in wifi/iwlwifi (bsc#1221302). * CVE-2022-48651: Fixed an out-of-bound bug in ipvlan caused by unset skb->mac_header (bsc#1223514). * CVE-2024-26766: Fixed SDMA off-by-one error in _pad_sdma_tx_descs() (bsc#1222882). * CVE-2023-52502: Fixed a race condition in nfc_llcp_sock_get() and nfc_llcp_sock_get_sn() (bsc#1220832). * CVE-2024-26585: Fixed race between tx work scheduling and socket close (bsc#1220211). * CVE-2023-6546: Fixed a race condition in the GSM 0710 tty multiplexor via the GSMIOC_SETCONF ioctl that could lead to local privilege escalation (bsc#1222685). * CVE-2024-26622: Fixed use-after-free write bug in tomoyo_write_control() (bsc#1220828). * CVE-2023-52340: Fixed a denial of service related to ICMPv6 'Packet Too Big' packets (bsc#1219296). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.5 zypper in -t patch SUSE-2024-2850=1 * SUSE Linux Enterprise Live Patching 15-SP5 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP5-2024-2850=1 ## Package List: * openSUSE Leap 15.5 (ppc64le s390x x86_64) * kernel-livepatch-5_14_21-150500_55_49-default-debuginfo-7-150500.11.8.1 * kernel-livepatch-SLE15-SP5_Update_10-debugsource-7-150500.11.8.1 * kernel-livepatch-5_14_21-150500_55_49-default-7-150500.11.8.1 * SUSE Linux Enterprise Live Patching 15-SP5 (ppc64le s390x x86_64) * kernel-livepatch-5_14_21-150500_55_49-default-debuginfo-7-150500.11.8.1 * kernel-livepatch-SLE15-SP5_Update_10-debugsource-7-150500.11.8.1 * kernel-livepatch-5_14_21-150500_55_49-default-7-150500.11.8.1 ## References: * https://www.suse.com/security/cve/CVE-2022-48651.html * https://www.suse.com/security/cve/CVE-2023-52340.html * https://www.suse.com/security/cve/CVE-2023-52502.html * https://www.suse.com/security/cve/CVE-2023-6546.html * https://www.suse.com/security/cve/CVE-2024-23307.html * https://www.suse.com/security/cve/CVE-2024-26585.html * https://www.suse.com/security/cve/CVE-2024-26610.html * https://www.suse.com/security/cve/CVE-2024-26622.html * https://www.suse.com/security/cve/CVE-2024-26766.html * https://www.suse.com/security/cve/CVE-2024-26828.html * https://www.suse.com/security/cve/CVE-2024-26852.html * https://www.suse.com/security/cve/CVE-2024-26923.html * https://www.suse.com/security/cve/CVE-2024-26930.html * https://www.suse.com/security/cve/CVE-2024-27398.html * https://www.suse.com/security/cve/CVE-2024-35950.html * https://bugzilla.suse.com/show_bug.cgi?id=1219296 * https://bugzilla.suse.com/show_bug.cgi?id=1220145 * https://bugzilla.suse.com/show_bug.cgi?id=1220211 * https://bugzilla.suse.com/show_bug.cgi?id=1220828 * https://bugzilla.suse.com/show_bug.cgi?id=1220832 * https://bugzilla.suse.com/show_bug.cgi?id=1221302 * https://bugzilla.suse.com/show_bug.cgi?id=1222685 * https://bugzilla.suse.com/show_bug.cgi?id=1222882 * https://bugzilla.suse.com/show_bug.cgi?id=1223059 * https://bugzilla.suse.com/show_bug.cgi?id=1223363 * https://bugzilla.suse.com/show_bug.cgi?id=1223514 * https://bugzilla.suse.com/show_bug.cgi?id=1223681 * https://bugzilla.suse.com/show_bug.cgi?id=1223683 * https://bugzilla.suse.com/show_bug.cgi?id=1225013 * https://bugzilla.suse.com/show_bug.cgi?id=1225310 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Thu Aug 8 20:30:33 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Thu, 08 Aug 2024 20:30:33 -0000 Subject: SUSE-SU-2024:2843-1: important: Security update for the Linux Kernel (Live Patch 12 for SLE 15 SP5) Message-ID: <172314903335.1839.3176575520526038438@smelt2.prg2.suse.org> # Security update for the Linux Kernel (Live Patch 12 for SLE 15 SP5) Announcement ID: SUSE-SU-2024:2843-1 Rating: important References: * bsc#1221302 * bsc#1223059 * bsc#1223363 * bsc#1223514 * bsc#1223683 * bsc#1225013 * bsc#1225310 Cross-References: * CVE-2022-48651 * CVE-2024-26610 * CVE-2024-26828 * CVE-2024-26852 * CVE-2024-26923 * CVE-2024-27398 * CVE-2024-35950 CVSS scores: * CVE-2022-48651 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26610 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2024-26828 ( SUSE ): 7.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:H * CVE-2024-26852 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26923 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-27398 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35950 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.5 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Live Patching 15-SP5 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 An update that solves seven vulnerabilities can now be installed. ## Description: This update for the Linux Kernel 5.14.21-150500_55_59 fixes several issues. The following security issues were fixed: * CVE-2024-27398: Fixed use-after-free bug caused by sco_sock_timeout() (bsc#1225013). * CVE-2024-35950: drm/client: Fully protect modes with dev->mode_config.mutex (bsc#1225310). * CVE-2024-26923: Fixed false-positive lockdep splat for spin_lock() in __unix_gc() (bsc#1223683). * CVE-2024-26828: Fixed underflow in parse_server_interfaces() (bsc#1223363). * CVE-2024-26852: Fixed use-after-free in ip6_route_mpath_notify() (bsc#1223059). * CVE-2024-26610: Fixed memory corruption in wifi/iwlwifi (bsc#1221302). * CVE-2022-48651: Fixed an out-of-bound bug in ipvlan caused by unset skb->mac_header (bsc#1223514). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.5 zypper in -t patch SUSE-2024-2843=1 * SUSE Linux Enterprise Live Patching 15-SP5 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP5-2024-2843=1 ## Package List: * openSUSE Leap 15.5 (ppc64le s390x x86_64) * kernel-livepatch-5_14_21-150500_55_59-default-debuginfo-5-150500.11.10.1 * kernel-livepatch-5_14_21-150500_55_59-default-5-150500.11.10.1 * kernel-livepatch-SLE15-SP5_Update_12-debugsource-5-150500.11.10.1 * SUSE Linux Enterprise Live Patching 15-SP5 (ppc64le s390x x86_64) * kernel-livepatch-5_14_21-150500_55_59-default-debuginfo-5-150500.11.10.1 * kernel-livepatch-5_14_21-150500_55_59-default-5-150500.11.10.1 * kernel-livepatch-SLE15-SP5_Update_12-debugsource-5-150500.11.10.1 ## References: * https://www.suse.com/security/cve/CVE-2022-48651.html * https://www.suse.com/security/cve/CVE-2024-26610.html * https://www.suse.com/security/cve/CVE-2024-26828.html * https://www.suse.com/security/cve/CVE-2024-26852.html * https://www.suse.com/security/cve/CVE-2024-26923.html * https://www.suse.com/security/cve/CVE-2024-27398.html * https://www.suse.com/security/cve/CVE-2024-35950.html * https://bugzilla.suse.com/show_bug.cgi?id=1221302 * https://bugzilla.suse.com/show_bug.cgi?id=1223059 * https://bugzilla.suse.com/show_bug.cgi?id=1223363 * https://bugzilla.suse.com/show_bug.cgi?id=1223514 * https://bugzilla.suse.com/show_bug.cgi?id=1223683 * https://bugzilla.suse.com/show_bug.cgi?id=1225013 * https://bugzilla.suse.com/show_bug.cgi?id=1225310 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Thu Aug 8 20:30:39 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Thu, 08 Aug 2024 20:30:39 -0000 Subject: SUSE-SU-2024:2841-1: important: Security update for the Linux Kernel (Live Patch 26 for SLE 15 SP4) Message-ID: <172314903961.1839.9938433782182031931@smelt2.prg2.suse.org> # Security update for the Linux Kernel (Live Patch 26 for SLE 15 SP4) Announcement ID: SUSE-SU-2024:2841-1 Rating: important References: * bsc#1223059 * bsc#1223363 * bsc#1223681 * bsc#1223683 * bsc#1225013 * bsc#1225310 Cross-References: * CVE-2024-26828 * CVE-2024-26852 * CVE-2024-26923 * CVE-2024-26930 * CVE-2024-27398 * CVE-2024-35950 CVSS scores: * CVE-2024-26828 ( SUSE ): 7.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:H * CVE-2024-26852 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26923 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26930 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26930 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-27398 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35950 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.4 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise Live Patching 15-SP4 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Real Time 15 SP4 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 An update that solves six vulnerabilities can now be installed. ## Description: This update for the Linux Kernel 5.14.21-150400_24_119 fixes several issues. The following security issues were fixed: * CVE-2024-27398: Fixed use-after-free bug caused by sco_sock_timeout() (bsc#1225013). * CVE-2024-35950: drm/client: Fully protect modes with dev->mode_config.mutex (bsc#1225310). * CVE-2024-26923: Fixed false-positive lockdep splat for spin_lock() in __unix_gc() (bsc#1223683). * CVE-2024-26930: Fixed double free of the ha->vp_map pointer (bsc#1223681). * CVE-2024-26828: Fixed underflow in parse_server_interfaces() (bsc#1223363). * CVE-2024-26852: Fixed use-after-free in ip6_route_mpath_notify() (bsc#1223059). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch SUSE-2024-2841=1 * SUSE Linux Enterprise Live Patching 15-SP4 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP4-2024-2841=1 ## Package List: * openSUSE Leap 15.4 (ppc64le s390x x86_64) * kernel-livepatch-5_14_21-150400_24_119-default-4-150400.9.6.1 * kernel-livepatch-5_14_21-150400_24_119-default-debuginfo-4-150400.9.6.1 * kernel-livepatch-SLE15-SP4_Update_26-debugsource-4-150400.9.6.1 * SUSE Linux Enterprise Live Patching 15-SP4 (ppc64le s390x x86_64) * kernel-livepatch-5_14_21-150400_24_119-default-4-150400.9.6.1 * kernel-livepatch-5_14_21-150400_24_119-default-debuginfo-4-150400.9.6.1 * kernel-livepatch-SLE15-SP4_Update_26-debugsource-4-150400.9.6.1 ## References: * https://www.suse.com/security/cve/CVE-2024-26828.html * https://www.suse.com/security/cve/CVE-2024-26852.html * https://www.suse.com/security/cve/CVE-2024-26923.html * https://www.suse.com/security/cve/CVE-2024-26930.html * https://www.suse.com/security/cve/CVE-2024-27398.html * https://www.suse.com/security/cve/CVE-2024-35950.html * https://bugzilla.suse.com/show_bug.cgi?id=1223059 * https://bugzilla.suse.com/show_bug.cgi?id=1223363 * https://bugzilla.suse.com/show_bug.cgi?id=1223681 * https://bugzilla.suse.com/show_bug.cgi?id=1223683 * https://bugzilla.suse.com/show_bug.cgi?id=1225013 * https://bugzilla.suse.com/show_bug.cgi?id=1225310 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Thu Aug 8 20:30:49 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Thu, 08 Aug 2024 20:30:49 -0000 Subject: SUSE-SU-2024:2840-1: important: Security update for the Linux Kernel (Live Patch 24 for SLE 15 SP4) Message-ID: <172314904953.1839.7188628650669096628@smelt2.prg2.suse.org> # Security update for the Linux Kernel (Live Patch 24 for SLE 15 SP4) Announcement ID: SUSE-SU-2024:2840-1 Rating: important References: * bsc#1220145 * bsc#1220832 * bsc#1221302 * bsc#1222685 * bsc#1222882 * bsc#1223059 * bsc#1223363 * bsc#1223514 * bsc#1223681 * bsc#1223683 * bsc#1225013 * bsc#1225310 Cross-References: * CVE-2022-48651 * CVE-2023-52502 * CVE-2023-6546 * CVE-2024-23307 * CVE-2024-26610 * CVE-2024-26766 * CVE-2024-26828 * CVE-2024-26852 * CVE-2024-26923 * CVE-2024-26930 * CVE-2024-27398 * CVE-2024-35950 CVSS scores: * CVE-2022-48651 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-52502 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-6546 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-6546 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-23307 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-23307 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26610 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2024-26766 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26828 ( SUSE ): 7.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:H * CVE-2024-26852 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26923 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26930 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26930 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-27398 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35950 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.4 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise Live Patching 15-SP4 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Real Time 15 SP4 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 An update that solves 12 vulnerabilities can now be installed. ## Description: This update for the Linux Kernel 5.14.21-150400_24_111 fixes several issues. The following security issues were fixed: * CVE-2024-27398: Fixed use-after-free bug caused by sco_sock_timeout() (bsc#1225013). * CVE-2024-35950: drm/client: Fully protect modes with dev->mode_config.mutex (bsc#1225310). * CVE-2024-26923: Fixed false-positive lockdep splat for spin_lock() in __unix_gc() (bsc#1223683). * CVE-2024-26930: Fixed double free of the ha->vp_map pointer (bsc#1223681). * CVE-2024-26828: Fixed underflow in parse_server_interfaces() (bsc#1223363). * CVE-2024-23307: Fixed Integer Overflow or Wraparound vulnerability in x86 and ARM md, raid, raid5 modules (bsc#1220145). * CVE-2024-26852: Fixed use-after-free in ip6_route_mpath_notify() (bsc#1223059). * CVE-2024-26610: Fixed memory corruption in wifi/iwlwifi (bsc#1221302). * CVE-2022-48651: Fixed an out-of-bound bug in ipvlan caused by unset skb->mac_header (bsc#1223514). * CVE-2024-26766: Fixed SDMA off-by-one error in _pad_sdma_tx_descs() (bsc#1222882). * CVE-2023-52502: Fixed a race condition in nfc_llcp_sock_get() and nfc_llcp_sock_get_sn() (bsc#1220832). * CVE-2023-6546: Fixed a race condition in the GSM 0710 tty multiplexor via the GSMIOC_SETCONF ioctl that could lead to local privilege escalation (bsc#1222685). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch SUSE-2024-2840=1 * SUSE Linux Enterprise Live Patching 15-SP4 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP4-2024-2840=1 ## Package List: * openSUSE Leap 15.4 (ppc64le s390x x86_64) * kernel-livepatch-SLE15-SP4_Update_24-debugsource-5-150400.9.6.1 * kernel-livepatch-5_14_21-150400_24_111-default-5-150400.9.6.1 * kernel-livepatch-5_14_21-150400_24_111-default-debuginfo-5-150400.9.6.1 * SUSE Linux Enterprise Live Patching 15-SP4 (ppc64le s390x x86_64) * kernel-livepatch-SLE15-SP4_Update_24-debugsource-5-150400.9.6.1 * kernel-livepatch-5_14_21-150400_24_111-default-5-150400.9.6.1 * kernel-livepatch-5_14_21-150400_24_111-default-debuginfo-5-150400.9.6.1 ## References: * https://www.suse.com/security/cve/CVE-2022-48651.html * https://www.suse.com/security/cve/CVE-2023-52502.html * https://www.suse.com/security/cve/CVE-2023-6546.html * https://www.suse.com/security/cve/CVE-2024-23307.html * https://www.suse.com/security/cve/CVE-2024-26610.html * https://www.suse.com/security/cve/CVE-2024-26766.html * https://www.suse.com/security/cve/CVE-2024-26828.html * https://www.suse.com/security/cve/CVE-2024-26852.html * https://www.suse.com/security/cve/CVE-2024-26923.html * https://www.suse.com/security/cve/CVE-2024-26930.html * https://www.suse.com/security/cve/CVE-2024-27398.html * https://www.suse.com/security/cve/CVE-2024-35950.html * https://bugzilla.suse.com/show_bug.cgi?id=1220145 * https://bugzilla.suse.com/show_bug.cgi?id=1220832 * https://bugzilla.suse.com/show_bug.cgi?id=1221302 * https://bugzilla.suse.com/show_bug.cgi?id=1222685 * https://bugzilla.suse.com/show_bug.cgi?id=1222882 * https://bugzilla.suse.com/show_bug.cgi?id=1223059 * https://bugzilla.suse.com/show_bug.cgi?id=1223363 * https://bugzilla.suse.com/show_bug.cgi?id=1223514 * https://bugzilla.suse.com/show_bug.cgi?id=1223681 * https://bugzilla.suse.com/show_bug.cgi?id=1223683 * https://bugzilla.suse.com/show_bug.cgi?id=1225013 * https://bugzilla.suse.com/show_bug.cgi?id=1225310 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Thu Aug 8 20:30:52 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Thu, 08 Aug 2024 20:30:52 -0000 Subject: SUSE-SU-2024:2827-1: important: Security update for the Linux Kernel (Live Patch 9 for SLE 15 SP5) Message-ID: <172314905251.1839.6398901922692955594@smelt2.prg2.suse.org> # Security update for the Linux Kernel (Live Patch 9 for SLE 15 SP5) Announcement ID: SUSE-SU-2024:2827-1 Rating: important References: * bsc#1225013 * bsc#1225310 Cross-References: * CVE-2024-27398 * CVE-2024-35950 CVSS scores: * CVE-2024-27398 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35950 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.4 * openSUSE Leap 15.5 * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Live Patching 12-SP5 * SUSE Linux Enterprise Live Patching 15-SP4 * SUSE Linux Enterprise Live Patching 15-SP5 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Real Time 15 SP4 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 An update that solves two vulnerabilities can now be installed. ## Description: This update for the Linux Kernel 5.14.21-150500_55_44 fixes several issues. The following security issues were fixed: * CVE-2024-27398: Fixed use-after-free bug caused by sco_sock_timeout() (bsc#1225013). * CVE-2024-35950: drm/client: Fully protect modes with dev->mode_config.mutex (bsc#1225310). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.5 zypper in -t patch SUSE-2024-2842=1 SUSE-2024-2844=1 SUSE-2024-2845=1 SUSE-2024-2846=1 SUSE-2024-2857=1 SUSE-2024-2847=1 SUSE-2024-2848=1 SUSE-2024-2849=1 * SUSE Linux Enterprise Live Patching 15-SP5 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP5-2024-2842=1 SUSE-SLE- Module-Live-Patching-15-SP5-2024-2844=1 SUSE-SLE-Module-Live- Patching-15-SP5-2024-2845=1 SUSE-SLE-Module-Live-Patching-15-SP5-2024-2846=1 SUSE-SLE-Module-Live-Patching-15-SP5-2024-2857=1 SUSE-SLE-Module-Live- Patching-15-SP5-2024-2847=1 SUSE-SLE-Module-Live-Patching-15-SP5-2024-2848=1 SUSE-SLE-Module-Live-Patching-15-SP5-2024-2849=1 * SUSE Linux Enterprise Live Patching 12-SP5 zypper in -t patch SUSE-SLE-Live-Patching-12-SP5-2024-2827=1 SUSE-SLE-Live- Patching-12-SP5-2024-2828=1 SUSE-SLE-Live-Patching-12-SP5-2024-2829=1 SUSE-SLE- Live-Patching-12-SP5-2024-2830=1 SUSE-SLE-Live-Patching-12-SP5-2024-2831=1 * openSUSE Leap 15.4 zypper in -t patch SUSE-2024-2832=1 SUSE-2024-2833=1 SUSE-2024-2834=1 SUSE-2024-2835=1 SUSE-2024-2836=1 SUSE-2024-2837=1 SUSE-2024-2838=1 SUSE-2024-2839=1 * SUSE Linux Enterprise Live Patching 15-SP4 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP4-2024-2832=1 SUSE-SLE- Module-Live-Patching-15-SP4-2024-2833=1 SUSE-SLE-Module-Live- Patching-15-SP4-2024-2834=1 SUSE-SLE-Module-Live-Patching-15-SP4-2024-2835=1 SUSE-SLE-Module-Live-Patching-15-SP4-2024-2836=1 SUSE-SLE-Module-Live- Patching-15-SP4-2024-2837=1 SUSE-SLE-Module-Live-Patching-15-SP4-2024-2838=1 SUSE-SLE-Module-Live-Patching-15-SP4-2024-2839=1 ## Package List: * openSUSE Leap 15.5 (ppc64le s390x x86_64) * kernel-livepatch-5_14_21-150500_55_19-default-13-150500.2.1 * kernel-livepatch-5_14_21-150500_55_39-default-debuginfo-10-150500.2.1 * kernel-livepatch-SLE15-SP5_Update_3-debugsource-13-150500.2.1 * kernel-livepatch-SLE15-SP5_Update_9-debugsource-9-150500.2.1 * kernel-livepatch-5_14_21-150500_55_12-default-14-150500.2.1 * kernel-livepatch-SLE15-SP5_Update_8-debugsource-10-150500.2.1 * kernel-livepatch-SLE15-SP5_Update_7-debugsource-10-150500.2.1 * kernel-livepatch-5_14_21-150500_55_19-default-debuginfo-13-150500.2.1 * kernel-livepatch-5_14_21-150500_55_7-default-debuginfo-14-150500.2.1 * kernel-livepatch-5_14_21-150500_55_36-default-10-150500.2.1 * kernel-livepatch-5_14_21-150500_55_28-default-debuginfo-12-150500.2.1 * kernel-livepatch-SLE15-SP5_Update_5-debugsource-12-150500.2.1 * kernel-livepatch-5_14_21-150500_55_7-default-14-150500.2.1 * kernel-livepatch-5_14_21-150500_55_39-default-10-150500.2.1 * kernel-livepatch-SLE15-SP5_Update_6-debugsource-11-150500.2.1 * kernel-livepatch-5_14_21-150500_55_44-default-9-150500.2.1 * kernel-livepatch-SLE15-SP5_Update_1-debugsource-14-150500.2.1 * kernel-livepatch-5_14_21-150500_55_31-default-11-150500.2.1 * kernel-livepatch-5_14_21-150500_55_28-default-12-150500.2.1 * kernel-livepatch-5_14_21-150500_55_31-default-debuginfo-11-150500.2.1 * kernel-livepatch-5_14_21-150500_55_12-default-debuginfo-14-150500.2.1 * kernel-livepatch-SLE15-SP5_Update_2-debugsource-14-150500.2.1 * kernel-livepatch-5_14_21-150500_55_44-default-debuginfo-9-150500.2.1 * kernel-livepatch-5_14_21-150500_55_36-default-debuginfo-10-150500.2.1 * SUSE Linux Enterprise Live Patching 15-SP5 (ppc64le s390x x86_64) * kernel-livepatch-5_14_21-150500_55_19-default-13-150500.2.1 * kernel-livepatch-5_14_21-150500_55_39-default-debuginfo-10-150500.2.1 * kernel-livepatch-SLE15-SP5_Update_3-debugsource-13-150500.2.1 * kernel-livepatch-SLE15-SP5_Update_9-debugsource-9-150500.2.1 * kernel-livepatch-5_14_21-150500_55_12-default-14-150500.2.1 * kernel-livepatch-SLE15-SP5_Update_8-debugsource-10-150500.2.1 * kernel-livepatch-SLE15-SP5_Update_7-debugsource-10-150500.2.1 * kernel-livepatch-5_14_21-150500_55_19-default-debuginfo-13-150500.2.1 * kernel-livepatch-5_14_21-150500_55_7-default-debuginfo-14-150500.2.1 * kernel-livepatch-5_14_21-150500_55_36-default-10-150500.2.1 * kernel-livepatch-5_14_21-150500_55_28-default-debuginfo-12-150500.2.1 * kernel-livepatch-SLE15-SP5_Update_5-debugsource-12-150500.2.1 * kernel-livepatch-5_14_21-150500_55_7-default-14-150500.2.1 * kernel-livepatch-5_14_21-150500_55_39-default-10-150500.2.1 * kernel-livepatch-SLE15-SP5_Update_6-debugsource-11-150500.2.1 * kernel-livepatch-5_14_21-150500_55_44-default-9-150500.2.1 * kernel-livepatch-SLE15-SP5_Update_1-debugsource-14-150500.2.1 * kernel-livepatch-5_14_21-150500_55_31-default-11-150500.2.1 * kernel-livepatch-5_14_21-150500_55_28-default-12-150500.2.1 * kernel-livepatch-5_14_21-150500_55_31-default-debuginfo-11-150500.2.1 * kernel-livepatch-5_14_21-150500_55_12-default-debuginfo-14-150500.2.1 * kernel-livepatch-SLE15-SP5_Update_2-debugsource-14-150500.2.1 * kernel-livepatch-5_14_21-150500_55_44-default-debuginfo-9-150500.2.1 * kernel-livepatch-5_14_21-150500_55_36-default-debuginfo-10-150500.2.1 * SUSE Linux Enterprise Live Patching 12-SP5 (ppc64le s390x x86_64) * kgraft-patch-4_12_14-122_186-default-10-2.1 * kgraft-patch-4_12_14-122_179-default-11-2.1 * kgraft-patch-4_12_14-122_183-default-11-2.1 * kgraft-patch-4_12_14-122_176-default-12-2.1 * kgraft-patch-4_12_14-122_194-default-7-2.1 * openSUSE Leap 15.4 (ppc64le s390x x86_64) * kernel-livepatch-5_14_21-150400_24_100-default-10-150400.2.1 * kernel-livepatch-SLE15-SP4_Update_16-debugsource-13-150400.2.1 * kernel-livepatch-SLE15-SP4_Update_19-debugsource-11-150400.2.1 * kernel-livepatch-5_14_21-150400_24_92-default-11-150400.2.1 * kernel-livepatch-5_14_21-150400_24_97-default-10-150400.2.1 * kernel-livepatch-5_14_21-150400_24_103-default-8-150400.2.1 * kernel-livepatch-5_14_21-150400_24_92-default-debuginfo-11-150400.2.1 * kernel-livepatch-5_14_21-150400_24_69-default-debuginfo-14-150400.2.1 * kernel-livepatch-5_14_21-150400_24_81-default-debuginfo-13-150400.2.1 * kernel-livepatch-SLE15-SP4_Update_15-debugsource-14-150400.2.1 * kernel-livepatch-5_14_21-150400_24_69-default-14-150400.2.1 * kernel-livepatch-5_14_21-150400_24_74-default-debuginfo-14-150400.2.1 * kernel-livepatch-5_14_21-150400_24_81-default-13-150400.2.1 * kernel-livepatch-5_14_21-150400_24_103-default-debuginfo-8-150400.2.1 * kernel-livepatch-5_14_21-150400_24_100-default-debuginfo-10-150400.2.1 * kernel-livepatch-SLE15-SP4_Update_22-debugsource-8-150400.2.1 * kernel-livepatch-SLE15-SP4_Update_14-debugsource-14-150400.2.1 * kernel-livepatch-5_14_21-150400_24_74-default-14-150400.2.1 * kernel-livepatch-5_14_21-150400_24_97-default-debuginfo-10-150400.2.1 * kernel-livepatch-SLE15-SP4_Update_21-debugsource-10-150400.2.1 * kernel-livepatch-SLE15-SP4_Update_20-debugsource-10-150400.2.1 * kernel-livepatch-5_14_21-150400_24_88-default-debuginfo-12-150400.2.1 * kernel-livepatch-SLE15-SP4_Update_18-debugsource-12-150400.2.1 * kernel-livepatch-5_14_21-150400_24_88-default-12-150400.2.1 * SUSE Linux Enterprise Live Patching 15-SP4 (ppc64le s390x x86_64) * kernel-livepatch-5_14_21-150400_24_100-default-10-150400.2.1 * kernel-livepatch-SLE15-SP4_Update_16-debugsource-13-150400.2.1 * kernel-livepatch-SLE15-SP4_Update_19-debugsource-11-150400.2.1 * kernel-livepatch-5_14_21-150400_24_92-default-11-150400.2.1 * kernel-livepatch-5_14_21-150400_24_97-default-10-150400.2.1 * kernel-livepatch-5_14_21-150400_24_103-default-8-150400.2.1 * kernel-livepatch-5_14_21-150400_24_92-default-debuginfo-11-150400.2.1 * kernel-livepatch-5_14_21-150400_24_69-default-debuginfo-14-150400.2.1 * kernel-livepatch-5_14_21-150400_24_81-default-debuginfo-13-150400.2.1 * kernel-livepatch-SLE15-SP4_Update_15-debugsource-14-150400.2.1 * kernel-livepatch-5_14_21-150400_24_69-default-14-150400.2.1 * kernel-livepatch-5_14_21-150400_24_74-default-debuginfo-14-150400.2.1 * kernel-livepatch-5_14_21-150400_24_81-default-13-150400.2.1 * kernel-livepatch-5_14_21-150400_24_103-default-debuginfo-8-150400.2.1 * kernel-livepatch-5_14_21-150400_24_100-default-debuginfo-10-150400.2.1 * kernel-livepatch-SLE15-SP4_Update_22-debugsource-8-150400.2.1 * kernel-livepatch-SLE15-SP4_Update_14-debugsource-14-150400.2.1 * kernel-livepatch-5_14_21-150400_24_74-default-14-150400.2.1 * kernel-livepatch-5_14_21-150400_24_97-default-debuginfo-10-150400.2.1 * kernel-livepatch-SLE15-SP4_Update_21-debugsource-10-150400.2.1 * kernel-livepatch-SLE15-SP4_Update_20-debugsource-10-150400.2.1 * kernel-livepatch-5_14_21-150400_24_88-default-debuginfo-12-150400.2.1 * kernel-livepatch-SLE15-SP4_Update_18-debugsource-12-150400.2.1 * kernel-livepatch-5_14_21-150400_24_88-default-12-150400.2.1 ## References: * https://www.suse.com/security/cve/CVE-2024-27398.html * https://www.suse.com/security/cve/CVE-2024-35950.html * https://bugzilla.suse.com/show_bug.cgi?id=1225013 * https://bugzilla.suse.com/show_bug.cgi?id=1225310 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Thu Aug 8 20:30:55 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Thu, 08 Aug 2024 20:30:55 -0000 Subject: SUSE-SU-2024:2859-1: moderate: Security update for kubernetes1.24 Message-ID: <172314905577.1839.18370294599040007990@smelt2.prg2.suse.org> # Security update for kubernetes1.24 Announcement ID: SUSE-SU-2024:2859-1 Rating: moderate References: * bsc#1194400 Cross-References: * CVE-2021-25743 CVSS scores: * CVE-2021-25743 ( SUSE ): 4.0 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N * CVE-2021-25743 ( NVD ): 3.0 CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:N/I:L/A:N Affected Products: * Containers Module 15-SP5 * openSUSE Leap 15.5 * openSUSE Leap 15.6 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 An update that solves one vulnerability can now be installed. ## Description: This update for kubernetes1.24 fixes the following issues: * CVE-2021-25743: Fixed sanitization of raw data of escape, meta or control sequences before output it to terminal (bsc#1194400) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.5 zypper in -t patch openSUSE-SLE-15.5-2024-2859=1 SUSE-2024-2859=1 * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2024-2859=1 * Containers Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Containers-15-SP5-2024-2859=1 ## Package List: * openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64) * kubernetes1.24-client-common-1.24.17-150500.3.19.1 * kubernetes1.24-proxy-1.24.17-150500.3.19.1 * kubernetes1.24-kubelet-1.24.17-150500.3.19.1 * kubernetes1.24-scheduler-1.24.17-150500.3.19.1 * kubernetes1.24-controller-manager-1.24.17-150500.3.19.1 * kubernetes1.24-client-1.24.17-150500.3.19.1 * kubernetes1.24-kubeadm-1.24.17-150500.3.19.1 * kubernetes1.24-kubelet-common-1.24.17-150500.3.19.1 * kubernetes1.24-apiserver-1.24.17-150500.3.19.1 * openSUSE Leap 15.5 (noarch) * kubernetes1.24-client-bash-completion-1.24.17-150500.3.19.1 * kubernetes1.24-client-fish-completion-1.24.17-150500.3.19.1 * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64) * kubernetes1.24-client-common-1.24.17-150500.3.19.1 * kubernetes1.24-proxy-1.24.17-150500.3.19.1 * kubernetes1.24-kubelet-1.24.17-150500.3.19.1 * kubernetes1.24-scheduler-1.24.17-150500.3.19.1 * kubernetes1.24-controller-manager-1.24.17-150500.3.19.1 * kubernetes1.24-client-1.24.17-150500.3.19.1 * kubernetes1.24-kubeadm-1.24.17-150500.3.19.1 * kubernetes1.24-kubelet-common-1.24.17-150500.3.19.1 * kubernetes1.24-apiserver-1.24.17-150500.3.19.1 * openSUSE Leap 15.6 (noarch) * kubernetes1.24-client-bash-completion-1.24.17-150500.3.19.1 * kubernetes1.24-client-fish-completion-1.24.17-150500.3.19.1 * Containers Module 15-SP5 (aarch64 ppc64le s390x x86_64) * kubernetes1.24-client-common-1.24.17-150500.3.19.1 * kubernetes1.24-client-1.24.17-150500.3.19.1 ## References: * https://www.suse.com/security/cve/CVE-2021-25743.html * https://bugzilla.suse.com/show_bug.cgi?id=1194400 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Thu Aug 8 20:30:58 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Thu, 08 Aug 2024 20:30:58 -0000 Subject: SUSE-SU-2024:2858-1: moderate: Security update for kubernetes1.23 Message-ID: <172314905811.1839.12880614278240899913@smelt2.prg2.suse.org> # Security update for kubernetes1.23 Announcement ID: SUSE-SU-2024:2858-1 Rating: moderate References: * bsc#1194400 Cross-References: * CVE-2021-25743 CVSS scores: * CVE-2021-25743 ( SUSE ): 4.0 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N * CVE-2021-25743 ( NVD ): 3.0 CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:N/I:L/A:N Affected Products: * Containers Module 15-SP5 * openSUSE Leap 15.5 * openSUSE Leap 15.6 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 An update that solves one vulnerability can now be installed. ## Description: This update for kubernetes1.23 fixes the following issues: * CVE-2021-25743: Fixed sanitization of raw data of escape, meta or control sequences before output it to terminal (bsc#1194400) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.5 zypper in -t patch SUSE-2024-2858=1 openSUSE-SLE-15.5-2024-2858=1 * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2024-2858=1 * Containers Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Containers-15-SP5-2024-2858=1 ## Package List: * openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64) * kubernetes1.23-proxy-1.23.17-150500.3.15.1 * kubernetes1.23-scheduler-1.23.17-150500.3.15.1 * kubernetes1.23-client-1.23.17-150500.3.15.1 * kubernetes1.23-apiserver-1.23.17-150500.3.15.1 * kubernetes1.23-controller-manager-1.23.17-150500.3.15.1 * kubernetes1.23-client-common-1.23.17-150500.3.15.1 * kubernetes1.23-kubeadm-1.23.17-150500.3.15.1 * kubernetes1.23-kubelet-common-1.23.17-150500.3.15.1 * kubernetes1.23-kubelet-1.23.17-150500.3.15.1 * openSUSE Leap 15.5 (noarch) * kubernetes1.23-client-fish-completion-1.23.17-150500.3.15.1 * kubernetes1.23-client-bash-completion-1.23.17-150500.3.15.1 * openSUSE Leap 15.5 (ppc64le) * kubernetes1.23-controller-manager-debuginfo-1.23.17-150500.3.15.1 * kubernetes1.23-kubeadm-debuginfo-1.23.17-150500.3.15.1 * kubernetes1.23-apiserver-debuginfo-1.23.17-150500.3.15.1 * kubernetes1.23-scheduler-debuginfo-1.23.17-150500.3.15.1 * kubernetes1.23-client-debuginfo-1.23.17-150500.3.15.1 * kubernetes1.23-kubelet-debuginfo-1.23.17-150500.3.15.1 * kubernetes1.23-proxy-debuginfo-1.23.17-150500.3.15.1 * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64) * kubernetes1.23-proxy-1.23.17-150500.3.15.1 * kubernetes1.23-scheduler-1.23.17-150500.3.15.1 * kubernetes1.23-client-1.23.17-150500.3.15.1 * kubernetes1.23-apiserver-1.23.17-150500.3.15.1 * kubernetes1.23-controller-manager-1.23.17-150500.3.15.1 * kubernetes1.23-client-common-1.23.17-150500.3.15.1 * kubernetes1.23-kubeadm-1.23.17-150500.3.15.1 * kubernetes1.23-kubelet-common-1.23.17-150500.3.15.1 * kubernetes1.23-kubelet-1.23.17-150500.3.15.1 * openSUSE Leap 15.6 (noarch) * kubernetes1.23-client-fish-completion-1.23.17-150500.3.15.1 * kubernetes1.23-client-bash-completion-1.23.17-150500.3.15.1 * openSUSE Leap 15.6 (ppc64le) * kubernetes1.23-controller-manager-debuginfo-1.23.17-150500.3.15.1 * kubernetes1.23-kubeadm-debuginfo-1.23.17-150500.3.15.1 * kubernetes1.23-apiserver-debuginfo-1.23.17-150500.3.15.1 * kubernetes1.23-scheduler-debuginfo-1.23.17-150500.3.15.1 * kubernetes1.23-client-debuginfo-1.23.17-150500.3.15.1 * kubernetes1.23-kubelet-debuginfo-1.23.17-150500.3.15.1 * kubernetes1.23-proxy-debuginfo-1.23.17-150500.3.15.1 * Containers Module 15-SP5 (aarch64 ppc64le s390x x86_64) * kubernetes1.23-client-1.23.17-150500.3.15.1 * kubernetes1.23-client-common-1.23.17-150500.3.15.1 * Containers Module 15-SP5 (ppc64le) * kubernetes1.23-client-debuginfo-1.23.17-150500.3.15.1 ## References: * https://www.suse.com/security/cve/CVE-2021-25743.html * https://bugzilla.suse.com/show_bug.cgi?id=1194400 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Thu Aug 8 20:31:06 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Thu, 08 Aug 2024 20:31:06 -0000 Subject: SUSE-SU-2024:2825-1: important: Security update for the Linux Kernel (Live Patch 25 for SLE 15 SP4) Message-ID: <172314906633.1839.1268065914585095125@smelt2.prg2.suse.org> # Security update for the Linux Kernel (Live Patch 25 for SLE 15 SP4) Announcement ID: SUSE-SU-2024:2825-1 Rating: important References: * bsc#1220145 * bsc#1221302 * bsc#1222882 * bsc#1223059 * bsc#1223363 * bsc#1223514 * bsc#1223681 * bsc#1223683 * bsc#1225013 * bsc#1225310 Cross-References: * CVE-2022-48651 * CVE-2024-23307 * CVE-2024-26610 * CVE-2024-26766 * CVE-2024-26828 * CVE-2024-26852 * CVE-2024-26923 * CVE-2024-26930 * CVE-2024-27398 * CVE-2024-35950 CVSS scores: * CVE-2022-48651 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-23307 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-23307 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26610 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2024-26766 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26828 ( SUSE ): 7.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:H * CVE-2024-26852 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26923 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26930 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26930 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-27398 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35950 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.4 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise Live Patching 15-SP4 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Real Time 15 SP4 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 An update that solves 10 vulnerabilities can now be installed. ## Description: This update for the Linux Kernel 5.14.21-150400_24_116 fixes several issues. The following security issues were fixed: * CVE-2024-27398: Fixed use-after-free bug caused by sco_sock_timeout() (bsc#1225013). * CVE-2024-35950: drm/client: Fully protect modes with dev->mode_config.mutex (bsc#1225310). * CVE-2024-26923: Fixed false-positive lockdep splat for spin_lock() in __unix_gc() (bsc#1223683). * CVE-2024-26930: Fixed double free of the ha->vp_map pointer (bsc#1223681). * CVE-2024-26828: Fixed underflow in parse_server_interfaces() (bsc#1223363). * CVE-2024-23307: Fixed Integer Overflow or Wraparound vulnerability in x86 and ARM md, raid, raid5 modules (bsc#1220145). * CVE-2024-26852: Fixed use-after-free in ip6_route_mpath_notify() (bsc#1223059). * CVE-2024-26610: Fixed memory corruption in wifi/iwlwifi (bsc#1221302). * CVE-2022-48651: Fixed an out-of-bound bug in ipvlan caused by unset skb->mac_header (bsc#1223514). * CVE-2024-26766: Fixed SDMA off-by-one error in _pad_sdma_tx_descs() (bsc#1222882). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch SUSE-2024-2825=1 * SUSE Linux Enterprise Live Patching 15-SP4 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP4-2024-2825=1 ## Package List: * openSUSE Leap 15.4 (ppc64le s390x x86_64) * kernel-livepatch-5_14_21-150400_24_116-default-5-150400.9.8.1 * kernel-livepatch-5_14_21-150400_24_116-default-debuginfo-5-150400.9.8.1 * kernel-livepatch-SLE15-SP4_Update_25-debugsource-5-150400.9.8.1 * SUSE Linux Enterprise Live Patching 15-SP4 (ppc64le s390x x86_64) * kernel-livepatch-5_14_21-150400_24_116-default-5-150400.9.8.1 * kernel-livepatch-5_14_21-150400_24_116-default-debuginfo-5-150400.9.8.1 * kernel-livepatch-SLE15-SP4_Update_25-debugsource-5-150400.9.8.1 ## References: * https://www.suse.com/security/cve/CVE-2022-48651.html * https://www.suse.com/security/cve/CVE-2024-23307.html * https://www.suse.com/security/cve/CVE-2024-26610.html * https://www.suse.com/security/cve/CVE-2024-26766.html * https://www.suse.com/security/cve/CVE-2024-26828.html * https://www.suse.com/security/cve/CVE-2024-26852.html * https://www.suse.com/security/cve/CVE-2024-26923.html * https://www.suse.com/security/cve/CVE-2024-26930.html * https://www.suse.com/security/cve/CVE-2024-27398.html * https://www.suse.com/security/cve/CVE-2024-35950.html * https://bugzilla.suse.com/show_bug.cgi?id=1220145 * https://bugzilla.suse.com/show_bug.cgi?id=1221302 * https://bugzilla.suse.com/show_bug.cgi?id=1222882 * https://bugzilla.suse.com/show_bug.cgi?id=1223059 * https://bugzilla.suse.com/show_bug.cgi?id=1223363 * https://bugzilla.suse.com/show_bug.cgi?id=1223514 * https://bugzilla.suse.com/show_bug.cgi?id=1223681 * https://bugzilla.suse.com/show_bug.cgi?id=1223683 * https://bugzilla.suse.com/show_bug.cgi?id=1225013 * https://bugzilla.suse.com/show_bug.cgi?id=1225310 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Thu Aug 8 20:31:18 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Thu, 08 Aug 2024 20:31:18 -0000 Subject: SUSE-SU-2024:2824-1: important: Security update for the Linux Kernel (Live Patch 23 for SLE 15 SP4) Message-ID: <172314907872.1839.3013728960400000914@smelt2.prg2.suse.org> # Security update for the Linux Kernel (Live Patch 23 for SLE 15 SP4) Announcement ID: SUSE-SU-2024:2824-1 Rating: important References: * bsc#1219296 * bsc#1220145 * bsc#1220211 * bsc#1220828 * bsc#1220832 * bsc#1221302 * bsc#1222685 * bsc#1222882 * bsc#1223059 * bsc#1223363 * bsc#1223514 * bsc#1223681 * bsc#1223683 * bsc#1225013 * bsc#1225310 Cross-References: * CVE-2022-48651 * CVE-2023-52340 * CVE-2023-52502 * CVE-2023-6546 * CVE-2024-23307 * CVE-2024-26585 * CVE-2024-26610 * CVE-2024-26622 * CVE-2024-26766 * CVE-2024-26828 * CVE-2024-26852 * CVE-2024-26923 * CVE-2024-26930 * CVE-2024-27398 * CVE-2024-35950 CVSS scores: * CVE-2022-48651 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-52340 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52340 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52502 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-6546 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-6546 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-23307 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-23307 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26585 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26585 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26610 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2024-26622 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26766 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26828 ( SUSE ): 7.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:H * CVE-2024-26852 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26923 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26930 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26930 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-27398 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35950 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.4 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise Live Patching 15-SP4 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Real Time 15 SP4 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 An update that solves 15 vulnerabilities can now be installed. ## Description: This update for the Linux Kernel 5.14.21-150400_24_108 fixes several issues. The following security issues were fixed: * CVE-2024-27398: Fixed use-after-free bug caused by sco_sock_timeout() (bsc#1225013). * CVE-2024-35950: drm/client: Fully protect modes with dev->mode_config.mutex (bsc#1225310). * CVE-2024-26923: Fixed false-positive lockdep splat for spin_lock() in __unix_gc() (bsc#1223683). * CVE-2024-26930: Fixed double free of the ha->vp_map pointer (bsc#1223681). * CVE-2024-26828: Fixed underflow in parse_server_interfaces() (bsc#1223363). * CVE-2024-23307: Fixed Integer Overflow or Wraparound vulnerability in x86 and ARM md, raid, raid5 modules (bsc#1220145). * CVE-2024-26852: Fixed use-after-free in ip6_route_mpath_notify() (bsc#1223059). * CVE-2024-26610: Fixed memory corruption in wifi/iwlwifi (bsc#1221302). * CVE-2022-48651: Fixed an out-of-bound bug in ipvlan caused by unset skb->mac_header (bsc#1223514). * CVE-2024-26766: Fixed SDMA off-by-one error in _pad_sdma_tx_descs() (bsc#1222882). * CVE-2023-52502: Fixed a race condition in nfc_llcp_sock_get() and nfc_llcp_sock_get_sn() (bsc#1220832). * CVE-2024-26585: Fixed race between tx work scheduling and socket close (bsc#1220211). * CVE-2023-6546: Fixed a race condition in the GSM 0710 tty multiplexor via the GSMIOC_SETCONF ioctl that could lead to local privilege escalation (bsc#1222685). * CVE-2024-26622: Fixed use-after-free write bug in tomoyo_write_control() (bsc#1220828). * CVE-2023-52340: Fixed a denial of service related to ICMPv6 'Packet Too Big' packets (bsc#1219296). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch SUSE-2024-2824=1 * SUSE Linux Enterprise Live Patching 15-SP4 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP4-2024-2824=1 ## Package List: * openSUSE Leap 15.4 (ppc64le s390x x86_64) * kernel-livepatch-SLE15-SP4_Update_23-debugsource-7-150400.9.8.1 * kernel-livepatch-5_14_21-150400_24_108-default-debuginfo-7-150400.9.8.1 * kernel-livepatch-5_14_21-150400_24_108-default-7-150400.9.8.1 * SUSE Linux Enterprise Live Patching 15-SP4 (ppc64le s390x x86_64) * kernel-livepatch-SLE15-SP4_Update_23-debugsource-7-150400.9.8.1 * kernel-livepatch-5_14_21-150400_24_108-default-debuginfo-7-150400.9.8.1 * kernel-livepatch-5_14_21-150400_24_108-default-7-150400.9.8.1 ## References: * https://www.suse.com/security/cve/CVE-2022-48651.html * https://www.suse.com/security/cve/CVE-2023-52340.html * https://www.suse.com/security/cve/CVE-2023-52502.html * https://www.suse.com/security/cve/CVE-2023-6546.html * https://www.suse.com/security/cve/CVE-2024-23307.html * https://www.suse.com/security/cve/CVE-2024-26585.html * https://www.suse.com/security/cve/CVE-2024-26610.html * https://www.suse.com/security/cve/CVE-2024-26622.html * https://www.suse.com/security/cve/CVE-2024-26766.html * https://www.suse.com/security/cve/CVE-2024-26828.html * https://www.suse.com/security/cve/CVE-2024-26852.html * https://www.suse.com/security/cve/CVE-2024-26923.html * https://www.suse.com/security/cve/CVE-2024-26930.html * https://www.suse.com/security/cve/CVE-2024-27398.html * https://www.suse.com/security/cve/CVE-2024-35950.html * https://bugzilla.suse.com/show_bug.cgi?id=1219296 * https://bugzilla.suse.com/show_bug.cgi?id=1220145 * https://bugzilla.suse.com/show_bug.cgi?id=1220211 * https://bugzilla.suse.com/show_bug.cgi?id=1220828 * https://bugzilla.suse.com/show_bug.cgi?id=1220832 * https://bugzilla.suse.com/show_bug.cgi?id=1221302 * https://bugzilla.suse.com/show_bug.cgi?id=1222685 * https://bugzilla.suse.com/show_bug.cgi?id=1222882 * https://bugzilla.suse.com/show_bug.cgi?id=1223059 * https://bugzilla.suse.com/show_bug.cgi?id=1223363 * https://bugzilla.suse.com/show_bug.cgi?id=1223514 * https://bugzilla.suse.com/show_bug.cgi?id=1223681 * https://bugzilla.suse.com/show_bug.cgi?id=1223683 * https://bugzilla.suse.com/show_bug.cgi?id=1225013 * https://bugzilla.suse.com/show_bug.cgi?id=1225310 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Thu Aug 8 20:31:21 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Thu, 08 Aug 2024 20:31:21 -0000 Subject: SUSE-SU-2024:2823-1: important: Security update for the Linux Kernel (Live Patch 27 for SLE 15 SP4) Message-ID: <172314908172.1839.2488309625145875617@smelt2.prg2.suse.org> # Security update for the Linux Kernel (Live Patch 27 for SLE 15 SP4) Announcement ID: SUSE-SU-2024:2823-1 Rating: important References: * bsc#1223683 * bsc#1225310 Cross-References: * CVE-2024-26923 * CVE-2024-35950 CVSS scores: * CVE-2024-26923 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35950 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.4 * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise Live Patching 12-SP5 * SUSE Linux Enterprise Live Patching 15-SP4 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Real Time 15 SP4 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 An update that solves two vulnerabilities can now be installed. ## Description: This update for the Linux Kernel 5.14.21-150400_24_122 fixes several issues. The following security issues were fixed: * CVE-2024-26923: Fixed false-positive lockdep splat for spin_lock() in __unix_gc() (bsc#1223683). * CVE-2024-35950: drm/client: Fully protect modes with dev->mode_config.mutex (bsc#1225310). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Live Patching 15-SP4 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP4-2024-2826=1 * SUSE Linux Enterprise Live Patching 12-SP5 zypper in -t patch SUSE-SLE-Live-Patching-12-SP5-2024-2823=1 * openSUSE Leap 15.4 zypper in -t patch SUSE-2024-2826=1 ## Package List: * SUSE Linux Enterprise Live Patching 15-SP4 (ppc64le s390x x86_64) * kernel-livepatch-SLE15-SP4_Update_27-debugsource-2-150400.9.6.1 * kernel-livepatch-5_14_21-150400_24_122-default-2-150400.9.6.1 * kernel-livepatch-5_14_21-150400_24_122-default-debuginfo-2-150400.9.6.1 * SUSE Linux Enterprise Live Patching 12-SP5 (ppc64le s390x x86_64) * kgraft-patch-4_12_14-122_219-default-2-8.6.1 * openSUSE Leap 15.4 (ppc64le s390x x86_64) * kernel-livepatch-SLE15-SP4_Update_27-debugsource-2-150400.9.6.1 * kernel-livepatch-5_14_21-150400_24_122-default-2-150400.9.6.1 * kernel-livepatch-5_14_21-150400_24_122-default-debuginfo-2-150400.9.6.1 ## References: * https://www.suse.com/security/cve/CVE-2024-26923.html * https://www.suse.com/security/cve/CVE-2024-35950.html * https://bugzilla.suse.com/show_bug.cgi?id=1223683 * https://bugzilla.suse.com/show_bug.cgi?id=1225310 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Thu Aug 8 20:31:27 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Thu, 08 Aug 2024 20:31:27 -0000 Subject: SUSE-SU-2024:2822-1: important: Security update for the Linux Kernel (Live Patch 56 for SLE 12 SP5) Message-ID: <172314908787.1839.14816724053396519651@smelt2.prg2.suse.org> # Security update for the Linux Kernel (Live Patch 56 for SLE 12 SP5) Announcement ID: SUSE-SU-2024:2822-1 Rating: important References: * bsc#1210619 * bsc#1220537 * bsc#1223363 * bsc#1223683 * bsc#1225013 * bsc#1225211 * bsc#1225310 Cross-References: * CVE-2021-46955 * CVE-2021-47383 * CVE-2023-1829 * CVE-2024-26828 * CVE-2024-26923 * CVE-2024-27398 * CVE-2024-35950 CVSS scores: * CVE-2021-46955 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2021-47383 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-1829 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-1829 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26828 ( SUSE ): 7.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:H * CVE-2024-26923 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-27398 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35950 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise Live Patching 12-SP5 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 An update that solves seven vulnerabilities can now be installed. ## Description: This update for the Linux Kernel 4.12.14-122_216 fixes several issues. The following security issues were fixed: * CVE-2024-27398: Fixed use-after-free bug caused by sco_sock_timeout() (bsc#1225013). * CVE-2024-35950: drm/client: Fully protect modes with dev->mode_config.mutex (bsc#1225310). * CVE-2021-47383: Fixed out-of-bound vmalloc access in imageblit (bsc#1225211). * CVE-2024-26923: Fixed false-positive lockdep splat for spin_lock() in __unix_gc() (bsc#1223683). * CVE-2024-26828: Fixed underflow in parse_server_interfaces() (bsc#1223363). * CVE-2021-46955: Fixed an out-of-bounds read with openvswitch, when fragmenting IPv4 packets (bsc#1220537). * CVE-2023-1829: Fixed a use-after-free vulnerability in the control index filter (tcindex) (bsc#1210619). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Live Patching 12-SP5 zypper in -t patch SUSE-SLE-Live-Patching-12-SP5-2024-2822=1 ## Package List: * SUSE Linux Enterprise Live Patching 12-SP5 (ppc64le s390x x86_64) * kgraft-patch-4_12_14-122_216-default-4-8.6.1 ## References: * https://www.suse.com/security/cve/CVE-2021-46955.html * https://www.suse.com/security/cve/CVE-2021-47383.html * https://www.suse.com/security/cve/CVE-2023-1829.html * https://www.suse.com/security/cve/CVE-2024-26828.html * https://www.suse.com/security/cve/CVE-2024-26923.html * https://www.suse.com/security/cve/CVE-2024-27398.html * https://www.suse.com/security/cve/CVE-2024-35950.html * https://bugzilla.suse.com/show_bug.cgi?id=1210619 * https://bugzilla.suse.com/show_bug.cgi?id=1220537 * https://bugzilla.suse.com/show_bug.cgi?id=1223363 * https://bugzilla.suse.com/show_bug.cgi?id=1223683 * https://bugzilla.suse.com/show_bug.cgi?id=1225013 * https://bugzilla.suse.com/show_bug.cgi?id=1225211 * https://bugzilla.suse.com/show_bug.cgi?id=1225310 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Thu Aug 8 20:31:37 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Thu, 08 Aug 2024 20:31:37 -0000 Subject: SUSE-SU-2024:2821-1: important: Security update for the Linux Kernel (Live Patch 54 for SLE 12 SP5) Message-ID: <172314909705.1839.9969653863905466902@smelt2.prg2.suse.org> # Security update for the Linux Kernel (Live Patch 54 for SLE 12 SP5) Announcement ID: SUSE-SU-2024:2821-1 Rating: important References: * bsc#1210619 * bsc#1220145 * bsc#1220537 * bsc#1222685 * bsc#1223059 * bsc#1223363 * bsc#1223514 * bsc#1223681 * bsc#1223683 * bsc#1225013 * bsc#1225211 * bsc#1225310 Cross-References: * CVE-2021-46955 * CVE-2021-47383 * CVE-2022-48651 * CVE-2023-1829 * CVE-2023-6546 * CVE-2024-23307 * CVE-2024-26828 * CVE-2024-26852 * CVE-2024-26923 * CVE-2024-26930 * CVE-2024-27398 * CVE-2024-35950 CVSS scores: * CVE-2021-46955 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2021-47383 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48651 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-1829 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-1829 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-6546 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-6546 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-23307 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-23307 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26828 ( SUSE ): 7.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:H * CVE-2024-26852 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26923 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26930 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26930 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-27398 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35950 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise Live Patching 12-SP5 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 An update that solves 12 vulnerabilities can now be installed. ## Description: This update for the Linux Kernel 4.12.14-122_201 fixes several issues. The following security issues were fixed: * CVE-2024-27398: Fixed use-after-free bug caused by sco_sock_timeout() (bsc#1225013). * CVE-2024-35950: drm/client: Fully protect modes with dev->mode_config.mutex (bsc#1225310). * CVE-2021-47383: Fixed out-of-bound vmalloc access in imageblit (bsc#1225211). * CVE-2024-26923: Fixed false-positive lockdep splat for spin_lock() in __unix_gc() (bsc#1223683). * CVE-2024-26930: Fixed double free of the ha->vp_map pointer (bsc#1223681). * CVE-2024-26828: Fixed underflow in parse_server_interfaces() (bsc#1223363). * CVE-2021-46955: Fixed an out-of-bounds read with openvswitch, when fragmenting IPv4 packets (bsc#1220537). * CVE-2024-23307: Fixed Integer Overflow or Wraparound vulnerability in x86 and ARM md, raid, raid5 modules (bsc#1220145). * CVE-2024-26852: Fixed use-after-free in ip6_route_mpath_notify() (bsc#1223059). * CVE-2022-48651: Fixed an out-of-bound bug in ipvlan caused by unset skb->mac_header (bsc#1223514). * CVE-2023-6546: Fixed a race condition in the GSM 0710 tty multiplexor via the GSMIOC_SETCONF ioctl that could lead to local privilege escalation (bsc#1222685). * CVE-2023-1829: Fixed a use-after-free vulnerability in the control index filter (tcindex) (bsc#1210619). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Live Patching 12-SP5 zypper in -t patch SUSE-SLE-Live-Patching-12-SP5-2024-2821=1 ## Package List: * SUSE Linux Enterprise Live Patching 12-SP5 (ppc64le s390x x86_64) * kgraft-patch-4_12_14-122_201-default-6-8.10.1 ## References: * https://www.suse.com/security/cve/CVE-2021-46955.html * https://www.suse.com/security/cve/CVE-2021-47383.html * https://www.suse.com/security/cve/CVE-2022-48651.html * https://www.suse.com/security/cve/CVE-2023-1829.html * https://www.suse.com/security/cve/CVE-2023-6546.html * https://www.suse.com/security/cve/CVE-2024-23307.html * https://www.suse.com/security/cve/CVE-2024-26828.html * https://www.suse.com/security/cve/CVE-2024-26852.html * https://www.suse.com/security/cve/CVE-2024-26923.html * https://www.suse.com/security/cve/CVE-2024-26930.html * https://www.suse.com/security/cve/CVE-2024-27398.html * https://www.suse.com/security/cve/CVE-2024-35950.html * https://bugzilla.suse.com/show_bug.cgi?id=1210619 * https://bugzilla.suse.com/show_bug.cgi?id=1220145 * https://bugzilla.suse.com/show_bug.cgi?id=1220537 * https://bugzilla.suse.com/show_bug.cgi?id=1222685 * https://bugzilla.suse.com/show_bug.cgi?id=1223059 * https://bugzilla.suse.com/show_bug.cgi?id=1223363 * https://bugzilla.suse.com/show_bug.cgi?id=1223514 * https://bugzilla.suse.com/show_bug.cgi?id=1223681 * https://bugzilla.suse.com/show_bug.cgi?id=1223683 * https://bugzilla.suse.com/show_bug.cgi?id=1225013 * https://bugzilla.suse.com/show_bug.cgi?id=1225211 * https://bugzilla.suse.com/show_bug.cgi?id=1225310 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Thu Aug 8 20:31:39 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Thu, 08 Aug 2024 20:31:39 -0000 Subject: SUSE-SU-2024:2818-1: important: Security update for the Linux Kernel (Live Patch 52 for SLE 12 SP5) Message-ID: <172314909957.1839.13729066780949830500@smelt2.prg2.suse.org> # Security update for the Linux Kernel (Live Patch 52 for SLE 12 SP5) Announcement ID: SUSE-SU-2024:2818-1 Rating: important References: * bsc#1225013 * bsc#1225310 Cross-References: * CVE-2024-27398 * CVE-2024-35950 CVSS scores: * CVE-2024-27398 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35950 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise Live Patching 12-SP5 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 An update that solves two vulnerabilities can now be installed. ## Description: This update for the Linux Kernel 4.12.14-122_189 fixes several issues. The following security issues were fixed: * CVE-2024-27398: Fixed use-after-free bug caused by sco_sock_timeout() (bsc#1225013). * CVE-2024-35950: drm/client: Fully protect modes with dev->mode_config.mutex (bsc#1225310). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Live Patching 12-SP5 zypper in -t patch SUSE-SLE-Live-Patching-12-SP5-2024-2818=1 SUSE-SLE-Live- Patching-12-SP5-2024-2819=1 SUSE-SLE-Live-Patching-12-SP5-2024-2820=1 ## Package List: * SUSE Linux Enterprise Live Patching 12-SP5 (ppc64le s390x x86_64) * kgraft-patch-4_12_14-122_173-default-13-2.1 * kgraft-patch-4_12_14-122_189-default-9-2.1 * kgraft-patch-4_12_14-122_165-default-15-2.1 ## References: * https://www.suse.com/security/cve/CVE-2024-27398.html * https://www.suse.com/security/cve/CVE-2024-35950.html * https://bugzilla.suse.com/show_bug.cgi?id=1225013 * https://bugzilla.suse.com/show_bug.cgi?id=1225310 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Fri Aug 9 08:30:10 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Fri, 09 Aug 2024 08:30:10 -0000 Subject: SUSE-SU-2024:2864-1: moderate: Security update for ffmpeg-4 Message-ID: <172319221038.7180.376874939983599066@smelt2.prg2.suse.org> # Security update for ffmpeg-4 Announcement ID: SUSE-SU-2024:2864-1 Rating: moderate References: * bsc#1223304 * bsc#1227296 Cross-References: * CVE-2023-51798 * CVE-2024-32230 CVSS scores: * CVE-2023-51798 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2024-32230 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:H Affected Products: * openSUSE Leap 15.6 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Linux Enterprise Workstation Extension 15 SP6 * SUSE Package Hub 15 15-SP6 An update that solves two vulnerabilities can now be installed. ## Description: This update for ffmpeg-4 fixes the following issues: * CVE-2024-32230: Fixed buffer overflow due to negative-size-param bug in load_input_picture() (bsc#1227296). * CVE-2023-51798: Fixed buffer overflow via a floating point exception (FPE) error at libavfilter/vf_minterpolate.c (bsc#1223304). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch SUSE-2024-2864=1 openSUSE-SLE-15.6-2024-2864=1 * SUSE Package Hub 15 15-SP6 zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP6-2024-2864=1 * SUSE Linux Enterprise Workstation Extension 15 SP6 zypper in -t patch SUSE-SLE-Product-WE-15-SP6-2024-2864=1 ## Package List: * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64 i586) * libswresample3_9-4.4-150600.13.10.1 * ffmpeg-4-debuginfo-4.4-150600.13.10.1 * libavformat58_76-debuginfo-4.4-150600.13.10.1 * ffmpeg-4-libpostproc-devel-4.4-150600.13.10.1 * libpostproc55_9-debuginfo-4.4-150600.13.10.1 * ffmpeg-4-libavresample-devel-4.4-150600.13.10.1 * ffmpeg-4-libavutil-devel-4.4-150600.13.10.1 * ffmpeg-4-private-devel-4.4-150600.13.10.1 * libavfilter7_110-debuginfo-4.4-150600.13.10.1 * libavresample4_0-4.4-150600.13.10.1 * libavformat58_76-4.4-150600.13.10.1 * ffmpeg-4-4.4-150600.13.10.1 * libavdevice58_13-4.4-150600.13.10.1 * libavutil56_70-4.4-150600.13.10.1 * ffmpeg-4-libswscale-devel-4.4-150600.13.10.1 * ffmpeg-4-libavfilter-devel-4.4-150600.13.10.1 * ffmpeg-4-libavcodec-devel-4.4-150600.13.10.1 * libavcodec58_134-4.4-150600.13.10.1 * libavcodec58_134-debuginfo-4.4-150600.13.10.1 * libswresample3_9-debuginfo-4.4-150600.13.10.1 * libswscale5_9-debuginfo-4.4-150600.13.10.1 * libpostproc55_9-4.4-150600.13.10.1 * libswscale5_9-4.4-150600.13.10.1 * libavutil56_70-debuginfo-4.4-150600.13.10.1 * libavdevice58_13-debuginfo-4.4-150600.13.10.1 * libavresample4_0-debuginfo-4.4-150600.13.10.1 * ffmpeg-4-libavdevice-devel-4.4-150600.13.10.1 * ffmpeg-4-libavformat-devel-4.4-150600.13.10.1 * ffmpeg-4-debugsource-4.4-150600.13.10.1 * ffmpeg-4-libswresample-devel-4.4-150600.13.10.1 * libavfilter7_110-4.4-150600.13.10.1 * openSUSE Leap 15.6 (x86_64) * libavcodec58_134-32bit-4.4-150600.13.10.1 * libavdevice58_13-32bit-debuginfo-4.4-150600.13.10.1 * libavresample4_0-32bit-debuginfo-4.4-150600.13.10.1 * libavutil56_70-32bit-4.4-150600.13.10.1 * libavformat58_76-32bit-4.4-150600.13.10.1 * libavfilter7_110-32bit-debuginfo-4.4-150600.13.10.1 * libavresample4_0-32bit-4.4-150600.13.10.1 * libswscale5_9-32bit-4.4-150600.13.10.1 * libavcodec58_134-32bit-debuginfo-4.4-150600.13.10.1 * libavutil56_70-32bit-debuginfo-4.4-150600.13.10.1 * libpostproc55_9-32bit-4.4-150600.13.10.1 * libavfilter7_110-32bit-4.4-150600.13.10.1 * libavdevice58_13-32bit-4.4-150600.13.10.1 * libswresample3_9-32bit-4.4-150600.13.10.1 * libswresample3_9-32bit-debuginfo-4.4-150600.13.10.1 * libswscale5_9-32bit-debuginfo-4.4-150600.13.10.1 * libpostproc55_9-32bit-debuginfo-4.4-150600.13.10.1 * libavformat58_76-32bit-debuginfo-4.4-150600.13.10.1 * openSUSE Leap 15.6 (aarch64_ilp32) * libavfilter7_110-64bit-debuginfo-4.4-150600.13.10.1 * libavresample4_0-64bit-debuginfo-4.4-150600.13.10.1 * libavresample4_0-64bit-4.4-150600.13.10.1 * libpostproc55_9-64bit-debuginfo-4.4-150600.13.10.1 * libswscale5_9-64bit-debuginfo-4.4-150600.13.10.1 * libavdevice58_13-64bit-4.4-150600.13.10.1 * libavformat58_76-64bit-4.4-150600.13.10.1 * libavfilter7_110-64bit-4.4-150600.13.10.1 * libavcodec58_134-64bit-4.4-150600.13.10.1 * libswresample3_9-64bit-debuginfo-4.4-150600.13.10.1 * libswscale5_9-64bit-4.4-150600.13.10.1 * libavcodec58_134-64bit-debuginfo-4.4-150600.13.10.1 * libavformat58_76-64bit-debuginfo-4.4-150600.13.10.1 * libavutil56_70-64bit-4.4-150600.13.10.1 * libpostproc55_9-64bit-4.4-150600.13.10.1 * libswresample3_9-64bit-4.4-150600.13.10.1 * libavutil56_70-64bit-debuginfo-4.4-150600.13.10.1 * libavdevice58_13-64bit-debuginfo-4.4-150600.13.10.1 * SUSE Package Hub 15 15-SP6 (aarch64 ppc64le s390x x86_64) * libswresample3_9-4.4-150600.13.10.1 * ffmpeg-4-debuginfo-4.4-150600.13.10.1 * libavformat58_76-debuginfo-4.4-150600.13.10.1 * ffmpeg-4-libpostproc-devel-4.4-150600.13.10.1 * libpostproc55_9-debuginfo-4.4-150600.13.10.1 * ffmpeg-4-libavresample-devel-4.4-150600.13.10.1 * ffmpeg-4-libavutil-devel-4.4-150600.13.10.1 * ffmpeg-4-private-devel-4.4-150600.13.10.1 * libavfilter7_110-debuginfo-4.4-150600.13.10.1 * libavresample4_0-4.4-150600.13.10.1 * libavformat58_76-4.4-150600.13.10.1 * ffmpeg-4-4.4-150600.13.10.1 * libavdevice58_13-4.4-150600.13.10.1 * libavutil56_70-4.4-150600.13.10.1 * ffmpeg-4-libswscale-devel-4.4-150600.13.10.1 * ffmpeg-4-libavfilter-devel-4.4-150600.13.10.1 * ffmpeg-4-libavcodec-devel-4.4-150600.13.10.1 * libavcodec58_134-4.4-150600.13.10.1 * libavcodec58_134-debuginfo-4.4-150600.13.10.1 * libswresample3_9-debuginfo-4.4-150600.13.10.1 * libswscale5_9-debuginfo-4.4-150600.13.10.1 * libpostproc55_9-4.4-150600.13.10.1 * libswscale5_9-4.4-150600.13.10.1 * libavutil56_70-debuginfo-4.4-150600.13.10.1 * libavdevice58_13-debuginfo-4.4-150600.13.10.1 * libavresample4_0-debuginfo-4.4-150600.13.10.1 * ffmpeg-4-libavdevice-devel-4.4-150600.13.10.1 * ffmpeg-4-libavformat-devel-4.4-150600.13.10.1 * ffmpeg-4-debugsource-4.4-150600.13.10.1 * ffmpeg-4-libswresample-devel-4.4-150600.13.10.1 * libavfilter7_110-4.4-150600.13.10.1 * SUSE Linux Enterprise Workstation Extension 15 SP6 (x86_64) * libswscale5_9-4.4-150600.13.10.1 * libavutil56_70-debuginfo-4.4-150600.13.10.1 * libavcodec58_134-4.4-150600.13.10.1 * libavcodec58_134-debuginfo-4.4-150600.13.10.1 * libswresample3_9-debuginfo-4.4-150600.13.10.1 * libswresample3_9-4.4-150600.13.10.1 * ffmpeg-4-debuginfo-4.4-150600.13.10.1 * libswscale5_9-debuginfo-4.4-150600.13.10.1 * libavformat58_76-4.4-150600.13.10.1 * ffmpeg-4-debugsource-4.4-150600.13.10.1 * libavutil56_70-4.4-150600.13.10.1 * libavformat58_76-debuginfo-4.4-150600.13.10.1 ## References: * https://www.suse.com/security/cve/CVE-2023-51798.html * https://www.suse.com/security/cve/CVE-2024-32230.html * https://bugzilla.suse.com/show_bug.cgi?id=1223304 * https://bugzilla.suse.com/show_bug.cgi?id=1227296 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Fri Aug 9 08:30:15 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Fri, 09 Aug 2024 08:30:15 -0000 Subject: SUSE-SU-2024:2863-1: important: Security update for bind Message-ID: <172319221543.7180.17826471506161686023@smelt2.prg2.suse.org> # Security update for bind Announcement ID: SUSE-SU-2024:2863-1 Rating: important References: * bsc#1228256 * bsc#1228257 * bsc#1228258 Cross-References: * CVE-2024-1737 * CVE-2024-1975 * CVE-2024-4076 CVSS scores: * CVE-2024-1737 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-1975 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-4076 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * openSUSE Leap 15.4 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Manager Proxy 4.3 * SUSE Manager Retail Branch Server 4.3 * SUSE Manager Server 4.3 An update that solves three vulnerabilities can now be installed. ## Description: This update for bind fixes the following issues: Update to 9.16.50: * Bug Fixes: * A regression in cache-cleaning code enabled memory use to grow significantly more quickly than before, until the configured max-cache-size limit was reached. This has been fixed. * Using rndc flush inadvertently caused cache cleaning to become less effective. This could ultimately lead to the configured max-cache-size limit being exceeded and has now been fixed. * The logic for cleaning up expired cached DNS records was tweaked to be more aggressive. This change helps with enforcing max-cache-ttl and max-ncache- ttl in a timely manner. * It was possible to trigger a use-after-free assertion when the overmem cache cleaning was initiated. This has been fixed. New Features: * Added RESOLVER.ARPA to the built in empty zones. * Security Fixes: * It is possible to craft excessively large numbers of resource record types for a given owner name, which has the effect of slowing down database processing. This has been addressed by adding a configurable limit to the number of records that can be stored per name and type in a cache or zone database. The default is 100, which can be tuned with the new max-types-per- name option. (CVE-2024-1737, bsc#1228256) * Validating DNS messages signed using the SIG(0) protocol (RFC 2931) could cause excessive CPU load, leading to a denial-of-service condition. Support for SIG(0) message validation was removed from this version of named. (CVE-2024-1975, bsc#1228257) * When looking up the NS records of parent zones as part of looking up DS records, it was possible for named to trigger an assertion failure if serve- stale was enabled. This has been fixed. (CVE-2024-4076, bsc#1228258) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch SUSE-2024-2863=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2024-2863=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2024-2863=1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 zypper in -t patch SUSE-SLE-Product-SLED-15-SP4-LTSS-2024-2863=1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2024-2863=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2024-2863=1 * SUSE Manager Proxy 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Proxy-4.3-2024-2863=1 * SUSE Manager Retail Branch Server 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Retail-Branch- Server-4.3-2024-2863=1 * SUSE Manager Server 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Server-4.3-2024-2863=1 ## Package List: * openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586) * bind-utils-debuginfo-9.16.50-150400.5.43.1 * bind-debugsource-9.16.50-150400.5.43.1 * bind-debuginfo-9.16.50-150400.5.43.1 * bind-utils-9.16.50-150400.5.43.1 * bind-9.16.50-150400.5.43.1 * openSUSE Leap 15.4 (noarch) * python3-bind-9.16.50-150400.5.43.1 * bind-doc-9.16.50-150400.5.43.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 x86_64) * bind-utils-debuginfo-9.16.50-150400.5.43.1 * bind-debugsource-9.16.50-150400.5.43.1 * bind-debuginfo-9.16.50-150400.5.43.1 * bind-utils-9.16.50-150400.5.43.1 * bind-9.16.50-150400.5.43.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (noarch) * python3-bind-9.16.50-150400.5.43.1 * bind-doc-9.16.50-150400.5.43.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 x86_64) * bind-utils-debuginfo-9.16.50-150400.5.43.1 * bind-debugsource-9.16.50-150400.5.43.1 * bind-debuginfo-9.16.50-150400.5.43.1 * bind-utils-9.16.50-150400.5.43.1 * bind-9.16.50-150400.5.43.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (noarch) * python3-bind-9.16.50-150400.5.43.1 * bind-doc-9.16.50-150400.5.43.1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (x86_64) * bind-debugsource-9.16.50-150400.5.43.1 * bind-utils-debuginfo-9.16.50-150400.5.43.1 * bind-utils-9.16.50-150400.5.43.1 * bind-debuginfo-9.16.50-150400.5.43.1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (noarch) * python3-bind-9.16.50-150400.5.43.1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (aarch64 ppc64le s390x x86_64) * bind-utils-debuginfo-9.16.50-150400.5.43.1 * bind-debugsource-9.16.50-150400.5.43.1 * bind-debuginfo-9.16.50-150400.5.43.1 * bind-utils-9.16.50-150400.5.43.1 * bind-9.16.50-150400.5.43.1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (noarch) * python3-bind-9.16.50-150400.5.43.1 * bind-doc-9.16.50-150400.5.43.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64) * bind-utils-debuginfo-9.16.50-150400.5.43.1 * bind-debugsource-9.16.50-150400.5.43.1 * bind-debuginfo-9.16.50-150400.5.43.1 * bind-utils-9.16.50-150400.5.43.1 * bind-9.16.50-150400.5.43.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (noarch) * python3-bind-9.16.50-150400.5.43.1 * bind-doc-9.16.50-150400.5.43.1 * SUSE Manager Proxy 4.3 (x86_64) * bind-utils-debuginfo-9.16.50-150400.5.43.1 * bind-debugsource-9.16.50-150400.5.43.1 * bind-debuginfo-9.16.50-150400.5.43.1 * bind-utils-9.16.50-150400.5.43.1 * bind-9.16.50-150400.5.43.1 * SUSE Manager Proxy 4.3 (noarch) * python3-bind-9.16.50-150400.5.43.1 * bind-doc-9.16.50-150400.5.43.1 * SUSE Manager Retail Branch Server 4.3 (x86_64) * bind-utils-debuginfo-9.16.50-150400.5.43.1 * bind-debugsource-9.16.50-150400.5.43.1 * bind-debuginfo-9.16.50-150400.5.43.1 * bind-utils-9.16.50-150400.5.43.1 * bind-9.16.50-150400.5.43.1 * SUSE Manager Retail Branch Server 4.3 (noarch) * python3-bind-9.16.50-150400.5.43.1 * bind-doc-9.16.50-150400.5.43.1 * SUSE Manager Server 4.3 (ppc64le s390x x86_64) * bind-utils-debuginfo-9.16.50-150400.5.43.1 * bind-debugsource-9.16.50-150400.5.43.1 * bind-debuginfo-9.16.50-150400.5.43.1 * bind-utils-9.16.50-150400.5.43.1 * bind-9.16.50-150400.5.43.1 * SUSE Manager Server 4.3 (noarch) * python3-bind-9.16.50-150400.5.43.1 * bind-doc-9.16.50-150400.5.43.1 ## References: * https://www.suse.com/security/cve/CVE-2024-1737.html * https://www.suse.com/security/cve/CVE-2024-1975.html * https://www.suse.com/security/cve/CVE-2024-4076.html * https://bugzilla.suse.com/show_bug.cgi?id=1228256 * https://bugzilla.suse.com/show_bug.cgi?id=1228257 * https://bugzilla.suse.com/show_bug.cgi?id=1228258 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Fri Aug 9 08:33:18 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Fri, 09 Aug 2024 08:33:18 -0000 Subject: SUSE-SU-2024:2863-1: important: Security update for bind Message-ID: <172319239863.8790.3335751372625626641@smelt2.prg2.suse.org> # Security update for bind Announcement ID: SUSE-SU-2024:2863-1 Rating: important References: * bsc#1228256 * bsc#1228257 * bsc#1228258 Cross-References: * CVE-2024-1737 * CVE-2024-1975 * CVE-2024-4076 CVSS scores: * CVE-2024-1737 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-1975 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-4076 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * openSUSE Leap 15.4 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Manager Proxy 4.3 * SUSE Manager Retail Branch Server 4.3 * SUSE Manager Server 4.3 An update that solves three vulnerabilities can now be installed. ## Description: This update for bind fixes the following issues: Update to 9.16.50: * Bug Fixes: * A regression in cache-cleaning code enabled memory use to grow significantly more quickly than before, until the configured max-cache-size limit was reached. This has been fixed. * Using rndc flush inadvertently caused cache cleaning to become less effective. This could ultimately lead to the configured max-cache-size limit being exceeded and has now been fixed. * The logic for cleaning up expired cached DNS records was tweaked to be more aggressive. This change helps with enforcing max-cache-ttl and max-ncache- ttl in a timely manner. * It was possible to trigger a use-after-free assertion when the overmem cache cleaning was initiated. This has been fixed. New Features: * Added RESOLVER.ARPA to the built in empty zones. * Security Fixes: * It is possible to craft excessively large numbers of resource record types for a given owner name, which has the effect of slowing down database processing. This has been addressed by adding a configurable limit to the number of records that can be stored per name and type in a cache or zone database. The default is 100, which can be tuned with the new max-types-per- name option. (CVE-2024-1737, bsc#1228256) * Validating DNS messages signed using the SIG(0) protocol (RFC 2931) could cause excessive CPU load, leading to a denial-of-service condition. Support for SIG(0) message validation was removed from this version of named. (CVE-2024-1975, bsc#1228257) * When looking up the NS records of parent zones as part of looking up DS records, it was possible for named to trigger an assertion failure if serve- stale was enabled. This has been fixed. (CVE-2024-4076, bsc#1228258) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch SUSE-2024-2863=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2024-2863=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2024-2863=1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 zypper in -t patch SUSE-SLE-Product-SLED-15-SP4-LTSS-2024-2863=1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2024-2863=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2024-2863=1 * SUSE Manager Proxy 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Proxy-4.3-2024-2863=1 * SUSE Manager Retail Branch Server 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Retail-Branch- Server-4.3-2024-2863=1 * SUSE Manager Server 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Server-4.3-2024-2863=1 ## Package List: * openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586) * bind-utils-debuginfo-9.16.50-150400.5.43.1 * bind-debugsource-9.16.50-150400.5.43.1 * bind-debuginfo-9.16.50-150400.5.43.1 * bind-utils-9.16.50-150400.5.43.1 * bind-9.16.50-150400.5.43.1 * openSUSE Leap 15.4 (noarch) * python3-bind-9.16.50-150400.5.43.1 * bind-doc-9.16.50-150400.5.43.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 x86_64) * bind-utils-debuginfo-9.16.50-150400.5.43.1 * bind-debugsource-9.16.50-150400.5.43.1 * bind-debuginfo-9.16.50-150400.5.43.1 * bind-utils-9.16.50-150400.5.43.1 * bind-9.16.50-150400.5.43.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (noarch) * python3-bind-9.16.50-150400.5.43.1 * bind-doc-9.16.50-150400.5.43.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 x86_64) * bind-utils-debuginfo-9.16.50-150400.5.43.1 * bind-debugsource-9.16.50-150400.5.43.1 * bind-debuginfo-9.16.50-150400.5.43.1 * bind-utils-9.16.50-150400.5.43.1 * bind-9.16.50-150400.5.43.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (noarch) * python3-bind-9.16.50-150400.5.43.1 * bind-doc-9.16.50-150400.5.43.1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (x86_64) * bind-debugsource-9.16.50-150400.5.43.1 * bind-utils-debuginfo-9.16.50-150400.5.43.1 * bind-utils-9.16.50-150400.5.43.1 * bind-debuginfo-9.16.50-150400.5.43.1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (noarch) * python3-bind-9.16.50-150400.5.43.1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (aarch64 ppc64le s390x x86_64) * bind-utils-debuginfo-9.16.50-150400.5.43.1 * bind-debugsource-9.16.50-150400.5.43.1 * bind-debuginfo-9.16.50-150400.5.43.1 * bind-utils-9.16.50-150400.5.43.1 * bind-9.16.50-150400.5.43.1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (noarch) * python3-bind-9.16.50-150400.5.43.1 * bind-doc-9.16.50-150400.5.43.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64) * bind-utils-debuginfo-9.16.50-150400.5.43.1 * bind-debugsource-9.16.50-150400.5.43.1 * bind-debuginfo-9.16.50-150400.5.43.1 * bind-utils-9.16.50-150400.5.43.1 * bind-9.16.50-150400.5.43.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (noarch) * python3-bind-9.16.50-150400.5.43.1 * bind-doc-9.16.50-150400.5.43.1 * SUSE Manager Proxy 4.3 (x86_64) * bind-utils-debuginfo-9.16.50-150400.5.43.1 * bind-debugsource-9.16.50-150400.5.43.1 * bind-debuginfo-9.16.50-150400.5.43.1 * bind-utils-9.16.50-150400.5.43.1 * bind-9.16.50-150400.5.43.1 * SUSE Manager Proxy 4.3 (noarch) * python3-bind-9.16.50-150400.5.43.1 * bind-doc-9.16.50-150400.5.43.1 * SUSE Manager Retail Branch Server 4.3 (x86_64) * bind-utils-debuginfo-9.16.50-150400.5.43.1 * bind-debugsource-9.16.50-150400.5.43.1 * bind-debuginfo-9.16.50-150400.5.43.1 * bind-utils-9.16.50-150400.5.43.1 * bind-9.16.50-150400.5.43.1 * SUSE Manager Retail Branch Server 4.3 (noarch) * python3-bind-9.16.50-150400.5.43.1 * bind-doc-9.16.50-150400.5.43.1 * SUSE Manager Server 4.3 (ppc64le s390x x86_64) * bind-utils-debuginfo-9.16.50-150400.5.43.1 * bind-debugsource-9.16.50-150400.5.43.1 * bind-debuginfo-9.16.50-150400.5.43.1 * bind-utils-9.16.50-150400.5.43.1 * bind-9.16.50-150400.5.43.1 * SUSE Manager Server 4.3 (noarch) * python3-bind-9.16.50-150400.5.43.1 * bind-doc-9.16.50-150400.5.43.1 ## References: * https://www.suse.com/security/cve/CVE-2024-1737.html * https://www.suse.com/security/cve/CVE-2024-1975.html * https://www.suse.com/security/cve/CVE-2024-4076.html * https://bugzilla.suse.com/show_bug.cgi?id=1228256 * https://bugzilla.suse.com/show_bug.cgi?id=1228257 * https://bugzilla.suse.com/show_bug.cgi?id=1228258 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Fri Aug 9 08:36:21 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Fri, 09 Aug 2024 08:36:21 -0000 Subject: SUSE-SU-2024:2863-1: important: Security update for bind Message-ID: <172319258186.12336.9318183334099098071@smelt2.prg2.suse.org> # Security update for bind Announcement ID: SUSE-SU-2024:2863-1 Rating: important References: * bsc#1228256 * bsc#1228257 * bsc#1228258 Cross-References: * CVE-2024-1737 * CVE-2024-1975 * CVE-2024-4076 CVSS scores: * CVE-2024-1737 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-1975 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-4076 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * openSUSE Leap 15.4 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Manager Proxy 4.3 * SUSE Manager Retail Branch Server 4.3 * SUSE Manager Server 4.3 An update that solves three vulnerabilities can now be installed. ## Description: This update for bind fixes the following issues: Update to 9.16.50: * Bug Fixes: * A regression in cache-cleaning code enabled memory use to grow significantly more quickly than before, until the configured max-cache-size limit was reached. This has been fixed. * Using rndc flush inadvertently caused cache cleaning to become less effective. This could ultimately lead to the configured max-cache-size limit being exceeded and has now been fixed. * The logic for cleaning up expired cached DNS records was tweaked to be more aggressive. This change helps with enforcing max-cache-ttl and max-ncache- ttl in a timely manner. * It was possible to trigger a use-after-free assertion when the overmem cache cleaning was initiated. This has been fixed. New Features: * Added RESOLVER.ARPA to the built in empty zones. * Security Fixes: * It is possible to craft excessively large numbers of resource record types for a given owner name, which has the effect of slowing down database processing. This has been addressed by adding a configurable limit to the number of records that can be stored per name and type in a cache or zone database. The default is 100, which can be tuned with the new max-types-per- name option. (CVE-2024-1737, bsc#1228256) * Validating DNS messages signed using the SIG(0) protocol (RFC 2931) could cause excessive CPU load, leading to a denial-of-service condition. Support for SIG(0) message validation was removed from this version of named. (CVE-2024-1975, bsc#1228257) * When looking up the NS records of parent zones as part of looking up DS records, it was possible for named to trigger an assertion failure if serve- stale was enabled. This has been fixed. (CVE-2024-4076, bsc#1228258) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch SUSE-2024-2863=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2024-2863=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2024-2863=1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 zypper in -t patch SUSE-SLE-Product-SLED-15-SP4-LTSS-2024-2863=1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2024-2863=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2024-2863=1 * SUSE Manager Proxy 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Proxy-4.3-2024-2863=1 * SUSE Manager Retail Branch Server 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Retail-Branch- Server-4.3-2024-2863=1 * SUSE Manager Server 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Server-4.3-2024-2863=1 ## Package List: * openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586) * bind-utils-9.16.50-150400.5.43.1 * bind-utils-debuginfo-9.16.50-150400.5.43.1 * bind-9.16.50-150400.5.43.1 * bind-debugsource-9.16.50-150400.5.43.1 * bind-debuginfo-9.16.50-150400.5.43.1 * openSUSE Leap 15.4 (noarch) * python3-bind-9.16.50-150400.5.43.1 * bind-doc-9.16.50-150400.5.43.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 x86_64) * bind-utils-9.16.50-150400.5.43.1 * bind-utils-debuginfo-9.16.50-150400.5.43.1 * bind-9.16.50-150400.5.43.1 * bind-debugsource-9.16.50-150400.5.43.1 * bind-debuginfo-9.16.50-150400.5.43.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (noarch) * python3-bind-9.16.50-150400.5.43.1 * bind-doc-9.16.50-150400.5.43.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 x86_64) * bind-utils-9.16.50-150400.5.43.1 * bind-utils-debuginfo-9.16.50-150400.5.43.1 * bind-9.16.50-150400.5.43.1 * bind-debugsource-9.16.50-150400.5.43.1 * bind-debuginfo-9.16.50-150400.5.43.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (noarch) * python3-bind-9.16.50-150400.5.43.1 * bind-doc-9.16.50-150400.5.43.1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (x86_64) * bind-utils-debuginfo-9.16.50-150400.5.43.1 * bind-utils-9.16.50-150400.5.43.1 * bind-debugsource-9.16.50-150400.5.43.1 * bind-debuginfo-9.16.50-150400.5.43.1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (noarch) * python3-bind-9.16.50-150400.5.43.1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (aarch64 ppc64le s390x x86_64) * bind-utils-9.16.50-150400.5.43.1 * bind-utils-debuginfo-9.16.50-150400.5.43.1 * bind-9.16.50-150400.5.43.1 * bind-debugsource-9.16.50-150400.5.43.1 * bind-debuginfo-9.16.50-150400.5.43.1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (noarch) * python3-bind-9.16.50-150400.5.43.1 * bind-doc-9.16.50-150400.5.43.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64) * bind-utils-9.16.50-150400.5.43.1 * bind-utils-debuginfo-9.16.50-150400.5.43.1 * bind-9.16.50-150400.5.43.1 * bind-debugsource-9.16.50-150400.5.43.1 * bind-debuginfo-9.16.50-150400.5.43.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (noarch) * python3-bind-9.16.50-150400.5.43.1 * bind-doc-9.16.50-150400.5.43.1 * SUSE Manager Proxy 4.3 (x86_64) * bind-utils-9.16.50-150400.5.43.1 * bind-utils-debuginfo-9.16.50-150400.5.43.1 * bind-9.16.50-150400.5.43.1 * bind-debugsource-9.16.50-150400.5.43.1 * bind-debuginfo-9.16.50-150400.5.43.1 * SUSE Manager Proxy 4.3 (noarch) * python3-bind-9.16.50-150400.5.43.1 * bind-doc-9.16.50-150400.5.43.1 * SUSE Manager Retail Branch Server 4.3 (x86_64) * bind-utils-9.16.50-150400.5.43.1 * bind-utils-debuginfo-9.16.50-150400.5.43.1 * bind-9.16.50-150400.5.43.1 * bind-debugsource-9.16.50-150400.5.43.1 * bind-debuginfo-9.16.50-150400.5.43.1 * SUSE Manager Retail Branch Server 4.3 (noarch) * python3-bind-9.16.50-150400.5.43.1 * bind-doc-9.16.50-150400.5.43.1 * SUSE Manager Server 4.3 (ppc64le s390x x86_64) * bind-utils-9.16.50-150400.5.43.1 * bind-utils-debuginfo-9.16.50-150400.5.43.1 * bind-9.16.50-150400.5.43.1 * bind-debugsource-9.16.50-150400.5.43.1 * bind-debuginfo-9.16.50-150400.5.43.1 * SUSE Manager Server 4.3 (noarch) * python3-bind-9.16.50-150400.5.43.1 * bind-doc-9.16.50-150400.5.43.1 ## References: * https://www.suse.com/security/cve/CVE-2024-1737.html * https://www.suse.com/security/cve/CVE-2024-1975.html * https://www.suse.com/security/cve/CVE-2024-4076.html * https://bugzilla.suse.com/show_bug.cgi?id=1228256 * https://bugzilla.suse.com/show_bug.cgi?id=1228257 * https://bugzilla.suse.com/show_bug.cgi?id=1228258 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Fri Aug 9 08:36:26 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Fri, 09 Aug 2024 08:36:26 -0000 Subject: SUSE-SU-2024:2862-1: important: Security update for bind Message-ID: <172319258622.12336.11560042265719062013@smelt2.prg2.suse.org> # Security update for bind Announcement ID: SUSE-SU-2024:2862-1 Rating: important References: * bsc#1228256 * bsc#1228257 * bsc#1228258 Cross-References: * CVE-2024-1737 * CVE-2024-1975 * CVE-2024-4076 CVSS scores: * CVE-2024-1737 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-1975 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-4076 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * Basesystem Module 15-SP5 * openSUSE Leap 15.5 * Server Applications Module 15-SP5 * SUSE Linux Enterprise Desktop 15 SP5 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 An update that solves three vulnerabilities can now be installed. ## Description: This update for bind fixes the following issues: Update to 9.16.50: * Bug Fixes: * A regression in cache-cleaning code enabled memory use to grow significantly more quickly than before, until the configured max-cache-size limit was reached. This has been fixed. * Using rndc flush inadvertently caused cache cleaning to become less effective. This could ultimately lead to the configured max-cache-size limit being exceeded and has now been fixed. * The logic for cleaning up expired cached DNS records was tweaked to be more aggressive. This change helps with enforcing max-cache-ttl and max-ncache- ttl in a timely manner. * It was possible to trigger a use-after-free assertion when the overmem cache cleaning was initiated. This has been fixed. New Features: * Added RESOLVER.ARPA to the built in empty zones. * Security Fixes: * It is possible to craft excessively large numbers of resource record types for a given owner name, which has the effect of slowing down database processing. This has been addressed by adding a configurable limit to the number of records that can be stored per name and type in a cache or zone database. The default is 100, which can be tuned with the new max-types-per- name option. (CVE-2024-1737, bsc#1228256) * Validating DNS messages signed using the SIG(0) protocol (RFC 2931) could cause excessive CPU load, leading to a denial-of-service condition. Support for SIG(0) message validation was removed from this version of named. (CVE-2024-1975, bsc#1228257) * When looking up the NS records of parent zones as part of looking up DS records, it was possible for named to trigger an assertion failure if serve- stale was enabled. This has been fixed. (CVE-2024-4076, bsc#1228258) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.5 zypper in -t patch SUSE-2024-2862=1 openSUSE-SLE-15.5-2024-2862=1 * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2024-2862=1 * Basesystem Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP5-2024-2862=1 * Server Applications Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Server-Applications-15-SP5-2024-2862=1 ## Package List: * openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64 i586) * bind-debuginfo-9.16.50-150500.8.21.1 * bind-debugsource-9.16.50-150500.8.21.1 * bind-utils-9.16.50-150500.8.21.1 * bind-9.16.50-150500.8.21.1 * bind-utils-debuginfo-9.16.50-150500.8.21.1 * openSUSE Leap 15.5 (noarch) * bind-doc-9.16.50-150500.8.21.1 * python3-bind-9.16.50-150500.8.21.1 * SUSE Linux Enterprise Micro 5.5 (aarch64 ppc64le s390x x86_64) * bind-utils-9.16.50-150500.8.21.1 * bind-utils-debuginfo-9.16.50-150500.8.21.1 * SUSE Linux Enterprise Micro 5.5 (noarch) * python3-bind-9.16.50-150500.8.21.1 * SUSE Linux Enterprise Micro 5.5 (x86_64) * bind-debugsource-9.16.50-150500.8.21.1 * bind-debuginfo-9.16.50-150500.8.21.1 * Basesystem Module 15-SP5 (aarch64 ppc64le s390x x86_64) * bind-debugsource-9.16.50-150500.8.21.1 * bind-utils-9.16.50-150500.8.21.1 * bind-utils-debuginfo-9.16.50-150500.8.21.1 * bind-debuginfo-9.16.50-150500.8.21.1 * Basesystem Module 15-SP5 (noarch) * python3-bind-9.16.50-150500.8.21.1 * Server Applications Module 15-SP5 (aarch64 ppc64le s390x x86_64) * bind-debugsource-9.16.50-150500.8.21.1 * bind-9.16.50-150500.8.21.1 * bind-debuginfo-9.16.50-150500.8.21.1 * Server Applications Module 15-SP5 (noarch) * bind-doc-9.16.50-150500.8.21.1 ## References: * https://www.suse.com/security/cve/CVE-2024-1737.html * https://www.suse.com/security/cve/CVE-2024-1975.html * https://www.suse.com/security/cve/CVE-2024-4076.html * https://bugzilla.suse.com/show_bug.cgi?id=1228256 * https://bugzilla.suse.com/show_bug.cgi?id=1228257 * https://bugzilla.suse.com/show_bug.cgi?id=1228258 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Fri Aug 9 08:36:28 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Fri, 09 Aug 2024 08:36:28 -0000 Subject: SUSE-SU-2024:2861-1: important: Security update for python-Django Message-ID: <172319258852.12336.10473715227691502463@smelt2.prg2.suse.org> # Security update for python-Django Announcement ID: SUSE-SU-2024:2861-1 Rating: important References: * bsc#1228630 Cross-References: * CVE-2024-41990 CVSS scores: * CVE-2024-41990 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-41990 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * openSUSE Leap 15.5 An update that solves one vulnerability can now be installed. ## Description: This update for python-Django fixes the following issues: * Fixed code in CVE-2024-41990 patch ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.5 zypper in -t patch openSUSE-SLE-15.5-2024-2861=1 ## Package List: * openSUSE Leap 15.5 (noarch) * python3-Django-2.0.7-150000.1.30.1 ## References: * https://www.suse.com/security/cve/CVE-2024-41990.html * https://bugzilla.suse.com/show_bug.cgi?id=1228630 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Fri Aug 9 08:36:32 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Fri, 09 Aug 2024 08:36:32 -0000 Subject: SUSE-SU-2024:2860-1: important: Security update for python3-Twisted Message-ID: <172319259242.12336.13202566093235787344@smelt2.prg2.suse.org> # Security update for python3-Twisted Announcement ID: SUSE-SU-2024:2860-1 Rating: important References: * bsc#1228549 * bsc#1228552 Cross-References: * CVE-2024-41671 * CVE-2024-41810 CVSS scores: * CVE-2024-41671 ( SUSE ): 8.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:L/VA:L/SC:N/SI:N/SA:N * CVE-2024-41671 ( SUSE ): 8.6 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L * CVE-2024-41810 ( SUSE ): 5.1 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N * CVE-2024-41810 ( SUSE ): 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Affected Products: * openSUSE Leap 15.4 * openSUSE Leap 15.5 * Server Applications Module 15-SP5 * Server Applications Module 15-SP6 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Manager Proxy 4.3 * SUSE Manager Retail Branch Server 4.3 * SUSE Manager Server 4.3 An update that solves two vulnerabilities can now be installed. ## Description: This update for python3-Twisted fixes the following issues: * CVE-2024-41671: Fixed HTTP pipelined requests processed out of order in twisted.web (bsc#1228549) * CVE-2024-41810: Fixed reflected XSS via HTML Injection in Redirect Response (bsc#1228552) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch SUSE-2024-2860=1 * openSUSE Leap 15.5 zypper in -t patch openSUSE-SLE-15.5-2024-2860=1 * Server Applications Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Server-Applications-15-SP5-2024-2860=1 * Server Applications Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Server-Applications-15-SP6-2024-2860=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2024-2860=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2024-2860=1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2024-2860=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2024-2860=1 * SUSE Manager Proxy 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Proxy-4.3-2024-2860=1 * SUSE Manager Retail Branch Server 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Retail-Branch- Server-4.3-2024-2860=1 * SUSE Manager Server 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Server-4.3-2024-2860=1 ## Package List: * openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586) * python-Twisted-doc-22.2.0-150400.21.1 * python3-Twisted-22.2.0-150400.21.1 * openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64) * python3-Twisted-22.2.0-150400.21.1 * Server Applications Module 15-SP5 (aarch64 ppc64le s390x x86_64) * python3-Twisted-22.2.0-150400.21.1 * Server Applications Module 15-SP6 (aarch64 ppc64le s390x x86_64) * python3-Twisted-22.2.0-150400.21.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 x86_64) * python3-Twisted-22.2.0-150400.21.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 x86_64) * python3-Twisted-22.2.0-150400.21.1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (aarch64 ppc64le s390x x86_64) * python3-Twisted-22.2.0-150400.21.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64) * python3-Twisted-22.2.0-150400.21.1 * SUSE Manager Proxy 4.3 (x86_64) * python3-Twisted-22.2.0-150400.21.1 * SUSE Manager Retail Branch Server 4.3 (x86_64) * python3-Twisted-22.2.0-150400.21.1 * SUSE Manager Server 4.3 (ppc64le s390x x86_64) * python3-Twisted-22.2.0-150400.21.1 ## References: * https://www.suse.com/security/cve/CVE-2024-41671.html * https://www.suse.com/security/cve/CVE-2024-41810.html * https://bugzilla.suse.com/show_bug.cgi?id=1228549 * https://bugzilla.suse.com/show_bug.cgi?id=1228552 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Fri Aug 9 16:30:08 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Fri, 09 Aug 2024 16:30:08 -0000 Subject: SUSE-SU-2024:2869-1: important: Security update for ca-certificates-mozilla Message-ID: <172322100897.5589.4293870083697270230@smelt2.prg2.suse.org> # Security update for ca-certificates-mozilla Announcement ID: SUSE-SU-2024:2869-1 Rating: important References: * bsc#1220356 * bsc#1227525 Affected Products: * Basesystem Module 15-SP5 * Basesystem Module 15-SP6 * Development Tools Module 15-SP5 * Development Tools Module 15-SP6 * openSUSE Leap 15.5 * openSUSE Leap 15.6 * openSUSE Leap Micro 5.5 * SUSE Enterprise Storage 7.1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 * SUSE Linux Enterprise Desktop 15 SP5 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise High Performance Computing 15 SP2 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 * SUSE Linux Enterprise High Performance Computing 15 SP3 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise Micro 5.1 * SUSE Linux Enterprise Micro 5.2 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Micro for Rancher 5.2 * SUSE Linux Enterprise Micro for Rancher 5.3 * SUSE Linux Enterprise Micro for Rancher 5.4 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Server 15 SP2 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 * SUSE Linux Enterprise Server 15 SP3 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Manager Proxy 4.3 * SUSE Manager Retail Branch Server 4.3 * SUSE Manager Server 4.3 An update that has two security fixes can now be installed. ## Description: This update for ca-certificates-mozilla fixes the following issues: * Updated to 2.68 state of Mozilla SSL root CAs (bsc#1227525) * Added: FIRMAPROFESIONAL CA ROOT-A WEB * Distrust: GLOBALTRUST 2020 * Updated to 2.66 state of Mozilla SSL root CAs (bsc#1220356) Added: * CommScope Public Trust ECC Root-01 * CommScope Public Trust ECC Root-02 * CommScope Public Trust RSA Root-01 * CommScope Public Trust RSA Root-02 * D-Trust SBR Root CA 1 2022 * D-Trust SBR Root CA 2 2022 * Telekom Security SMIME ECC Root 2021 * Telekom Security SMIME RSA Root 2023 * Telekom Security TLS ECC Root 2020 * Telekom Security TLS RSA Root 2023 * TrustAsia Global Root CA G3 * TrustAsia Global Root CA G4 Removed: * Autoridad de Certificacion Firmaprofesional CIF A62634068 * Chambers of Commerce Root - 2008 * Global Chambersign Root - 2008 * Security Communication Root CA * Symantec Class 1 Public Primary Certification Authority - G6 * Symantec Class 2 Public Primary Certification Authority - G6 * TrustCor ECA-1 * TrustCor RootCert CA-1 * TrustCor RootCert CA-2 * VeriSign Class 1 Public Primary Certification Authority - G3 * VeriSign Class 2 Public Primary Certification Authority - G3 ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap Micro 5.5 zypper in -t patch openSUSE-Leap-Micro-5.5-2024-2869=1 * openSUSE Leap 15.5 zypper in -t patch openSUSE-SLE-15.5-2024-2869=1 * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2024-2869=1 * SUSE Linux Enterprise Micro for Rancher 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2024-2869=1 * SUSE Linux Enterprise Micro 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2024-2869=1 * SUSE Linux Enterprise Micro for Rancher 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2024-2869=1 * SUSE Linux Enterprise Micro 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2024-2869=1 * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2024-2869=1 * Basesystem Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP5-2024-2869=1 * Basesystem Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP6-2024-2869=1 * Development Tools Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Development-Tools-15-SP5-2024-2869=1 * Development Tools Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Development-Tools-15-SP6-2024-2869=1 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 zypper in -t patch SUSE-SLE-Product-HPC-15-SP2-LTSS-2024-2869=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 zypper in -t patch SUSE-SLE-Product-HPC-15-SP3-LTSS-2024-2869=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2024-2869=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2024-2869=1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 zypper in -t patch SUSE-SLE-Product-SLED-15-SP4-LTSS-2024-2869=1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 zypper in -t patch SUSE-SLE-Product-SLES-15-SP2-LTSS-2024-2869=1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 zypper in -t patch SUSE-SLE-Product-SLES-15-SP3-LTSS-2024-2869=1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2024-2869=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP2-2024-2869=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP3-2024-2869=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2024-2869=1 * SUSE Manager Proxy 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Proxy-4.3-2024-2869=1 * SUSE Manager Retail Branch Server 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Retail-Branch- Server-4.3-2024-2869=1 * SUSE Manager Server 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Server-4.3-2024-2869=1 * SUSE Enterprise Storage 7.1 zypper in -t patch SUSE-Storage-7.1-2024-2869=1 * SUSE Linux Enterprise Micro 5.1 zypper in -t patch SUSE-SUSE-MicroOS-5.1-2024-2869=1 * SUSE Linux Enterprise Micro 5.2 zypper in -t patch SUSE-SUSE-MicroOS-5.2-2024-2869=1 * SUSE Linux Enterprise Micro for Rancher 5.2 zypper in -t patch SUSE-SUSE-MicroOS-5.2-2024-2869=1 ## Package List: * openSUSE Leap Micro 5.5 (noarch) * ca-certificates-mozilla-2.68-150200.33.1 * openSUSE Leap 15.5 (noarch) * ca-certificates-mozilla-prebuilt-2.68-150200.33.1 * ca-certificates-mozilla-2.68-150200.33.1 * openSUSE Leap 15.6 (noarch) * ca-certificates-mozilla-prebuilt-2.68-150200.33.1 * ca-certificates-mozilla-2.68-150200.33.1 * SUSE Linux Enterprise Micro for Rancher 5.3 (noarch) * ca-certificates-mozilla-2.68-150200.33.1 * SUSE Linux Enterprise Micro 5.3 (noarch) * ca-certificates-mozilla-2.68-150200.33.1 * SUSE Linux Enterprise Micro for Rancher 5.4 (noarch) * ca-certificates-mozilla-2.68-150200.33.1 * SUSE Linux Enterprise Micro 5.4 (noarch) * ca-certificates-mozilla-2.68-150200.33.1 * SUSE Linux Enterprise Micro 5.5 (noarch) * ca-certificates-mozilla-2.68-150200.33.1 * Basesystem Module 15-SP5 (noarch) * ca-certificates-mozilla-2.68-150200.33.1 * Basesystem Module 15-SP6 (noarch) * ca-certificates-mozilla-2.68-150200.33.1 * Development Tools Module 15-SP5 (noarch) * ca-certificates-mozilla-prebuilt-2.68-150200.33.1 * Development Tools Module 15-SP6 (noarch) * ca-certificates-mozilla-prebuilt-2.68-150200.33.1 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 (noarch) * ca-certificates-mozilla-prebuilt-2.68-150200.33.1 * ca-certificates-mozilla-2.68-150200.33.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (noarch) * ca-certificates-mozilla-prebuilt-2.68-150200.33.1 * ca-certificates-mozilla-2.68-150200.33.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (noarch) * ca-certificates-mozilla-prebuilt-2.68-150200.33.1 * ca-certificates-mozilla-2.68-150200.33.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (noarch) * ca-certificates-mozilla-prebuilt-2.68-150200.33.1 * ca-certificates-mozilla-2.68-150200.33.1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (noarch) * ca-certificates-mozilla-prebuilt-2.68-150200.33.1 * ca-certificates-mozilla-2.68-150200.33.1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (noarch) * ca-certificates-mozilla-prebuilt-2.68-150200.33.1 * ca-certificates-mozilla-2.68-150200.33.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (noarch) * ca-certificates-mozilla-prebuilt-2.68-150200.33.1 * ca-certificates-mozilla-2.68-150200.33.1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (noarch) * ca-certificates-mozilla-prebuilt-2.68-150200.33.1 * ca-certificates-mozilla-2.68-150200.33.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 (noarch) * ca-certificates-mozilla-prebuilt-2.68-150200.33.1 * ca-certificates-mozilla-2.68-150200.33.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (noarch) * ca-certificates-mozilla-prebuilt-2.68-150200.33.1 * ca-certificates-mozilla-2.68-150200.33.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (noarch) * ca-certificates-mozilla-prebuilt-2.68-150200.33.1 * ca-certificates-mozilla-2.68-150200.33.1 * SUSE Manager Proxy 4.3 (noarch) * ca-certificates-mozilla-2.68-150200.33.1 * SUSE Manager Retail Branch Server 4.3 (noarch) * ca-certificates-mozilla-2.68-150200.33.1 * SUSE Manager Server 4.3 (noarch) * ca-certificates-mozilla-2.68-150200.33.1 * SUSE Enterprise Storage 7.1 (noarch) * ca-certificates-mozilla-prebuilt-2.68-150200.33.1 * ca-certificates-mozilla-2.68-150200.33.1 * SUSE Linux Enterprise Micro 5.1 (noarch) * ca-certificates-mozilla-2.68-150200.33.1 * SUSE Linux Enterprise Micro 5.2 (noarch) * ca-certificates-mozilla-prebuilt-2.68-150200.33.1 * ca-certificates-mozilla-2.68-150200.33.1 * SUSE Linux Enterprise Micro for Rancher 5.2 (noarch) * ca-certificates-mozilla-prebuilt-2.68-150200.33.1 * ca-certificates-mozilla-2.68-150200.33.1 ## References: * https://bugzilla.suse.com/show_bug.cgi?id=1220356 * https://bugzilla.suse.com/show_bug.cgi?id=1227525 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Fri Aug 9 16:30:12 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Fri, 09 Aug 2024 16:30:12 -0000 Subject: SUSE-SU-2024:2868-1: important: Security update for bind Message-ID: <172322101275.5589.1282152635283112069@smelt2.prg2.suse.org> # Security update for bind Announcement ID: SUSE-SU-2024:2868-1 Rating: important References: * bsc#1228256 * bsc#1228257 Cross-References: * CVE-2024-1737 * CVE-2024-1975 CVSS scores: * CVE-2024-1737 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-1975 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 * SUSE Linux Enterprise Software Development Kit 12 SP5 An update that solves two vulnerabilities can now be installed. ## Description: This update for bind fixes the following issues: Security issues fixed: * It is possible to craft excessively large numbers of resource record types for a given owner name, which has the effect of slowing down database processing. This has been addressed by only allowing a maximum of 100 records to be stored per name and type in a cache or zone database. (CVE-2024-1737, bsc#1228256) * Validating DNS messages signed using the SIG(0) protocol (RFC 2931) could cause excessive CPU load, leading to a denial-of-service condition. Support for SIG(0) message validation was removed from this version of named. (CVE-2024-1975, bsc#1228257) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Software Development Kit 12 SP5 zypper in -t patch SUSE-SLE-SDK-12-SP5-2024-2868=1 * SUSE Linux Enterprise High Performance Computing 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-2868=1 * SUSE Linux Enterprise Server 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-2868=1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-2868=1 ## Package List: * SUSE Linux Enterprise Software Development Kit 12 SP5 (aarch64 ppc64le s390x x86_64) * bind-devel-9.11.22-3.57.1 * bind-debugsource-9.11.22-3.57.1 * bind-debuginfo-9.11.22-3.57.1 * SUSE Linux Enterprise High Performance Computing 12 SP5 (aarch64 x86_64) * libirs161-debuginfo-9.11.22-3.57.1 * libisc1107-debuginfo-9.11.22-3.57.1 * libisccc161-9.11.22-3.57.1 * libisc1107-9.11.22-3.57.1 * libisccc161-debuginfo-9.11.22-3.57.1 * libbind9-161-debuginfo-9.11.22-3.57.1 * libisccfg163-debuginfo-9.11.22-3.57.1 * liblwres161-9.11.22-3.57.1 * bind-utils-debuginfo-9.11.22-3.57.1 * libdns1110-debuginfo-9.11.22-3.57.1 * libisccfg163-9.11.22-3.57.1 * bind-debuginfo-9.11.22-3.57.1 * libbind9-161-9.11.22-3.57.1 * bind-9.11.22-3.57.1 * bind-utils-9.11.22-3.57.1 * liblwres161-debuginfo-9.11.22-3.57.1 * bind-debugsource-9.11.22-3.57.1 * bind-chrootenv-9.11.22-3.57.1 * libdns1110-9.11.22-3.57.1 * libirs161-9.11.22-3.57.1 * SUSE Linux Enterprise High Performance Computing 12 SP5 (noarch) * bind-doc-9.11.22-3.57.1 * python-bind-9.11.22-3.57.1 * SUSE Linux Enterprise High Performance Computing 12 SP5 (x86_64) * libisc1107-32bit-9.11.22-3.57.1 * libisc1107-debuginfo-32bit-9.11.22-3.57.1 * SUSE Linux Enterprise Server 12 SP5 (aarch64 ppc64le s390x x86_64) * libirs161-debuginfo-9.11.22-3.57.1 * libisc1107-debuginfo-9.11.22-3.57.1 * libisccc161-9.11.22-3.57.1 * libisc1107-9.11.22-3.57.1 * libisccc161-debuginfo-9.11.22-3.57.1 * libbind9-161-debuginfo-9.11.22-3.57.1 * libisccfg163-debuginfo-9.11.22-3.57.1 * liblwres161-9.11.22-3.57.1 * bind-utils-debuginfo-9.11.22-3.57.1 * libdns1110-debuginfo-9.11.22-3.57.1 * libisccfg163-9.11.22-3.57.1 * bind-debuginfo-9.11.22-3.57.1 * libbind9-161-9.11.22-3.57.1 * bind-9.11.22-3.57.1 * bind-utils-9.11.22-3.57.1 * liblwres161-debuginfo-9.11.22-3.57.1 * bind-debugsource-9.11.22-3.57.1 * bind-chrootenv-9.11.22-3.57.1 * libdns1110-9.11.22-3.57.1 * libirs161-9.11.22-3.57.1 * SUSE Linux Enterprise Server 12 SP5 (noarch) * bind-doc-9.11.22-3.57.1 * python-bind-9.11.22-3.57.1 * SUSE Linux Enterprise Server 12 SP5 (s390x x86_64) * libisc1107-32bit-9.11.22-3.57.1 * libisc1107-debuginfo-32bit-9.11.22-3.57.1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 (ppc64le x86_64) * libirs161-debuginfo-9.11.22-3.57.1 * libisc1107-debuginfo-9.11.22-3.57.1 * liblwres161-debuginfo-9.11.22-3.57.1 * libisc1107-9.11.22-3.57.1 * libisccc161-debuginfo-9.11.22-3.57.1 * libbind9-161-debuginfo-9.11.22-3.57.1 * libisccfg163-debuginfo-9.11.22-3.57.1 * liblwres161-9.11.22-3.57.1 * bind-utils-debuginfo-9.11.22-3.57.1 * libdns1110-debuginfo-9.11.22-3.57.1 * bind-debuginfo-9.11.22-3.57.1 * libisccc161-9.11.22-3.57.1 * libbind9-161-9.11.22-3.57.1 * bind-9.11.22-3.57.1 * bind-utils-9.11.22-3.57.1 * libisccfg163-9.11.22-3.57.1 * bind-debugsource-9.11.22-3.57.1 * bind-chrootenv-9.11.22-3.57.1 * libdns1110-9.11.22-3.57.1 * libirs161-9.11.22-3.57.1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 (noarch) * bind-doc-9.11.22-3.57.1 * python-bind-9.11.22-3.57.1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 (x86_64) * libisc1107-32bit-9.11.22-3.57.1 * libisc1107-debuginfo-32bit-9.11.22-3.57.1 ## References: * https://www.suse.com/security/cve/CVE-2024-1737.html * https://www.suse.com/security/cve/CVE-2024-1975.html * https://bugzilla.suse.com/show_bug.cgi?id=1228256 * https://bugzilla.suse.com/show_bug.cgi?id=1228257 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 12 16:30:07 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 12 Aug 2024 16:30:07 -0000 Subject: SUSE-SU-2024:2883-1: important: Security update for libqt5-qtbase Message-ID: <172348020721.12363.15722056502518874028@smelt2.prg2.suse.org> # Security update for libqt5-qtbase Announcement ID: SUSE-SU-2024:2883-1 Rating: important References: * bsc#1222120 * bsc#1227426 Cross-References: * CVE-2023-45935 * CVE-2024-39936 CVSS scores: * CVE-2023-45935 ( SUSE ): 4.2 CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:N/I:N/A:H * CVE-2024-39936 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2024-39936 ( NVD ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N Affected Products: * Basesystem Module 15-SP5 * Desktop Applications Module 15-SP5 * openSUSE Leap 15.5 * SUSE Linux Enterprise Desktop 15 SP5 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 An update that solves two vulnerabilities can now be installed. ## Description: This update for libqt5-qtbase fixes the following issues: * CVE-2023-45935: Fixed NULL pointer dereference in QXcbConnection::initializeAllAtoms() due to anomalous behavior from the X server (bsc#1222120) * CVE-2024-39936: Fixed information leakage due to process HTTP2 communication before encrypted() can be responded to (bsc#1227426) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.5 zypper in -t patch SUSE-2024-2883=1 openSUSE-SLE-15.5-2024-2883=1 * Basesystem Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP5-2024-2883=1 * Desktop Applications Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Desktop-Applications-15-SP5-2024-2883=1 ## Package List: * openSUSE Leap 15.5 (x86_64) * libQt5Test5-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Xml5-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Concurrent5-32bit-5.15.8+kde185-150500.4.22.1 * libQt5DBus-devel-32bit-5.15.8+kde185-150500.4.22.1 * libQt5PrintSupport5-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-mysql-32bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-postgresql-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Concurrent5-32bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Gui5-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Network-devel-32bit-5.15.8+kde185-150500.4.22.1 * libQt5PlatformSupport-devel-static-32bit-5.15.8+kde185-150500.4.22.1 * libQt5OpenGLExtensions-devel-static-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Sql-devel-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-mysql-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Core5-32bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-examples-32bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Core-devel-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Core5-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Gui-devel-32bit-5.15.8+kde185-150500.4.22.1 * libQt5OpenGL5-32bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-unixODBC-32bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Xml-devel-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Bootstrap-devel-static-32bit-5.15.8+kde185-150500.4.22.1 * libQt5DBus-devel-32bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Test-devel-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Gui5-32bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5DBus5-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-postgresql-32bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-examples-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Widgets5-32bit-5.15.8+kde185-150500.4.22.1 * libQt5PrintSupport-devel-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-32bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Network5-32bit-5.15.8+kde185-150500.4.22.1 * libQt5OpenGL-devel-32bit-5.15.8+kde185-150500.4.22.1 * libQt5PrintSupport5-32bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Concurrent-devel-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Test5-32bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-sqlite-32bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Network5-32bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5DBus5-32bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Widgets-devel-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Xml5-32bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-sqlite-32bit-5.15.8+kde185-150500.4.22.1 * libQt5OpenGL5-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Widgets5-32bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-unixODBC-32bit-5.15.8+kde185-150500.4.22.1 * openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64 i586) * libQt5Sql-devel-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-platformtheme-xdgdesktopportal-5.15.8+kde185-150500.4.22.1 * libQt5Concurrent5-5.15.8+kde185-150500.4.22.1 * libQt5PrintSupport-devel-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5PlatformSupport-devel-static-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-common-devel-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Concurrent-devel-5.15.8+kde185-150500.4.22.1 * libQt5DBus-devel-5.15.8+kde185-150500.4.22.1 * libQt5DBus-devel-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5KmsSupport-devel-static-5.15.8+kde185-150500.4.22.1 * libQt5Bootstrap-devel-static-5.15.8+kde185-150500.4.22.1 * libQt5Xml5-debuginfo-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-platformtheme-gtk3-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5OpenGL5-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-unixODBC-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-mysql-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5OpenGL-devel-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-examples-5.15.8+kde185-150500.4.22.1 * libQt5Widgets-devel-5.15.8+kde185-150500.4.22.1 * libQt5DBus5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Gui-devel-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-platformtheme-xdgdesktopportal-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Core5-debuginfo-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-debugsource-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-postgresql-5.15.8+kde185-150500.4.22.1 * libQt5OpenGL5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Concurrent5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Gui5-5.15.8+kde185-150500.4.22.1 * libQt5Gui5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5PlatformHeaders-devel-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-examples-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Test-devel-5.15.8+kde185-150500.4.22.1 * libQt5Network5-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-postgresql-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-unixODBC-5.15.8+kde185-150500.4.22.1 * libQt5DBus5-5.15.8+kde185-150500.4.22.1 * libQt5Xml-devel-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-common-devel-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-platformtheme-gtk3-5.15.8+kde185-150500.4.22.1 * libQt5Network5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Core5-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-mysql-5.15.8+kde185-150500.4.22.1 * libQt5Widgets5-5.15.8+kde185-150500.4.22.1 * libQt5Test5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-sqlite-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-5.15.8+kde185-150500.4.22.1 * libQt5Test5-5.15.8+kde185-150500.4.22.1 * libQt5Widgets5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5PrintSupport5-5.15.8+kde185-150500.4.22.1 * libQt5Xml5-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-sqlite-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Core-devel-5.15.8+kde185-150500.4.22.1 * libQt5PrintSupport5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5OpenGLExtensions-devel-static-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-devel-5.15.8+kde185-150500.4.22.1 * libQt5Network-devel-5.15.8+kde185-150500.4.22.1 * openSUSE Leap 15.5 (noarch) * libQt5Core-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5Gui-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5Network-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5PlatformSupport-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5KmsSupport-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5Test-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5DBus-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5Sql-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5OpenGL-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5PrintSupport-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5Widgets-private-headers-devel-5.15.8+kde185-150500.4.22.1 * openSUSE Leap 15.5 (aarch64_ilp32) * libQt5Sql5-mysql-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Bootstrap-devel-static-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Core5-64bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5OpenGL5-64bit-5.15.8+kde185-150500.4.22.1 * libQt5OpenGL5-64bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Xml5-64bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-unixODBC-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Sql-devel-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-sqlite-64bit-5.15.8+kde185-150500.4.22.1 * libQt5DBus5-64bit-5.15.8+kde185-150500.4.22.1 * libQt5OpenGLExtensions-devel-static-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Core-devel-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-postgresql-64bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5OpenGL-devel-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Concurrent-devel-64bit-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-examples-64bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5PrintSupport5-64bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-mysql-64bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-examples-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Widgets5-64bit-5.15.8+kde185-150500.4.22.1 * libQt5DBus-devel-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-sqlite-64bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Network5-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Test5-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Test5-64bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Gui5-64bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Xml-devel-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-postgresql-64bit-5.15.8+kde185-150500.4.22.1 * libQt5PrintSupport5-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Network5-64bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Test-devel-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Xml5-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Widgets-devel-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Concurrent5-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Concurrent5-64bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Network-devel-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Gui-devel-64bit-5.15.8+kde185-150500.4.22.1 * libQt5PlatformSupport-devel-static-64bit-5.15.8+kde185-150500.4.22.1 * libQt5PrintSupport-devel-64bit-5.15.8+kde185-150500.4.22.1 * libQt5DBus-devel-64bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Gui5-64bit-5.15.8+kde185-150500.4.22.1 * libQt5DBus5-64bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Core5-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-64bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-unixODBC-64bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Widgets5-64bit-debuginfo-5.15.8+kde185-150500.4.22.1 * Basesystem Module 15-SP5 (aarch64 ppc64le s390x x86_64) * libQt5Sql-devel-5.15.8+kde185-150500.4.22.1 * libQt5Concurrent5-5.15.8+kde185-150500.4.22.1 * libQt5PrintSupport-devel-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5PlatformSupport-devel-static-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-common-devel-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Concurrent-devel-5.15.8+kde185-150500.4.22.1 * libQt5DBus-devel-5.15.8+kde185-150500.4.22.1 * libQt5DBus-devel-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5KmsSupport-devel-static-5.15.8+kde185-150500.4.22.1 * libQt5Xml5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5OpenGL5-5.15.8+kde185-150500.4.22.1 * libQt5OpenGL-devel-5.15.8+kde185-150500.4.22.1 * libQt5Widgets-devel-5.15.8+kde185-150500.4.22.1 * libQt5DBus5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Gui-devel-5.15.8+kde185-150500.4.22.1 * libQt5Core5-debuginfo-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-debugsource-5.15.8+kde185-150500.4.22.1 * libQt5OpenGL5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Concurrent5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5PlatformHeaders-devel-5.15.8+kde185-150500.4.22.1 * libQt5Gui5-5.15.8+kde185-150500.4.22.1 * libQt5Gui5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Test-devel-5.15.8+kde185-150500.4.22.1 * libQt5Network5-5.15.8+kde185-150500.4.22.1 * libQt5DBus5-5.15.8+kde185-150500.4.22.1 * libQt5Xml-devel-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-common-devel-5.15.8+kde185-150500.4.22.1 * libQt5Network5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Core5-5.15.8+kde185-150500.4.22.1 * libQt5Widgets5-5.15.8+kde185-150500.4.22.1 * libQt5Test5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-sqlite-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-5.15.8+kde185-150500.4.22.1 * libQt5Test5-5.15.8+kde185-150500.4.22.1 * libQt5Widgets5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5PrintSupport5-5.15.8+kde185-150500.4.22.1 * libQt5Xml5-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-sqlite-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Core-devel-5.15.8+kde185-150500.4.22.1 * libQt5PrintSupport5-debuginfo-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-devel-5.15.8+kde185-150500.4.22.1 * libQt5Network-devel-5.15.8+kde185-150500.4.22.1 * Basesystem Module 15-SP5 (noarch) * libQt5Core-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5Gui-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5Network-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5PlatformSupport-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5KmsSupport-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5Test-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5DBus-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5Sql-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5OpenGL-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5PrintSupport-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5Widgets-private-headers-devel-5.15.8+kde185-150500.4.22.1 * Desktop Applications Module 15-SP5 (aarch64 ppc64le s390x x86_64) * libQt5Sql5-postgresql-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-unixODBC-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-platformtheme-gtk3-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-debugsource-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-postgresql-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-mysql-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-platformtheme-gtk3-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5OpenGLExtensions-devel-static-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-unixODBC-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-mysql-debuginfo-5.15.8+kde185-150500.4.22.1 ## References: * https://www.suse.com/security/cve/CVE-2023-45935.html * https://www.suse.com/security/cve/CVE-2024-39936.html * https://bugzilla.suse.com/show_bug.cgi?id=1222120 * https://bugzilla.suse.com/show_bug.cgi?id=1227426 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 12 16:33:08 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 12 Aug 2024 16:33:08 -0000 Subject: SUSE-SU-2024:2883-1: important: Security update for libqt5-qtbase Message-ID: <172348038857.12638.7162399331706460429@smelt2.prg2.suse.org> # Security update for libqt5-qtbase Announcement ID: SUSE-SU-2024:2883-1 Rating: important References: * bsc#1222120 * bsc#1227426 Cross-References: * CVE-2023-45935 * CVE-2024-39936 CVSS scores: * CVE-2023-45935 ( SUSE ): 4.2 CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:N/I:N/A:H * CVE-2024-39936 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2024-39936 ( NVD ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N Affected Products: * Basesystem Module 15-SP5 * Desktop Applications Module 15-SP5 * openSUSE Leap 15.5 * SUSE Linux Enterprise Desktop 15 SP5 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 An update that solves two vulnerabilities can now be installed. ## Description: This update for libqt5-qtbase fixes the following issues: * CVE-2023-45935: Fixed NULL pointer dereference in QXcbConnection::initializeAllAtoms() due to anomalous behavior from the X server (bsc#1222120) * CVE-2024-39936: Fixed information leakage due to process HTTP2 communication before encrypted() can be responded to (bsc#1227426) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.5 zypper in -t patch SUSE-2024-2883=1 openSUSE-SLE-15.5-2024-2883=1 * Basesystem Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP5-2024-2883=1 * Desktop Applications Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Desktop-Applications-15-SP5-2024-2883=1 ## Package List: * openSUSE Leap 15.5 (x86_64) * libQt5OpenGL5-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-unixODBC-32bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5PrintSupport5-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Gui5-32bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5OpenGLExtensions-devel-static-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Bootstrap-devel-static-32bit-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-examples-32bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Gui-devel-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-unixODBC-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Widgets5-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Network5-32bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5OpenGL-devel-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Concurrent-devel-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-32bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Network5-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Core-devel-32bit-5.15.8+kde185-150500.4.22.1 * libQt5DBus-devel-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Xml5-32bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Test-devel-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-postgresql-32bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Test5-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-postgresql-32bit-5.15.8+kde185-150500.4.22.1 * libQt5DBus5-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Concurrent5-32bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Widgets-devel-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Sql-devel-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Core5-32bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5PlatformSupport-devel-static-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-mysql-32bit-5.15.8+kde185-150500.4.22.1 * libQt5DBus5-32bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5OpenGL5-32bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Core5-32bit-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-examples-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Xml-devel-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Network-devel-32bit-5.15.8+kde185-150500.4.22.1 * libQt5DBus-devel-32bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-sqlite-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Xml5-32bit-5.15.8+kde185-150500.4.22.1 * libQt5PrintSupport5-32bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Gui5-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Test5-32bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-mysql-32bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Concurrent5-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-sqlite-32bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5PrintSupport-devel-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Widgets5-32bit-debuginfo-5.15.8+kde185-150500.4.22.1 * openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64 i586) * libQt5Gui5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5OpenGLExtensions-devel-static-5.15.8+kde185-150500.4.22.1 * libQt5Core-devel-5.15.8+kde185-150500.4.22.1 * libQt5PrintSupport5-5.15.8+kde185-150500.4.22.1 * libQt5Bootstrap-devel-static-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-mysql-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-devel-5.15.8+kde185-150500.4.22.1 * libQt5Gui-devel-5.15.8+kde185-150500.4.22.1 * libQt5Network-devel-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-postgresql-5.15.8+kde185-150500.4.22.1 * libQt5PlatformSupport-devel-static-5.15.8+kde185-150500.4.22.1 * libQt5OpenGL-devel-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-debugsource-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-common-devel-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5DBus5-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-examples-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Gui5-5.15.8+kde185-150500.4.22.1 * libQt5Widgets5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Core5-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-unixODBC-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-common-devel-5.15.8+kde185-150500.4.22.1 * libQt5Network5-debuginfo-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-platformtheme-xdgdesktopportal-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Network5-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-platformtheme-gtk3-5.15.8+kde185-150500.4.22.1 * libQt5Test5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5OpenGL5-5.15.8+kde185-150500.4.22.1 * libQt5PrintSupport-devel-5.15.8+kde185-150500.4.22.1 * libQt5Xml5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Test-devel-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-5.15.8+kde185-150500.4.22.1 * libQt5Widgets-devel-5.15.8+kde185-150500.4.22.1 * libQt5PlatformHeaders-devel-5.15.8+kde185-150500.4.22.1 * libQt5Xml5-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-platformtheme-gtk3-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Concurrent-devel-5.15.8+kde185-150500.4.22.1 * libQt5PrintSupport5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5DBus-devel-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-sqlite-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-postgresql-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-unixODBC-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Sql-devel-5.15.8+kde185-150500.4.22.1 * libQt5Xml-devel-5.15.8+kde185-150500.4.22.1 * libQt5OpenGL5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Core5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5DBus-devel-5.15.8+kde185-150500.4.22.1 * libQt5Test5-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-sqlite-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-examples-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5KmsSupport-devel-static-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-mysql-debuginfo-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-platformtheme-xdgdesktopportal-5.15.8+kde185-150500.4.22.1 * libQt5Widgets5-5.15.8+kde185-150500.4.22.1 * libQt5DBus5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Concurrent5-5.15.8+kde185-150500.4.22.1 * libQt5Concurrent5-debuginfo-5.15.8+kde185-150500.4.22.1 * openSUSE Leap 15.5 (noarch) * libQt5Gui-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5KmsSupport-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5Core-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5Network-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5PrintSupport-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5OpenGL-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5DBus-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5PlatformSupport-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5Widgets-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5Test-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5Sql-private-headers-devel-5.15.8+kde185-150500.4.22.1 * openSUSE Leap 15.5 (aarch64_ilp32) * libQt5DBus5-64bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Gui5-64bit-5.15.8+kde185-150500.4.22.1 * libQt5OpenGLExtensions-devel-static-64bit-5.15.8+kde185-150500.4.22.1 * libQt5PrintSupport5-64bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Core-devel-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Concurrent5-64bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Widgets-devel-64bit-5.15.8+kde185-150500.4.22.1 * libQt5PlatformSupport-devel-static-64bit-5.15.8+kde185-150500.4.22.1 * libQt5PrintSupport5-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-sqlite-64bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Concurrent-devel-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-mysql-64bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-postgresql-64bit-5.15.8+kde185-150500.4.22.1 * libQt5DBus-devel-64bit-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-examples-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Widgets5-64bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5OpenGL5-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Network-devel-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Widgets5-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Bootstrap-devel-static-64bit-5.15.8+kde185-150500.4.22.1 * libQt5DBus5-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-unixODBC-64bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Gui5-64bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-sqlite-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Core5-64bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Gui-devel-64bit-5.15.8+kde185-150500.4.22.1 * libQt5OpenGL5-64bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Test5-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-unixODBC-64bit-5.15.8+kde185-150500.4.22.1 * libQt5DBus-devel-64bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Network5-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Test5-64bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-postgresql-64bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Xml-devel-64bit-5.15.8+kde185-150500.4.22.1 * libQt5PrintSupport-devel-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Sql-devel-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Xml5-64bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Test-devel-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Network5-64bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Xml5-64bit-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-examples-64bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-64bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-mysql-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Concurrent5-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Core5-64bit-5.15.8+kde185-150500.4.22.1 * libQt5OpenGL-devel-64bit-5.15.8+kde185-150500.4.22.1 * Basesystem Module 15-SP5 (aarch64 ppc64le s390x x86_64) * libQt5Gui5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Core-devel-5.15.8+kde185-150500.4.22.1 * libQt5PrintSupport5-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-devel-5.15.8+kde185-150500.4.22.1 * libQt5Gui-devel-5.15.8+kde185-150500.4.22.1 * libQt5Network-devel-5.15.8+kde185-150500.4.22.1 * libQt5PlatformSupport-devel-static-5.15.8+kde185-150500.4.22.1 * libQt5OpenGL-devel-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-debugsource-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-common-devel-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5DBus5-5.15.8+kde185-150500.4.22.1 * libQt5Gui5-5.15.8+kde185-150500.4.22.1 * libQt5Widgets5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Core5-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-common-devel-5.15.8+kde185-150500.4.22.1 * libQt5Network5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Network5-5.15.8+kde185-150500.4.22.1 * libQt5Test5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5OpenGL5-5.15.8+kde185-150500.4.22.1 * libQt5PrintSupport-devel-5.15.8+kde185-150500.4.22.1 * libQt5Xml5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Test-devel-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-5.15.8+kde185-150500.4.22.1 * libQt5Widgets-devel-5.15.8+kde185-150500.4.22.1 * libQt5PlatformHeaders-devel-5.15.8+kde185-150500.4.22.1 * libQt5Xml5-5.15.8+kde185-150500.4.22.1 * libQt5Concurrent-devel-5.15.8+kde185-150500.4.22.1 * libQt5PrintSupport5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5DBus-devel-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-sqlite-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Sql-devel-5.15.8+kde185-150500.4.22.1 * libQt5Xml-devel-5.15.8+kde185-150500.4.22.1 * libQt5OpenGL5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Core5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5DBus-devel-5.15.8+kde185-150500.4.22.1 * libQt5Test5-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-sqlite-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5KmsSupport-devel-static-5.15.8+kde185-150500.4.22.1 * libQt5Widgets5-5.15.8+kde185-150500.4.22.1 * libQt5DBus5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Concurrent5-5.15.8+kde185-150500.4.22.1 * libQt5Concurrent5-debuginfo-5.15.8+kde185-150500.4.22.1 * Basesystem Module 15-SP5 (noarch) * libQt5Gui-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5KmsSupport-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5Core-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5Network-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5PrintSupport-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5OpenGL-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5DBus-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5PlatformSupport-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5Widgets-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5Test-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5Sql-private-headers-devel-5.15.8+kde185-150500.4.22.1 * Desktop Applications Module 15-SP5 (aarch64 ppc64le s390x x86_64) * libQt5OpenGLExtensions-devel-static-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-mysql-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-unixODBC-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-postgresql-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-debugsource-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-mysql-debuginfo-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-platformtheme-gtk3-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-postgresql-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-unixODBC-debuginfo-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-platformtheme-gtk3-5.15.8+kde185-150500.4.22.1 ## References: * https://www.suse.com/security/cve/CVE-2023-45935.html * https://www.suse.com/security/cve/CVE-2024-39936.html * https://bugzilla.suse.com/show_bug.cgi?id=1222120 * https://bugzilla.suse.com/show_bug.cgi?id=1227426 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 12 16:36:11 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 12 Aug 2024 16:36:11 -0000 Subject: SUSE-SU-2024:2883-1: important: Security update for libqt5-qtbase Message-ID: <172348057170.12638.10388536395088909236@smelt2.prg2.suse.org> # Security update for libqt5-qtbase Announcement ID: SUSE-SU-2024:2883-1 Rating: important References: * bsc#1222120 * bsc#1227426 Cross-References: * CVE-2023-45935 * CVE-2024-39936 CVSS scores: * CVE-2023-45935 ( SUSE ): 4.2 CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:N/I:N/A:H * CVE-2024-39936 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2024-39936 ( NVD ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N Affected Products: * Basesystem Module 15-SP5 * Desktop Applications Module 15-SP5 * openSUSE Leap 15.5 * SUSE Linux Enterprise Desktop 15 SP5 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 An update that solves two vulnerabilities can now be installed. ## Description: This update for libqt5-qtbase fixes the following issues: * CVE-2023-45935: Fixed NULL pointer dereference in QXcbConnection::initializeAllAtoms() due to anomalous behavior from the X server (bsc#1222120) * CVE-2024-39936: Fixed information leakage due to process HTTP2 communication before encrypted() can be responded to (bsc#1227426) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.5 zypper in -t patch SUSE-2024-2883=1 openSUSE-SLE-15.5-2024-2883=1 * Basesystem Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP5-2024-2883=1 * Desktop Applications Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Desktop-Applications-15-SP5-2024-2883=1 ## Package List: * openSUSE Leap 15.5 (x86_64) * libQt5OpenGL5-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-unixODBC-32bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5PrintSupport5-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Gui5-32bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5OpenGLExtensions-devel-static-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Bootstrap-devel-static-32bit-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-examples-32bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Gui-devel-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-unixODBC-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Widgets5-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Network5-32bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5OpenGL-devel-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Concurrent-devel-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-32bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Network5-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Core-devel-32bit-5.15.8+kde185-150500.4.22.1 * libQt5DBus-devel-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Xml5-32bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Test-devel-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-postgresql-32bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Test5-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-postgresql-32bit-5.15.8+kde185-150500.4.22.1 * libQt5DBus5-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Concurrent5-32bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Widgets-devel-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Sql-devel-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Core5-32bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5PlatformSupport-devel-static-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-mysql-32bit-5.15.8+kde185-150500.4.22.1 * libQt5DBus5-32bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5OpenGL5-32bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Core5-32bit-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-examples-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Xml-devel-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Network-devel-32bit-5.15.8+kde185-150500.4.22.1 * libQt5DBus-devel-32bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-sqlite-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Xml5-32bit-5.15.8+kde185-150500.4.22.1 * libQt5PrintSupport5-32bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Gui5-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Test5-32bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-mysql-32bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Concurrent5-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-sqlite-32bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5PrintSupport-devel-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Widgets5-32bit-debuginfo-5.15.8+kde185-150500.4.22.1 * openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64 i586) * libQt5Gui5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5OpenGLExtensions-devel-static-5.15.8+kde185-150500.4.22.1 * libQt5Core-devel-5.15.8+kde185-150500.4.22.1 * libQt5PrintSupport5-5.15.8+kde185-150500.4.22.1 * libQt5Bootstrap-devel-static-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-mysql-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-devel-5.15.8+kde185-150500.4.22.1 * libQt5Gui-devel-5.15.8+kde185-150500.4.22.1 * libQt5Network-devel-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-postgresql-5.15.8+kde185-150500.4.22.1 * libQt5PlatformSupport-devel-static-5.15.8+kde185-150500.4.22.1 * libQt5OpenGL-devel-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-debugsource-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-common-devel-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5DBus5-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-examples-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Gui5-5.15.8+kde185-150500.4.22.1 * libQt5Widgets5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Core5-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-unixODBC-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-common-devel-5.15.8+kde185-150500.4.22.1 * libQt5Network5-debuginfo-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-platformtheme-xdgdesktopportal-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Network5-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-platformtheme-gtk3-5.15.8+kde185-150500.4.22.1 * libQt5Test5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5OpenGL5-5.15.8+kde185-150500.4.22.1 * libQt5PrintSupport-devel-5.15.8+kde185-150500.4.22.1 * libQt5Xml5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Test-devel-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-5.15.8+kde185-150500.4.22.1 * libQt5Widgets-devel-5.15.8+kde185-150500.4.22.1 * libQt5PlatformHeaders-devel-5.15.8+kde185-150500.4.22.1 * libQt5Xml5-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-platformtheme-gtk3-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Concurrent-devel-5.15.8+kde185-150500.4.22.1 * libQt5PrintSupport5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5DBus-devel-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-sqlite-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-postgresql-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-unixODBC-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Sql-devel-5.15.8+kde185-150500.4.22.1 * libQt5Xml-devel-5.15.8+kde185-150500.4.22.1 * libQt5OpenGL5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Core5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5DBus-devel-5.15.8+kde185-150500.4.22.1 * libQt5Test5-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-sqlite-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-examples-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5KmsSupport-devel-static-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-mysql-debuginfo-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-platformtheme-xdgdesktopportal-5.15.8+kde185-150500.4.22.1 * libQt5Widgets5-5.15.8+kde185-150500.4.22.1 * libQt5DBus5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Concurrent5-5.15.8+kde185-150500.4.22.1 * libQt5Concurrent5-debuginfo-5.15.8+kde185-150500.4.22.1 * openSUSE Leap 15.5 (noarch) * libQt5Gui-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5KmsSupport-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5Core-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5Network-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5PrintSupport-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5OpenGL-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5DBus-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5PlatformSupport-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5Widgets-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5Test-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5Sql-private-headers-devel-5.15.8+kde185-150500.4.22.1 * openSUSE Leap 15.5 (aarch64_ilp32) * libQt5DBus5-64bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Gui5-64bit-5.15.8+kde185-150500.4.22.1 * libQt5OpenGLExtensions-devel-static-64bit-5.15.8+kde185-150500.4.22.1 * libQt5PrintSupport5-64bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Core-devel-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Concurrent5-64bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Widgets-devel-64bit-5.15.8+kde185-150500.4.22.1 * libQt5PlatformSupport-devel-static-64bit-5.15.8+kde185-150500.4.22.1 * libQt5PrintSupport5-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-sqlite-64bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Concurrent-devel-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-mysql-64bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-postgresql-64bit-5.15.8+kde185-150500.4.22.1 * libQt5DBus-devel-64bit-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-examples-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Widgets5-64bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5OpenGL5-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Network-devel-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Widgets5-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Bootstrap-devel-static-64bit-5.15.8+kde185-150500.4.22.1 * libQt5DBus5-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-unixODBC-64bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Gui5-64bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-sqlite-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Core5-64bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Gui-devel-64bit-5.15.8+kde185-150500.4.22.1 * libQt5OpenGL5-64bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Test5-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-unixODBC-64bit-5.15.8+kde185-150500.4.22.1 * libQt5DBus-devel-64bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Network5-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Test5-64bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-postgresql-64bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Xml-devel-64bit-5.15.8+kde185-150500.4.22.1 * libQt5PrintSupport-devel-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Sql-devel-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Xml5-64bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Test-devel-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Network5-64bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Xml5-64bit-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-examples-64bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-64bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-mysql-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Concurrent5-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Core5-64bit-5.15.8+kde185-150500.4.22.1 * libQt5OpenGL-devel-64bit-5.15.8+kde185-150500.4.22.1 * Basesystem Module 15-SP5 (aarch64 ppc64le s390x x86_64) * libQt5Gui5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Core-devel-5.15.8+kde185-150500.4.22.1 * libQt5PrintSupport5-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-devel-5.15.8+kde185-150500.4.22.1 * libQt5Gui-devel-5.15.8+kde185-150500.4.22.1 * libQt5Network-devel-5.15.8+kde185-150500.4.22.1 * libQt5PlatformSupport-devel-static-5.15.8+kde185-150500.4.22.1 * libQt5OpenGL-devel-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-debugsource-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-common-devel-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5DBus5-5.15.8+kde185-150500.4.22.1 * libQt5Gui5-5.15.8+kde185-150500.4.22.1 * libQt5Widgets5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Core5-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-common-devel-5.15.8+kde185-150500.4.22.1 * libQt5Network5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Network5-5.15.8+kde185-150500.4.22.1 * libQt5Test5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5OpenGL5-5.15.8+kde185-150500.4.22.1 * libQt5PrintSupport-devel-5.15.8+kde185-150500.4.22.1 * libQt5Xml5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Test-devel-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-5.15.8+kde185-150500.4.22.1 * libQt5Widgets-devel-5.15.8+kde185-150500.4.22.1 * libQt5PlatformHeaders-devel-5.15.8+kde185-150500.4.22.1 * libQt5Xml5-5.15.8+kde185-150500.4.22.1 * libQt5Concurrent-devel-5.15.8+kde185-150500.4.22.1 * libQt5PrintSupport5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5DBus-devel-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-sqlite-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Sql-devel-5.15.8+kde185-150500.4.22.1 * libQt5Xml-devel-5.15.8+kde185-150500.4.22.1 * libQt5OpenGL5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Core5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5DBus-devel-5.15.8+kde185-150500.4.22.1 * libQt5Test5-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-sqlite-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5KmsSupport-devel-static-5.15.8+kde185-150500.4.22.1 * libQt5Widgets5-5.15.8+kde185-150500.4.22.1 * libQt5DBus5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Concurrent5-5.15.8+kde185-150500.4.22.1 * libQt5Concurrent5-debuginfo-5.15.8+kde185-150500.4.22.1 * Basesystem Module 15-SP5 (noarch) * libQt5Gui-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5KmsSupport-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5Core-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5Network-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5PrintSupport-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5OpenGL-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5DBus-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5PlatformSupport-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5Widgets-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5Test-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5Sql-private-headers-devel-5.15.8+kde185-150500.4.22.1 * Desktop Applications Module 15-SP5 (aarch64 ppc64le s390x x86_64) * libQt5OpenGLExtensions-devel-static-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-mysql-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-unixODBC-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-postgresql-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-debugsource-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-mysql-debuginfo-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-platformtheme-gtk3-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-postgresql-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-unixODBC-debuginfo-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-platformtheme-gtk3-5.15.8+kde185-150500.4.22.1 ## References: * https://www.suse.com/security/cve/CVE-2023-45935.html * https://www.suse.com/security/cve/CVE-2024-39936.html * https://bugzilla.suse.com/show_bug.cgi?id=1222120 * https://bugzilla.suse.com/show_bug.cgi?id=1227426 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 12 16:39:14 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 12 Aug 2024 16:39:14 -0000 Subject: SUSE-SU-2024:2883-1: important: Security update for libqt5-qtbase Message-ID: <172348075415.12638.17761699725663988969@smelt2.prg2.suse.org> # Security update for libqt5-qtbase Announcement ID: SUSE-SU-2024:2883-1 Rating: important References: * bsc#1222120 * bsc#1227426 Cross-References: * CVE-2023-45935 * CVE-2024-39936 CVSS scores: * CVE-2023-45935 ( SUSE ): 4.2 CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:N/I:N/A:H * CVE-2024-39936 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2024-39936 ( NVD ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N Affected Products: * Basesystem Module 15-SP5 * Desktop Applications Module 15-SP5 * openSUSE Leap 15.5 * SUSE Linux Enterprise Desktop 15 SP5 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 An update that solves two vulnerabilities can now be installed. ## Description: This update for libqt5-qtbase fixes the following issues: * CVE-2023-45935: Fixed NULL pointer dereference in QXcbConnection::initializeAllAtoms() due to anomalous behavior from the X server (bsc#1222120) * CVE-2024-39936: Fixed information leakage due to process HTTP2 communication before encrypted() can be responded to (bsc#1227426) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.5 zypper in -t patch SUSE-2024-2883=1 openSUSE-SLE-15.5-2024-2883=1 * Basesystem Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP5-2024-2883=1 * Desktop Applications Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Desktop-Applications-15-SP5-2024-2883=1 ## Package List: * openSUSE Leap 15.5 (x86_64) * libQt5OpenGL5-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-unixODBC-32bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5PrintSupport5-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Gui5-32bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5OpenGLExtensions-devel-static-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Bootstrap-devel-static-32bit-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-examples-32bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Gui-devel-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-unixODBC-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Widgets5-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Network5-32bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5OpenGL-devel-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Concurrent-devel-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-32bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Network5-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Core-devel-32bit-5.15.8+kde185-150500.4.22.1 * libQt5DBus-devel-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Xml5-32bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Test-devel-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-postgresql-32bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Test5-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-postgresql-32bit-5.15.8+kde185-150500.4.22.1 * libQt5DBus5-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Concurrent5-32bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Widgets-devel-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Sql-devel-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Core5-32bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5PlatformSupport-devel-static-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-mysql-32bit-5.15.8+kde185-150500.4.22.1 * libQt5DBus5-32bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5OpenGL5-32bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Core5-32bit-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-examples-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Xml-devel-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Network-devel-32bit-5.15.8+kde185-150500.4.22.1 * libQt5DBus-devel-32bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-sqlite-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Xml5-32bit-5.15.8+kde185-150500.4.22.1 * libQt5PrintSupport5-32bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Gui5-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Test5-32bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-mysql-32bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Concurrent5-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-sqlite-32bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5PrintSupport-devel-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Widgets5-32bit-debuginfo-5.15.8+kde185-150500.4.22.1 * openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64 i586) * libQt5Gui5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5OpenGLExtensions-devel-static-5.15.8+kde185-150500.4.22.1 * libQt5Core-devel-5.15.8+kde185-150500.4.22.1 * libQt5PrintSupport5-5.15.8+kde185-150500.4.22.1 * libQt5Bootstrap-devel-static-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-mysql-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-devel-5.15.8+kde185-150500.4.22.1 * libQt5Gui-devel-5.15.8+kde185-150500.4.22.1 * libQt5Network-devel-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-postgresql-5.15.8+kde185-150500.4.22.1 * libQt5PlatformSupport-devel-static-5.15.8+kde185-150500.4.22.1 * libQt5OpenGL-devel-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-debugsource-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-common-devel-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5DBus5-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-examples-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Gui5-5.15.8+kde185-150500.4.22.1 * libQt5Widgets5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Core5-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-unixODBC-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-common-devel-5.15.8+kde185-150500.4.22.1 * libQt5Network5-debuginfo-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-platformtheme-xdgdesktopportal-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Network5-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-platformtheme-gtk3-5.15.8+kde185-150500.4.22.1 * libQt5Test5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5OpenGL5-5.15.8+kde185-150500.4.22.1 * libQt5PrintSupport-devel-5.15.8+kde185-150500.4.22.1 * libQt5Xml5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Test-devel-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-5.15.8+kde185-150500.4.22.1 * libQt5Widgets-devel-5.15.8+kde185-150500.4.22.1 * libQt5PlatformHeaders-devel-5.15.8+kde185-150500.4.22.1 * libQt5Xml5-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-platformtheme-gtk3-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Concurrent-devel-5.15.8+kde185-150500.4.22.1 * libQt5PrintSupport5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5DBus-devel-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-sqlite-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-postgresql-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-unixODBC-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Sql-devel-5.15.8+kde185-150500.4.22.1 * libQt5Xml-devel-5.15.8+kde185-150500.4.22.1 * libQt5OpenGL5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Core5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5DBus-devel-5.15.8+kde185-150500.4.22.1 * libQt5Test5-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-sqlite-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-examples-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5KmsSupport-devel-static-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-mysql-debuginfo-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-platformtheme-xdgdesktopportal-5.15.8+kde185-150500.4.22.1 * libQt5Widgets5-5.15.8+kde185-150500.4.22.1 * libQt5DBus5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Concurrent5-5.15.8+kde185-150500.4.22.1 * libQt5Concurrent5-debuginfo-5.15.8+kde185-150500.4.22.1 * openSUSE Leap 15.5 (noarch) * libQt5Gui-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5KmsSupport-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5Core-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5Network-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5PrintSupport-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5OpenGL-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5DBus-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5PlatformSupport-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5Widgets-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5Test-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5Sql-private-headers-devel-5.15.8+kde185-150500.4.22.1 * openSUSE Leap 15.5 (aarch64_ilp32) * libQt5DBus5-64bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Gui5-64bit-5.15.8+kde185-150500.4.22.1 * libQt5OpenGLExtensions-devel-static-64bit-5.15.8+kde185-150500.4.22.1 * libQt5PrintSupport5-64bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Core-devel-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Concurrent5-64bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Widgets-devel-64bit-5.15.8+kde185-150500.4.22.1 * libQt5PlatformSupport-devel-static-64bit-5.15.8+kde185-150500.4.22.1 * libQt5PrintSupport5-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-sqlite-64bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Concurrent-devel-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-mysql-64bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-postgresql-64bit-5.15.8+kde185-150500.4.22.1 * libQt5DBus-devel-64bit-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-examples-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Widgets5-64bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5OpenGL5-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Network-devel-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Widgets5-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Bootstrap-devel-static-64bit-5.15.8+kde185-150500.4.22.1 * libQt5DBus5-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-unixODBC-64bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Gui5-64bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-sqlite-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Core5-64bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Gui-devel-64bit-5.15.8+kde185-150500.4.22.1 * libQt5OpenGL5-64bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Test5-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-unixODBC-64bit-5.15.8+kde185-150500.4.22.1 * libQt5DBus-devel-64bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Network5-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Test5-64bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-postgresql-64bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Xml-devel-64bit-5.15.8+kde185-150500.4.22.1 * libQt5PrintSupport-devel-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Sql-devel-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Xml5-64bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Test-devel-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Network5-64bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Xml5-64bit-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-examples-64bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-64bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-mysql-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Concurrent5-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Core5-64bit-5.15.8+kde185-150500.4.22.1 * libQt5OpenGL-devel-64bit-5.15.8+kde185-150500.4.22.1 * Basesystem Module 15-SP5 (aarch64 ppc64le s390x x86_64) * libQt5Gui5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Core-devel-5.15.8+kde185-150500.4.22.1 * libQt5PrintSupport5-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-devel-5.15.8+kde185-150500.4.22.1 * libQt5Gui-devel-5.15.8+kde185-150500.4.22.1 * libQt5Network-devel-5.15.8+kde185-150500.4.22.1 * libQt5PlatformSupport-devel-static-5.15.8+kde185-150500.4.22.1 * libQt5OpenGL-devel-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-debugsource-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-common-devel-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5DBus5-5.15.8+kde185-150500.4.22.1 * libQt5Gui5-5.15.8+kde185-150500.4.22.1 * libQt5Widgets5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Core5-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-common-devel-5.15.8+kde185-150500.4.22.1 * libQt5Network5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Network5-5.15.8+kde185-150500.4.22.1 * libQt5Test5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5OpenGL5-5.15.8+kde185-150500.4.22.1 * libQt5PrintSupport-devel-5.15.8+kde185-150500.4.22.1 * libQt5Xml5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Test-devel-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-5.15.8+kde185-150500.4.22.1 * libQt5Widgets-devel-5.15.8+kde185-150500.4.22.1 * libQt5PlatformHeaders-devel-5.15.8+kde185-150500.4.22.1 * libQt5Xml5-5.15.8+kde185-150500.4.22.1 * libQt5Concurrent-devel-5.15.8+kde185-150500.4.22.1 * libQt5PrintSupport5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5DBus-devel-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-sqlite-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Sql-devel-5.15.8+kde185-150500.4.22.1 * libQt5Xml-devel-5.15.8+kde185-150500.4.22.1 * libQt5OpenGL5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Core5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5DBus-devel-5.15.8+kde185-150500.4.22.1 * libQt5Test5-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-sqlite-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5KmsSupport-devel-static-5.15.8+kde185-150500.4.22.1 * libQt5Widgets5-5.15.8+kde185-150500.4.22.1 * libQt5DBus5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Concurrent5-5.15.8+kde185-150500.4.22.1 * libQt5Concurrent5-debuginfo-5.15.8+kde185-150500.4.22.1 * Basesystem Module 15-SP5 (noarch) * libQt5Gui-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5KmsSupport-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5Core-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5Network-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5PrintSupport-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5OpenGL-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5DBus-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5PlatformSupport-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5Widgets-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5Test-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5Sql-private-headers-devel-5.15.8+kde185-150500.4.22.1 * Desktop Applications Module 15-SP5 (aarch64 ppc64le s390x x86_64) * libQt5OpenGLExtensions-devel-static-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-mysql-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-unixODBC-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-postgresql-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-debugsource-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-mysql-debuginfo-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-platformtheme-gtk3-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-postgresql-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-unixODBC-debuginfo-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-platformtheme-gtk3-5.15.8+kde185-150500.4.22.1 ## References: * https://www.suse.com/security/cve/CVE-2023-45935.html * https://www.suse.com/security/cve/CVE-2024-39936.html * https://bugzilla.suse.com/show_bug.cgi?id=1222120 * https://bugzilla.suse.com/show_bug.cgi?id=1227426 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 12 20:30:01 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 12 Aug 2024 20:30:01 -0000 Subject: SUSE-SU-2024:2883-1: important: Security update for libqt5-qtbase Message-ID: <172349460122.12336.9742505824817489232@smelt2.prg2.suse.org> # Security update for libqt5-qtbase Announcement ID: SUSE-SU-2024:2883-1 Rating: important References: * bsc#1222120 * bsc#1227426 Cross-References: * CVE-2023-45935 * CVE-2024-39936 CVSS scores: * CVE-2023-45935 ( SUSE ): 4.2 CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:N/I:N/A:H * CVE-2024-39936 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2024-39936 ( NVD ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N Affected Products: * Basesystem Module 15-SP5 * Desktop Applications Module 15-SP5 * openSUSE Leap 15.5 * SUSE Linux Enterprise Desktop 15 SP5 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 An update that solves two vulnerabilities can now be installed. ## Description: This update for libqt5-qtbase fixes the following issues: * CVE-2023-45935: Fixed NULL pointer dereference in QXcbConnection::initializeAllAtoms() due to anomalous behavior from the X server (bsc#1222120) * CVE-2024-39936: Fixed information leakage due to process HTTP2 communication before encrypted() can be responded to (bsc#1227426) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.5 zypper in -t patch SUSE-2024-2883=1 openSUSE-SLE-15.5-2024-2883=1 * Basesystem Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP5-2024-2883=1 * Desktop Applications Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Desktop-Applications-15-SP5-2024-2883=1 ## Package List: * openSUSE Leap 15.5 (x86_64) * libQt5Test5-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Xml5-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Concurrent5-32bit-5.15.8+kde185-150500.4.22.1 * libQt5DBus-devel-32bit-5.15.8+kde185-150500.4.22.1 * libQt5PrintSupport5-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-mysql-32bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-postgresql-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Concurrent5-32bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Gui5-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Network-devel-32bit-5.15.8+kde185-150500.4.22.1 * libQt5PlatformSupport-devel-static-32bit-5.15.8+kde185-150500.4.22.1 * libQt5OpenGLExtensions-devel-static-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Sql-devel-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-mysql-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Core5-32bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-examples-32bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Core-devel-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Core5-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Gui-devel-32bit-5.15.8+kde185-150500.4.22.1 * libQt5OpenGL5-32bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-unixODBC-32bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Xml-devel-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Bootstrap-devel-static-32bit-5.15.8+kde185-150500.4.22.1 * libQt5DBus-devel-32bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Test-devel-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Gui5-32bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5DBus5-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-postgresql-32bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-examples-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Widgets5-32bit-5.15.8+kde185-150500.4.22.1 * libQt5PrintSupport-devel-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-32bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Network5-32bit-5.15.8+kde185-150500.4.22.1 * libQt5OpenGL-devel-32bit-5.15.8+kde185-150500.4.22.1 * libQt5PrintSupport5-32bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Concurrent-devel-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Test5-32bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-sqlite-32bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Network5-32bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5DBus5-32bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Widgets-devel-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Xml5-32bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-sqlite-32bit-5.15.8+kde185-150500.4.22.1 * libQt5OpenGL5-32bit-5.15.8+kde185-150500.4.22.1 * libQt5Widgets5-32bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-unixODBC-32bit-5.15.8+kde185-150500.4.22.1 * openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64 i586) * libQt5Sql-devel-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-platformtheme-xdgdesktopportal-5.15.8+kde185-150500.4.22.1 * libQt5Concurrent5-5.15.8+kde185-150500.4.22.1 * libQt5PrintSupport-devel-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5PlatformSupport-devel-static-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-common-devel-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Concurrent-devel-5.15.8+kde185-150500.4.22.1 * libQt5DBus-devel-5.15.8+kde185-150500.4.22.1 * libQt5DBus-devel-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5KmsSupport-devel-static-5.15.8+kde185-150500.4.22.1 * libQt5Bootstrap-devel-static-5.15.8+kde185-150500.4.22.1 * libQt5Xml5-debuginfo-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-platformtheme-gtk3-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5OpenGL5-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-unixODBC-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-mysql-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5OpenGL-devel-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-examples-5.15.8+kde185-150500.4.22.1 * libQt5Widgets-devel-5.15.8+kde185-150500.4.22.1 * libQt5DBus5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Gui-devel-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-platformtheme-xdgdesktopportal-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Core5-debuginfo-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-debugsource-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-postgresql-5.15.8+kde185-150500.4.22.1 * libQt5OpenGL5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Concurrent5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Gui5-5.15.8+kde185-150500.4.22.1 * libQt5Gui5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5PlatformHeaders-devel-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-examples-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Test-devel-5.15.8+kde185-150500.4.22.1 * libQt5Network5-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-postgresql-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-unixODBC-5.15.8+kde185-150500.4.22.1 * libQt5DBus5-5.15.8+kde185-150500.4.22.1 * libQt5Xml-devel-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-common-devel-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-platformtheme-gtk3-5.15.8+kde185-150500.4.22.1 * libQt5Network5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Core5-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-mysql-5.15.8+kde185-150500.4.22.1 * libQt5Widgets5-5.15.8+kde185-150500.4.22.1 * libQt5Test5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-sqlite-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-5.15.8+kde185-150500.4.22.1 * libQt5Test5-5.15.8+kde185-150500.4.22.1 * libQt5Widgets5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5PrintSupport5-5.15.8+kde185-150500.4.22.1 * libQt5Xml5-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-sqlite-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Core-devel-5.15.8+kde185-150500.4.22.1 * libQt5PrintSupport5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5OpenGLExtensions-devel-static-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-devel-5.15.8+kde185-150500.4.22.1 * libQt5Network-devel-5.15.8+kde185-150500.4.22.1 * openSUSE Leap 15.5 (noarch) * libQt5Core-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5Gui-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5Network-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5PlatformSupport-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5KmsSupport-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5Test-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5DBus-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5Sql-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5OpenGL-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5PrintSupport-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5Widgets-private-headers-devel-5.15.8+kde185-150500.4.22.1 * openSUSE Leap 15.5 (aarch64_ilp32) * libQt5Sql5-mysql-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Bootstrap-devel-static-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Core5-64bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5OpenGL5-64bit-5.15.8+kde185-150500.4.22.1 * libQt5OpenGL5-64bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Xml5-64bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-unixODBC-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Sql-devel-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-sqlite-64bit-5.15.8+kde185-150500.4.22.1 * libQt5DBus5-64bit-5.15.8+kde185-150500.4.22.1 * libQt5OpenGLExtensions-devel-static-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Core-devel-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-postgresql-64bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5OpenGL-devel-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Concurrent-devel-64bit-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-examples-64bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5PrintSupport5-64bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-mysql-64bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-examples-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Widgets5-64bit-5.15.8+kde185-150500.4.22.1 * libQt5DBus-devel-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-sqlite-64bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Network5-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Test5-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Test5-64bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Gui5-64bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Xml-devel-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-postgresql-64bit-5.15.8+kde185-150500.4.22.1 * libQt5PrintSupport5-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Network5-64bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Test-devel-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Xml5-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Widgets-devel-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Concurrent5-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Concurrent5-64bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Network-devel-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Gui-devel-64bit-5.15.8+kde185-150500.4.22.1 * libQt5PlatformSupport-devel-static-64bit-5.15.8+kde185-150500.4.22.1 * libQt5PrintSupport-devel-64bit-5.15.8+kde185-150500.4.22.1 * libQt5DBus-devel-64bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Gui5-64bit-5.15.8+kde185-150500.4.22.1 * libQt5DBus5-64bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Core5-64bit-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-64bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-unixODBC-64bit-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Widgets5-64bit-debuginfo-5.15.8+kde185-150500.4.22.1 * Basesystem Module 15-SP5 (aarch64 ppc64le s390x x86_64) * libQt5Sql-devel-5.15.8+kde185-150500.4.22.1 * libQt5Concurrent5-5.15.8+kde185-150500.4.22.1 * libQt5PrintSupport-devel-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5PlatformSupport-devel-static-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-common-devel-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Concurrent-devel-5.15.8+kde185-150500.4.22.1 * libQt5DBus-devel-5.15.8+kde185-150500.4.22.1 * libQt5DBus-devel-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5KmsSupport-devel-static-5.15.8+kde185-150500.4.22.1 * libQt5Xml5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5OpenGL5-5.15.8+kde185-150500.4.22.1 * libQt5OpenGL-devel-5.15.8+kde185-150500.4.22.1 * libQt5Widgets-devel-5.15.8+kde185-150500.4.22.1 * libQt5DBus5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Gui-devel-5.15.8+kde185-150500.4.22.1 * libQt5Core5-debuginfo-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-debugsource-5.15.8+kde185-150500.4.22.1 * libQt5OpenGL5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Concurrent5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5PlatformHeaders-devel-5.15.8+kde185-150500.4.22.1 * libQt5Gui5-5.15.8+kde185-150500.4.22.1 * libQt5Gui5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Test-devel-5.15.8+kde185-150500.4.22.1 * libQt5Network5-5.15.8+kde185-150500.4.22.1 * libQt5DBus5-5.15.8+kde185-150500.4.22.1 * libQt5Xml-devel-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-common-devel-5.15.8+kde185-150500.4.22.1 * libQt5Network5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Core5-5.15.8+kde185-150500.4.22.1 * libQt5Widgets5-5.15.8+kde185-150500.4.22.1 * libQt5Test5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-sqlite-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-5.15.8+kde185-150500.4.22.1 * libQt5Test5-5.15.8+kde185-150500.4.22.1 * libQt5Widgets5-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5PrintSupport5-5.15.8+kde185-150500.4.22.1 * libQt5Xml5-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-sqlite-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Core-devel-5.15.8+kde185-150500.4.22.1 * libQt5PrintSupport5-debuginfo-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-devel-5.15.8+kde185-150500.4.22.1 * libQt5Network-devel-5.15.8+kde185-150500.4.22.1 * Basesystem Module 15-SP5 (noarch) * libQt5Core-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5Gui-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5Network-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5PlatformSupport-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5KmsSupport-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5Test-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5DBus-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5Sql-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5OpenGL-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5PrintSupport-private-headers-devel-5.15.8+kde185-150500.4.22.1 * libQt5Widgets-private-headers-devel-5.15.8+kde185-150500.4.22.1 * Desktop Applications Module 15-SP5 (aarch64 ppc64le s390x x86_64) * libQt5Sql5-postgresql-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-unixODBC-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-platformtheme-gtk3-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-debugsource-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-postgresql-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-mysql-5.15.8+kde185-150500.4.22.1 * libqt5-qtbase-platformtheme-gtk3-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5OpenGLExtensions-devel-static-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-unixODBC-debuginfo-5.15.8+kde185-150500.4.22.1 * libQt5Sql5-mysql-debuginfo-5.15.8+kde185-150500.4.22.1 ## References: * https://www.suse.com/security/cve/CVE-2023-45935.html * https://www.suse.com/security/cve/CVE-2024-39936.html * https://bugzilla.suse.com/show_bug.cgi?id=1222120 * https://bugzilla.suse.com/show_bug.cgi?id=1227426 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 12 20:30:09 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 12 Aug 2024 20:30:09 -0000 Subject: SUSE-SU-2024:2882-1: important: Security update for libqt5-qtbase Message-ID: <172349460931.12336.1790438332150188674@smelt2.prg2.suse.org> # Security update for libqt5-qtbase Announcement ID: SUSE-SU-2024:2882-1 Rating: important References: * bsc#1222120 * bsc#1227426 Cross-References: * CVE-2023-45935 * CVE-2024-39936 CVSS scores: * CVE-2023-45935 ( SUSE ): 4.2 CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:N/I:N/A:H * CVE-2024-39936 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2024-39936 ( NVD ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N Affected Products: * Basesystem Module 15-SP6 * Desktop Applications Module 15-SP6 * openSUSE Leap 15.6 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 An update that solves two vulnerabilities can now be installed. ## Description: This update for libqt5-qtbase fixes the following issues: * CVE-2023-45935: Fixed NULL pointer dereference in QXcbConnection::initializeAllAtoms() due to anomalous behavior from the X server (bsc#1222120) * CVE-2024-39936: Fixed information leakage due to process HTTP2 communication before encrypted() can be responded to (bsc#1227426) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * Desktop Applications Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Desktop-Applications-15-SP6-2024-2882=1 * openSUSE Leap 15.6 zypper in -t patch SUSE-2024-2882=1 openSUSE-SLE-15.6-2024-2882=1 * Basesystem Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP6-2024-2882=1 ## Package List: * Desktop Applications Module 15-SP6 (aarch64 ppc64le s390x x86_64) * libQt5OpenGLExtensions-devel-static-5.15.12+kde151-150600.3.6.1 * libQt5Sql5-mysql-5.15.12+kde151-150600.3.6.1 * libQt5Sql5-unixODBC-debuginfo-5.15.12+kde151-150600.3.6.1 * libqt5-qtbase-platformtheme-gtk3-5.15.12+kde151-150600.3.6.1 * libQt5Sql5-mysql-debuginfo-5.15.12+kde151-150600.3.6.1 * libQt5Sql5-postgresql-debuginfo-5.15.12+kde151-150600.3.6.1 * libQt5Sql5-unixODBC-5.15.12+kde151-150600.3.6.1 * libqt5-qtbase-platformtheme-gtk3-debuginfo-5.15.12+kde151-150600.3.6.1 * libqt5-qtbase-debugsource-5.15.12+kde151-150600.3.6.1 * libQt5Sql5-postgresql-5.15.12+kde151-150600.3.6.1 * openSUSE Leap 15.6 (x86_64) * libQt5Core-devel-32bit-5.15.12+kde151-150600.3.6.1 * libQt5Sql5-32bit-debuginfo-5.15.12+kde151-150600.3.6.1 * libQt5Gui-devel-32bit-5.15.12+kde151-150600.3.6.1 * libQt5Gui5-32bit-debuginfo-5.15.12+kde151-150600.3.6.1 * libQt5Test-devel-32bit-5.15.12+kde151-150600.3.6.1 * libQt5PrintSupport5-32bit-5.15.12+kde151-150600.3.6.1 * libQt5Sql5-sqlite-32bit-debuginfo-5.15.12+kde151-150600.3.6.1 * libQt5Xml5-32bit-5.15.12+kde151-150600.3.6.1 * libQt5OpenGLExtensions-devel-static-32bit-5.15.12+kde151-150600.3.6.1 * libQt5Network5-32bit-5.15.12+kde151-150600.3.6.1 * libQt5Sql5-32bit-5.15.12+kde151-150600.3.6.1 * libQt5Sql-devel-32bit-5.15.12+kde151-150600.3.6.1 * libQt5Widgets5-32bit-debuginfo-5.15.12+kde151-150600.3.6.1 * libQt5Bootstrap-devel-static-32bit-5.15.12+kde151-150600.3.6.1 * libQt5DBus5-32bit-debuginfo-5.15.12+kde151-150600.3.6.1 * libQt5PrintSupport-devel-32bit-5.15.12+kde151-150600.3.6.1 * libQt5PlatformSupport-devel-static-32bit-5.15.12+kde151-150600.3.6.1 * libQt5PrintSupport5-32bit-debuginfo-5.15.12+kde151-150600.3.6.1 * libqt5-qtbase-examples-32bit-debuginfo-5.15.12+kde151-150600.3.6.1 * libQt5Sql5-mysql-32bit-debuginfo-5.15.12+kde151-150600.3.6.1 * libQt5Core5-32bit-debuginfo-5.15.12+kde151-150600.3.6.1 * libQt5Sql5-unixODBC-32bit-debuginfo-5.15.12+kde151-150600.3.6.1 * libQt5DBus5-32bit-5.15.12+kde151-150600.3.6.1 * libQt5Test5-32bit-5.15.12+kde151-150600.3.6.1 * libQt5Xml-devel-32bit-5.15.12+kde151-150600.3.6.1 * libQt5Widgets5-32bit-5.15.12+kde151-150600.3.6.1 * libQt5Core5-32bit-5.15.12+kde151-150600.3.6.1 * libQt5Sql5-sqlite-32bit-5.15.12+kde151-150600.3.6.1 * libQt5Test5-32bit-debuginfo-5.15.12+kde151-150600.3.6.1 * libQt5Sql5-mysql-32bit-5.15.12+kde151-150600.3.6.1 * libQt5OpenGL-devel-32bit-5.15.12+kde151-150600.3.6.1 * libQt5Sql5-unixODBC-32bit-5.15.12+kde151-150600.3.6.1 * libQt5DBus-devel-32bit-debuginfo-5.15.12+kde151-150600.3.6.1 * libQt5Concurrent5-32bit-debuginfo-5.15.12+kde151-150600.3.6.1 * libQt5Concurrent5-32bit-5.15.12+kde151-150600.3.6.1 * libQt5OpenGL5-32bit-5.15.12+kde151-150600.3.6.1 * libQt5DBus-devel-32bit-5.15.12+kde151-150600.3.6.1 * libQt5Widgets-devel-32bit-5.15.12+kde151-150600.3.6.1 * libQt5Network-devel-32bit-5.15.12+kde151-150600.3.6.1 * libQt5Network5-32bit-debuginfo-5.15.12+kde151-150600.3.6.1 * libQt5Xml5-32bit-debuginfo-5.15.12+kde151-150600.3.6.1 * libQt5OpenGL5-32bit-debuginfo-5.15.12+kde151-150600.3.6.1 * libQt5Gui5-32bit-5.15.12+kde151-150600.3.6.1 * libQt5Sql5-postgresql-32bit-5.15.12+kde151-150600.3.6.1 * libQt5Sql5-postgresql-32bit-debuginfo-5.15.12+kde151-150600.3.6.1 * libqt5-qtbase-examples-32bit-5.15.12+kde151-150600.3.6.1 * libQt5Concurrent-devel-32bit-5.15.12+kde151-150600.3.6.1 * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64 i586) * libQt5Sql5-sqlite-5.15.12+kde151-150600.3.6.1 * libQt5Sql5-mysql-5.15.12+kde151-150600.3.6.1 * libQt5PrintSupport5-5.15.12+kde151-150600.3.6.1 * libQt5Widgets-devel-5.15.12+kde151-150600.3.6.1 * libqt5-qtbase-platformtheme-xdgdesktopportal-debuginfo-5.15.12+kde151-150600.3.6.1 * libQt5Sql5-mysql-debuginfo-5.15.12+kde151-150600.3.6.1 * libqt5-qtbase-platformtheme-xdgdesktopportal-5.15.12+kde151-150600.3.6.1 * libQt5KmsSupport-devel-static-5.15.12+kde151-150600.3.6.1 * libQt5DBus-devel-5.15.12+kde151-150600.3.6.1 * libQt5DBus5-debuginfo-5.15.12+kde151-150600.3.6.1 * libQt5PlatformHeaders-devel-5.15.12+kde151-150600.3.6.1 * libQt5Xml5-debuginfo-5.15.12+kde151-150600.3.6.1 * libQt5DBus5-5.15.12+kde151-150600.3.6.1 * libQt5Core5-5.15.12+kde151-150600.3.6.1 * libQt5Gui5-debuginfo-5.15.12+kde151-150600.3.6.1 * libQt5Gui5-5.15.12+kde151-150600.3.6.1 * libQt5Concurrent5-5.15.12+kde151-150600.3.6.1 * libQt5Sql5-unixODBC-5.15.12+kde151-150600.3.6.1 * libQt5Test5-debuginfo-5.15.12+kde151-150600.3.6.1 * libqt5-qtbase-platformtheme-gtk3-debuginfo-5.15.12+kde151-150600.3.6.1 * libQt5Widgets5-debuginfo-5.15.12+kde151-150600.3.6.1 * libQt5Sql5-postgresql-5.15.12+kde151-150600.3.6.1 * libQt5PrintSupport-devel-5.15.12+kde151-150600.3.6.1 * libQt5Network5-debuginfo-5.15.12+kde151-150600.3.6.1 * libQt5Sql5-debuginfo-5.15.12+kde151-150600.3.6.1 * libqt5-qtbase-common-devel-5.15.12+kde151-150600.3.6.1 * libQt5Concurrent-devel-5.15.12+kde151-150600.3.6.1 * libQt5Bootstrap-devel-static-5.15.12+kde151-150600.3.6.1 * libQt5OpenGL-devel-5.15.12+kde151-150600.3.6.1 * libQt5Widgets5-5.15.12+kde151-150600.3.6.1 * libqt5-qtbase-examples-5.15.12+kde151-150600.3.6.1 * libQt5Core5-debuginfo-5.15.12+kde151-150600.3.6.1 * libQt5PrintSupport5-debuginfo-5.15.12+kde151-150600.3.6.1 * libQt5Sql5-unixODBC-debuginfo-5.15.12+kde151-150600.3.6.1 * libqt5-qtbase-common-devel-debuginfo-5.15.12+kde151-150600.3.6.1 * libQt5Test-devel-5.15.12+kde151-150600.3.6.1 * libQt5OpenGL5-5.15.12+kde151-150600.3.6.1 * libQt5Gui-devel-5.15.12+kde151-150600.3.6.1 * libqt5-qtbase-devel-5.15.12+kde151-150600.3.6.1 * libQt5Network5-5.15.12+kde151-150600.3.6.1 * libQt5Xml5-5.15.12+kde151-150600.3.6.1 * libQt5PlatformSupport-devel-static-5.15.12+kde151-150600.3.6.1 * libQt5Network-devel-5.15.12+kde151-150600.3.6.1 * libQt5Xml-devel-5.15.12+kde151-150600.3.6.1 * libqt5-qtbase-debugsource-5.15.12+kde151-150600.3.6.1 * libqt5-qtbase-examples-debuginfo-5.15.12+kde151-150600.3.6.1 * libQt5Sql-devel-5.15.12+kde151-150600.3.6.1 * libQt5OpenGLExtensions-devel-static-5.15.12+kde151-150600.3.6.1 * libQt5Sql5-sqlite-debuginfo-5.15.12+kde151-150600.3.6.1 * libqt5-qtbase-platformtheme-gtk3-5.15.12+kde151-150600.3.6.1 * libQt5Test5-5.15.12+kde151-150600.3.6.1 * libQt5DBus-devel-debuginfo-5.15.12+kde151-150600.3.6.1 * libQt5Core-devel-5.15.12+kde151-150600.3.6.1 * libQt5Sql5-5.15.12+kde151-150600.3.6.1 * libQt5Sql5-postgresql-debuginfo-5.15.12+kde151-150600.3.6.1 * libQt5OpenGL5-debuginfo-5.15.12+kde151-150600.3.6.1 * libQt5Concurrent5-debuginfo-5.15.12+kde151-150600.3.6.1 * openSUSE Leap 15.6 (noarch) * libQt5OpenGL-private-headers-devel-5.15.12+kde151-150600.3.6.1 * libQt5Sql-private-headers-devel-5.15.12+kde151-150600.3.6.1 * libQt5KmsSupport-private-headers-devel-5.15.12+kde151-150600.3.6.1 * libQt5Gui-private-headers-devel-5.15.12+kde151-150600.3.6.1 * libQt5Core-private-headers-devel-5.15.12+kde151-150600.3.6.1 * libQt5PrintSupport-private-headers-devel-5.15.12+kde151-150600.3.6.1 * libQt5DBus-private-headers-devel-5.15.12+kde151-150600.3.6.1 * libQt5Widgets-private-headers-devel-5.15.12+kde151-150600.3.6.1 * libQt5PlatformSupport-private-headers-devel-5.15.12+kde151-150600.3.6.1 * libQt5Network-private-headers-devel-5.15.12+kde151-150600.3.6.1 * libqt5-qtbase-private-headers-devel-5.15.12+kde151-150600.3.6.1 * libQt5Test-private-headers-devel-5.15.12+kde151-150600.3.6.1 * openSUSE Leap 15.6 (aarch64_ilp32) * libQt5Core5-64bit-debuginfo-5.15.12+kde151-150600.3.6.1 * libQt5DBus5-64bit-5.15.12+kde151-150600.3.6.1 * libQt5OpenGL5-64bit-debuginfo-5.15.12+kde151-150600.3.6.1 * libQt5Network5-64bit-5.15.12+kde151-150600.3.6.1 * libqt5-qtbase-examples-64bit-debuginfo-5.15.12+kde151-150600.3.6.1 * libQt5Xml-devel-64bit-5.15.12+kde151-150600.3.6.1 * libQt5DBus5-64bit-debuginfo-5.15.12+kde151-150600.3.6.1 * libQt5Sql5-64bit-debuginfo-5.15.12+kde151-150600.3.6.1 * libQt5Concurrent-devel-64bit-5.15.12+kde151-150600.3.6.1 * libQt5Test5-64bit-5.15.12+kde151-150600.3.6.1 * libQt5Gui5-64bit-debuginfo-5.15.12+kde151-150600.3.6.1 * libQt5Network5-64bit-debuginfo-5.15.12+kde151-150600.3.6.1 * libQt5Xml5-64bit-5.15.12+kde151-150600.3.6.1 * libQt5PrintSupport5-64bit-debuginfo-5.15.12+kde151-150600.3.6.1 * libQt5PrintSupport-devel-64bit-5.15.12+kde151-150600.3.6.1 * libQt5Widgets5-64bit-debuginfo-5.15.12+kde151-150600.3.6.1 * libQt5Sql5-unixODBC-64bit-debuginfo-5.15.12+kde151-150600.3.6.1 * libQt5Test5-64bit-debuginfo-5.15.12+kde151-150600.3.6.1 * libQt5Xml5-64bit-debuginfo-5.15.12+kde151-150600.3.6.1 * libQt5OpenGL-devel-64bit-5.15.12+kde151-150600.3.6.1 * libQt5Sql5-sqlite-64bit-debuginfo-5.15.12+kde151-150600.3.6.1 * libQt5Core-devel-64bit-5.15.12+kde151-150600.3.6.1 * libQt5OpenGLExtensions-devel-static-64bit-5.15.12+kde151-150600.3.6.1 * libQt5Sql5-unixODBC-64bit-5.15.12+kde151-150600.3.6.1 * libQt5Gui5-64bit-5.15.12+kde151-150600.3.6.1 * libQt5Test-devel-64bit-5.15.12+kde151-150600.3.6.1 * libQt5Concurrent5-64bit-5.15.12+kde151-150600.3.6.1 * libQt5Bootstrap-devel-static-64bit-5.15.12+kde151-150600.3.6.1 * libQt5Core5-64bit-5.15.12+kde151-150600.3.6.1 * libQt5PrintSupport5-64bit-5.15.12+kde151-150600.3.6.1 * libQt5DBus-devel-64bit-debuginfo-5.15.12+kde151-150600.3.6.1 * libQt5Widgets5-64bit-5.15.12+kde151-150600.3.6.1 * libQt5DBus-devel-64bit-5.15.12+kde151-150600.3.6.1 * libQt5Sql5-mysql-64bit-5.15.12+kde151-150600.3.6.1 * libQt5Sql5-sqlite-64bit-5.15.12+kde151-150600.3.6.1 * libQt5PlatformSupport-devel-static-64bit-5.15.12+kde151-150600.3.6.1 * libQt5Sql5-postgresql-64bit-5.15.12+kde151-150600.3.6.1 * libQt5Sql5-postgresql-64bit-debuginfo-5.15.12+kde151-150600.3.6.1 * libQt5Widgets-devel-64bit-5.15.12+kde151-150600.3.6.1 * libQt5Network-devel-64bit-5.15.12+kde151-150600.3.6.1 * libQt5Sql5-64bit-5.15.12+kde151-150600.3.6.1 * libQt5Gui-devel-64bit-5.15.12+kde151-150600.3.6.1 * libqt5-qtbase-examples-64bit-5.15.12+kde151-150600.3.6.1 * libQt5Sql5-mysql-64bit-debuginfo-5.15.12+kde151-150600.3.6.1 * libQt5Concurrent5-64bit-debuginfo-5.15.12+kde151-150600.3.6.1 * libQt5Sql-devel-64bit-5.15.12+kde151-150600.3.6.1 * libQt5OpenGL5-64bit-5.15.12+kde151-150600.3.6.1 * Basesystem Module 15-SP6 (aarch64 ppc64le s390x x86_64) * libQt5Sql5-sqlite-5.15.12+kde151-150600.3.6.1 * libQt5PrintSupport5-5.15.12+kde151-150600.3.6.1 * libQt5Widgets-devel-5.15.12+kde151-150600.3.6.1 * libQt5KmsSupport-devel-static-5.15.12+kde151-150600.3.6.1 * libQt5PlatformHeaders-devel-5.15.12+kde151-150600.3.6.1 * libQt5DBus-devel-5.15.12+kde151-150600.3.6.1 * libQt5DBus5-debuginfo-5.15.12+kde151-150600.3.6.1 * libQt5Xml5-debuginfo-5.15.12+kde151-150600.3.6.1 * libQt5DBus5-5.15.12+kde151-150600.3.6.1 * libQt5Core5-5.15.12+kde151-150600.3.6.1 * libQt5Gui5-debuginfo-5.15.12+kde151-150600.3.6.1 * libQt5Gui5-5.15.12+kde151-150600.3.6.1 * libQt5Concurrent5-5.15.12+kde151-150600.3.6.1 * libQt5Test5-debuginfo-5.15.12+kde151-150600.3.6.1 * libQt5Widgets5-debuginfo-5.15.12+kde151-150600.3.6.1 * libQt5PrintSupport-devel-5.15.12+kde151-150600.3.6.1 * libQt5Network5-debuginfo-5.15.12+kde151-150600.3.6.1 * libQt5Sql5-debuginfo-5.15.12+kde151-150600.3.6.1 * libqt5-qtbase-common-devel-5.15.12+kde151-150600.3.6.1 * libQt5Concurrent-devel-5.15.12+kde151-150600.3.6.1 * libQt5OpenGL-devel-5.15.12+kde151-150600.3.6.1 * libQt5Widgets5-5.15.12+kde151-150600.3.6.1 * libQt5Core5-debuginfo-5.15.12+kde151-150600.3.6.1 * libQt5PrintSupport5-debuginfo-5.15.12+kde151-150600.3.6.1 * libqt5-qtbase-common-devel-debuginfo-5.15.12+kde151-150600.3.6.1 * libQt5Test-devel-5.15.12+kde151-150600.3.6.1 * libQt5OpenGL5-5.15.12+kde151-150600.3.6.1 * libQt5Gui-devel-5.15.12+kde151-150600.3.6.1 * libqt5-qtbase-devel-5.15.12+kde151-150600.3.6.1 * libQt5Network5-5.15.12+kde151-150600.3.6.1 * libQt5Xml5-5.15.12+kde151-150600.3.6.1 * libQt5PlatformSupport-devel-static-5.15.12+kde151-150600.3.6.1 * libQt5Network-devel-5.15.12+kde151-150600.3.6.1 * libQt5Xml-devel-5.15.12+kde151-150600.3.6.1 * libqt5-qtbase-debugsource-5.15.12+kde151-150600.3.6.1 * libQt5Sql-devel-5.15.12+kde151-150600.3.6.1 * libQt5Sql5-sqlite-debuginfo-5.15.12+kde151-150600.3.6.1 * libQt5Test5-5.15.12+kde151-150600.3.6.1 * libQt5DBus-devel-debuginfo-5.15.12+kde151-150600.3.6.1 * libQt5Core-devel-5.15.12+kde151-150600.3.6.1 * libQt5Sql5-5.15.12+kde151-150600.3.6.1 * libQt5OpenGL5-debuginfo-5.15.12+kde151-150600.3.6.1 * libQt5Concurrent5-debuginfo-5.15.12+kde151-150600.3.6.1 * Basesystem Module 15-SP6 (noarch) * libQt5OpenGL-private-headers-devel-5.15.12+kde151-150600.3.6.1 * libQt5Sql-private-headers-devel-5.15.12+kde151-150600.3.6.1 * libQt5KmsSupport-private-headers-devel-5.15.12+kde151-150600.3.6.1 * libQt5Gui-private-headers-devel-5.15.12+kde151-150600.3.6.1 * libQt5Core-private-headers-devel-5.15.12+kde151-150600.3.6.1 * libQt5PrintSupport-private-headers-devel-5.15.12+kde151-150600.3.6.1 * libQt5DBus-private-headers-devel-5.15.12+kde151-150600.3.6.1 * libQt5Widgets-private-headers-devel-5.15.12+kde151-150600.3.6.1 * libQt5PlatformSupport-private-headers-devel-5.15.12+kde151-150600.3.6.1 * libQt5Network-private-headers-devel-5.15.12+kde151-150600.3.6.1 * libqt5-qtbase-private-headers-devel-5.15.12+kde151-150600.3.6.1 * libQt5Test-private-headers-devel-5.15.12+kde151-150600.3.6.1 ## References: * https://www.suse.com/security/cve/CVE-2023-45935.html * https://www.suse.com/security/cve/CVE-2024-39936.html * https://bugzilla.suse.com/show_bug.cgi?id=1222120 * https://bugzilla.suse.com/show_bug.cgi?id=1227426 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 12 20:30:11 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 12 Aug 2024 20:30:11 -0000 Subject: SUSE-SU-2024:2881-1: important: Security update for python-gunicorn Message-ID: <172349461179.12336.7002883689624235787@smelt2.prg2.suse.org> # Security update for python-gunicorn Announcement ID: SUSE-SU-2024:2881-1 Rating: important References: * bsc#1222950 Cross-References: * CVE-2024-1135 CVSS scores: * CVE-2024-1135 ( SUSE ): 7.4 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N Affected Products: * openSUSE Leap 15.5 * Public Cloud Module 15-SP2 * Public Cloud Module 15-SP3 * Public Cloud Module 15-SP4 * Public Cloud Module 15-SP5 * Public Cloud Module 15-SP6 * SUSE Linux Enterprise High Performance Computing 15 SP2 * SUSE Linux Enterprise High Performance Computing 15 SP3 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Server 15 SP2 * SUSE Linux Enterprise Server 15 SP3 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Manager Proxy 4.1 * SUSE Manager Proxy 4.2 * SUSE Manager Proxy 4.3 * SUSE Manager Retail Branch Server 4.1 * SUSE Manager Retail Branch Server 4.2 * SUSE Manager Retail Branch Server 4.3 * SUSE Manager Server 4.1 * SUSE Manager Server 4.2 * SUSE Manager Server 4.3 An update that solves one vulnerability can now be installed. ## Description: This update for python-gunicorn fixes the following issues: * CVE-2024-1135: Fixed HTTP Request Smuggling due to improperly validate Transfer-Encoding headers (bsc#1222950) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.5 zypper in -t patch openSUSE-SLE-15.5-2024-2881=1 * Public Cloud Module 15-SP2 zypper in -t patch SUSE-SLE-Module-Public-Cloud-15-SP2-2024-2881=1 * Public Cloud Module 15-SP3 zypper in -t patch SUSE-SLE-Module-Public-Cloud-15-SP3-2024-2881=1 * Public Cloud Module 15-SP4 zypper in -t patch SUSE-SLE-Module-Public-Cloud-15-SP4-2024-2881=1 * Public Cloud Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Public-Cloud-15-SP5-2024-2881=1 * Public Cloud Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Public-Cloud-15-SP6-2024-2881=1 ## Package List: * openSUSE Leap 15.5 (noarch) * python3-gunicorn-19.7.1-150000.3.7.1 * python-gunicorn-doc-19.7.1-150000.3.7.1 * Public Cloud Module 15-SP2 (noarch) * python3-gunicorn-19.7.1-150000.3.7.1 * Public Cloud Module 15-SP3 (noarch) * python3-gunicorn-19.7.1-150000.3.7.1 * Public Cloud Module 15-SP4 (noarch) * python3-gunicorn-19.7.1-150000.3.7.1 * Public Cloud Module 15-SP5 (noarch) * python3-gunicorn-19.7.1-150000.3.7.1 * Public Cloud Module 15-SP6 (noarch) * python3-gunicorn-19.7.1-150000.3.7.1 ## References: * https://www.suse.com/security/cve/CVE-2024-1135.html * https://bugzilla.suse.com/show_bug.cgi?id=1222950 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 12 20:30:17 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 12 Aug 2024 20:30:17 -0000 Subject: SUSE-SU-2024:2880-1: important: Security update for python-Twisted Message-ID: <172349461702.12336.6579983981145064288@smelt2.prg2.suse.org> # Security update for python-Twisted Announcement ID: SUSE-SU-2024:2880-1 Rating: important References: * bsc#1228549 * bsc#1228552 Cross-References: * CVE-2024-41671 * CVE-2024-41810 CVSS scores: * CVE-2024-41671 ( SUSE ): 8.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:L/VA:L/SC:N/SI:N/SA:N * CVE-2024-41671 ( SUSE ): 8.6 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L * CVE-2024-41810 ( SUSE ): 5.1 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N * CVE-2024-41810 ( SUSE ): 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Affected Products: * openSUSE Leap 15.4 * openSUSE Leap 15.5 * openSUSE Leap 15.6 * Public Cloud Module 15-SP4 * Python 3 Module 15-SP5 * Python 3 Module 15-SP6 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 * SUSE Linux Enterprise Desktop 15 SP5 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Manager Proxy 4.3 * SUSE Manager Retail Branch Server 4.3 * SUSE Manager Server 4.3 An update that solves two vulnerabilities can now be installed. ## Description: This update for python-Twisted fixes the following issues: * CVE-2024-41671: Fixed an information disclosure due to HTTP requests processed out-of-order (bsc#1228549) * CVE-2024-41810: Fixed reflected XSS via HTML injection in redirect response (bsc#1228552) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch SUSE-2024-2880=1 * openSUSE Leap 15.5 zypper in -t patch openSUSE-SLE-15.5-2024-2880=1 * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2024-2880=1 * Public Cloud Module 15-SP4 zypper in -t patch SUSE-SLE-Module-Public-Cloud-15-SP4-2024-2880=1 * Python 3 Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Python3-15-SP5-2024-2880=1 * Python 3 Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Python3-15-SP6-2024-2880=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2024-2880=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2024-2880=1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 zypper in -t patch SUSE-SLE-Product-SLED-15-SP4-LTSS-2024-2880=1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2024-2880=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2024-2880=1 ## Package List: * openSUSE Leap 15.4 (noarch) * python311-Twisted-http2-22.10.0-150400.5.23.1 * python311-Twisted-all_non_platform-22.10.0-150400.5.23.1 * python311-Twisted-conch_nacl-22.10.0-150400.5.23.1 * python311-Twisted-22.10.0-150400.5.23.1 * python311-Twisted-serial-22.10.0-150400.5.23.1 * python311-Twisted-contextvars-22.10.0-150400.5.23.1 * python311-Twisted-conch-22.10.0-150400.5.23.1 * python311-Twisted-tls-22.10.0-150400.5.23.1 * openSUSE Leap 15.5 (noarch) * python311-Twisted-http2-22.10.0-150400.5.23.1 * python311-Twisted-all_non_platform-22.10.0-150400.5.23.1 * python311-Twisted-conch_nacl-22.10.0-150400.5.23.1 * python311-Twisted-22.10.0-150400.5.23.1 * python311-Twisted-serial-22.10.0-150400.5.23.1 * python311-Twisted-contextvars-22.10.0-150400.5.23.1 * python311-Twisted-conch-22.10.0-150400.5.23.1 * python311-Twisted-tls-22.10.0-150400.5.23.1 * openSUSE Leap 15.6 (noarch) * python311-Twisted-http2-22.10.0-150400.5.23.1 * python311-Twisted-all_non_platform-22.10.0-150400.5.23.1 * python311-Twisted-conch_nacl-22.10.0-150400.5.23.1 * python311-Twisted-22.10.0-150400.5.23.1 * python311-Twisted-serial-22.10.0-150400.5.23.1 * python311-Twisted-contextvars-22.10.0-150400.5.23.1 * python311-Twisted-conch-22.10.0-150400.5.23.1 * python311-Twisted-tls-22.10.0-150400.5.23.1 * Public Cloud Module 15-SP4 (noarch) * python311-Twisted-22.10.0-150400.5.23.1 * python311-Twisted-tls-22.10.0-150400.5.23.1 * Python 3 Module 15-SP5 (noarch) * python311-Twisted-http2-22.10.0-150400.5.23.1 * python311-Twisted-all_non_platform-22.10.0-150400.5.23.1 * python311-Twisted-conch_nacl-22.10.0-150400.5.23.1 * python311-Twisted-22.10.0-150400.5.23.1 * python311-Twisted-serial-22.10.0-150400.5.23.1 * python311-Twisted-contextvars-22.10.0-150400.5.23.1 * python311-Twisted-conch-22.10.0-150400.5.23.1 * python311-Twisted-tls-22.10.0-150400.5.23.1 * Python 3 Module 15-SP6 (noarch) * python311-Twisted-http2-22.10.0-150400.5.23.1 * python311-Twisted-all_non_platform-22.10.0-150400.5.23.1 * python311-Twisted-conch_nacl-22.10.0-150400.5.23.1 * python311-Twisted-22.10.0-150400.5.23.1 * python311-Twisted-serial-22.10.0-150400.5.23.1 * python311-Twisted-contextvars-22.10.0-150400.5.23.1 * python311-Twisted-conch-22.10.0-150400.5.23.1 * python311-Twisted-tls-22.10.0-150400.5.23.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (noarch) * python311-Twisted-http2-22.10.0-150400.5.23.1 * python311-Twisted-all_non_platform-22.10.0-150400.5.23.1 * python311-Twisted-conch_nacl-22.10.0-150400.5.23.1 * python311-Twisted-22.10.0-150400.5.23.1 * python311-Twisted-serial-22.10.0-150400.5.23.1 * python311-Twisted-contextvars-22.10.0-150400.5.23.1 * python311-Twisted-conch-22.10.0-150400.5.23.1 * python311-Twisted-tls-22.10.0-150400.5.23.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (noarch) * python311-Twisted-http2-22.10.0-150400.5.23.1 * python311-Twisted-all_non_platform-22.10.0-150400.5.23.1 * python311-Twisted-conch_nacl-22.10.0-150400.5.23.1 * python311-Twisted-22.10.0-150400.5.23.1 * python311-Twisted-serial-22.10.0-150400.5.23.1 * python311-Twisted-contextvars-22.10.0-150400.5.23.1 * python311-Twisted-conch-22.10.0-150400.5.23.1 * python311-Twisted-tls-22.10.0-150400.5.23.1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (noarch) * python311-Twisted-http2-22.10.0-150400.5.23.1 * python311-Twisted-all_non_platform-22.10.0-150400.5.23.1 * python311-Twisted-conch_nacl-22.10.0-150400.5.23.1 * python311-Twisted-22.10.0-150400.5.23.1 * python311-Twisted-serial-22.10.0-150400.5.23.1 * python311-Twisted-contextvars-22.10.0-150400.5.23.1 * python311-Twisted-conch-22.10.0-150400.5.23.1 * python311-Twisted-tls-22.10.0-150400.5.23.1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (noarch) * python311-Twisted-http2-22.10.0-150400.5.23.1 * python311-Twisted-all_non_platform-22.10.0-150400.5.23.1 * python311-Twisted-conch_nacl-22.10.0-150400.5.23.1 * python311-Twisted-22.10.0-150400.5.23.1 * python311-Twisted-serial-22.10.0-150400.5.23.1 * python311-Twisted-contextvars-22.10.0-150400.5.23.1 * python311-Twisted-conch-22.10.0-150400.5.23.1 * python311-Twisted-tls-22.10.0-150400.5.23.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (noarch) * python311-Twisted-http2-22.10.0-150400.5.23.1 * python311-Twisted-all_non_platform-22.10.0-150400.5.23.1 * python311-Twisted-conch_nacl-22.10.0-150400.5.23.1 * python311-Twisted-22.10.0-150400.5.23.1 * python311-Twisted-serial-22.10.0-150400.5.23.1 * python311-Twisted-contextvars-22.10.0-150400.5.23.1 * python311-Twisted-conch-22.10.0-150400.5.23.1 * python311-Twisted-tls-22.10.0-150400.5.23.1 ## References: * https://www.suse.com/security/cve/CVE-2024-41671.html * https://www.suse.com/security/cve/CVE-2024-41810.html * https://bugzilla.suse.com/show_bug.cgi?id=1228549 * https://bugzilla.suse.com/show_bug.cgi?id=1228552 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 12 20:30:19 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 12 Aug 2024 20:30:19 -0000 Subject: SUSE-SU-2024:2879-1: moderate: Security update for python-urllib3 Message-ID: <172349461946.12336.10961601228597835631@smelt2.prg2.suse.org> # Security update for python-urllib3 Announcement ID: SUSE-SU-2024:2879-1 Rating: moderate References: * bsc#1226469 Cross-References: * CVE-2024-37891 CVSS scores: * CVE-2024-37891 ( SUSE ): 4.4 CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N Affected Products: * Public Cloud Module 12 * SUSE Linux Enterprise High Performance Computing 12 SP2 * SUSE Linux Enterprise High Performance Computing 12 SP3 * SUSE Linux Enterprise High Performance Computing 12 SP4 * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise Server 12 * SUSE Linux Enterprise Server 12 SP1 * SUSE Linux Enterprise Server 12 SP2 * SUSE Linux Enterprise Server 12 SP3 * SUSE Linux Enterprise Server 12 SP4 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server for SAP Applications 12 * SUSE Linux Enterprise Server for SAP Applications 12 SP1 * SUSE Linux Enterprise Server for SAP Applications 12 SP2 * SUSE Linux Enterprise Server for SAP Applications 12 SP3 * SUSE Linux Enterprise Server for SAP Applications 12 SP4 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 * SUSE Linux Enterprise Software Development Kit 12 SP5 * SUSE Linux Enterprise Workstation Extension 12 12-SP5 An update that solves one vulnerability can now be installed. ## Description: This update for python-urllib3 fixes the following issues: * CVE-2024-37891: Fixed proxy-authorization request header is not stripped during cross-origin redirects (bsc#1226469) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * Public Cloud Module 12 zypper in -t patch SUSE-SLE-Module-Public-Cloud-12-2024-2879=1 * SUSE Linux Enterprise Software Development Kit 12 SP5 zypper in -t patch SUSE-SLE-SDK-12-SP5-2024-2879=1 * SUSE Linux Enterprise High Performance Computing 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-2879=1 * SUSE Linux Enterprise Server 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-2879=1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-2879=1 * SUSE Linux Enterprise Workstation Extension 12 12-SP5 zypper in -t patch SUSE-SLE-WE-12-SP5-2024-2879=1 ## Package List: * Public Cloud Module 12 (noarch) * python3-urllib3-1.25.10-3.40.1 * python-urllib3-1.25.10-3.40.1 * SUSE Linux Enterprise Software Development Kit 12 SP5 (noarch) * python3-urllib3-1.25.10-3.40.1 * SUSE Linux Enterprise High Performance Computing 12 SP5 (noarch) * python3-urllib3-1.25.10-3.40.1 * python-urllib3-1.25.10-3.40.1 * SUSE Linux Enterprise Server 12 SP5 (noarch) * python3-urllib3-1.25.10-3.40.1 * python-urllib3-1.25.10-3.40.1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 (noarch) * python3-urllib3-1.25.10-3.40.1 * python-urllib3-1.25.10-3.40.1 * SUSE Linux Enterprise Workstation Extension 12 12-SP5 (noarch) * python3-urllib3-1.25.10-3.40.1 ## References: * https://www.suse.com/security/cve/CVE-2024-37891.html * https://bugzilla.suse.com/show_bug.cgi?id=1226469 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 12 20:30:20 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 12 Aug 2024 20:30:20 -0000 Subject: SUSE-SU-2024:2874-1: important: Security update for the Linux Kernel (Live Patch 0 for SLE 15 SP6) Message-ID: <172349462079.12336.9575219211118152455@smelt2.prg2.suse.org> # Security update for the Linux Kernel (Live Patch 0 for SLE 15 SP6) Announcement ID: SUSE-SU-2024:2874-1 Rating: important References: * bsc#1223683 * bsc#1225013 * bsc#1225310 Cross-References: * CVE-2024-26923 * CVE-2024-27398 * CVE-2024-35950 CVSS scores: * CVE-2024-26923 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-27398 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35950 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.6 * SUSE Linux Enterprise Live Patching 15-SP6 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 An update that solves three vulnerabilities can now be installed. ## Description: This update for the Linux Kernel 6.4.0-150600_21 fixes several issues. The following security issues were fixed: * CVE-2024-26923: Fixed false-positive lockdep splat for spin_lock() in __unix_gc() (bsc#1223683). * CVE-2024-27398: Fixed use-after-free bugs caused by sco_sock_timeout (bsc#1225013). * CVE-2024-35950: drm/client: Fully protect modes with dev->mode_config.mutex (bsc#1225310). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch SUSE-2024-2874=1 * SUSE Linux Enterprise Live Patching 15-SP6 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP6-2024-2874=1 ## Package List: * openSUSE Leap 15.6 (ppc64le s390x x86_64) * kernel-livepatch-6_4_0-150600_21-default-debuginfo-2-150600.4.4.1 * kernel-livepatch-6_4_0-150600_21-default-2-150600.4.4.1 * kernel-livepatch-SLE15-SP6_Update_0-debugsource-2-150600.4.4.1 * SUSE Linux Enterprise Live Patching 15-SP6 (ppc64le s390x x86_64) * kernel-livepatch-6_4_0-150600_21-default-debuginfo-2-150600.4.4.1 * kernel-livepatch-6_4_0-150600_21-default-2-150600.4.4.1 * kernel-livepatch-SLE15-SP6_Update_0-debugsource-2-150600.4.4.1 ## References: * https://www.suse.com/security/cve/CVE-2024-26923.html * https://www.suse.com/security/cve/CVE-2024-27398.html * https://www.suse.com/security/cve/CVE-2024-35950.html * https://bugzilla.suse.com/show_bug.cgi?id=1223683 * https://bugzilla.suse.com/show_bug.cgi?id=1225013 * https://bugzilla.suse.com/show_bug.cgi?id=1225310 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 12 20:30:29 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 12 Aug 2024 20:30:29 -0000 Subject: SUSE-SU-2024:2876-1: important: Security update for MozillaFirefox Message-ID: <172349462928.12336.10648021912482248001@smelt2.prg2.suse.org> # Security update for MozillaFirefox Announcement ID: SUSE-SU-2024:2876-1 Rating: important References: * bsc#1226316 * bsc#1228648 Cross-References: * CVE-2024-6600 * CVE-2024-6601 * CVE-2024-6602 * CVE-2024-6603 * CVE-2024-6604 * CVE-2024-6605 * CVE-2024-6606 * CVE-2024-6607 * CVE-2024-6608 * CVE-2024-6609 * CVE-2024-6610 * CVE-2024-6611 * CVE-2024-6612 * CVE-2024-6613 * CVE-2024-6614 * CVE-2024-6615 * CVE-2024-7518 * CVE-2024-7519 * CVE-2024-7520 * CVE-2024-7521 * CVE-2024-7522 * CVE-2024-7524 * CVE-2024-7525 * CVE-2024-7526 * CVE-2024-7527 * CVE-2024-7528 * CVE-2024-7529 * CVE-2024-7531 CVSS scores: * CVE-2024-6600 ( SUSE ): 6.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L * CVE-2024-6601 ( SUSE ): 4.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:N * CVE-2024-6602 ( SUSE ): 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:L/A:L * CVE-2024-6603 ( SUSE ): 5.4 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L * CVE-2024-6604 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2024-6605 ( SUSE ): 8.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N * CVE-2024-6606 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:L * CVE-2024-6607 ( SUSE ): 5.4 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N * CVE-2024-6608 ( SUSE ): 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L * CVE-2024-6609 ( SUSE ): 4.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:N/I:L/A:L * CVE-2024-6610 ( SUSE ): 4.7 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:N/A:L * CVE-2024-6611 ( SUSE ): 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N * CVE-2024-6612 ( SUSE ): 3.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N * CVE-2024-6614 ( SUSE ): 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N * CVE-2024-6615 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2024-7518 ( SUSE ): 7.4 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N * CVE-2024-7519 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2024-7520 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2024-7521 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2024-7522 ( SUSE ): 7.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:L * CVE-2024-7524 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2024-7525 ( SUSE ): 7.1 CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H * CVE-2024-7526 ( SUSE ): 7.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:L * CVE-2024-7527 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2024-7528 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2024-7529 ( SUSE ): 8.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N * CVE-2024-7531 ( SUSE ): 4.2 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:L Affected Products: * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 * SUSE Linux Enterprise Software Development Kit 12 SP5 An update that solves 28 vulnerabilities can now be installed. ## Description: This update for MozillaFirefox fixes the following issues: Update to Firefox Extended Support Release 128.1.0 ESR (MFSA 2024-35, bsc#1228648) * CVE-2024-7518: Fullscreen notification dialog can be obscured by document * CVE-2024-7519: Out of bounds memory access in graphics shared memory handling * CVE-2024-7520: Type confusion in WebAssembly * CVE-2024-7521: Incomplete WebAssembly exception handing * CVE-2024-7522: Out of bounds read in editor component * CVE-2024-7524: CSP strict-dynamic bypass using web-compatibility shims * CVE-2024-7525: Missing permission check when creating a StreamFilter * CVE-2024-7526: Uninitialized memory used by WebGL * CVE-2024-7527: Use-after-free in JavaScript garbage collection * CVE-2024-7528: Use-after-free in IndexedDB * CVE-2024-7529: Document content could partially obscure security prompts * CVE-2024-7531: PK11_Encrypt using CKM_CHACHA20 can reveal plaintext on Intel ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Software Development Kit 12 SP5 zypper in -t patch SUSE-SLE-SDK-12-SP5-2024-2876=1 * SUSE Linux Enterprise High Performance Computing 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-2876=1 * SUSE Linux Enterprise Server 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-2876=1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-2876=1 ## Package List: * SUSE Linux Enterprise Software Development Kit 12 SP5 (aarch64 ppc64le s390x x86_64) * MozillaFirefox-debugsource-128.1.0-112.221.1 * MozillaFirefox-debuginfo-128.1.0-112.221.1 * SUSE Linux Enterprise Software Development Kit 12 SP5 (noarch) * MozillaFirefox-devel-128.1.0-112.221.1 * SUSE Linux Enterprise High Performance Computing 12 SP5 (aarch64 x86_64) * MozillaFirefox-translations-common-128.1.0-112.221.1 * MozillaFirefox-debugsource-128.1.0-112.221.1 * MozillaFirefox-debuginfo-128.1.0-112.221.1 * MozillaFirefox-128.1.0-112.221.1 * MozillaFirefox-branding-SLE-128-35.15.1 * SUSE Linux Enterprise High Performance Computing 12 SP5 (noarch) * MozillaFirefox-devel-128.1.0-112.221.1 * SUSE Linux Enterprise Server 12 SP5 (aarch64 ppc64le s390x x86_64) * MozillaFirefox-translations-common-128.1.0-112.221.1 * MozillaFirefox-debugsource-128.1.0-112.221.1 * MozillaFirefox-debuginfo-128.1.0-112.221.1 * MozillaFirefox-128.1.0-112.221.1 * MozillaFirefox-branding-SLE-128-35.15.1 * SUSE Linux Enterprise Server 12 SP5 (noarch) * MozillaFirefox-devel-128.1.0-112.221.1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 (ppc64le x86_64) * MozillaFirefox-translations-common-128.1.0-112.221.1 * MozillaFirefox-debugsource-128.1.0-112.221.1 * MozillaFirefox-debuginfo-128.1.0-112.221.1 * MozillaFirefox-128.1.0-112.221.1 * MozillaFirefox-branding-SLE-128-35.15.1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 (noarch) * MozillaFirefox-devel-128.1.0-112.221.1 ## References: * https://www.suse.com/security/cve/CVE-2024-6600.html * https://www.suse.com/security/cve/CVE-2024-6601.html * https://www.suse.com/security/cve/CVE-2024-6602.html * https://www.suse.com/security/cve/CVE-2024-6603.html * https://www.suse.com/security/cve/CVE-2024-6604.html * https://www.suse.com/security/cve/CVE-2024-6605.html * https://www.suse.com/security/cve/CVE-2024-6606.html * https://www.suse.com/security/cve/CVE-2024-6607.html * https://www.suse.com/security/cve/CVE-2024-6608.html * https://www.suse.com/security/cve/CVE-2024-6609.html * https://www.suse.com/security/cve/CVE-2024-6610.html * https://www.suse.com/security/cve/CVE-2024-6611.html * https://www.suse.com/security/cve/CVE-2024-6612.html * https://www.suse.com/security/cve/CVE-2024-6613.html * https://www.suse.com/security/cve/CVE-2024-6614.html * https://www.suse.com/security/cve/CVE-2024-6615.html * https://www.suse.com/security/cve/CVE-2024-7518.html * https://www.suse.com/security/cve/CVE-2024-7519.html * https://www.suse.com/security/cve/CVE-2024-7520.html * https://www.suse.com/security/cve/CVE-2024-7521.html * https://www.suse.com/security/cve/CVE-2024-7522.html * https://www.suse.com/security/cve/CVE-2024-7524.html * https://www.suse.com/security/cve/CVE-2024-7525.html * https://www.suse.com/security/cve/CVE-2024-7526.html * https://www.suse.com/security/cve/CVE-2024-7527.html * https://www.suse.com/security/cve/CVE-2024-7528.html * https://www.suse.com/security/cve/CVE-2024-7529.html * https://www.suse.com/security/cve/CVE-2024-7531.html * https://bugzilla.suse.com/show_bug.cgi?id=1226316 * https://bugzilla.suse.com/show_bug.cgi?id=1228648 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 12 20:30:32 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 12 Aug 2024 20:30:32 -0000 Subject: SUSE-SU-2024:2875-1: important: Security update for qt6-base Message-ID: <172349463216.12336.18326971872701461166@smelt2.prg2.suse.org> # Security update for qt6-base Announcement ID: SUSE-SU-2024:2875-1 Rating: important References: * bsc#1223917 * bsc#1227426 Cross-References: * CVE-2024-33861 * CVE-2024-39936 CVSS scores: * CVE-2024-33861 ( SUSE ): 5.8 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2024-39936 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2024-39936 ( NVD ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N Affected Products: * Desktop Applications Module 15-SP6 * openSUSE Leap 15.6 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Package Hub 15 15-SP6 An update that solves two vulnerabilities can now be installed. ## Description: This update for qt6-base fixes the following issues: * CVE-2024-33861: Fixed an invalid pointer being passed as a callback which coud lead to modification of the stack (bsc#1223917) * CVE-2024-39936: Fixed information leakage due to process HTTP2 communication before encrypted() can be responded to (bsc#1227426) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch SUSE-2024-2875=1 openSUSE-SLE-15.6-2024-2875=1 * Desktop Applications Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Desktop-Applications-15-SP6-2024-2875=1 * SUSE Package Hub 15 15-SP6 zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP6-2024-2875=1 ## Package List: * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64 i586) * qt6-networkinformation-nm-6.6.3-150600.3.3.1 * qt6-sql-devel-6.6.3-150600.3.3.1 * qt6-sql-unixODBC-debuginfo-6.6.3-150600.3.3.1 * qt6-platformtheme-xdgdesktopportal-6.6.3-150600.3.3.1 * qt6-sql-sqlite-6.6.3-150600.3.3.1 * qt6-opengl-private-devel-6.6.3-150600.3.3.1 * libQt6OpenGLWidgets6-debuginfo-6.6.3-150600.3.3.1 * qt6-platformsupport-devel-static-6.6.3-150600.3.3.1 * libQt6Core6-6.6.3-150600.3.3.1 * qt6-openglwidgets-devel-6.6.3-150600.3.3.1 * qt6-platformtheme-gtk3-debuginfo-6.6.3-150600.3.3.1 * libQt6DBus6-6.6.3-150600.3.3.1 * libQt6Concurrent6-debuginfo-6.6.3-150600.3.3.1 * libQt6Sql6-debuginfo-6.6.3-150600.3.3.1 * qt6-network-tls-debuginfo-6.6.3-150600.3.3.1 * qt6-test-devel-6.6.3-150600.3.3.1 * qt6-base-debuginfo-6.6.3-150600.3.3.1 * qt6-base-examples-debuginfo-6.6.3-150600.3.3.1 * qt6-core-devel-6.6.3-150600.3.3.1 * qt6-sql-unixODBC-6.6.3-150600.3.3.1 * libQt6Gui6-6.6.3-150600.3.3.1 * qt6-dbus-devel-6.6.3-150600.3.3.1 * qt6-sql-sqlite-debuginfo-6.6.3-150600.3.3.1 * libQt6PrintSupport6-debuginfo-6.6.3-150600.3.3.1 * qt6-base-docs-qch-6.6.3-150600.3.3.1 * qt6-platformtheme-xdgdesktopportal-debuginfo-6.6.3-150600.3.3.1 * qt6-networkinformation-nm-debuginfo-6.6.3-150600.3.3.1 * qt6-dbus-private-devel-6.6.3-150600.3.3.1 * qt6-xml-devel-6.6.3-150600.3.3.1 * qt6-xml-private-devel-6.6.3-150600.3.3.1 * qt6-widgets-devel-6.6.3-150600.3.3.1 * qt6-platformtheme-gtk3-6.6.3-150600.3.3.1 * libQt6Widgets6-6.6.3-150600.3.3.1 * libQt6Test6-debuginfo-6.6.3-150600.3.3.1 * qt6-sql-postgresql-6.6.3-150600.3.3.1 * qt6-base-common-devel-6.6.3-150600.3.3.1 * libQt6Network6-6.6.3-150600.3.3.1 * libQt6Concurrent6-6.6.3-150600.3.3.1 * qt6-gui-private-devel-6.6.3-150600.3.3.1 * libQt6Network6-debuginfo-6.6.3-150600.3.3.1 * qt6-gui-devel-6.6.3-150600.3.3.1 * qt6-opengl-devel-6.6.3-150600.3.3.1 * libQt6PrintSupport6-6.6.3-150600.3.3.1 * qt6-sql-mysql-debuginfo-6.6.3-150600.3.3.1 * libQt6Test6-6.6.3-150600.3.3.1 * qt6-exampleicons-devel-static-6.6.3-150600.3.3.1 * qt6-network-devel-6.6.3-150600.3.3.1 * qt6-network-private-devel-6.6.3-150600.3.3.1 * libQt6Core6-debuginfo-6.6.3-150600.3.3.1 * qt6-networkinformation-glib-debuginfo-6.6.3-150600.3.3.1 * qt6-kmssupport-private-devel-6.6.3-150600.3.3.1 * libQt6OpenGL6-debuginfo-6.6.3-150600.3.3.1 * qt6-kmssupport-devel-static-6.6.3-150600.3.3.1 * qt6-printsupport-devel-6.6.3-150600.3.3.1 * qt6-printsupport-private-devel-6.6.3-150600.3.3.1 * libQt6Xml6-6.6.3-150600.3.3.1 * libQt6Sql6-6.6.3-150600.3.3.1 * qt6-sql-postgresql-debuginfo-6.6.3-150600.3.3.1 * qt6-sql-private-devel-6.6.3-150600.3.3.1 * qt6-core-private-devel-6.6.3-150600.3.3.1 * qt6-test-private-devel-6.6.3-150600.3.3.1 * qt6-networkinformation-glib-6.6.3-150600.3.3.1 * qt6-printsupport-cups-6.6.3-150600.3.3.1 * qt6-printsupport-cups-debuginfo-6.6.3-150600.3.3.1 * libQt6Widgets6-debuginfo-6.6.3-150600.3.3.1 * libQt6DBus6-debuginfo-6.6.3-150600.3.3.1 * libQt6OpenGLWidgets6-6.6.3-150600.3.3.1 * qt6-platformsupport-private-devel-6.6.3-150600.3.3.1 * qt6-base-examples-6.6.3-150600.3.3.1 * qt6-base-common-devel-debuginfo-6.6.3-150600.3.3.1 * qt6-network-tls-6.6.3-150600.3.3.1 * qt6-base-debugsource-6.6.3-150600.3.3.1 * qt6-base-docs-html-6.6.3-150600.3.3.1 * qt6-widgets-private-devel-6.6.3-150600.3.3.1 * libQt6Xml6-debuginfo-6.6.3-150600.3.3.1 * qt6-concurrent-devel-6.6.3-150600.3.3.1 * libQt6Gui6-debuginfo-6.6.3-150600.3.3.1 * libQt6OpenGL6-6.6.3-150600.3.3.1 * qt6-sql-mysql-6.6.3-150600.3.3.1 * openSUSE Leap 15.6 (noarch) * qt6-base-devel-6.6.3-150600.3.3.1 * qt6-base-private-devel-6.6.3-150600.3.3.1 * qt6-docs-common-6.6.3-150600.3.3.1 * Desktop Applications Module 15-SP6 (aarch64 ppc64le s390x x86_64) * qt6-networkinformation-nm-6.6.3-150600.3.3.1 * libQt6Core6-6.6.3-150600.3.3.1 * libQt6DBus6-6.6.3-150600.3.3.1 * libQt6Sql6-debuginfo-6.6.3-150600.3.3.1 * qt6-network-tls-debuginfo-6.6.3-150600.3.3.1 * qt6-base-debuginfo-6.6.3-150600.3.3.1 * libQt6Gui6-6.6.3-150600.3.3.1 * qt6-networkinformation-nm-debuginfo-6.6.3-150600.3.3.1 * libQt6Widgets6-6.6.3-150600.3.3.1 * libQt6Test6-debuginfo-6.6.3-150600.3.3.1 * libQt6Network6-6.6.3-150600.3.3.1 * libQt6Network6-debuginfo-6.6.3-150600.3.3.1 * libQt6Test6-6.6.3-150600.3.3.1 * libQt6Core6-debuginfo-6.6.3-150600.3.3.1 * qt6-networkinformation-glib-debuginfo-6.6.3-150600.3.3.1 * libQt6OpenGL6-debuginfo-6.6.3-150600.3.3.1 * libQt6Sql6-6.6.3-150600.3.3.1 * qt6-networkinformation-glib-6.6.3-150600.3.3.1 * libQt6Widgets6-debuginfo-6.6.3-150600.3.3.1 * libQt6DBus6-debuginfo-6.6.3-150600.3.3.1 * qt6-network-tls-6.6.3-150600.3.3.1 * qt6-base-debugsource-6.6.3-150600.3.3.1 * libQt6Gui6-debuginfo-6.6.3-150600.3.3.1 * libQt6OpenGL6-6.6.3-150600.3.3.1 * SUSE Package Hub 15 15-SP6 (aarch64 ppc64le s390x x86_64) * qt6-sql-devel-6.6.3-150600.3.3.1 * qt6-sql-unixODBC-debuginfo-6.6.3-150600.3.3.1 * qt6-platformtheme-xdgdesktopportal-6.6.3-150600.3.3.1 * qt6-sql-sqlite-6.6.3-150600.3.3.1 * qt6-opengl-private-devel-6.6.3-150600.3.3.1 * libQt6OpenGLWidgets6-debuginfo-6.6.3-150600.3.3.1 * qt6-platformsupport-devel-static-6.6.3-150600.3.3.1 * libQt6Core6-6.6.3-150600.3.3.1 * qt6-openglwidgets-devel-6.6.3-150600.3.3.1 * qt6-platformtheme-gtk3-debuginfo-6.6.3-150600.3.3.1 * libQt6DBus6-6.6.3-150600.3.3.1 * libQt6Concurrent6-debuginfo-6.6.3-150600.3.3.1 * libQt6Sql6-debuginfo-6.6.3-150600.3.3.1 * qt6-network-tls-debuginfo-6.6.3-150600.3.3.1 * qt6-test-devel-6.6.3-150600.3.3.1 * qt6-base-debuginfo-6.6.3-150600.3.3.1 * qt6-base-examples-debuginfo-6.6.3-150600.3.3.1 * qt6-core-devel-6.6.3-150600.3.3.1 * qt6-sql-unixODBC-6.6.3-150600.3.3.1 * libQt6Gui6-6.6.3-150600.3.3.1 * qt6-dbus-devel-6.6.3-150600.3.3.1 * qt6-base-docs-qch-6.6.3-150600.3.3.1 * libQt6PrintSupport6-debuginfo-6.6.3-150600.3.3.1 * qt6-sql-sqlite-debuginfo-6.6.3-150600.3.3.1 * qt6-platformtheme-xdgdesktopportal-debuginfo-6.6.3-150600.3.3.1 * qt6-dbus-private-devel-6.6.3-150600.3.3.1 * qt6-xml-devel-6.6.3-150600.3.3.1 * qt6-xml-private-devel-6.6.3-150600.3.3.1 * qt6-widgets-devel-6.6.3-150600.3.3.1 * qt6-platformtheme-gtk3-6.6.3-150600.3.3.1 * libQt6Widgets6-6.6.3-150600.3.3.1 * libQt6Test6-debuginfo-6.6.3-150600.3.3.1 * qt6-sql-postgresql-6.6.3-150600.3.3.1 * qt6-base-common-devel-6.6.3-150600.3.3.1 * libQt6Network6-6.6.3-150600.3.3.1 * libQt6Concurrent6-6.6.3-150600.3.3.1 * qt6-gui-private-devel-6.6.3-150600.3.3.1 * libQt6Network6-debuginfo-6.6.3-150600.3.3.1 * qt6-gui-devel-6.6.3-150600.3.3.1 * qt6-opengl-devel-6.6.3-150600.3.3.1 * libQt6PrintSupport6-6.6.3-150600.3.3.1 * qt6-sql-mysql-debuginfo-6.6.3-150600.3.3.1 * libQt6Test6-6.6.3-150600.3.3.1 * qt6-exampleicons-devel-static-6.6.3-150600.3.3.1 * qt6-network-devel-6.6.3-150600.3.3.1 * qt6-network-private-devel-6.6.3-150600.3.3.1 * libQt6Core6-debuginfo-6.6.3-150600.3.3.1 * qt6-printsupport-devel-6.6.3-150600.3.3.1 * qt6-kmssupport-private-devel-6.6.3-150600.3.3.1 * libQt6OpenGL6-debuginfo-6.6.3-150600.3.3.1 * qt6-kmssupport-devel-static-6.6.3-150600.3.3.1 * qt6-printsupport-private-devel-6.6.3-150600.3.3.1 * libQt6Xml6-6.6.3-150600.3.3.1 * libQt6Sql6-6.6.3-150600.3.3.1 * qt6-sql-postgresql-debuginfo-6.6.3-150600.3.3.1 * qt6-sql-private-devel-6.6.3-150600.3.3.1 * qt6-core-private-devel-6.6.3-150600.3.3.1 * qt6-test-private-devel-6.6.3-150600.3.3.1 * qt6-printsupport-cups-6.6.3-150600.3.3.1 * qt6-printsupport-cups-debuginfo-6.6.3-150600.3.3.1 * libQt6Widgets6-debuginfo-6.6.3-150600.3.3.1 * libQt6DBus6-debuginfo-6.6.3-150600.3.3.1 * libQt6OpenGLWidgets6-6.6.3-150600.3.3.1 * qt6-platformsupport-private-devel-6.6.3-150600.3.3.1 * qt6-base-examples-6.6.3-150600.3.3.1 * qt6-base-common-devel-debuginfo-6.6.3-150600.3.3.1 * qt6-base-docs-html-6.6.3-150600.3.3.1 * qt6-base-debugsource-6.6.3-150600.3.3.1 * qt6-network-tls-6.6.3-150600.3.3.1 * qt6-widgets-private-devel-6.6.3-150600.3.3.1 * libQt6Xml6-debuginfo-6.6.3-150600.3.3.1 * qt6-concurrent-devel-6.6.3-150600.3.3.1 * libQt6Gui6-debuginfo-6.6.3-150600.3.3.1 * libQt6OpenGL6-6.6.3-150600.3.3.1 * qt6-sql-mysql-6.6.3-150600.3.3.1 * SUSE Package Hub 15 15-SP6 (noarch) * qt6-base-devel-6.6.3-150600.3.3.1 * qt6-base-private-devel-6.6.3-150600.3.3.1 * qt6-docs-common-6.6.3-150600.3.3.1 ## References: * https://www.suse.com/security/cve/CVE-2024-33861.html * https://www.suse.com/security/cve/CVE-2024-39936.html * https://bugzilla.suse.com/show_bug.cgi?id=1223917 * https://bugzilla.suse.com/show_bug.cgi?id=1227426 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 12 20:30:36 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 12 Aug 2024 20:30:36 -0000 Subject: SUSE-SU-2024:2873-1: important: Security update for qt6-base Message-ID: <172349463681.12336.1969759898851956822@smelt2.prg2.suse.org> # Security update for qt6-base Announcement ID: SUSE-SU-2024:2873-1 Rating: important References: * bsc#1222120 * bsc#1223917 * bsc#1227426 Cross-References: * CVE-2023-45935 * CVE-2024-33861 * CVE-2024-39936 CVSS scores: * CVE-2023-45935 ( SUSE ): 4.2 CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:N/I:N/A:H * CVE-2024-33861 ( SUSE ): 5.8 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2024-39936 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2024-39936 ( NVD ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N Affected Products: * Desktop Applications Module 15-SP5 * openSUSE Leap 15.5 * SUSE Linux Enterprise Desktop 15 SP5 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Package Hub 15 15-SP5 An update that solves three vulnerabilities can now be installed. ## Description: This update for qt6-base fixes the following issues: * CVE-2024-33861: Fixed an invalid pointer being passed as a callback which coud lead to modification of the stack (bsc#1223917) * CVE-2024-39936: Fixed information leakage due to process HTTP2 communication before encrypted() can be responded to (bsc#1227426) * CVE-2023-45935: Fixed NULL pointer dereference in QXcbConnection::initializeAllAtoms() due to anomalous behavior from the X server (bsc#1222120) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.5 zypper in -t patch SUSE-2024-2873=1 openSUSE-SLE-15.5-2024-2873=1 * Desktop Applications Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Desktop-Applications-15-SP5-2024-2873=1 * SUSE Package Hub 15 15-SP5 zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP5-2024-2873=1 ## Package List: * openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64 i586) * qt6-network-tls-6.4.2-150500.3.20.2 * qt6-kmssupport-private-devel-6.4.2-150500.3.20.2 * qt6-platformtheme-gtk3-debuginfo-6.4.2-150500.3.20.2 * qt6-opengl-devel-6.4.2-150500.3.20.2 * qt6-dbus-private-devel-6.4.2-150500.3.20.2 * qt6-network-private-devel-6.4.2-150500.3.20.2 * qt6-xml-devel-6.4.2-150500.3.20.2 * qt6-networkinformation-glib-6.4.2-150500.3.20.2 * qt6-concurrent-devel-6.4.2-150500.3.20.2 * qt6-base-examples-6.4.2-150500.3.20.2 * qt6-opengl-private-devel-6.4.2-150500.3.20.2 * qt6-xml-private-devel-6.4.2-150500.3.20.2 * libQt6PrintSupport6-6.4.2-150500.3.20.2 * libQt6Widgets6-debuginfo-6.4.2-150500.3.20.2 * qt6-core-devel-6.4.2-150500.3.20.2 * qt6-printsupport-private-devel-6.4.2-150500.3.20.2 * qt6-sql-postgresql-6.4.2-150500.3.20.2 * qt6-widgets-private-devel-6.4.2-150500.3.20.2 * qt6-sql-mysql-debuginfo-6.4.2-150500.3.20.2 * libQt6PrintSupport6-debuginfo-6.4.2-150500.3.20.2 * qt6-printsupport-cups-debuginfo-6.4.2-150500.3.20.2 * qt6-network-devel-6.4.2-150500.3.20.2 * qt6-platformtheme-gtk3-6.4.2-150500.3.20.2 * qt6-test-devel-6.4.2-150500.3.20.2 * qt6-platformtheme-xdgdesktopportal-debuginfo-6.4.2-150500.3.20.2 * qt6-core-private-devel-6.4.2-150500.3.20.2 * qt6-kmssupport-devel-static-6.4.2-150500.3.20.2 * libQt6Core6-debuginfo-6.4.2-150500.3.20.2 * libQt6Sql6-debuginfo-6.4.2-150500.3.20.2 * qt6-printsupport-devel-6.4.2-150500.3.20.2 * libQt6Core6-6.4.2-150500.3.20.2 * qt6-base-docs-qch-6.4.2-150500.3.20.1 * qt6-sql-private-devel-6.4.2-150500.3.20.2 * qt6-sql-unixODBC-6.4.2-150500.3.20.2 * libQt6Test6-6.4.2-150500.3.20.2 * qt6-dbus-devel-6.4.2-150500.3.20.2 * libQt6Concurrent6-6.4.2-150500.3.20.2 * qt6-sql-sqlite-6.4.2-150500.3.20.2 * qt6-openglwidgets-devel-6.4.2-150500.3.20.2 * qt6-networkinformation-glib-debuginfo-6.4.2-150500.3.20.2 * qt6-sql-mysql-6.4.2-150500.3.20.2 * libQt6OpenGLWidgets6-debuginfo-6.4.2-150500.3.20.2 * libQt6Xml6-debuginfo-6.4.2-150500.3.20.2 * libQt6Network6-debuginfo-6.4.2-150500.3.20.2 * qt6-networkinformation-nm-6.4.2-150500.3.20.2 * libQt6DBus6-6.4.2-150500.3.20.2 * qt6-base-debuginfo-6.4.2-150500.3.20.2 * qt6-printsupport-cups-6.4.2-150500.3.20.2 * qt6-gui-private-devel-6.4.2-150500.3.20.2 * libQt6Gui6-debuginfo-6.4.2-150500.3.20.2 * libQt6OpenGLWidgets6-6.4.2-150500.3.20.2 * libQt6Xml6-6.4.2-150500.3.20.2 * qt6-base-debugsource-6.4.2-150500.3.20.2 * qt6-platformtheme-xdgdesktopportal-6.4.2-150500.3.20.2 * libQt6Test6-debuginfo-6.4.2-150500.3.20.2 * libQt6OpenGL6-6.4.2-150500.3.20.2 * qt6-sql-sqlite-debuginfo-6.4.2-150500.3.20.2 * libQt6DBus6-debuginfo-6.4.2-150500.3.20.2 * qt6-gui-devel-6.4.2-150500.3.20.2 * qt6-base-common-devel-6.4.2-150500.3.20.2 * qt6-base-common-devel-debuginfo-6.4.2-150500.3.20.2 * qt6-test-private-devel-6.4.2-150500.3.20.2 * qt6-platformsupport-private-devel-6.4.2-150500.3.20.2 * libQt6Sql6-6.4.2-150500.3.20.2 * qt6-sql-postgresql-debuginfo-6.4.2-150500.3.20.2 * qt6-sql-unixODBC-debuginfo-6.4.2-150500.3.20.2 * qt6-sql-devel-6.4.2-150500.3.20.2 * libQt6OpenGL6-debuginfo-6.4.2-150500.3.20.2 * qt6-platformsupport-devel-static-6.4.2-150500.3.20.2 * qt6-base-docs-html-6.4.2-150500.3.20.1 * qt6-widgets-devel-6.4.2-150500.3.20.2 * qt6-network-tls-debuginfo-6.4.2-150500.3.20.2 * qt6-networkinformation-nm-debuginfo-6.4.2-150500.3.20.2 * libQt6Network6-6.4.2-150500.3.20.2 * libQt6Gui6-6.4.2-150500.3.20.2 * libQt6Concurrent6-debuginfo-6.4.2-150500.3.20.2 * libQt6Widgets6-6.4.2-150500.3.20.2 * qt6-base-examples-debuginfo-6.4.2-150500.3.20.2 * openSUSE Leap 15.5 (noarch) * qt6-docs-common-6.4.2-150500.3.20.2 * qt6-base-devel-6.4.2-150500.3.20.2 * qt6-base-private-devel-6.4.2-150500.3.20.2 * Desktop Applications Module 15-SP5 (aarch64 ppc64le s390x x86_64) * qt6-network-tls-6.4.2-150500.3.20.2 * libQt6Network6-debuginfo-6.4.2-150500.3.20.2 * libQt6DBus6-6.4.2-150500.3.20.2 * qt6-base-debuginfo-6.4.2-150500.3.20.2 * libQt6Core6-debuginfo-6.4.2-150500.3.20.2 * libQt6Core6-6.4.2-150500.3.20.2 * libQt6OpenGL6-debuginfo-6.4.2-150500.3.20.2 * libQt6Gui6-debuginfo-6.4.2-150500.3.20.2 * qt6-base-debugsource-6.4.2-150500.3.20.2 * libQt6Widgets6-debuginfo-6.4.2-150500.3.20.2 * qt6-network-tls-debuginfo-6.4.2-150500.3.20.2 * libQt6OpenGL6-6.4.2-150500.3.20.2 * libQt6Network6-6.4.2-150500.3.20.2 * libQt6Gui6-6.4.2-150500.3.20.2 * libQt6DBus6-debuginfo-6.4.2-150500.3.20.2 * libQt6Widgets6-6.4.2-150500.3.20.2 * SUSE Package Hub 15 15-SP5 (aarch64 ppc64le s390x x86_64) * qt6-network-tls-6.4.2-150500.3.20.2 * qt6-kmssupport-private-devel-6.4.2-150500.3.20.2 * qt6-opengl-devel-6.4.2-150500.3.20.2 * qt6-xml-devel-6.4.2-150500.3.20.2 * qt6-concurrent-devel-6.4.2-150500.3.20.2 * qt6-opengl-private-devel-6.4.2-150500.3.20.2 * libQt6PrintSupport6-6.4.2-150500.3.20.2 * libQt6Widgets6-debuginfo-6.4.2-150500.3.20.2 * qt6-core-devel-6.4.2-150500.3.20.2 * qt6-widgets-private-devel-6.4.2-150500.3.20.2 * libQt6PrintSupport6-debuginfo-6.4.2-150500.3.20.2 * qt6-network-devel-6.4.2-150500.3.20.2 * qt6-test-devel-6.4.2-150500.3.20.2 * qt6-core-private-devel-6.4.2-150500.3.20.2 * qt6-kmssupport-devel-static-6.4.2-150500.3.20.2 * libQt6Core6-debuginfo-6.4.2-150500.3.20.2 * libQt6Sql6-debuginfo-6.4.2-150500.3.20.2 * qt6-printsupport-devel-6.4.2-150500.3.20.2 * libQt6Core6-6.4.2-150500.3.20.2 * libQt6Test6-6.4.2-150500.3.20.2 * qt6-dbus-devel-6.4.2-150500.3.20.2 * libQt6Concurrent6-6.4.2-150500.3.20.2 * qt6-sql-sqlite-6.4.2-150500.3.20.2 * qt6-openglwidgets-devel-6.4.2-150500.3.20.2 * libQt6OpenGLWidgets6-debuginfo-6.4.2-150500.3.20.2 * libQt6Xml6-debuginfo-6.4.2-150500.3.20.2 * libQt6Network6-debuginfo-6.4.2-150500.3.20.2 * libQt6DBus6-6.4.2-150500.3.20.2 * qt6-base-debuginfo-6.4.2-150500.3.20.2 * qt6-gui-private-devel-6.4.2-150500.3.20.2 * libQt6Gui6-debuginfo-6.4.2-150500.3.20.2 * libQt6OpenGLWidgets6-6.4.2-150500.3.20.2 * libQt6Xml6-6.4.2-150500.3.20.2 * qt6-base-debugsource-6.4.2-150500.3.20.2 * libQt6Test6-debuginfo-6.4.2-150500.3.20.2 * libQt6OpenGL6-6.4.2-150500.3.20.2 * qt6-sql-sqlite-debuginfo-6.4.2-150500.3.20.2 * libQt6DBus6-debuginfo-6.4.2-150500.3.20.2 * qt6-gui-devel-6.4.2-150500.3.20.2 * qt6-base-common-devel-6.4.2-150500.3.20.2 * qt6-base-common-devel-debuginfo-6.4.2-150500.3.20.2 * libQt6Sql6-6.4.2-150500.3.20.2 * qt6-sql-devel-6.4.2-150500.3.20.2 * libQt6OpenGL6-debuginfo-6.4.2-150500.3.20.2 * qt6-platformsupport-devel-static-6.4.2-150500.3.20.2 * qt6-widgets-devel-6.4.2-150500.3.20.2 * qt6-network-tls-debuginfo-6.4.2-150500.3.20.2 * libQt6Network6-6.4.2-150500.3.20.2 * libQt6Gui6-6.4.2-150500.3.20.2 * libQt6Concurrent6-debuginfo-6.4.2-150500.3.20.2 * libQt6Widgets6-6.4.2-150500.3.20.2 * SUSE Package Hub 15 15-SP5 (noarch) * qt6-base-devel-6.4.2-150500.3.20.2 ## References: * https://www.suse.com/security/cve/CVE-2023-45935.html * https://www.suse.com/security/cve/CVE-2024-33861.html * https://www.suse.com/security/cve/CVE-2024-39936.html * https://bugzilla.suse.com/show_bug.cgi?id=1222120 * https://bugzilla.suse.com/show_bug.cgi?id=1223917 * https://bugzilla.suse.com/show_bug.cgi?id=1227426 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Aug 13 12:30:05 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Tue, 13 Aug 2024 12:30:05 -0000 Subject: SUSE-SU-2024:2891-1: moderate: Security update for openssl-1_1 Message-ID: <172355220588.5808.13916737374596813321@smelt2.prg2.suse.org> # Security update for openssl-1_1 Announcement ID: SUSE-SU-2024:2891-1 Rating: moderate References: * bsc#1226463 * bsc#1227138 Cross-References: * CVE-2024-5535 CVSS scores: * CVE-2024-5535 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * Basesystem Module 15-SP5 * openSUSE Leap 15.5 * openSUSE Leap Micro 5.5 * SUSE Linux Enterprise Desktop 15 SP5 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 An update that solves one vulnerability and has one security fix can now be installed. ## Description: This update for openssl-1_1 fixes the following issues: * CVE-2024-5535: Fixed a buffer overread in function SSL_select_next_proto() with an empty supported client protocols buffer (bsc#1227138) Other fixes: \- Build with no-afalgeng (bsc#1226463) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.5 zypper in -t patch SUSE-2024-2891=1 openSUSE-SLE-15.5-2024-2891=1 * openSUSE Leap Micro 5.5 zypper in -t patch openSUSE-Leap-Micro-5.5-2024-2891=1 * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2024-2891=1 * Basesystem Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP5-2024-2891=1 ## Package List: * openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64 i586) * libopenssl1_1-hmac-1.1.1l-150500.17.34.1 * openssl-1_1-debuginfo-1.1.1l-150500.17.34.1 * openssl-1_1-debugsource-1.1.1l-150500.17.34.1 * libopenssl1_1-1.1.1l-150500.17.34.1 * libopenssl-1_1-devel-1.1.1l-150500.17.34.1 * openssl-1_1-1.1.1l-150500.17.34.1 * libopenssl1_1-debuginfo-1.1.1l-150500.17.34.1 * openSUSE Leap 15.5 (x86_64) * libopenssl1_1-32bit-debuginfo-1.1.1l-150500.17.34.1 * libopenssl1_1-32bit-1.1.1l-150500.17.34.1 * libopenssl1_1-hmac-32bit-1.1.1l-150500.17.34.1 * libopenssl-1_1-devel-32bit-1.1.1l-150500.17.34.1 * openSUSE Leap 15.5 (noarch) * openssl-1_1-doc-1.1.1l-150500.17.34.1 * openSUSE Leap 15.5 (aarch64_ilp32) * libopenssl1_1-64bit-debuginfo-1.1.1l-150500.17.34.1 * libopenssl1_1-hmac-64bit-1.1.1l-150500.17.34.1 * libopenssl-1_1-devel-64bit-1.1.1l-150500.17.34.1 * libopenssl1_1-64bit-1.1.1l-150500.17.34.1 * openSUSE Leap Micro 5.5 (aarch64 s390x x86_64) * libopenssl1_1-hmac-1.1.1l-150500.17.34.1 * openssl-1_1-debuginfo-1.1.1l-150500.17.34.1 * openssl-1_1-debugsource-1.1.1l-150500.17.34.1 * libopenssl1_1-1.1.1l-150500.17.34.1 * libopenssl-1_1-devel-1.1.1l-150500.17.34.1 * openssl-1_1-1.1.1l-150500.17.34.1 * libopenssl1_1-debuginfo-1.1.1l-150500.17.34.1 * SUSE Linux Enterprise Micro 5.5 (aarch64 ppc64le s390x x86_64) * libopenssl1_1-hmac-1.1.1l-150500.17.34.1 * openssl-1_1-debuginfo-1.1.1l-150500.17.34.1 * openssl-1_1-debugsource-1.1.1l-150500.17.34.1 * libopenssl1_1-1.1.1l-150500.17.34.1 * libopenssl-1_1-devel-1.1.1l-150500.17.34.1 * openssl-1_1-1.1.1l-150500.17.34.1 * libopenssl1_1-debuginfo-1.1.1l-150500.17.34.1 * Basesystem Module 15-SP5 (aarch64 ppc64le s390x x86_64) * libopenssl1_1-hmac-1.1.1l-150500.17.34.1 * openssl-1_1-debuginfo-1.1.1l-150500.17.34.1 * openssl-1_1-debugsource-1.1.1l-150500.17.34.1 * libopenssl1_1-1.1.1l-150500.17.34.1 * libopenssl-1_1-devel-1.1.1l-150500.17.34.1 * openssl-1_1-1.1.1l-150500.17.34.1 * libopenssl1_1-debuginfo-1.1.1l-150500.17.34.1 * Basesystem Module 15-SP5 (x86_64) * libopenssl1_1-32bit-debuginfo-1.1.1l-150500.17.34.1 * libopenssl1_1-32bit-1.1.1l-150500.17.34.1 * libopenssl1_1-hmac-32bit-1.1.1l-150500.17.34.1 ## References: * https://www.suse.com/security/cve/CVE-2024-5535.html * https://bugzilla.suse.com/show_bug.cgi?id=1226463 * https://bugzilla.suse.com/show_bug.cgi?id=1227138 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Aug 13 12:30:13 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Tue, 13 Aug 2024 12:30:13 -0000 Subject: SUSE-SU-2024:2890-1: important: Security update for libqt5-qtbase Message-ID: <172355221396.5808.2484749965015178298@smelt2.prg2.suse.org> # Security update for libqt5-qtbase Announcement ID: SUSE-SU-2024:2890-1 Rating: important References: * bsc#1218413 * bsc#1222120 * bsc#1227426 * bsc#1227513 Cross-References: * CVE-2023-45935 * CVE-2023-51714 * CVE-2024-39936 CVSS scores: * CVE-2023-45935 ( SUSE ): 4.2 CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:N/I:N/A:H * CVE-2023-51714 ( SUSE ): 6.2 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2023-51714 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2024-39936 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2024-39936 ( NVD ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N Affected Products: * openSUSE Leap 15.4 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Manager Proxy 4.3 * SUSE Manager Retail Branch Server 4.3 * SUSE Manager Server 4.3 An update that solves three vulnerabilities and has one security fix can now be installed. ## Description: This update for libqt5-qtbase fixes the following issues: * CVE-2023-51714: Fixed an incorrect integer overflow check (bsc#1218413). * CVE-2024-39936: Fixed information leakage due to process HTTP2 communication before encrypted() can be responded to (bsc#1227426) * CVE-2023-45935: Fixed NULL pointer dereference in QXcbConnection::initializeAllAtoms() due to anomalous behavior from the X server (bsc#1222120) Other fixes: \- Add patch from upstream to fix a regression in the ODBC driver (bsc#1227513, QTBUG-112375) \- Add upstream patch to fix a potential overflow in assemble_hpack_block() ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch SUSE-2024-2890=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2024-2890=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2024-2890=1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 zypper in -t patch SUSE-SLE-Product-SLED-15-SP4-LTSS-2024-2890=1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2024-2890=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2024-2890=1 * SUSE Manager Proxy 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Proxy-4.3-2024-2890=1 * SUSE Manager Retail Branch Server 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Retail-Branch- Server-4.3-2024-2890=1 * SUSE Manager Server 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Server-4.3-2024-2890=1 ## Package List: * openSUSE Leap 15.4 (x86_64) * libQt5OpenGL5-32bit-5.15.2+kde294-150400.6.15.1 * libQt5Gui5-32bit-5.15.2+kde294-150400.6.15.1 * libQt5Widgets5-32bit-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5OpenGL5-32bit-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-sqlite-32bit-5.15.2+kde294-150400.6.15.1 * libQt5Core5-32bit-5.15.2+kde294-150400.6.15.1 * libQt5Core-devel-32bit-5.15.2+kde294-150400.6.15.1 * libQt5OpenGLExtensions-devel-static-32bit-5.15.2+kde294-150400.6.15.1 * libQt5Concurrent5-32bit-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Sql-devel-32bit-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-mysql-32bit-5.15.2+kde294-150400.6.15.1 * libQt5Test5-32bit-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-sqlite-32bit-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5DBus5-32bit-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-unixODBC-32bit-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-32bit-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-unixODBC-32bit-5.15.2+kde294-150400.6.15.1 * libQt5Core5-32bit-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Network5-32bit-5.15.2+kde294-150400.6.15.1 * libQt5Test-devel-32bit-5.15.2+kde294-150400.6.15.1 * libQt5Concurrent-devel-32bit-5.15.2+kde294-150400.6.15.1 * libQt5PlatformSupport-devel-static-32bit-5.15.2+kde294-150400.6.15.1 * libQt5Widgets-devel-32bit-5.15.2+kde294-150400.6.15.1 * libQt5Gui5-32bit-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-mysql-32bit-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Network5-32bit-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5PrintSupport5-32bit-5.15.2+kde294-150400.6.15.1 * libQt5DBus-devel-32bit-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-32bit-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Network-devel-32bit-5.15.2+kde294-150400.6.15.1 * libQt5Test5-32bit-5.15.2+kde294-150400.6.15.1 * libQt5DBus5-32bit-5.15.2+kde294-150400.6.15.1 * libQt5Xml5-32bit-5.15.2+kde294-150400.6.15.1 * libQt5DBus-devel-32bit-5.15.2+kde294-150400.6.15.1 * libqt5-qtbase-examples-32bit-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Widgets5-32bit-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-postgresql-32bit-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Xml5-32bit-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5PrintSupport-devel-32bit-5.15.2+kde294-150400.6.15.1 * libQt5PrintSupport5-32bit-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Concurrent5-32bit-5.15.2+kde294-150400.6.15.1 * libqt5-qtbase-examples-32bit-5.15.2+kde294-150400.6.15.1 * libQt5Bootstrap-devel-static-32bit-5.15.2+kde294-150400.6.15.1 * libQt5OpenGL-devel-32bit-5.15.2+kde294-150400.6.15.1 * libQt5Xml-devel-32bit-5.15.2+kde294-150400.6.15.1 * libQt5Gui-devel-32bit-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-postgresql-32bit-5.15.2+kde294-150400.6.15.1 * openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586) * libQt5Gui5-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5PrintSupport-devel-5.15.2+kde294-150400.6.15.1 * libqt5-qtbase-platformtheme-gtk3-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5PrintSupport5-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-unixODBC-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-mysql-5.15.2+kde294-150400.6.15.1 * libQt5PrintSupport5-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Concurrent5-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Xml5-5.15.2+kde294-150400.6.15.1 * libqt5-qtbase-debugsource-5.15.2+kde294-150400.6.15.1 * libQt5OpenGLExtensions-devel-static-5.15.2+kde294-150400.6.15.1 * libqt5-qtbase-examples-5.15.2+kde294-150400.6.15.1 * libQt5Gui5-5.15.2+kde294-150400.6.15.1 * libQt5Test-devel-5.15.2+kde294-150400.6.15.1 * libQt5Widgets5-5.15.2+kde294-150400.6.15.1 * libqt5-qtbase-platformtheme-xdgdesktopportal-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Network-devel-5.15.2+kde294-150400.6.15.1 * libQt5Network5-debuginfo-5.15.2+kde294-150400.6.15.1 * libqt5-qtbase-common-devel-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Bootstrap-devel-static-5.15.2+kde294-150400.6.15.1 * libQt5Core-devel-5.15.2+kde294-150400.6.15.1 * libQt5PlatformSupport-devel-static-5.15.2+kde294-150400.6.15.1 * libQt5Core5-5.15.2+kde294-150400.6.15.1 * libQt5PlatformHeaders-devel-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-postgresql-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-debuginfo-5.15.2+kde294-150400.6.15.1 * libqt5-qtbase-examples-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5KmsSupport-devel-static-5.15.2+kde294-150400.6.15.1 * libQt5Test5-debuginfo-5.15.2+kde294-150400.6.15.1 * libqt5-qtbase-platformtheme-gtk3-5.15.2+kde294-150400.6.15.1 * libQt5Xml5-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5OpenGL-devel-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-postgresql-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Network5-5.15.2+kde294-150400.6.15.1 * libqt5-qtbase-devel-5.15.2+kde294-150400.6.15.1 * libQt5OpenGL5-5.15.2+kde294-150400.6.15.1 * libQt5Sql-devel-5.15.2+kde294-150400.6.15.1 * libQt5Concurrent-devel-5.15.2+kde294-150400.6.15.1 * libQt5DBus-devel-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-unixODBC-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Widgets-devel-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-sqlite-5.15.2+kde294-150400.6.15.1 * libQt5DBus5-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5DBus5-5.15.2+kde294-150400.6.15.1 * libQt5OpenGL5-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Core5-debuginfo-5.15.2+kde294-150400.6.15.1 * libqt5-qtbase-platformtheme-xdgdesktopportal-5.15.2+kde294-150400.6.15.1 * libqt5-qtbase-common-devel-5.15.2+kde294-150400.6.15.1 * libQt5Xml-devel-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-mysql-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Concurrent5-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-sqlite-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Test5-5.15.2+kde294-150400.6.15.1 * libQt5Widgets5-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Gui-devel-5.15.2+kde294-150400.6.15.1 * libQt5DBus-devel-debuginfo-5.15.2+kde294-150400.6.15.1 * openSUSE Leap 15.4 (noarch) * libQt5KmsSupport-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5DBus-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5Network-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5Gui-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5PrintSupport-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5Sql-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libqt5-qtbase-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5PlatformSupport-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5OpenGL-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5Widgets-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5Core-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5Test-private-headers-devel-5.15.2+kde294-150400.6.15.1 * openSUSE Leap 15.4 (aarch64_ilp32) * libQt5DBus-devel-64bit-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5DBus5-64bit-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5PrintSupport-devel-64bit-5.15.2+kde294-150400.6.15.1 * libQt5Widgets5-64bit-5.15.2+kde294-150400.6.15.1 * libQt5Concurrent5-64bit-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Bootstrap-devel-static-64bit-5.15.2+kde294-150400.6.15.1 * libQt5OpenGL-devel-64bit-5.15.2+kde294-150400.6.15.1 * libQt5Core5-64bit-5.15.2+kde294-150400.6.15.1 * libQt5OpenGL5-64bit-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-unixODBC-64bit-5.15.2+kde294-150400.6.15.1 * libQt5Test-devel-64bit-5.15.2+kde294-150400.6.15.1 * libQt5Network5-64bit-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-64bit-5.15.2+kde294-150400.6.15.1 * libQt5OpenGLExtensions-devel-static-64bit-5.15.2+kde294-150400.6.15.1 * libqt5-qtbase-examples-64bit-5.15.2+kde294-150400.6.15.1 * libQt5Sql-devel-64bit-5.15.2+kde294-150400.6.15.1 * libQt5Xml5-64bit-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-postgresql-64bit-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Core-devel-64bit-5.15.2+kde294-150400.6.15.1 * libQt5Xml5-64bit-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-sqlite-64bit-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5DBus5-64bit-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-unixODBC-64bit-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-mysql-64bit-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Concurrent5-64bit-5.15.2+kde294-150400.6.15.1 * libQt5Widgets-devel-64bit-5.15.2+kde294-150400.6.15.1 * libQt5PlatformSupport-devel-static-64bit-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-postgresql-64bit-5.15.2+kde294-150400.6.15.1 * libQt5DBus-devel-64bit-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-64bit-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Test5-64bit-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Gui5-64bit-5.15.2+kde294-150400.6.15.1 * libQt5OpenGL5-64bit-5.15.2+kde294-150400.6.15.1 * libQt5Core5-64bit-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Network5-64bit-5.15.2+kde294-150400.6.15.1 * libQt5Widgets5-64bit-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-mysql-64bit-5.15.2+kde294-150400.6.15.1 * libQt5Concurrent-devel-64bit-5.15.2+kde294-150400.6.15.1 * libQt5PrintSupport5-64bit-5.15.2+kde294-150400.6.15.1 * libQt5Test5-64bit-5.15.2+kde294-150400.6.15.1 * libqt5-qtbase-examples-64bit-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Xml-devel-64bit-5.15.2+kde294-150400.6.15.1 * libQt5Gui5-64bit-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5PrintSupport5-64bit-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Network-devel-64bit-5.15.2+kde294-150400.6.15.1 * libQt5Gui-devel-64bit-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-sqlite-64bit-5.15.2+kde294-150400.6.15.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 x86_64) * libQt5Gui5-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5PrintSupport-devel-5.15.2+kde294-150400.6.15.1 * libqt5-qtbase-platformtheme-gtk3-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5PrintSupport5-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-unixODBC-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-mysql-5.15.2+kde294-150400.6.15.1 * libQt5PrintSupport5-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Concurrent5-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Xml5-5.15.2+kde294-150400.6.15.1 * libqt5-qtbase-debugsource-5.15.2+kde294-150400.6.15.1 * libQt5OpenGLExtensions-devel-static-5.15.2+kde294-150400.6.15.1 * libQt5Gui5-5.15.2+kde294-150400.6.15.1 * libQt5Test-devel-5.15.2+kde294-150400.6.15.1 * libQt5Widgets5-5.15.2+kde294-150400.6.15.1 * libQt5Network-devel-5.15.2+kde294-150400.6.15.1 * libQt5Network5-debuginfo-5.15.2+kde294-150400.6.15.1 * libqt5-qtbase-common-devel-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Core-devel-5.15.2+kde294-150400.6.15.1 * libQt5PlatformSupport-devel-static-5.15.2+kde294-150400.6.15.1 * libQt5Core5-5.15.2+kde294-150400.6.15.1 * libQt5PlatformHeaders-devel-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-postgresql-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5KmsSupport-devel-static-5.15.2+kde294-150400.6.15.1 * libQt5Test5-debuginfo-5.15.2+kde294-150400.6.15.1 * libqt5-qtbase-platformtheme-gtk3-5.15.2+kde294-150400.6.15.1 * libQt5Xml5-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5OpenGL-devel-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-postgresql-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Network5-5.15.2+kde294-150400.6.15.1 * libqt5-qtbase-devel-5.15.2+kde294-150400.6.15.1 * libQt5OpenGL5-5.15.2+kde294-150400.6.15.1 * libQt5Sql-devel-5.15.2+kde294-150400.6.15.1 * libQt5Concurrent-devel-5.15.2+kde294-150400.6.15.1 * libQt5DBus-devel-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-unixODBC-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Widgets-devel-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-sqlite-5.15.2+kde294-150400.6.15.1 * libQt5DBus5-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5DBus5-5.15.2+kde294-150400.6.15.1 * libQt5OpenGL5-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Core5-debuginfo-5.15.2+kde294-150400.6.15.1 * libqt5-qtbase-common-devel-5.15.2+kde294-150400.6.15.1 * libQt5Xml-devel-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-mysql-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Concurrent5-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-sqlite-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Test5-5.15.2+kde294-150400.6.15.1 * libQt5Widgets5-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Gui-devel-5.15.2+kde294-150400.6.15.1 * libQt5DBus-devel-debuginfo-5.15.2+kde294-150400.6.15.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (noarch) * libQt5KmsSupport-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5DBus-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5Network-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5Gui-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5PrintSupport-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5Sql-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libqt5-qtbase-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5PlatformSupport-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5OpenGL-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5Widgets-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5Core-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5Test-private-headers-devel-5.15.2+kde294-150400.6.15.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 x86_64) * libQt5Gui5-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5PrintSupport-devel-5.15.2+kde294-150400.6.15.1 * libqt5-qtbase-platformtheme-gtk3-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5PrintSupport5-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-unixODBC-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-mysql-5.15.2+kde294-150400.6.15.1 * libQt5PrintSupport5-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Concurrent5-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Xml5-5.15.2+kde294-150400.6.15.1 * libqt5-qtbase-debugsource-5.15.2+kde294-150400.6.15.1 * libQt5OpenGLExtensions-devel-static-5.15.2+kde294-150400.6.15.1 * libQt5Gui5-5.15.2+kde294-150400.6.15.1 * libQt5Test-devel-5.15.2+kde294-150400.6.15.1 * libQt5Widgets5-5.15.2+kde294-150400.6.15.1 * libQt5Network-devel-5.15.2+kde294-150400.6.15.1 * libQt5Network5-debuginfo-5.15.2+kde294-150400.6.15.1 * libqt5-qtbase-common-devel-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Core-devel-5.15.2+kde294-150400.6.15.1 * libQt5PlatformSupport-devel-static-5.15.2+kde294-150400.6.15.1 * libQt5Core5-5.15.2+kde294-150400.6.15.1 * libQt5PlatformHeaders-devel-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-postgresql-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5KmsSupport-devel-static-5.15.2+kde294-150400.6.15.1 * libQt5Test5-debuginfo-5.15.2+kde294-150400.6.15.1 * libqt5-qtbase-platformtheme-gtk3-5.15.2+kde294-150400.6.15.1 * libQt5Xml5-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5OpenGL-devel-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-postgresql-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Network5-5.15.2+kde294-150400.6.15.1 * libqt5-qtbase-devel-5.15.2+kde294-150400.6.15.1 * libQt5OpenGL5-5.15.2+kde294-150400.6.15.1 * libQt5Sql-devel-5.15.2+kde294-150400.6.15.1 * libQt5Concurrent-devel-5.15.2+kde294-150400.6.15.1 * libQt5DBus-devel-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-unixODBC-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Widgets-devel-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-sqlite-5.15.2+kde294-150400.6.15.1 * libQt5DBus5-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5DBus5-5.15.2+kde294-150400.6.15.1 * libQt5OpenGL5-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Core5-debuginfo-5.15.2+kde294-150400.6.15.1 * libqt5-qtbase-common-devel-5.15.2+kde294-150400.6.15.1 * libQt5Xml-devel-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-mysql-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Concurrent5-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-sqlite-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Test5-5.15.2+kde294-150400.6.15.1 * libQt5Widgets5-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Gui-devel-5.15.2+kde294-150400.6.15.1 * libQt5DBus-devel-debuginfo-5.15.2+kde294-150400.6.15.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (noarch) * libQt5KmsSupport-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5DBus-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5Network-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5Gui-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5PrintSupport-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5Sql-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libqt5-qtbase-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5PlatformSupport-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5OpenGL-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5Widgets-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5Core-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5Test-private-headers-devel-5.15.2+kde294-150400.6.15.1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (x86_64) * libQt5Gui5-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5PrintSupport-devel-5.15.2+kde294-150400.6.15.1 * libqt5-qtbase-platformtheme-gtk3-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5PrintSupport5-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-unixODBC-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-mysql-5.15.2+kde294-150400.6.15.1 * libQt5PrintSupport5-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Concurrent5-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Xml5-5.15.2+kde294-150400.6.15.1 * libqt5-qtbase-debugsource-5.15.2+kde294-150400.6.15.1 * libQt5OpenGLExtensions-devel-static-5.15.2+kde294-150400.6.15.1 * libQt5Gui5-5.15.2+kde294-150400.6.15.1 * libQt5Test-devel-5.15.2+kde294-150400.6.15.1 * libQt5Widgets5-5.15.2+kde294-150400.6.15.1 * libQt5Network-devel-5.15.2+kde294-150400.6.15.1 * libQt5Network5-debuginfo-5.15.2+kde294-150400.6.15.1 * libqt5-qtbase-common-devel-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Core-devel-5.15.2+kde294-150400.6.15.1 * libQt5PlatformSupport-devel-static-5.15.2+kde294-150400.6.15.1 * libQt5Core5-5.15.2+kde294-150400.6.15.1 * libQt5PlatformHeaders-devel-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-postgresql-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5KmsSupport-devel-static-5.15.2+kde294-150400.6.15.1 * libQt5Test5-debuginfo-5.15.2+kde294-150400.6.15.1 * libqt5-qtbase-platformtheme-gtk3-5.15.2+kde294-150400.6.15.1 * libQt5Xml5-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5OpenGL-devel-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-postgresql-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Network5-5.15.2+kde294-150400.6.15.1 * libqt5-qtbase-devel-5.15.2+kde294-150400.6.15.1 * libQt5OpenGL5-5.15.2+kde294-150400.6.15.1 * libQt5Sql-devel-5.15.2+kde294-150400.6.15.1 * libQt5Concurrent-devel-5.15.2+kde294-150400.6.15.1 * libQt5DBus-devel-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-unixODBC-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Widgets-devel-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-sqlite-5.15.2+kde294-150400.6.15.1 * libQt5DBus5-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5DBus5-5.15.2+kde294-150400.6.15.1 * libQt5OpenGL5-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Core5-debuginfo-5.15.2+kde294-150400.6.15.1 * libqt5-qtbase-common-devel-5.15.2+kde294-150400.6.15.1 * libQt5Xml-devel-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-mysql-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Concurrent5-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-sqlite-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Test5-5.15.2+kde294-150400.6.15.1 * libQt5Widgets5-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Gui-devel-5.15.2+kde294-150400.6.15.1 * libQt5DBus-devel-debuginfo-5.15.2+kde294-150400.6.15.1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (noarch) * libQt5KmsSupport-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5DBus-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5Network-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5Gui-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5PrintSupport-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5Sql-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libqt5-qtbase-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5PlatformSupport-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5OpenGL-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5Widgets-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5Core-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5Test-private-headers-devel-5.15.2+kde294-150400.6.15.1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (aarch64 ppc64le s390x x86_64) * libQt5Gui5-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5PrintSupport-devel-5.15.2+kde294-150400.6.15.1 * libqt5-qtbase-platformtheme-gtk3-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5PrintSupport5-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-unixODBC-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-mysql-5.15.2+kde294-150400.6.15.1 * libQt5PrintSupport5-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Concurrent5-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Xml5-5.15.2+kde294-150400.6.15.1 * libqt5-qtbase-debugsource-5.15.2+kde294-150400.6.15.1 * libQt5OpenGLExtensions-devel-static-5.15.2+kde294-150400.6.15.1 * libQt5Gui5-5.15.2+kde294-150400.6.15.1 * libQt5Test-devel-5.15.2+kde294-150400.6.15.1 * libQt5Widgets5-5.15.2+kde294-150400.6.15.1 * libQt5Network-devel-5.15.2+kde294-150400.6.15.1 * libQt5Network5-debuginfo-5.15.2+kde294-150400.6.15.1 * libqt5-qtbase-common-devel-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Core-devel-5.15.2+kde294-150400.6.15.1 * libQt5PlatformSupport-devel-static-5.15.2+kde294-150400.6.15.1 * libQt5Core5-5.15.2+kde294-150400.6.15.1 * libQt5PlatformHeaders-devel-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-postgresql-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5KmsSupport-devel-static-5.15.2+kde294-150400.6.15.1 * libQt5Test5-debuginfo-5.15.2+kde294-150400.6.15.1 * libqt5-qtbase-platformtheme-gtk3-5.15.2+kde294-150400.6.15.1 * libQt5Xml5-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5OpenGL-devel-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-postgresql-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Network5-5.15.2+kde294-150400.6.15.1 * libqt5-qtbase-devel-5.15.2+kde294-150400.6.15.1 * libQt5OpenGL5-5.15.2+kde294-150400.6.15.1 * libQt5Sql-devel-5.15.2+kde294-150400.6.15.1 * libQt5Concurrent-devel-5.15.2+kde294-150400.6.15.1 * libQt5DBus-devel-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-unixODBC-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Widgets-devel-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-sqlite-5.15.2+kde294-150400.6.15.1 * libQt5DBus5-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5DBus5-5.15.2+kde294-150400.6.15.1 * libQt5OpenGL5-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Core5-debuginfo-5.15.2+kde294-150400.6.15.1 * libqt5-qtbase-common-devel-5.15.2+kde294-150400.6.15.1 * libQt5Xml-devel-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-mysql-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Concurrent5-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-sqlite-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Test5-5.15.2+kde294-150400.6.15.1 * libQt5Widgets5-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Gui-devel-5.15.2+kde294-150400.6.15.1 * libQt5DBus-devel-debuginfo-5.15.2+kde294-150400.6.15.1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (noarch) * libQt5KmsSupport-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5DBus-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5Network-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5Gui-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5PrintSupport-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5Sql-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libqt5-qtbase-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5PlatformSupport-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5OpenGL-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5Widgets-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5Core-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5Test-private-headers-devel-5.15.2+kde294-150400.6.15.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64) * libQt5Gui5-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5PrintSupport-devel-5.15.2+kde294-150400.6.15.1 * libqt5-qtbase-platformtheme-gtk3-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5PrintSupport5-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-unixODBC-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-mysql-5.15.2+kde294-150400.6.15.1 * libQt5PrintSupport5-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Concurrent5-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Xml5-5.15.2+kde294-150400.6.15.1 * libqt5-qtbase-debugsource-5.15.2+kde294-150400.6.15.1 * libQt5OpenGLExtensions-devel-static-5.15.2+kde294-150400.6.15.1 * libQt5Gui5-5.15.2+kde294-150400.6.15.1 * libQt5Test-devel-5.15.2+kde294-150400.6.15.1 * libQt5Widgets5-5.15.2+kde294-150400.6.15.1 * libQt5Network-devel-5.15.2+kde294-150400.6.15.1 * libQt5Network5-debuginfo-5.15.2+kde294-150400.6.15.1 * libqt5-qtbase-common-devel-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Core-devel-5.15.2+kde294-150400.6.15.1 * libQt5PlatformSupport-devel-static-5.15.2+kde294-150400.6.15.1 * libQt5Core5-5.15.2+kde294-150400.6.15.1 * libQt5PlatformHeaders-devel-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-postgresql-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5KmsSupport-devel-static-5.15.2+kde294-150400.6.15.1 * libQt5Test5-debuginfo-5.15.2+kde294-150400.6.15.1 * libqt5-qtbase-platformtheme-gtk3-5.15.2+kde294-150400.6.15.1 * libQt5Xml5-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5OpenGL-devel-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-postgresql-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Network5-5.15.2+kde294-150400.6.15.1 * libqt5-qtbase-devel-5.15.2+kde294-150400.6.15.1 * libQt5OpenGL5-5.15.2+kde294-150400.6.15.1 * libQt5Sql-devel-5.15.2+kde294-150400.6.15.1 * libQt5Concurrent-devel-5.15.2+kde294-150400.6.15.1 * libQt5DBus-devel-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-unixODBC-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Widgets-devel-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-sqlite-5.15.2+kde294-150400.6.15.1 * libQt5DBus5-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5DBus5-5.15.2+kde294-150400.6.15.1 * libQt5OpenGL5-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Core5-debuginfo-5.15.2+kde294-150400.6.15.1 * libqt5-qtbase-common-devel-5.15.2+kde294-150400.6.15.1 * libQt5Xml-devel-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-mysql-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Concurrent5-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-sqlite-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Test5-5.15.2+kde294-150400.6.15.1 * libQt5Widgets5-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Gui-devel-5.15.2+kde294-150400.6.15.1 * libQt5DBus-devel-debuginfo-5.15.2+kde294-150400.6.15.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (noarch) * libQt5KmsSupport-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5DBus-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5Network-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5Gui-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5PrintSupport-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5Sql-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libqt5-qtbase-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5PlatformSupport-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5OpenGL-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5Widgets-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5Core-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5Test-private-headers-devel-5.15.2+kde294-150400.6.15.1 * SUSE Manager Proxy 4.3 (x86_64) * libQt5Gui5-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5PrintSupport-devel-5.15.2+kde294-150400.6.15.1 * libQt5PrintSupport5-5.15.2+kde294-150400.6.15.1 * libQt5PrintSupport5-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Concurrent5-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Xml5-5.15.2+kde294-150400.6.15.1 * libqt5-qtbase-debugsource-5.15.2+kde294-150400.6.15.1 * libQt5Gui5-5.15.2+kde294-150400.6.15.1 * libQt5Test-devel-5.15.2+kde294-150400.6.15.1 * libQt5Widgets5-5.15.2+kde294-150400.6.15.1 * libQt5Network-devel-5.15.2+kde294-150400.6.15.1 * libQt5Network5-debuginfo-5.15.2+kde294-150400.6.15.1 * libqt5-qtbase-common-devel-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Core-devel-5.15.2+kde294-150400.6.15.1 * libQt5PlatformSupport-devel-static-5.15.2+kde294-150400.6.15.1 * libQt5Core5-5.15.2+kde294-150400.6.15.1 * libQt5PlatformHeaders-devel-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5KmsSupport-devel-static-5.15.2+kde294-150400.6.15.1 * libQt5Test5-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Xml5-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5OpenGL-devel-5.15.2+kde294-150400.6.15.1 * libQt5Network5-5.15.2+kde294-150400.6.15.1 * libqt5-qtbase-devel-5.15.2+kde294-150400.6.15.1 * libQt5OpenGL5-5.15.2+kde294-150400.6.15.1 * libQt5Sql-devel-5.15.2+kde294-150400.6.15.1 * libQt5Concurrent-devel-5.15.2+kde294-150400.6.15.1 * libQt5DBus-devel-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-5.15.2+kde294-150400.6.15.1 * libQt5Widgets-devel-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-sqlite-5.15.2+kde294-150400.6.15.1 * libQt5DBus5-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5DBus5-5.15.2+kde294-150400.6.15.1 * libQt5OpenGL5-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Core5-debuginfo-5.15.2+kde294-150400.6.15.1 * libqt5-qtbase-common-devel-5.15.2+kde294-150400.6.15.1 * libQt5Xml-devel-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-sqlite-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Concurrent5-5.15.2+kde294-150400.6.15.1 * libQt5Widgets5-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Test5-5.15.2+kde294-150400.6.15.1 * libQt5Gui-devel-5.15.2+kde294-150400.6.15.1 * libQt5DBus-devel-debuginfo-5.15.2+kde294-150400.6.15.1 * SUSE Manager Proxy 4.3 (noarch) * libQt5KmsSupport-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5DBus-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5Network-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5Gui-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5PrintSupport-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5Sql-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libqt5-qtbase-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5PlatformSupport-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5OpenGL-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5Widgets-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5Core-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5Test-private-headers-devel-5.15.2+kde294-150400.6.15.1 * SUSE Manager Retail Branch Server 4.3 (x86_64) * libQt5Gui5-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5PrintSupport-devel-5.15.2+kde294-150400.6.15.1 * libQt5PrintSupport5-5.15.2+kde294-150400.6.15.1 * libQt5PrintSupport5-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Concurrent5-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Xml5-5.15.2+kde294-150400.6.15.1 * libqt5-qtbase-debugsource-5.15.2+kde294-150400.6.15.1 * libQt5Gui5-5.15.2+kde294-150400.6.15.1 * libQt5Test-devel-5.15.2+kde294-150400.6.15.1 * libQt5Widgets5-5.15.2+kde294-150400.6.15.1 * libQt5Network-devel-5.15.2+kde294-150400.6.15.1 * libQt5Network5-debuginfo-5.15.2+kde294-150400.6.15.1 * libqt5-qtbase-common-devel-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Core-devel-5.15.2+kde294-150400.6.15.1 * libQt5PlatformSupport-devel-static-5.15.2+kde294-150400.6.15.1 * libQt5Core5-5.15.2+kde294-150400.6.15.1 * libQt5PlatformHeaders-devel-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5KmsSupport-devel-static-5.15.2+kde294-150400.6.15.1 * libQt5Test5-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Xml5-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5OpenGL-devel-5.15.2+kde294-150400.6.15.1 * libQt5Network5-5.15.2+kde294-150400.6.15.1 * libqt5-qtbase-devel-5.15.2+kde294-150400.6.15.1 * libQt5OpenGL5-5.15.2+kde294-150400.6.15.1 * libQt5Sql-devel-5.15.2+kde294-150400.6.15.1 * libQt5Concurrent-devel-5.15.2+kde294-150400.6.15.1 * libQt5DBus-devel-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-5.15.2+kde294-150400.6.15.1 * libQt5Widgets-devel-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-sqlite-5.15.2+kde294-150400.6.15.1 * libQt5DBus5-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5DBus5-5.15.2+kde294-150400.6.15.1 * libQt5OpenGL5-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Core5-debuginfo-5.15.2+kde294-150400.6.15.1 * libqt5-qtbase-common-devel-5.15.2+kde294-150400.6.15.1 * libQt5Xml-devel-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-sqlite-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Concurrent5-5.15.2+kde294-150400.6.15.1 * libQt5Widgets5-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Test5-5.15.2+kde294-150400.6.15.1 * libQt5Gui-devel-5.15.2+kde294-150400.6.15.1 * libQt5DBus-devel-debuginfo-5.15.2+kde294-150400.6.15.1 * SUSE Manager Retail Branch Server 4.3 (noarch) * libQt5KmsSupport-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5DBus-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5Network-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5Gui-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5PrintSupport-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5Sql-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libqt5-qtbase-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5PlatformSupport-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5OpenGL-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5Widgets-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5Core-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5Test-private-headers-devel-5.15.2+kde294-150400.6.15.1 * SUSE Manager Server 4.3 (ppc64le s390x x86_64) * libQt5Gui5-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5PrintSupport-devel-5.15.2+kde294-150400.6.15.1 * libQt5PrintSupport5-5.15.2+kde294-150400.6.15.1 * libQt5PrintSupport5-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Concurrent5-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Xml5-5.15.2+kde294-150400.6.15.1 * libqt5-qtbase-debugsource-5.15.2+kde294-150400.6.15.1 * libQt5Gui5-5.15.2+kde294-150400.6.15.1 * libQt5Test-devel-5.15.2+kde294-150400.6.15.1 * libQt5Widgets5-5.15.2+kde294-150400.6.15.1 * libQt5Network-devel-5.15.2+kde294-150400.6.15.1 * libQt5Network5-debuginfo-5.15.2+kde294-150400.6.15.1 * libqt5-qtbase-common-devel-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Core-devel-5.15.2+kde294-150400.6.15.1 * libQt5PlatformSupport-devel-static-5.15.2+kde294-150400.6.15.1 * libQt5Core5-5.15.2+kde294-150400.6.15.1 * libQt5PlatformHeaders-devel-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5KmsSupport-devel-static-5.15.2+kde294-150400.6.15.1 * libQt5Test5-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Xml5-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5OpenGL-devel-5.15.2+kde294-150400.6.15.1 * libQt5Network5-5.15.2+kde294-150400.6.15.1 * libqt5-qtbase-devel-5.15.2+kde294-150400.6.15.1 * libQt5OpenGL5-5.15.2+kde294-150400.6.15.1 * libQt5Sql-devel-5.15.2+kde294-150400.6.15.1 * libQt5Concurrent-devel-5.15.2+kde294-150400.6.15.1 * libQt5DBus-devel-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-5.15.2+kde294-150400.6.15.1 * libQt5Widgets-devel-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-sqlite-5.15.2+kde294-150400.6.15.1 * libQt5DBus5-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5DBus5-5.15.2+kde294-150400.6.15.1 * libQt5OpenGL5-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Core5-debuginfo-5.15.2+kde294-150400.6.15.1 * libqt5-qtbase-common-devel-5.15.2+kde294-150400.6.15.1 * libQt5Xml-devel-5.15.2+kde294-150400.6.15.1 * libQt5Sql5-sqlite-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Concurrent5-5.15.2+kde294-150400.6.15.1 * libQt5Widgets5-debuginfo-5.15.2+kde294-150400.6.15.1 * libQt5Test5-5.15.2+kde294-150400.6.15.1 * libQt5Gui-devel-5.15.2+kde294-150400.6.15.1 * libQt5DBus-devel-debuginfo-5.15.2+kde294-150400.6.15.1 * SUSE Manager Server 4.3 (noarch) * libQt5KmsSupport-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5DBus-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5Network-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5Gui-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5PrintSupport-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5Sql-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libqt5-qtbase-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5PlatformSupport-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5OpenGL-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5Widgets-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5Core-private-headers-devel-5.15.2+kde294-150400.6.15.1 * libQt5Test-private-headers-devel-5.15.2+kde294-150400.6.15.1 ## References: * https://www.suse.com/security/cve/CVE-2023-45935.html * https://www.suse.com/security/cve/CVE-2023-51714.html * https://www.suse.com/security/cve/CVE-2024-39936.html * https://bugzilla.suse.com/show_bug.cgi?id=1218413 * https://bugzilla.suse.com/show_bug.cgi?id=1222120 * https://bugzilla.suse.com/show_bug.cgi?id=1227426 * https://bugzilla.suse.com/show_bug.cgi?id=1227513 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Aug 13 12:30:21 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Tue, 13 Aug 2024 12:30:21 -0000 Subject: SUSE-SU-2024:1166-2: moderate: Security update for kubernetes1.23 Message-ID: <172355222132.5808.7479784389530187995@smelt2.prg2.suse.org> # Security update for kubernetes1.23 Announcement ID: SUSE-SU-2024:1166-2 Rating: moderate References: * bsc#1219964 Cross-References: * CVE-2024-0793 CVSS scores: * CVE-2024-0793 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H Affected Products: * Containers Module 15-SP6 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 An update that solves one vulnerability can now be installed. ## Description: This update for kubernetes1.23 fixes the following issues: * Upgrade from v1.26.9 to v1.26.14 * CVE-2024-0793: Fixed a DoS caused via a malformed HPA v1 manifest. (bsc#1219964) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * Containers Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Containers-15-SP6-2024-1166=1 ## Package List: * Containers Module 15-SP6 (aarch64 ppc64le s390x x86_64) * kubernetes1.26-client-common-1.26.14-150400.9.6.1 * kubernetes1.26-client-1.26.14-150400.9.6.1 ## References: * https://www.suse.com/security/cve/CVE-2024-0793.html * https://bugzilla.suse.com/show_bug.cgi?id=1219964 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Aug 13 16:34:29 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Tue, 13 Aug 2024 16:34:29 -0000 Subject: SUSE-SU-2024:2894-1: important: Security update for the Linux Kernel Message-ID: <172356686971.12336.2480202735969092865@smelt2.prg2.suse.org> # Security update for the Linux Kernel Announcement ID: SUSE-SU-2024:2894-1 Rating: important References: * bsc#1082555 * bsc#1193454 * bsc#1193554 * bsc#1193787 * bsc#1194324 * bsc#1194869 * bsc#1195357 * bsc#1195668 * bsc#1195927 * bsc#1195957 * bsc#1196018 * bsc#1196823 * bsc#1197146 * bsc#1197246 * bsc#1197762 * bsc#1202346 * bsc#1202686 * bsc#1208783 * bsc#1209636 * bsc#1213123 * bsc#1215492 * bsc#1215587 * bsc#1216834 * bsc#1219832 * bsc#1220138 * bsc#1220185 * bsc#1220186 * bsc#1220187 * bsc#1220869 * bsc#1220876 * bsc#1220942 * bsc#1220952 * bsc#1221010 * bsc#1221044 * bsc#1221647 * bsc#1221654 * bsc#1221656 * bsc#1221659 * bsc#1221777 * bsc#1222011 * bsc#1222323 * bsc#1222326 * bsc#1222328 * bsc#1222625 * bsc#1222702 * bsc#1222728 * bsc#1222799 * bsc#1222809 * bsc#1222810 * bsc#1223021 * bsc#1223180 * bsc#1223635 * bsc#1223652 * bsc#1223675 * bsc#1223778 * bsc#1223806 * bsc#1223813 * bsc#1223815 * bsc#1223836 * bsc#1223863 * bsc#1224414 * bsc#1224499 * bsc#1224500 * bsc#1224512 * bsc#1224516 * bsc#1224517 * bsc#1224545 * bsc#1224548 * bsc#1224557 * bsc#1224572 * bsc#1224573 * bsc#1224585 * bsc#1224604 * bsc#1224636 * bsc#1224641 * bsc#1224683 * bsc#1224694 * bsc#1224700 * bsc#1224743 * bsc#1225088 * bsc#1225272 * bsc#1225301 * bsc#1225475 * bsc#1225489 * bsc#1225504 * bsc#1225505 * bsc#1225564 * bsc#1225573 * bsc#1225581 * bsc#1225586 * bsc#1225711 * bsc#1225717 * bsc#1225719 * bsc#1225744 * bsc#1225745 * bsc#1225746 * bsc#1225752 * bsc#1225753 * bsc#1225757 * bsc#1225767 * bsc#1225810 * bsc#1225815 * bsc#1225820 * bsc#1225829 * bsc#1225835 * bsc#1225838 * bsc#1225839 * bsc#1225843 * bsc#1225847 * bsc#1225851 * bsc#1225856 * bsc#1225895 * bsc#1225898 * bsc#1225903 * bsc#1226202 * bsc#1226502 * bsc#1226519 * bsc#1226551 * bsc#1226555 * bsc#1226565 * bsc#1226568 * bsc#1226570 * bsc#1226571 * bsc#1226574 * bsc#1226588 * bsc#1226607 * bsc#1226650 * bsc#1226698 * bsc#1226713 * bsc#1226716 * bsc#1226750 * bsc#1226757 * bsc#1226758 * bsc#1226775 * bsc#1226783 * bsc#1226785 * bsc#1226834 * bsc#1226837 * bsc#1226911 * bsc#1226990 * bsc#1226993 * bsc#1227090 * bsc#1227121 * bsc#1227157 * bsc#1227162 * bsc#1227362 * bsc#1227383 * bsc#1227432 * bsc#1227435 * bsc#1227447 * bsc#1227487 * bsc#1227549 * bsc#1227573 * bsc#1227618 * bsc#1227620 * bsc#1227626 * bsc#1227635 * bsc#1227661 * bsc#1227716 * bsc#1227722 * bsc#1227724 * bsc#1227725 * bsc#1227728 * bsc#1227729 * bsc#1227730 * bsc#1227732 * bsc#1227733 * bsc#1227750 * bsc#1227754 * bsc#1227755 * bsc#1227760 * bsc#1227762 * bsc#1227763 * bsc#1227764 * bsc#1227766 * bsc#1227770 * bsc#1227771 * bsc#1227772 * bsc#1227774 * bsc#1227779 * bsc#1227780 * bsc#1227783 * bsc#1227786 * bsc#1227787 * bsc#1227790 * bsc#1227792 * bsc#1227796 * bsc#1227797 * bsc#1227798 * bsc#1227800 * bsc#1227802 * bsc#1227806 * bsc#1227808 * bsc#1227810 * bsc#1227812 * bsc#1227813 * bsc#1227814 * bsc#1227816 * bsc#1227820 * bsc#1227823 * bsc#1227824 * bsc#1227828 * bsc#1227829 * bsc#1227836 * bsc#1227846 * bsc#1227849 * bsc#1227851 * bsc#1227862 * bsc#1227864 * bsc#1227865 * bsc#1227866 * bsc#1227870 * bsc#1227884 * bsc#1227886 * bsc#1227891 * bsc#1227893 * bsc#1227899 * bsc#1227900 * bsc#1227910 * bsc#1227913 * bsc#1227917 * bsc#1227919 * bsc#1227920 * bsc#1227921 * bsc#1227922 * bsc#1227923 * bsc#1227924 * bsc#1227925 * bsc#1227927 * bsc#1227928 * bsc#1227931 * bsc#1227932 * bsc#1227933 * bsc#1227935 * bsc#1227936 * bsc#1227938 * bsc#1227941 * bsc#1227942 * bsc#1227944 * bsc#1227945 * bsc#1227947 * bsc#1227948 * bsc#1227949 * bsc#1227950 * bsc#1227952 * bsc#1227953 * bsc#1227954 * bsc#1227956 * bsc#1227957 * bsc#1227963 * bsc#1227964 * bsc#1227965 * bsc#1227968 * bsc#1227969 * bsc#1227970 * bsc#1227971 * bsc#1227972 * bsc#1227975 * bsc#1227976 * bsc#1227981 * bsc#1227982 * bsc#1227985 * bsc#1227986 * bsc#1227987 * bsc#1227988 * bsc#1227989 * bsc#1227990 * bsc#1227991 * bsc#1227992 * bsc#1227993 * bsc#1227995 * bsc#1227996 * bsc#1227997 * bsc#1228000 * bsc#1228002 * bsc#1228003 * bsc#1228004 * bsc#1228005 * bsc#1228006 * bsc#1228007 * bsc#1228008 * bsc#1228009 * bsc#1228010 * bsc#1228011 * bsc#1228013 * bsc#1228014 * bsc#1228015 * bsc#1228019 * bsc#1228020 * bsc#1228025 * bsc#1228028 * bsc#1228035 * bsc#1228037 * bsc#1228038 * bsc#1228039 * bsc#1228040 * bsc#1228045 * bsc#1228054 * bsc#1228055 * bsc#1228056 * bsc#1228060 * bsc#1228061 * bsc#1228062 * bsc#1228063 * bsc#1228064 * bsc#1228066 * bsc#1228067 * bsc#1228068 * bsc#1228071 * bsc#1228079 * bsc#1228090 * bsc#1228114 * bsc#1228140 * bsc#1228190 * bsc#1228191 * bsc#1228195 * bsc#1228202 * bsc#1228226 * bsc#1228235 * bsc#1228237 * bsc#1228247 * bsc#1228327 * bsc#1228328 * bsc#1228330 * bsc#1228403 * bsc#1228405 * bsc#1228408 * bsc#1228409 * bsc#1228410 * bsc#1228418 * bsc#1228440 * bsc#1228459 * bsc#1228462 * bsc#1228470 * bsc#1228518 * bsc#1228520 * bsc#1228530 * bsc#1228561 * bsc#1228565 * bsc#1228580 * bsc#1228581 * bsc#1228591 * bsc#1228599 * bsc#1228617 * bsc#1228625 * bsc#1228626 * bsc#1228633 * bsc#1228640 * bsc#1228644 * bsc#1228649 * bsc#1228655 * bsc#1228665 * bsc#1228672 * bsc#1228680 * bsc#1228705 * bsc#1228723 * bsc#1228743 * bsc#1228756 * bsc#1228801 * bsc#1228850 * bsc#1228857 * jsc#PED-8582 * jsc#PED-8690 Cross-References: * CVE-2021-47086 * CVE-2021-47103 * CVE-2021-47186 * CVE-2021-47402 * CVE-2021-47546 * CVE-2021-47547 * CVE-2021-47588 * CVE-2021-47590 * CVE-2021-47591 * CVE-2021-47593 * CVE-2021-47598 * CVE-2021-47599 * CVE-2021-47606 * CVE-2021-47622 * CVE-2021-47623 * CVE-2021-47624 * CVE-2022-48713 * CVE-2022-48730 * CVE-2022-48732 * CVE-2022-48749 * CVE-2022-48756 * CVE-2022-48773 * CVE-2022-48774 * CVE-2022-48775 * CVE-2022-48776 * CVE-2022-48777 * CVE-2022-48778 * CVE-2022-48780 * CVE-2022-48783 * CVE-2022-48784 * CVE-2022-48785 * CVE-2022-48786 * CVE-2022-48787 * CVE-2022-48788 * CVE-2022-48789 * CVE-2022-48790 * CVE-2022-48791 * CVE-2022-48792 * CVE-2022-48793 * CVE-2022-48794 * CVE-2022-48796 * CVE-2022-48797 * CVE-2022-48798 * CVE-2022-48799 * CVE-2022-48800 * CVE-2022-48801 * CVE-2022-48802 * CVE-2022-48803 * CVE-2022-48804 * CVE-2022-48805 * CVE-2022-48806 * CVE-2022-48807 * CVE-2022-48809 * CVE-2022-48810 * CVE-2022-48811 * CVE-2022-48812 * CVE-2022-48813 * CVE-2022-48814 * CVE-2022-48815 * CVE-2022-48816 * CVE-2022-48817 * CVE-2022-48818 * CVE-2022-48820 * CVE-2022-48821 * CVE-2022-48822 * CVE-2022-48823 * CVE-2022-48824 * CVE-2022-48825 * CVE-2022-48826 * CVE-2022-48827 * CVE-2022-48828 * CVE-2022-48829 * CVE-2022-48830 * CVE-2022-48831 * CVE-2022-48834 * CVE-2022-48835 * CVE-2022-48836 * CVE-2022-48837 * CVE-2022-48838 * CVE-2022-48839 * CVE-2022-48840 * CVE-2022-48841 * CVE-2022-48842 * CVE-2022-48843 * CVE-2022-48844 * CVE-2022-48846 * CVE-2022-48847 * CVE-2022-48849 * CVE-2022-48850 * CVE-2022-48851 * CVE-2022-48852 * CVE-2022-48853 * CVE-2022-48855 * CVE-2022-48856 * CVE-2022-48857 * CVE-2022-48858 * CVE-2022-48859 * CVE-2022-48860 * CVE-2022-48861 * CVE-2022-48862 * CVE-2022-48863 * CVE-2022-48864 * CVE-2022-48866 * CVE-2023-1582 * CVE-2023-37453 * CVE-2023-52435 * CVE-2023-52573 * CVE-2023-52580 * CVE-2023-52591 * CVE-2023-52735 * CVE-2023-52751 * CVE-2023-52762 * CVE-2023-52775 * CVE-2023-52812 * CVE-2023-52857 * CVE-2023-52863 * CVE-2023-52885 * CVE-2023-52886 * CVE-2024-25741 * CVE-2024-26583 * CVE-2024-26584 * CVE-2024-26585 * CVE-2024-26615 * CVE-2024-26633 * CVE-2024-26635 * CVE-2024-26636 * CVE-2024-26641 * CVE-2024-26661 * CVE-2024-26663 * CVE-2024-26665 * CVE-2024-26800 * CVE-2024-26802 * CVE-2024-26813 * CVE-2024-26814 * CVE-2024-26863 * CVE-2024-26889 * CVE-2024-26920 * CVE-2024-26935 * CVE-2024-269355 * CVE-2024-26961 * CVE-2024-26976 * CVE-2024-27015 * CVE-2024-27019 * CVE-2024-27020 * CVE-2024-27025 * CVE-2024-27065 * CVE-2024-27402 * CVE-2024-27437 * CVE-2024-35805 * CVE-2024-35819 * CVE-2024-35837 * CVE-2024-35853 * CVE-2024-35854 * CVE-2024-35855 * CVE-2024-35889 * CVE-2024-35890 * CVE-2024-35893 * CVE-2024-35899 * CVE-2024-35934 * CVE-2024-35949 * CVE-2024-35961 * CVE-2024-35979 * CVE-2024-35995 * CVE-2024-36000 * CVE-2024-36004 * CVE-2024-36288 * CVE-2024-36889 * CVE-2024-36901 * CVE-2024-36902 * CVE-2024-36909 * CVE-2024-36910 * CVE-2024-36911 * CVE-2024-36912 * CVE-2024-36913 * CVE-2024-36914 * CVE-2024-36919 * CVE-2024-36923 * CVE-2024-36924 * CVE-2024-36926 * CVE-2024-36939 * CVE-2024-36941 * CVE-2024-36942 * CVE-2024-36944 * CVE-2024-36946 * CVE-2024-36947 * CVE-2024-36950 * CVE-2024-36952 * CVE-2024-36955 * CVE-2024-36959 * CVE-2024-36974 * CVE-2024-38548 * CVE-2024-38555 * CVE-2024-38558 * CVE-2024-38559 * CVE-2024-38570 * CVE-2024-38586 * CVE-2024-38588 * CVE-2024-38598 * CVE-2024-38628 * CVE-2024-39276 * CVE-2024-39371 * CVE-2024-39463 * CVE-2024-39472 * CVE-2024-39475 * CVE-2024-39482 * CVE-2024-39487 * CVE-2024-39488 * CVE-2024-39490 * CVE-2024-39493 * CVE-2024-39494 * CVE-2024-39497 * CVE-2024-39499 * CVE-2024-39500 * CVE-2024-39501 * CVE-2024-39502 * CVE-2024-39505 * CVE-2024-39506 * CVE-2024-39507 * CVE-2024-39508 * CVE-2024-39509 * CVE-2024-40900 * CVE-2024-40901 * CVE-2024-40902 * CVE-2024-40903 * CVE-2024-40904 * CVE-2024-40906 * CVE-2024-40908 * CVE-2024-40909 * CVE-2024-40911 * CVE-2024-40912 * CVE-2024-40916 * CVE-2024-40919 * CVE-2024-40923 * CVE-2024-40924 * CVE-2024-40927 * CVE-2024-40929 * CVE-2024-40931 * CVE-2024-40932 * CVE-2024-40934 * CVE-2024-40935 * CVE-2024-40937 * CVE-2024-40940 * CVE-2024-40941 * CVE-2024-40942 * CVE-2024-40943 * CVE-2024-40945 * CVE-2024-40953 * CVE-2024-40954 * CVE-2024-40956 * CVE-2024-40958 * CVE-2024-40959 * CVE-2024-40960 * CVE-2024-40961 * CVE-2024-40966 * CVE-2024-40967 * CVE-2024-40970 * CVE-2024-40972 * CVE-2024-40976 * CVE-2024-40977 * CVE-2024-40981 * CVE-2024-40982 * CVE-2024-40984 * CVE-2024-40987 * CVE-2024-40988 * CVE-2024-40989 * CVE-2024-40990 * CVE-2024-40994 * CVE-2024-40998 * CVE-2024-40999 * CVE-2024-41002 * CVE-2024-41004 * CVE-2024-41006 * CVE-2024-41009 * CVE-2024-41011 * CVE-2024-41012 * CVE-2024-41013 * CVE-2024-41014 * CVE-2024-41015 * CVE-2024-41016 * CVE-2024-41017 * CVE-2024-41040 * CVE-2024-41041 * CVE-2024-41044 * CVE-2024-41048 * CVE-2024-41057 * CVE-2024-41058 * CVE-2024-41059 * CVE-2024-41063 * CVE-2024-41064 * CVE-2024-41066 * CVE-2024-41069 * CVE-2024-41070 * CVE-2024-41071 * CVE-2024-41072 * CVE-2024-41076 * CVE-2024-41078 * CVE-2024-41081 * CVE-2024-41087 * CVE-2024-41090 * CVE-2024-41091 * CVE-2024-42070 * CVE-2024-42079 * CVE-2024-42093 * CVE-2024-42096 * CVE-2024-42105 * CVE-2024-42122 * CVE-2024-42124 * CVE-2024-42145 * CVE-2024-42161 * CVE-2024-42224 * CVE-2024-42230 CVSS scores: * CVE-2021-47086 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47103 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47186 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47402 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2021-47546 ( SUSE ): 2.3 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:L * CVE-2021-47546 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47547 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L * CVE-2021-47588 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47590 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47591 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47593 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47598 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2021-47599 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47606 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47622 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47623 ( SUSE ): 0.0 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N * CVE-2021-47624 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2022-48713 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48730 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2022-48732 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48749 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48756 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48773 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48774 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2022-48775 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2022-48776 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2022-48777 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48778 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2022-48780 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48783 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48784 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48785 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48786 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2022-48787 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48787 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48788 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2022-48788 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48789 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48789 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48790 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48790 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48791 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48791 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48792 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48792 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48793 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48793 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48794 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2022-48796 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48796 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48797 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N * CVE-2022-48798 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48799 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48800 ( SUSE ): 2.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2022-48801 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48802 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48803 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2022-48804 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2022-48805 ( SUSE ): 6.6 CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48806 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N * CVE-2022-48807 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48809 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48809 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48810 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48811 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48812 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48813 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48814 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48815 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48816 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48817 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48818 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48820 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48821 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48822 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48822 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48823 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2022-48824 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48824 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48825 ( SUSE ): 0.0 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N * CVE-2022-48826 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48827 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48828 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N * CVE-2022-48829 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N * CVE-2022-48830 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48831 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48834 ( SUSE ): 0.0 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N * CVE-2022-48834 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48835 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48835 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48836 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48836 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48837 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48837 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48838 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48838 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48839 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48839 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48840 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48840 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48841 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48841 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48842 ( SUSE ): 4.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48842 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48843 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48843 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48844 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2022-48844 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48846 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48846 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48847 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48847 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48849 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48849 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N * CVE-2022-48850 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48850 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48851 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48851 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48852 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48852 ( NVD ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2022-48853 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48853 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2022-48855 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48855 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2022-48856 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48856 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48857 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48857 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48858 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48858 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48859 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48859 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48860 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48860 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48861 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48861 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48862 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48862 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48863 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L * CVE-2022-48863 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48864 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48864 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48866 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2022-48866 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2023-1582 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-1582 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-37453 ( SUSE ): 4.6 CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2023-37453 ( NVD ): 4.6 CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52435 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52435 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52573 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52580 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52591 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2023-52735 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52751 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52762 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52775 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N * CVE-2023-52812 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2023-52857 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52863 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52885 ( SUSE ): 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2023-52886 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-25741 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:L * CVE-2024-26583 ( SUSE ): 5.1 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26583 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26584 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26584 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26585 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26585 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26615 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26633 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26635 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2024-26636 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26641 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2024-26661 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26663 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26665 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26800 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26802 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26813 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26814 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26863 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26889 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26920 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26935 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-26961 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26976 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27015 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27015 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27019 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27019 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2024-27020 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27020 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-27025 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2024-27065 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27402 ( SUSE ): 5.8 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2024-27437 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35805 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35819 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35837 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35853 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35854 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35855 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35889 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35890 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35893 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35899 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35934 ( SUSE ): 2.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-35949 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35961 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35979 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35995 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2024-36000 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36004 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36288 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36288 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36889 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N * CVE-2024-36901 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36901 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36902 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36902 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36909 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2024-36910 ( SUSE ): 6.0 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N * CVE-2024-36911 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2024-36912 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2024-36913 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2024-36914 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36919 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36923 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2024-36924 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36926 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36926 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36939 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36941 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36942 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L * CVE-2024-36944 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36946 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N * CVE-2024-36947 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2024-36950 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36952 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36955 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-36959 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36974 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-38548 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38555 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38558 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L * CVE-2024-38559 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2024-38570 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2024-38570 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-38586 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38588 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38598 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38628 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39276 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39371 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39463 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-39472 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L * CVE-2024-39472 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39475 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39475 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39482 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L * CVE-2024-39482 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39487 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2024-39488 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39490 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-39493 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2024-39493 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39494 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-39494 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-39497 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39499 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2024-39500 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39501 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39502 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2024-39505 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2024-39506 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39507 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39508 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2024-39509 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40900 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2024-40901 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L * CVE-2024-40902 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2024-40902 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-40903 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2024-40903 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-40904 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40906 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40908 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40909 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-40911 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40912 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40916 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40919 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40923 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40924 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40927 ( SUSE ): 6.6 CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-40929 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40931 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2024-40932 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L * CVE-2024-40934 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L * CVE-2024-40935 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40937 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-40940 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40941 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40942 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40943 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40945 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40953 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40954 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-40956 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-40958 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40959 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40960 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40961 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40966 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40967 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40970 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40972 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40976 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40977 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40981 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-40982 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40984 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40987 ( SUSE ): 5.0 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H * CVE-2024-40988 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40989 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-40990 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40994 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-40998 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40999 ( SUSE ): 3.6 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L * CVE-2024-41002 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L * CVE-2024-41004 ( SUSE ): 0.0 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:N * CVE-2024-41006 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L * CVE-2024-41009 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-41009 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-41011 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-41012 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2024-41013 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2024-41014 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-41015 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N * CVE-2024-41016 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N * CVE-2024-41017 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-41040 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2024-41041 ( SUSE ): 0.0 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N * CVE-2024-41044 ( SUSE ): 6.3 CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:L * CVE-2024-41048 ( SUSE ): 6.5 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-41057 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2024-41057 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-41058 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2024-41058 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2024-41059 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2024-41059 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-41063 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2024-41063 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-41064 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2024-41064 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-41066 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2024-41066 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2024-41069 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2024-41069 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-41070 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2024-41071 ( SUSE ): 4.3 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N * CVE-2024-41072 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N * CVE-2024-41076 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-41078 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-41081 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-41087 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-41087 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-41090 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H * CVE-2024-41091 ( SUSE ): 6.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H * CVE-2024-42070 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2024-42070 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-42079 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-42079 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-42093 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L * CVE-2024-42105 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2024-42105 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2024-42122 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-42124 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-42145 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2024-42145 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-42161 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2024-42161 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2024-42161 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-42224 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-42224 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-42230 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2024-42230 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-42230 ( NVD ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H Affected Products: * openSUSE Leap 15.5 * openSUSE Leap Micro 5.5 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Live Patching 15-SP5 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Real Time Module 15-SP5 An update that solves 311 vulnerabilities, contains two features and has 50 security fixes can now be installed. ## Description: The SUSE Linux Enterprise 15 SP5 RT kernel was updated to receive various security bugfixes. The following security bugs were fixed: * CVE-2021-47086: phonet/pep: refuse to enable an unbound pipe (bsc#1220952). * CVE-2021-47103: net: sock: preserve kabi for sock (bsc#1221010). * CVE-2021-47186: tipc: check for null after calling kmemdup (bsc#1222702). * CVE-2021-47546: Kabi fix for ipv6: fix memory leak in fib6_rule_suppress (bsc#1225504). * CVE-2021-47547: net: tulip: de4x5: fix the problem that the array 'lp->phy' may be out of bound (bsc#1225505). * CVE-2021-47588: sit: do not call ipip6_dev_free() from sit_init_net() (bsc#1226568). * CVE-2021-47590: mptcp: fix deadlock in __mptcp_push_pending() (bsc#1226565). * CVE-2021-47591: mptcp: remove tcp ulp setsockopt support (bsc#1226570). * CVE-2021-47593: mptcp: clear 'kern' flag from fallback sockets (bsc#1226551). * CVE-2021-47598: sch_cake: do not call cake_destroy() from cake_init() (bsc#1226574). * CVE-2021-47599: btrfs: use latest_dev in btrfs_show_devname (bsc#1226571) * CVE-2021-47606: net: netlink: af_netlink: Prevent empty skb by adding a check on len (bsc#1226555). * CVE-2021-47623: powerpc/fixmap: Fix VM debug warning on unmap (bsc#1227919). * CVE-2022-48785: ipv6: mcast: use rcu-safe version of ipv6_get_lladdr() (bsc#1227927) * CVE-2022-48810: ipmr,ip6mr: acquire RTNL before calling ip[6]mr_free_table() on failure path (bsc#1227936). * CVE-2022-48850: net-sysfs: add check for netdevice being present to speed_show (bsc#1228071) * CVE-2022-48855: sctp: fix kernel-infoleak for SCTP sockets (bsc#1228003). * CVE-2023-52435: net: prevent mss overflow in skb_segment() (bsc#1220138). * CVE-2023-52573: net: rds: Fix possible NULL-pointer dereference (bsc#1220869) * CVE-2023-52580: net/core: Fix ETH_P_1588 flow dissector (bsc#1220876). * CVE-2023-52751: smb: client: fix use-after-free in smb2_query_info_compound() (bsc#1225489). * CVE-2023-52775: net/smc: avoid data corruption caused by decline (bsc#1225088). * CVE-2023-52812: drm/amd: check num of link levels when update pcie param (bsc#1225564). * CVE-2023-52857: drm/mediatek: Fix coverity issue with unintentional integer overflow (bsc#1225581). * CVE-2023-52863: hwmon: (axi-fan-control) Fix possible NULL pointer dereference (bsc#1225586). * CVE-2024-26585: Fixed race between tx work scheduling and socket close (bsc#1220187). * CVE-2024-26615: net/smc: fix illegal rmb_desc access in SMC-D connection dump (bsc#1220942). * CVE-2024-26633: ip6_tunnel: fix NEXTHDR_FRAGMENT handling in ip6_tnl_parse_tlv_enc_lim() (bsc#1221647). * CVE-2024-26635: llc: Drop support for ETH_P_TR_802_2 (bsc#1221656). * CVE-2024-26636: llc: make llc_ui_sendmsg() more robust against bonding changes (bsc#1221659). * CVE-2024-26641: ip6_tunnel: make sure to pull inner header in __ip6_tnl_rcv() (bsc#1221654). * CVE-2024-26661: drm/amd/display: Add NULL test for 'timing generator' in (bsc#1222323) * CVE-2024-26663: tipc: Check the bearer type before calling tipc_udp_nl_bearer_add() (bsc#1222326). * CVE-2024-26665: tunnels: fix out of bounds access when building IPv6 PMTU error (bsc#1222328). * CVE-2024-26802: stmmac: Clear variable when destroying workqueue (bsc#1222799). * CVE-2024-26863: hsr: Fix uninit-value access in hsr_get_node() (bsc#1223021). * CVE-2024-26961: mac802154: fix llsec key resources release in mac802154_llsec_key_del (bsc#1223652). * CVE-2024-27015: netfilter: flowtable: incorrect pppoe tuple (bsc#1223806). * CVE-2024-27019: netfilter: nf_tables: Fix potential data-race in __nft_obj_type_get() (bsc#1223813) * CVE-2024-27020: netfilter: nf_tables: Fix potential data-race in __nft_expr_type_get() (bsc#1223815) * CVE-2024-27025: nbd: null check for nla_nest_start (bsc#1223778) * CVE-2024-27065: netfilter: nf_tables: do not compare internal table flags on updates (bsc#1223836). * CVE-2024-27402: phonet/pep: fix racy skb_queue_empty() use (bsc#1224414). * CVE-2024-27437: vfio/pci: Disable auto-enable of exclusive INTx IRQ (bsc#1222625). * CVE-2024-35805: dm snapshot: fix lockup in dm_exception_table_exit (bsc#1224743). * CVE-2024-35819: soc: fsl: qbman: Use raw spinlock for cgr_lock (bsc#1224683). * CVE-2024-35837: net: mvpp2: clear BM pool before initialization (bsc#1224500). * CVE-2024-35853: mlxsw: spectrum_acl_tcam: Fix memory leak during rehash (bsc#1224604). * CVE-2024-35889: idpf: fix kernel panic on unknown packet types (bsc#1224517). * CVE-2024-35890: gro: fix ownership transfer (bsc#1224516). * CVE-2024-35893: net/sched: act_skbmod: prevent kernel-infoleak (bsc#1224512) * CVE-2024-35899: netfilter: nf_tables: flush pending destroy work before exit_net release (bsc#1224499) * CVE-2024-35934: net/smc: reduce rtnl pressure in smc_pnet_create_pnetids_list() (bsc#1224641) * CVE-2024-35949: btrfs: make sure that WRITTEN is set on all metadata blocks (bsc#1224700) * CVE-2024-35961: net/mlx5: Restore mistakenly dropped parts in register devlink flow (bsc#1224585). * CVE-2024-35979: raid1: fix use-after-free for original bio in raid1_write_request() (bsc#1224572). * CVE-2024-35995: ACPI: CPPC: Fix access width used for PCC registers (bsc#1224557). * CVE-2024-36000: mm/hugetlb: fix missing hugetlb_lock for resv uncharge (bsc#1224548). * CVE-2024-36004: i40e: Do not use WQ_MEM_RECLAIM flag for workqueue (bsc#1224545) * CVE-2024-36901: ipv6: prevent NULL dereference in ip6_output() (bsc#1225711) * CVE-2024-36902: ipv6: fib6_rules: avoid possible NULL dereference in fib6_rule_action() (bsc#1225719). * CVE-2024-36909: Drivers: hv: vmbus: Do not free ring buffers that couldn't be re-encrypted (bsc#1225744). * CVE-2024-36910: uio_hv_generic: Do not free decrypted memory (bsc#1225717). * CVE-2024-36911: hv_netvsc: Do not free decrypted memory (bsc#1225745). * CVE-2024-36912: Drivers: hv: vmbus: Track decrypted status in vmbus_gpadl (bsc#1225752). * CVE-2024-36913: Drivers: hv: vmbus: Leak pages if set_memory_encrypted() fails (bsc#1225753). * CVE-2024-36914: drm/amd/display: Skip on writeback when it's not applicable (bsc#1225757). * CVE-2024-36919: scsi: bnx2fc: Remove spin_lock_bh while releasing resources after upload (bsc#1225767). * CVE-2024-36923: fs/9p: fix uninitialized values during inode evict (bsc#1225815). * CVE-2024-36939: nfs: Handle error of rpc_proc_register() in nfs_net_init() (bsc#1225838). * CVE-2024-36946: phonet: fix rtm_phonet_notify() skb allocation (bsc#1225851). * CVE-2024-36974: net/sched: taprio: always validate TCA_TAPRIO_ATTR_PRIOMAP (bsc#1226519). * CVE-2024-38555: net/mlx5: Discard command completions in internal error (bsc#1226607). * CVE-2024-38558: net: openvswitch: fix overwriting ct original tuple for ICMPv6 (bsc#1226783). * CVE-2024-38570: gfs2: Fix potential glock use-after-free on unmount (bsc#1226775). * CVE-2024-38586: r8169: Fix possible ring buffer corruption on fragmented Tx packets (bsc#1226750). * CVE-2024-38598: md: fix resync softlockup when bitmap size is less than array size (bsc#1226757). * CVE-2024-38628: usb: gadget: u_audio: Fix race condition use of controls after free during gadget unbind (bsc#1226911). * CVE-2024-39276: ext4: fix mb_cache_entry's e_refcnt leak in ext4_xattr_block_cache_find() (bsc#1226993). * CVE-2024-39371: io_uring: check for non-NULL file pointer in io_file_can_poll() (bsc#1226990). * CVE-2024-39463: 9p: add missing locking around taking dentry fid list (bsc#1227090). * CVE-2024-39472: xfs: fix log recovery buffer allocation for the legacy h_size fixup (bsc#1227432). * CVE-2024-39482: bcache: fix variable length array abuse in btree_iter (bsc#1227447). * CVE-2024-39487: bonding: Fix out-of-bounds read in bond_option_arp_ip_targets_set() (bsc#1227573) * CVE-2024-39490: ipv6: sr: fix missing sk_buff release in seg6_input_core (bsc#1227626). * CVE-2024-39493: crypto: qat - Fix ADF_DEV_RESET_SYNC memory leak (bsc#1227620). * CVE-2024-39494: ima: Fix use-after-free on a dentry's dname.name (bsc#1227716). * CVE-2024-39497: drm/shmem-helper: Fix BUG_ON() on mmap(PROT_WRITE, MAP_PRIVATE) (bsc#1227722) * CVE-2024-39502: ionic: fix use after netif_napi_del() (bsc#1227755). * CVE-2024-39506: liquidio: Adjust a NULL pointer handling path in lio_vf_rep_copy_packet (bsc#1227729). * CVE-2024-39507: net: hns3: fix kernel crash problem in concurrent scenario (bsc#1227730). * CVE-2024-39508: io_uring/io-wq: Use set_bit() and test_bit() at worker->flags (bsc#1227732). * CVE-2024-40901: scsi: mpt3sas: Avoid test/set_bit() operating in non- allocated memory (bsc#1227762). * CVE-2024-40906: net/mlx5: Always stop health timer during driver removal (bsc#1227763). * CVE-2024-40908: bpf: Set run context for rawtp test_run callback (bsc#1227783). * CVE-2024-40909: bpf: Fix a potential use-after-free in bpf_link_free() (bsc#1227798). * CVE-2024-40919: bnxt_en: Adjust logging of firmware messages in case of released token in __hwrm_send() (bsc#1227779). * CVE-2024-40923: vmxnet3: disable rx data ring on dma allocation failure (bsc#1227786). * CVE-2024-40931: mptcp: ensure snd_una is properly initialized on connect (bsc#1227780). * CVE-2024-40935: cachefiles: flush all requests after setting CACHEFILES_DEAD (bsc#1227797). * CVE-2024-40937: gve: Clear napi->skb before dev_kfree_skb_any() (bsc#1227836). * CVE-2024-40940: net/mlx5: Fix tainted pointer delete is case of flow rules creation fail (bsc#1227800). * CVE-2024-40943: ocfs2: fix races between hole punching and AIO+DIO (bsc#1227849). * CVE-2024-40953: KVM: Fix a data race on last_boosted_vcpu in kvm_vcpu_on_spin() (bsc#1227806). * CVE-2024-40954: net: do not leave a dangling sk pointer, when socket creation fails (bsc#1227808) * CVE-2024-40958: netns: Make get_net_ns() handle zero refcount net (bsc#1227812). * CVE-2024-40959: xfrm6: check ip6_dst_idev() return value in xfrm6_get_saddr() (bsc#1227884). * CVE-2024-40960: ipv6: prevent possible NULL dereference in rt6_probe() (bsc#1227813). * CVE-2024-40961: ipv6: prevent possible NULL deref in fib6_nh_init() (bsc#1227814). * CVE-2024-40966: kABI: tty: add the option to have a tty reject a new ldisc (bsc#1227886). * CVE-2024-40967: serial: imx: Introduce timeout when waiting on transmitter empty (bsc#1227891). * CVE-2024-40970: Avoid hw_desc array overrun in dw-axi-dmac (bsc#1227899). * CVE-2024-40972: ext4: fold quota accounting into ext4_xattr_inode_lookup_create() (bsc#1227910). * CVE-2024-40977: wifi: mt76: mt7921s: fix potential hung tasks during chip recovery (bsc#1227950). * CVE-2024-40982: ssb: Fix potential NULL pointer dereference in ssb_device_uevent() (bsc#1227865). * CVE-2024-40989: KVM: arm64: Disassociate vcpus from redistributor region on teardown (bsc#1227823). * CVE-2024-40994: ptp: fix integer overflow in max_vclocks_store (bsc#1227829). * CVE-2024-40998: ext4: fix uninitialized ratelimit_state->lock access in __ext4_fill_super() (bsc#1227866). * CVE-2024-40999: net: ena: Add validation for completion descriptors consistency (bsc#1227913). * CVE-2024-41006: netrom: Fix a memory leak in nr_heartbeat_expiry() (bsc#1227862). * CVE-2024-41009: selftests/bpf: Add more ring buffer test coverage (bsc#1228020). * CVE-2024-41012: filelock: Remove locks reliably when fcntl/close race is detected (bsc#1228247). * CVE-2024-41013: xfs: do not walk off the end of a directory data block (bsc#1228405). * CVE-2024-41014: xfs: add bounds checking to xlog_recover_process_data (bsc#1228408). * CVE-2024-41015: ocfs2: add bounds checking to ocfs2_check_dir_entry() (bsc#1228409). * CVE-2024-41016: ocfs2: add bounds checking to ocfs2_xattr_find_entry() (bsc#1228410). * CVE-2024-41017: jfs: do not walk off the end of ealist (bsc#1228403). * CVE-2024-41040: net/sched: Fix UAF when resolving a clash (bsc#1228518) * CVE-2024-41041: udp: Set SOCK_RCU_FREE earlier in udp_lib_get_port() (bsc#1228520) * CVE-2024-41044: ppp: reject claimed-as-LCP but actually malformed packets (bsc#1228530). * CVE-2024-41048: skmsg: Skip zero length skb in sk_msg_recvmsg (bsc#1228565) * CVE-2024-41057: cachefiles: fix slab-use-after-free in cachefiles_withdraw_cookie() (bsc#1228462). * CVE-2024-41058: cachefiles: fix slab-use-after-free in fscache_withdraw_volume() (bsc#1228459). * CVE-2024-41059: hfsplus: fix uninit-value in copy_name (bsc#1228561). * CVE-2024-41063: Bluetooth: hci_core: cancel all works upon hci_unregister_dev() (bsc#1228580) * CVE-2024-41064: powerpc/eeh: avoid possible crash when edev->pdev changes (bsc#1228599). * CVE-2024-41066: ibmvnic: Add tx check to prevent skb leak (bsc#1228640). * CVE-2024-41069: ASoC: topology: Fix route memory corruption (bsc#1228644). * CVE-2024-41070: KVM: PPC: Book3S HV: Prevent UAF in kvm_spapr_tce_attach_iommu_group() (bsc#1228581). * CVE-2024-41071: wifi: mac80211: Avoid address calculations via out of bounds array indexing (bsc#1228625). * CVE-2024-41078: btrfs: qgroup: fix quota root leak after quota disable failure (bsc#1228655). * CVE-2024-41081: ila: block BH in ila_output() (bsc#1228617) * CVE-2024-41090: tap: add missing verification for short frame (bsc#1228328). * CVE-2024-41091: tun: add missing verification for short frame (bsc#1228327). * CVE-2024-42070: netfilter: nf_tables: fully validate NFT_DATA_VALUE on store to data registers (bsc#1228470) * CVE-2024-42079: gfs2: Fix NULL pointer dereference in gfs2_log_flush (bsc#1228672). * CVE-2024-42093: net/dpaa2: Avoid explicit cpumask var allocation on stack (bsc#1228680). * CVE-2024-42096: x86: stop playing stack games in profile_pc() (bsc#1228633). * CVE-2024-42122: drm/amd/display: Add NULL pointer check for kzalloc (bsc#1228591) * CVE-2024-42124: scsi: qedf: Make qedf_execute_tmf() non-preemptible (bsc#1228705) * CVE-2024-42145: IB/core: Implement a limit on UMAD receive List (bsc#1228743) * CVE-2024-42161: Avoid uninitialized value in BPF_CORE_READ_BITFIELD (bsc#1228756). * CVE-2024-42224: net: dsa: mv88e6xxx: Correct check for empty list (bsc#1228723) * CVE-2024-42230: powerpc/pseries: Fix scv instruction crash with kexec (bsc#1194869). The following non-security bugs were fixed: * ACPI: EC: Abort address space access upon error (stable-fixes). * ACPI: EC: Avoid returning AE_OK on errors in address space handler (stable- fixes). * ACPI: processor_idle: Fix invalid comparison with insertion sort for latency (git-fixes). * ACPI: video: Add backlight=native quirk for Lenovo Slim 7 16ARH7 (stable- fixes). * ACPI: x86: Force StorageD3Enable on more products (stable-fixes). * ACPI: x86: utils: Add Picasso to the list for forcing StorageD3Enable (stable-fixes). * ALSA: dmaengine_pcm: terminate dmaengine before synchronize (stable-fixes). * ALSA: dmaengine: Synchronize dma channel after drop() (stable-fixes). * ALSA: emux: improve patch ioctl data validation (stable-fixes). * ALSA: hda: conexant: Fix headset auto detect fail in the polling mode (git- fixes). * ALSA: hda/realtek: Add more codec ID to no shutup pins list (stable-fixes). * ALSA: hda/realtek: add quirk for Clevo V5[46]0TU (stable-fixes). * ALSA: hda/realtek: Enable headset mic of JP-IK LEAP W502 with ALC897 (stable-fixes). * ALSA: hda/realtek: Enable headset mic on Positivo SU C1400 (stable-fixes). * ALSA: hda/realtek: Enable Mute LED on HP 250 G7 (stable-fixes). * ALSA: hda/realtek: fix mute/micmute LEDs do not work for EliteBook 645/665 G11 (stable-fixes). * ALSA: hda/realtek: Fix the speaker output on Samsung Galaxy Book Pro 360 (stable-fixes). * ALSA: hda/realtek: Limit mic boost on VAIO PRO PX (stable-fixes). * ALSA: hda/relatek: Enable Mute LED on HP Laptop 15-gw0xxx (stable-fixes). * ALSA: pcm_dmaengine: Do not synchronize DMA channel when DMA is paused (git- fixes). * ALSA: usb-audio: Add a quirk for Sonix HD USB Camera (stable-fixes). * ALSA: usb-audio: Correct surround channels in UAC1 channel map (git-fixes). * ALSA: usb-audio: Fix microphone sound on HD webcam (stable-fixes). * ALSA: usb-audio: Move HD Webcam quirk to the right place (git-fixes). * arm64: dts: allwinner: Pine H64: correctly remove reg_gmac_3v3 (git-fixes) * arm64: dts: hi3798cv200: fix the size of GICR (git-fixes) * arm64: dts: imx8qm-mek: fix gpio number for reg_usdhc2_vmmc (git-fixes) * arm64: dts: microchip: sparx5: fix mdio reg (git-fixes) * arm64: dts: rockchip: Add enable-strobe-pulldown to emmc phy on ROCK (git- fixes) * arm64: dts: rockchip: Add sound-dai-cells for RK3368 (git-fixes) * arm64: dts: rockchip: fix PMIC interrupt pin on ROCK Pi E (git-fixes) * arm64/io: add constant-argument check (bsc#1226502 git-fixes) * arm64/io: Provide a WC friendly __iowriteXX_copy() (bsc#1226502) * arm64: tegra: Correct Tegra132 I2C alias (git-fixes) * ASoC: amd: Adjust error handling in case of absent codec device (git-fixes). * ASoC: max98088: Check for clk_prepare_enable() error (git-fixes). * ASoC: ti: davinci-mcasp: Set min period size using FIFO config (stable- fixes). * ASoC: ti: omap-hdmi: Fix too long driver name (stable-fixes). * batman-adv: bypass empty buckets in batadv_purge_orig_ref() (stable-fixes). * blk-cgroup: dropping parent refcount after pd_free_fn() is done (bsc#1224573). * block: do not add partitions if GD_SUPPRESS_PART_SCAN is set (bsc#1227162). * block, loop: support partitions without scanning (bsc#1227162). * Bluetooth: ath3k: Fix multiple issues reported by checkpatch.pl (stable- fixes). * Bluetooth: btqca: use le32_to_cpu for ver.soc_id (stable-fixes). * Bluetooth: hci_core: cancel all works upon hci_unregister_dev() (stable- fixes). * Bluetooth: hci_qca: mark OF related data as maybe unused (stable-fixes). * Bluetooth: hci_sync: Fix suspending with wrong filter policy (git-fixes). * Bluetooth: qca: Fix BT enable failure again for QCA6390 after warm reboot (git-fixes). * bnxt_re: Fix imm_data endianness (git-fixes) * bpf: aggressively forget precise markings during state checkpointing (bsc#1225903). * bpf: allow precision tracking for programs with subprogs (bsc#1225903). * bpf: check bpf_func_state->callback_depth when pruning states (bsc#1225903). * bpf: clean up visit_insn()'s instruction processing (bsc#1225903). * bpf: correct loop detection for iterators convergence (bsc#1225903). * bpf: encapsulate precision backtracking bookkeeping (bsc#1225903). * bpf: ensure state checkpointing at iter_next() call sites (bsc#1225903). * bpf: exact states comparison for iterator convergence checks (bsc#1225903). * bpf: extract __check_reg_arg() utility function (bsc#1225903). * bpf: extract same_callsites() as utility function (bsc#1225903). * bpf: extract setup_func_entry() utility function (bsc#1225903). * bpf: fix calculation of subseq_idx during precision backtracking (bsc#1225903). * bpf: fix mark_all_scalars_precise use in mark_chain_precision (bsc#1225903). * bpf: Fix memory leaks in __check_func_call (bsc#1225903). * bpf: fix propagate_precision() logic for inner frames (bsc#1225903). * bpf: fix regs_exact() logic in regsafe() to remap IDs correctly (bsc#1225903). * bpf: Fix to preserve reg parent/live fields when copying range info (bsc#1225903). * bpf: generalize MAYBE_NULL vs non-MAYBE_NULL rule (bsc#1225903). * bpf: improve precision backtrack logging (bsc#1225903). * bpf: Improve verifier u32 scalar equality checking (bsc#1225903). * bpf: keep track of max number of bpf_loop callback iterations (bsc#1225903). * bpf: maintain bitmasks across all active frames in __mark_chain_precision (bsc#1225903). * bpf: mark relevant stack slots scratched for register read instructions (bsc#1225903). * bpf: move explored_state() closer to the beginning of verifier.c (bsc#1225903). * bpf: perform byte-by-byte comparison only when necessary in regsafe() (bsc#1225903). * bpf: print full verifier states on infinite loop detection (bsc#1225903). * bpf: regsafe() must not skip check_ids() (bsc#1225903). * bpf: reject non-exact register type matches in regsafe() (bsc#1225903). * bpf: Remove unused insn_cnt argument from visit_[func_call_]insn() (bsc#1225903). * bpf: reorganize struct bpf_reg_state fields (bsc#1225903). * bpf: Skip invalid kfunc call in backtrack_insn (bsc#1225903). * bpf: states_equal() must build idmap for all function frames (bsc#1225903). * bpf: stop setting precise in current state (bsc#1225903). * bpf: support precision propagation in the presence of subprogs (bsc#1225903). * bpf: take into account liveness when propagating precision (bsc#1225903). * bpf: teach refsafe() to take into account ID remapping (bsc#1225903). * bpf: unconditionally reset backtrack_state masks on global func exit (bsc#1225903). * bpf: use check_ids() for active_lock comparison (bsc#1225903). * bpf: Use scalar ids in mark_chain_precision() (bsc#1225903). * bpf: verify callbacks as if they are called unknown number of times (bsc#1225903). * bpf: Verify scalar ids mapping in regsafe() using check_ids() (bsc#1225903). * bpf: widening for callback iterators (bsc#1225903). * btrfs: add device major-minor info in the struct btrfs_device (bsc#1227162). * btrfs: harden identification of a stale device (bsc#1227162). * btrfs: match stale devices by dev_t (bsc#1227162). * btrfs: remove the cross file system checks from remap (bsc#1227157). * btrfs: use dev_t to match device in device_matched (bsc#1227162). * btrfs: validate device maj:min during open (bsc#1227162). * bytcr_rt5640 : inverse jack detect for Archos 101 cesium (stable-fixes). * cachefiles: add output string to cachefiles_obj_[get|put]_ondemand_fd (git- fixes). * can: kvaser_usb: Explicitly initialize family in leafimx driver_info struct (git-fixes). * can: kvaser_usb: fix return value for hif_usb_send_regout (stable-fixes). * ceph: fix incorrect kmalloc size of pagevec mempool (bsc#1228418). * cgroup/cpuset: Prevent UAF in proc_cpuset_show() (bsc#1228801). * checkpatch: really skip LONG_LINE_* when LONG_LINE is ignored (git-fixes). * crypto: aead,cipher - zeroize key buffer after use (stable-fixes). * crypto: ecdh - explicitly zeroize private_key (stable-fixes). * crypto: ecdsa - Fix the public key format description (git-fixes). * crypto: hisilicon/sec - Fix memory leak for sec resource release (stable- fixes). * csky: ftrace: Drop duplicate implementation of arch_check_ftrace_location() (git-fixes). * decompress_bunzip2: fix rare decompression failure (git-fixes). * devres: Fix devm_krealloc() wasting memory (git-fixes). * devres: Fix memory leakage caused by driver API devm_free_percpu() (git- fixes). * dma: fix call order in dmam_free_coherent (git-fixes). * docs: crypto: async-tx-api: fix broken code example (git-fixes). * docs: Fix formatting of literal sections in fanotify docs (stable-fixes). * drm/amd/amdgpu: Fix style errors in amdgpu_drv.c & amdgpu_device.c (stable- fixes). * drm/amd/display: Account for cursor prefetch BW in DML1 mode support (stable-fixes). * drm/amd/display: Check for NULL pointer (stable-fixes). * drm/amd/display: Check index msg_id before read or write (stable-fixes). * drm/amd/display: Check pipe offset before setting vblank (stable-fixes). * drm/amd/display: Skip finding free audio for unknown engine_id (stable- fixes). * drm/amdgpu/atomfirmware: fix parsing of vram_info (stable-fixes). * drm/amdgpu/atomfirmware: silence UBSAN warning (stable-fixes). * drm/amdgpu: avoid using null object of framebuffer (stable-fixes). * drm/amdgpu: Check if NBIO funcs are NULL in amdgpu_device_baco_exit (git- fixes). * drm/amdgpu: Fix pci state save during mode-1 reset (git-fixes). * drm/amdgpu: Fix signedness bug in sdma_v4_0_process_trap_irq() (git-fixes). * drm/amdgpu: fix uninitialized scalar variable warning (stable-fixes). * drm/amdgpu: Fix uninitialized variable warnings (stable-fixes). * drm/amdgpu: Initialize timestamp for some legacy SOCs (stable-fixes). * drm/amdgpu: Remove GC HW IP 9.3.0 from noretry=1 (git-fixes). * drm/amd/pm: Fix aldebaran pcie speed reporting (git-fixes). * drm/amd/pm: remove logically dead code for renoir (git-fixes). * drm/dp_mst: Fix all mstb marked as not probed after suspend/resume (git- fixes). * drm/etnaviv: do not block scheduler when GPU is still active (stable-fixes). * drm/etnaviv: fix DMA direction handling for cached RW buffers (git-fixes). * drm/gma500: fix null pointer dereference in cdv_intel_lvds_get_modes (git- fixes). * drm/gma500: fix null pointer dereference in psb_intel_lvds_get_modes (git- fixes). * drm/i915/gt: Do not consider preemption during execlists_dequeue for gen8 (git-fixes). * drm/lima: fix shared irq handling on driver remove (stable-fixes). * drm/lima: Mark simple_ondemand governor as softdep (git-fixes). * drm/mediatek: Add OVL compatible name for MT8195 (git-fixes). * drm/meson: fix canvas release in bind function (git-fixes). * drm/mgag200: Bind I2C lifetime to DRM device (git-fixes). * drm/mgag200: Set DDC timeout in milliseconds (git-fixes). * drm/mipi-dsi: Fix mipi_dsi_dcs_write_seq() macro definition format (stable- fixes). * drm/mipi-dsi: Fix theoretical int overflow in mipi_dsi_dcs_write_seq() (git- fixes). * drm/msm/dpu: drop validity checks for clear_pending_flush() ctl op (git- fixes). * drm/msm/mdp5: Remove MDP_CAP_SRC_SPLIT from msm8x53_config (git-fixes). * drm/nouveau/dispnv04: fix null pointer dereference in nv17_tv_get_hd_modes (stable-fixes). * drm/nouveau/dispnv04: fix null pointer dereference in nv17_tv_get_ld_modes (stable-fixes). * drm/nouveau: fix null pointer dereference in nouveau_connector_get_modes (git-fixes). * drm/nouveau: prime: fix refcount underflow (git-fixes). * drm/panel: boe-tv101wum-nl6: Check for errors on the NOP in prepare() (git- fixes). * drm/panel: boe-tv101wum-nl6: If prepare fails, disable GPIO before regulators (git-fixes). * drm/panel: ilitek-ili9881c: Fix warning with GPIO controllers that sleep (stable-fixes). * drm: panel-orientation-quirks: Add quirk for Valve Galileo (stable-fixes). * drm/panfrost: Mark simple_ondemand governor as softdep (git-fixes). * drm/qxl: Add check for drm_cvt_mode (git-fixes). * drm/radeon: check bo_va->bo is non-NULL before using it (stable-fixes). * drm/radeon/radeon_display: Decrease the size of allocated memory (stable- fixes). * drm/vmwgfx: Fix a deadlock in dma buf fence polling (git-fixes). * drm/vmwgfx: Fix missing HYPERVISOR_GUEST dependency (stable-fixes). * drm/vmwgfx: Fix overlay when using Screen Targets (git-fixes). * eeprom: digsy_mtc: Fix 93xx46 driver probe failure (git-fixes). * exfat: check if cluster num is valid (git-fixes). * exfat: simplify is_valid_cluster() (git-fixes). * filelock: add a new locks_inode_context accessor function (git-fixes). * firmware: cs_dsp: Fix overflow checking of wmfw header (git-fixes). * firmware: cs_dsp: Prevent buffer overrun when processing V2 alg headers (git-fixes). * firmware: cs_dsp: Return error if block header overflows file (git-fixes). * firmware: cs_dsp: Use strnlen() on name fields in V1 wmfw files (git-fixes). * firmware: cs_dsp: Validate payload length before processing block (git- fixes). * firmware: dmi: Stop decoding on broken entry (stable-fixes). * firmware: turris-mox-rwtm: Do not complete if there are no waiters (git- fixes). * firmware: turris-mox-rwtm: Fix checking return value of wait_for_completion_timeout() (git-fixes). * firmware: turris-mox-rwtm: Initialize completion before mailbox (git-fixes). * fix build warning * fs: allow cross-vfsmount reflink/dedupe (bsc#1227157). * ftrace: Fix possible use-after-free issue in ftrace_location() (git-fixes). * fuse: verify {g,u}id mount options correctly (bsc#1228191). * gpio: mc33880: Convert comma to semicolon (git-fixes). * hfsplus: fix to avoid false alarm of circular locking (git-fixes). * hfsplus: fix uninit-value in copy_name (git-fixes). * HID: Add quirk for Logitech Casa touchpad (stable-fixes). * HID: wacom: Modify pen IDs (git-fixes). * hpet: Support 32-bit userspace (git-fixes). * hwmon: (adt7475) Fix default duty on fan is disabled (git-fixes). * hwmon: (max6697) Fix swapped temp{1,8} critical alarms (git-fixes). * hwmon: (max6697) Fix underflow when writing limit attributes (git-fixes). * i2c: mark HostNotify target address as used (git-fixes). * i2c: rcar: bring hardware to known state when probing (git-fixes). * i2c: tegra: Fix failure during probe deferral cleanup (git-fixes) * i2c: tegra: Share same DMA channel for RX and TX (bsc#1227661) * i2c: testunit: avoid re-issued work after read message (git-fixes). * i2c: testunit: correct Kconfig description (git-fixes). * Input: elan_i2c - do not leave interrupt disabled on suspend failure (git- fixes). * Input: elantech - fix touchpad state on resume for Lenovo N24 (stable- fixes). * Input: ff-core - prefer struct_size over open coded arithmetic (stable- fixes). * Input: qt1050 - handle CHIP_ID reading error (git-fixes). * Input: silead - Always support 10 fingers (stable-fixes). * intel_th: pci: Add Granite Rapids SOC support (stable-fixes). * intel_th: pci: Add Granite Rapids support (stable-fixes). * intel_th: pci: Add Lunar Lake support (stable-fixes). * intel_th: pci: Add Meteor Lake-S support (stable-fixes). * intel_th: pci: Add Sapphire Rapids SOC support (stable-fixes). * iommu/arm-smmu-v3: Free MSIs in case of ENOMEM (git-fixes). * ionic: clean interrupt before enabling queue to avoid credit race (git- fixes). * jffs2: Fix potential illegal address access in jffs2_free_inode (git-fixes). * jfs: Fix array-index-out-of-bounds in diFree (git-fixes). * jfs: xattr: fix buffer overflow for invalid xattr (bsc#1227383). * kABI: bpf: bpf_reg_state reorganization kABI workaround (bsc#1225903). * kABI: bpf: callback fixes kABI workaround (bsc#1225903). * kABI: bpf: struct bpf_{idmap,idset} kABI workaround (bsc#1225903). * kABI: bpf: tmp_str_buf kABI workaround (bsc#1225903). * kABI: rtas: Workaround false positive due to lost definition (bsc#1227487). * kabi/severities: ignore kABI for FireWire sound local symbols (bsc#1208783) * kabi/severities: Ignore tpm_tis_core_init (bsc#1082555). * kabi/severity: add nvme common code The nvme common code is also allowed to change the data structures, there are only internal users. * kabi: Use __iowriteXX_copy_inlined for in-kernel modules (bsc#1226502) * kernel-binary: vdso: Own module_dir * kernel/sched: Remove dl_boosted flag comment (git fixes (sched)). * knfsd: LOOKUP can return an illegal error value (git-fixes). * kobject_uevent: Fix OOB access within zap_modalias_env() (git-fixes). * kprobes: Make arch_check_ftrace_location static (git-fixes). * KVM: nVMX: Clear EXIT_QUALIFICATION when injecting an EPT Misconfig (git- fixes). * KVM: PPC: Book3S HV: Fix "rm_exit" entry in debugfs timings (bsc#1194869). * KVM: PPC: Book3S HV: Fix the set_one_reg for MMCR3 (bsc#1194869). * KVM: PPC: Book3S HV Nested: L2 LPCR should inherit L1 LPES setting (bsc#1194869). * KVM: PPC: Book3S HV: remove extraneous asterisk from rm_host_ipi_action() comment (bsc#1194869). * KVM: PPC: Book3S: Suppress failed alloc warning in H_COPY_TOFROM_GUEST (bsc#1194869). * KVM: PPC: Book3S: Suppress warnings when allocating too big memory slots (bsc#1194869). * KVM: s390: fix LPSWEY handling (bsc#1227635 git-fixes). * KVM: SVM: Process ICR on AVIC IPI delivery failure due to invalid target (git-fixes). * KVM: VMX: Report up-to-date exit qualification to userspace (git-fixes). * KVM: x86: Add IBPB_BRTYPE support (bsc#1228079). * KVM: x86: Always sync PIR to IRR prior to scanning I/O APIC routes (git- fixes). * KVM: x86: Bail from kvm_recalculate_phys_map() if x2APIC ID is out-of-bounds (git-fixes). * KVM: x86: Disable APIC logical map if logical ID covers multiple MDAs (git- fixes). * KVM: x86: Disable APIC logical map if vCPUs are aliased in logical mode (git-fixes). * KVM: x86: Do not advertise guest.MAXPHYADDR as host.MAXPHYADDR in CPUID (git-fixes). * KVM: x86: Explicitly skip optimized logical map setup if vCPU's LDR==0 (git- fixes). * KVM: x86: Explicitly track all possibilities for APIC map's logical modes (git-fixes). * KVM: x86: Fix broken debugregs ABI for 32 bit kernels (git-fixes). * KVM: x86: Fix KVM_GET_MSRS stack info leak (git-fixes). * KVM: x86: Honor architectural behavior for aliased 8-bit APIC IDs (git- fixes). * KVM: x86: Purge "highest ISR" cache when updating APICv state (git-fixes). * KVM: x86: Save/restore all NMIs when multiple NMIs are pending (git-fixes). * KVM: x86: Skip redundant x2APIC logical mode optimized cluster setup (git- fixes). * leds: ss4200: Convert PCIBIOS_* return codes to errnos (git-fixes). * leds: triggers: Flush pending brightness before activating trigger (git- fixes). * leds: trigger: Unregister sysfs attributes before calling deactivate() (git- fixes). * libceph: fix race between delayed_work() and ceph_monc_stop() (bsc#1228190). * lib: objagg: Fix general protection fault (git-fixes). * lib: objagg: Fix spelling (git-fixes). * lib: test_objagg: Fix spelling (git-fixes). * lockd: set missing fl_flags field when retrieving args (git-fixes). * lockd: use locks_inode_context helper (git-fixes). * Make AMD_HSMP=m and mark it unsupported in supported.conf (jsc#PED-8582) * media: dvb: as102-fe: Fix as10x_register_addr packing (stable-fixes). * media: dvbdev: Initialize sbuf (stable-fixes). * media: dvb-frontends: tda10048: Fix integer overflow (stable-fixes). * media: dvb-frontends: tda18271c2dd: Remove casting during div (stable- fixes). * media: dvb-usb: dib0700_devices: Add missing release_firmware() (stable- fixes). * media: dvb-usb: Fix unexpected infinite loop in dvb_usb_read_remote_control() (git-fixes). * media: dw2102: Do not translate i2c read into write (stable-fixes). * media: dw2102: fix a potential buffer overflow (git-fixes). * media: imon: Fix race getting ictx->lock (git-fixes). * media: s2255: Use refcount_t instead of atomic_t for num_channels (stable- fixes). * media: uvcvideo: Fix integer overflow calculating timestamp (git-fixes). * media: uvcvideo: Override default flags (git-fixes). * media: venus: fix use after free in vdec_close (git-fixes). * media: venus: flush all buffers in output plane streamoff (git-fixes). * mei: demote client disconnect warning on suspend to debug (stable-fixes). * mfd: omap-usb-tll: Use struct_size to allocate tll (git-fixes). * mtd: partitions: redboot: Added conversion of operands to a larger type (stable-fixes). * net/dcb: check for detached device before executing callbacks (bsc#1215587). * netfilter: conntrack: ignore overly delayed tcp packets (bsc#1223180). * netfilter: conntrack: prepare tcp_in_window for ternary return value (bsc#1223180). * netfilter: conntrack: remove pr_debug callsites from tcp tracker (bsc#1223180). * netfilter: conntrack: work around exceeded receive window (bsc#1223180). * netfs, fscache: export fscache_put_volume() and add fscache_try_get_volume() (bsc#1228459 bsc#1228462). * net: mana: Fix possible double free in error handling path (git-fixes). * net: mana: Fix the extra HZ in mana_hwc_send_request (git-fixes). * net: usb: qmi_wwan: add Telit FN912 compositions (git-fixes). * net: usb: sr9700: fix uninitialized variable use in sr_mdio_read (git- fixes). * nfc/nci: Add the inconsistency check between the input data length and count (stable-fixes). * NFSD: Add an nfsd_file_fsync tracepoint (git-fixes). * NFSD: Add an NFSD_FILE_GC flag to enable nfsd_file garbage collection (git- fixes). * nfsd: Add errno mapping for EREMOTEIO (git-fixes). * NFSD: Add nfsd_file_lru_dispose_list() helper (git-fixes). * nfsd: add some comments to nfsd_file_do_acquire (git-fixes). * nfsd: allow nfsd_file_get to sanely handle a NULL pointer (git-fixes). * nfsd: allow reaping files still under writeback (git-fixes). * NFSD: Avoid calling fh_drop_write() twice in do_nfsd_create() (git-fixes). * NFSD: Clean up nfsd3_proc_create() (git-fixes). * nfsd: Clean up nfsd_file_put() (git-fixes). * NFSD: Clean up nfsd_open_verified() (git-fixes). * NFSD: Clean up unused code after rhashtable conversion (git-fixes). * NFSD: Convert filecache to rhltable (git-fixes). * NFSD: Convert the filecache to use rhashtable (git-fixes). * NFSD: De-duplicate hash bucket indexing (git-fixes). * nfsd: do not free files unconditionally in __nfsd_file_cache_purge (git- fixes). * nfsd: do not fsync nfsd_files on last close (git-fixes). * nfsd: do not hand out delegation on setuid files being opened for write (git-fixes). * nfsd: do not kill nfsd_files because of lease break error (git-fixes). * nfsd: Do not leave work of closing files to a work queue (bsc#1228140). * nfsd: do not take/put an extra reference when putting a file (git-fixes). * NFSD enforce filehandle check for source file in COPY (git-fixes). * NFSD: Ensure nf_inode is never dereferenced (git-fixes). * nfsd: fix handling of cached open files in nfsd4_open codepath (git-fixes). * NFSD: Fix licensing header in filecache.c (git-fixes). * nfsd: fix net-namespace logic in __nfsd_file_cache_purge (git-fixes). * nfsd: fix nfsd_file_unhash_and_dispose (git-fixes). * NFSD: Fix potential use-after-free in nfsd_file_put() (git-fixes). * NFSD: Fix problem of COMMIT and NFS4ERR_DELAY in infinite loop (git-fixes). * NFSD: Fix the filecache LRU shrinker (git-fixes). * nfsd: fix up the filecache laundrette scheduling (git-fixes). * nfsd: fix use-after-free in nfsd_file_do_acquire tracepoint (git-fixes). * NFSD: Flesh out a documenting comment for filecache.c (git-fixes). * NFSD: handle errors better in write_ports_addfd() (git-fixes). * NFSD: Instantiate a struct file when creating a regular NFSv4 file (git- fixes). * NFSD: Leave open files out of the filecache LRU (git-fixes). * nfsd: map EBADF (git-fixes). * NFSD: Move nfsd_file_trace_alloc() tracepoint (git-fixes). * NFSD: nfsd_file_hash_remove can compute hashval (git-fixes). * nfsd: NFSD_FILE_KEY_INODE only needs to find GC'ed entries (git-fixes). * NFSD: nfsd_file_put() can sleep (git-fixes). * NFSD: nfsd_file_unhash can compute hashval from nf->nf_inode (git-fixes). * NFSD: No longer record nf_hashval in the trace log (git-fixes). * NFSD: Pass the target nfsd_file to nfsd_commit() (git-fixes). * nfsd: put the export reference in nfsd4_verify_deleg_dentry (git-fixes). * NFSD: Record number of flush calls (git-fixes). * NFSD: Refactor nfsd_create_setattr() (git-fixes). * NFSD: Refactor __nfsd_file_close_inode() (git-fixes). * NFSD: Refactor nfsd_file_gc() (git-fixes). * NFSD: Refactor nfsd_file_lru_scan() (git-fixes). * NFSD: Refactor NFSv3 CREATE (git-fixes). * NFSD: Refactor NFSv4 OPEN(CREATE) (git-fixes). * NFSD: Remove do_nfsd_create() (git-fixes). * NFSD: Remove lockdep assertion from unhash_and_release_locked() (git-fixes). * NFSD: Remove nfsd_file::nf_hashval (git-fixes). * nfsd: remove the pages_flushed statistic from filecache (git-fixes). * nfsd: reorganize filecache.c (git-fixes). * NFSD: Replace the "init once" mechanism (git-fixes). * NFSD: Report average age of filecache items (git-fixes). * NFSD: Report count of calls to nfsd_file_acquire() (git-fixes). * NFSD: Report count of freed filecache items (git-fixes). * NFSD: Report filecache LRU size (git-fixes). * NFSD: Report the number of items evicted by the LRU walk (git-fixes). * nfsd: Retry once in nfsd_open on an -EOPENSTALE return (git-fixes). * nfsd: rework hashtable handling in nfsd_do_file_acquire (git-fixes). * nfsd: rework refcounting in filecache (git-fixes). * NFSD: Separate tracepoints for acquire and create (git-fixes). * NFSD: Set up an rhashtable for the filecache (git-fixes). * nfsd: silence extraneous printk on nfsd.ko insertion (git-fixes). * NFSD: simplify per-net file cache management (git-fixes). * nfsd: simplify test_bit return in NFSD_FILE_KEY_FULL comparator (git-fixes). * nfsd: simplify the delayed disposal list code (git-fixes). * NFSD: Trace filecache LRU activity (git-fixes). * NFSD: Trace filecache opens (git-fixes). * NFSD: verify the opened dentry after setting a delegation (git-fixes). * NFSD: WARN when freeing an item still linked via nf_lru (git-fixes). * NFSD: Write verifier might go backwards (git-fixes). * NFSD: Zero counters when the filecache is re-initialized (git-fixes). * NFS: Fix READ_PLUS when server does not support OP_READ_PLUS (git-fixes). * nfs: fix undefined behavior in nfs_block_bits() (git-fixes). * nfs: keep server info for remounts (git-fixes). * nfs: Leave pages in the pagecache if readpage failed (git-fixes). * NFSv4: Fixup smatch warning for ambiguous return (git-fixes). * NFSv4.x: by default serialize open/close operations (bsc#1223863 bsc#1227362) * nilfs2: add missing check for inode numbers on directory entries (git- fixes). * nilfs2: add missing check for inode numbers on directory entries (stable- fixes). * nilfs2: avoid undefined behavior in nilfs_cnt32_ge macro (git-fixes). * nilfs2: convert persistent object allocator to use kmap_local (git-fixes). * nilfs2: fix incorrect inode allocation from reserved inodes (git-fixes). * nilfs2: fix inode number range checks (git-fixes). * nilfs2: fix inode number range checks (stable-fixes). * nvme: adjust multiples of NVME_CTRL_PAGE_SIZE in offset (git-fixes). * nvme-auth: alloc nvme_dhchap_key as single buffer (git-fixes). * nvme-auth: allow mixing of secret and hash lengths (git-fixes). * nvme-auth: use transformed key size to create resp (git-fixes). * nvme: avoid double free special payload (git-fixes). * nvme: fixup comment for nvme RDMA Provider Type (git-fixes). * nvme-multipath: find NUMA path only for online numa-node (git-fixes). * nvme-pci: add missing condition check for existence of mapped data (git- fixes). * nvme-pci: Fix the instructions for disabling power management (git-fixes). * nvmet: always initialize cqe.result (git-fixes). * nvmet-auth: fix nvmet_auth hash error handling (git-fixes). * nvmet: fix a possible leak when destroy a ctrl during qp establishment (git- fixes). * nvme: use ctrl state accessor (bsc#1215492). * ocfs2: fix DIO failure due to insufficient transaction credits (bsc#1216834). * ocfs2: remove redundant assignment to variable free_space (bsc#1228409). * ocfs2: strict bound check before memcmp in ocfs2_xattr_find_entry() (bsc#1228410). * orangefs: fix out-of-bounds fsid access (git-fixes). * PCI: Add PCI_ERROR_RESPONSE and related definitions (stable-fixes). * PCI/DPC: Fix use-after-free on concurrent DPC and hot-removal (git-fixes). * PCI: Extend ACS configurability (bsc#1228090). * PCI: Fix resource double counting on remove & rescan (git-fixes). * PCI: hv: Return zero, not garbage, when reading PCI_INTERRUPT_PIN (git- fixes). * PCI: Introduce cleanup helpers for device reference counts and locks (git- fixes). * PCI: Introduce cleanup helpers for device reference counts and locks (stable-fixes). * PCI: keystone: Do not enable BAR 0 for AM654x (git-fixes). * PCI: keystone: Fix NULL pointer dereference in case of DT error in ks_pcie_setup_rc_app_regs() (git-fixes). * PCI: keystone: Relocate ks_pcie_set/clear_dbi_mode() (git-fixes). * PCI/PM: Avoid D3cold for HP Pavilion 17 PC/1972 PCIe Ports (git-fixes). * PCI/PM: Avoid D3cold for HP Pavilion 17 PC/1972 PCIe Ports (stable-fixes). * PCI: rockchip: Use GPIOD_OUT_LOW flag while requesting ep_gpio (git-fixes). * PCI: tegra194: Set EP alignment restriction for inbound ATU (git-fixes). * pinctrl: core: fix possible memory leak when pinctrl_enable() fails (git- fixes). * pinctrl: freescale: mxs: Fix refcount of child (git-fixes). * pinctrl: single: fix possible memory leak when pinctrl_enable() fails (git- fixes). * pinctrl: ti: ti-iodelay: fix possible memory leak when pinctrl_enable() fails (git-fixes). * platform/chrome: cros_ec_debugfs: fix wrong EC message version (git-fixes). * platform/chrome: cros_ec_proto: Lock device when updating MKBP version (git- fixes). * platform/x86: dell-smbios-base: Use sysfs_emit() (stable-fixes). * platform/x86: dell-smbios: Fix wrong token data in sysfs (git-fixes). * platform/x86: lg-laptop: Change ACPI device id (stable-fixes). * platform/x86: lg-laptop: Remove LGEX0815 hotkey handling (stable-fixes). * platform/x86: touchscreen_dmi: Add info for GlobalSpace SolT IVW 11.6" tablet (stable-fixes). * platform/x86: touchscreen_dmi: Add info for the EZpad 6s Pro (stable-fixes). * platform/x86: wireless-hotkey: Add support for LG Airplane Button (stable- fixes). * powerpc/cpuidle: Set CPUIDLE_FLAG_POLLING for snooze state (bsc#1227121 ltc#207129). * powerpc: fix a file leak in kvm_vcpu_ioctl_enable_cap() (bsc#1194869). * powerpc/kasan: Disable address sanitization in kexec paths (bsc#1194869). * powerpc/pseries: Fix scv instruction crash with kexec (bsc#1194869). * powerpc/rtas: clean up includes (bsc#1227487). * powerpc/rtas: Prevent Spectre v1 gadget construction in sys_rtas() (bsc#1227487). * power: supply: cros_usbpd: provide ID table for avoiding fallback match (stable-fixes). * pwm: stm32: Always do lazy disabling (git-fixes). * RDMA/cache: Release GID table even if leak is detected (git-fixes) * RDMA/device: Return error earlier if port in not valid (git-fixes) * RDMA/hns: Check atomic wr length (git-fixes) * RDMA/hns: Fix insufficient extend DB for VFs. (git-fixes) * RDMA/hns: Fix mbx timing out before CMD execution is completed (git-fixes) * RDMA/hns: Fix missing pagesize and alignment check in FRMR (git-fixes) * RDMA/hns: Fix shift-out-bounds when max_inline_data is 0 (git-fixes) * RDMA/hns: Fix soft lockup under heavy CEQE load (git-fixes) * RDMA/hns: Fix undifined behavior caused by invalid max_sge (git-fixes) * RDMA/hns: Fix unmatch exception handling when init eq table fails (git- fixes) * RDMA/iwcm: Fix a use-after-free related to destroying CM IDs (git-fixes) * RDMA/mana_ib: Ignore optional access flags for MRs (git-fixes). * RDMA/mlx4: Fix truncated output warning in alias_GUID.c (git-fixes) * RDMA/mlx4: Fix truncated output warning in mad.c (git-fixes) * RDMA/mlx5: Set mkeys for dmabuf at PAGE_SIZE (git-fixes) * RDMA/restrack: Fix potential invalid address access (git-fixes) * RDMA/rxe: Do not set BTH_ACK_MASK for UC or UD QPs (git-fixes) * regmap-i2c: Subtract reg size from max_write (stable-fixes). * Revert "ALSA: firewire-lib: obsolete workqueue for period update" (bsc#1208783). * Revert "ALSA: firewire-lib: operate for period elapse event in process context" (bsc#1208783). * Revert "leds: led-core: Fix refcount leak in of_led_get()" (git-fixes). * Revert "usb: musb: da8xx: Set phy in OTG mode by default" (stable-fixes). * rpcrdma: fix handling for RDMA_CM_EVENT_DEVICE_REMOVAL (git-fixes). * rpm/guards: fix precedence issue with control flow operator With perl 5.40 it report the following error on rpm/guards script: Possible precedence issue with control flow operator (exit) at scripts/guards line 208. Fix the issue by adding parenthesis around ternary operator. * rtc: cmos: Fix return value of nvmem callbacks (git-fixes). * rtc: interface: Add RTC offset to alarm after fix-up (git-fixes). * rtc: isl1208: Fix return value of nvmem callbacks (git-fixes). * rtlwifi: rtl8192de: Style clean-ups (stable-fixes). * s390: Implement __iowrite32_copy() (bsc#1226502) * s390: Stop using weak symbols for __iowrite64_copy() (bsc#1226502) * saa7134: Unchecked i2c_transfer function result fixed (git-fixes). * sched/fair: Do not balance task to its current running CPU (git fixes (sched)). * sched: Fix stop_one_cpu_nowait() vs hotplug (git fixes (sched)). * scsi: lpfc: Allow DEVICE_RECOVERY mode after RSCN receipt if in PRLI_ISSUE state (bsc#1228857). * scsi: lpfc: Cancel ELS WQE instead of issuing abort when SLI port is inactive (bsc#1228857). * scsi: lpfc: Fix handling of fully recovered fabric node in dev_loss callbk (bsc#1228857). * scsi: lpfc: Fix incorrect request len mbox field when setting trunking via sysfs (bsc#1228857). * scsi: lpfc: Handle mailbox timeouts in lpfc_get_sfp_info (bsc#1228857). * scsi: lpfc: Relax PRLI issue conditions after GID_FT response (bsc#1228857). * scsi: lpfc: Revise lpfc_prep_embed_io routine with proper endian macro usages (bsc#1228857). * scsi: lpfc: Update lpfc version to 14.4.0.3 (bsc#1228857). * scsi: qla2xxx: Avoid possible run-time warning with long model_num (bsc#1228850). * scsi: qla2xxx: Complete command early within lock (bsc#1228850). * scsi: qla2xxx: Convert comma to semicolon (bsc#1228850). * scsi: qla2xxx: Drop driver owner assignment (bsc#1228850). * scsi: qla2xxx: During vport delete send async logout explicitly (bsc#1228850). * scsi: qla2xxx: Fix debugfs output for fw_resource_count (bsc#1228850). * scsi: qla2xxx: Fix flash read failure (bsc#1228850). * scsi: qla2xxx: Fix for possible memory corruption (bsc#1228850). * scsi: qla2xxx: Fix optrom version displayed in FDMI (bsc#1228850). * scsi: qla2xxx: Indent help text (bsc#1228850). * scsi: qla2xxx: Reduce fabric scan duplicate code (bsc#1228850). * scsi: qla2xxx: Remove unused struct 'scsi_dif_tuple' (bsc#1228850). * scsi: qla2xxx: Return ENOBUFS if sg_cnt is more than one for ELS cmds (bsc#1228850). * scsi: qla2xxx: Unable to act on RSCN for port online (bsc#1228850). * scsi: qla2xxx: Update version to 10.02.09.300-k (bsc#1228850). * scsi: qla2xxx: Use QP lock to search for bsg (bsc#1228850). * scsi: qla2xxx: validate nvme_local_port correctly (bsc#1228850). * selftests/bpf: Add a selftest for checking subreg equality (bsc#1225903). * selftests/bpf: add pre bpf_prog_test_run_opts() callback for test_loader (bsc#1225903). * selftests/bpf: add precision propagation tests in the presence of subprogs (bsc#1225903). * selftests/bpf: Add pruning test case for bpf_spin_lock (bsc#1225903). * selftests/bpf: Check if mark_chain_precision() follows scalar ids (bsc#1225903). * selftests/bpf: check if max number of bpf_loop iterations is tracked (bsc#1225903). * selftests/bpf: fix __retval() being always ignored (bsc#1225903). * selftests/bpf: fix unpriv_disabled check in test_verifier (bsc#1225903). * selftests/bpf: __imm_insn & __imm_const macro for bpf_misc.h (bsc#1225903). * selftests/bpf: make test_align selftest more robust (bsc#1225903). * selftests/bpf: populate map_array_ro map for verifier_array_access test (bsc#1225903). * selftests/bpf: prog_tests entry point for migrated test_verifier tests (bsc#1225903). * selftests/bpf: Report program name on parse_test_spec error (bsc#1225903). * selftests/bpf: Support custom per-test flags and multiple expected messages (bsc#1225903). * selftests/bpf: test case for callback_depth states pruning logic (bsc#1225903). * selftests/bpf: test case for relaxed prunning of active_lock.id (bsc#1225903). * selftests/bpf: test cases for regsafe() bug skipping check_id() (bsc#1225903). * selftests/bpf: Tests execution support for test_loader.c (bsc#1225903). * selftests/bpf: tests for iterating callbacks (bsc#1225903). * selftests/bpf: test widening for iterating callbacks (bsc#1225903). * selftests/bpf: track string payload offset as scalar in strobemeta (bsc#1225903). * selftests/bpf: Unprivileged tests for test_loader.c (bsc#1225903). * selftests/bpf: Verify copy_register_state() preserves parent/live fields (bsc#1225903). * selftests/bpf: verify states_equal() maintains idmap across all frames (bsc#1225903). * selftests/bpf: Verify that check_ids() is used for scalars in regsafe() (bsc#1225903). * selftests/sigaltstack: Fix ppc64 GCC build (git-fixes). * soc: ti: wkup_m3_ipc: Send NULL dummy message instead of pointer message (stable-fixes). * spi: imx: Do not expect DMA for i.MX{25,35,50,51,53} cspi devices (stable- fixes). * spi: mux: set ctlr->bits_per_word_mask (stable-fixes). * string.h: Introduce memtostr() and memtostr_pad() (bsc#1228850). * SUNRPC: avoid soft lockup when transmitting UDP to reachable server (bsc#1225272). * SUNRPC: Fix gss_free_in_token_pages() (git-fixes). * SUNRPC: Fix loop termination condition in gss_free_in_token_pages() (git- fixes). * sunrpc: fix NFSACL RPC retry on soft mount (git-fixes). * SUNRPC: return proper error from gss_wrap_req_priv (git-fixes). * supported.conf: * tpm: Allow system suspend to continue when TPM suspend fails (bsc#1082555). * tpm: Prevent hwrng from activating during resume (bsc#1082555). * tpm_tis: Resend command to recover from data transfer errors (bsc#1082555). * tpm_tis: Use tpm_chip_{start,stop} decoration inside tpm_tis_resume (bsc#1082555). * tpm, tpm: Implement usage counter for locality (bsc#1082555). * tpm, tpm_tis: Avoid cache incoherency in test for interrupts (bsc#1082555). * tpm, tpm_tis: Claim locality before writing interrupt registers (bsc#1082555). * tpm, tpm_tis: Claim locality in interrupt handler (bsc#1082555). * tpm, tpm_tis: Claim locality when interrupts are reenabled on resume (bsc#1082555). * tpm, tpm_tis: correct tpm_tis_flags enumeration values (bsc#1082555). * tpm, tpm_tis: Do not skip reset of original interrupt vector (bsc#1082555). * tpm, tpm_tis: Only handle supported interrupts (bsc#1082555). * tracing: Build event generation tests only as modules (git-fixes). * tracing/net_sched: NULL pointer dereference in perf_trace_qdisc_reset() (git-fixes). * tracing/osnoise: Add osnoise/options file (bsc#1228330) * tracing/osnoise: Add OSNOISE_WORKLOAD option (bsc#1228330) * tracing/osnoise: Do not follow tracing_cpumask (bsc#1228330) * tracing/osnoise: Fix notify new tracing_max_latency (bsc#1228330) * tracing/osnoise: Make osnoise_instances static (bsc#1228330) * tracing/osnoise: Split workload start from the tracer start (bsc#1228330) * tracing/osnoise: Support a list of trace_array *tr (bsc#1228330) * tracing/osnoise: Use built-in RCU list checking (bsc#1228330) * tracing/timerlat: Notify new max thread latency (bsc#1228330) * USB: Add USB_QUIRK_NO_SET_INTF quirk for START BP-850k (stable-fixes). * usb: cdns3: allocate TX FIFO size according to composite EP number (git- fixes). * usb: cdns3: fix incorrect calculation of ep_buf_size when more than one config (git-fixes). * usb: cdns3: fix iso transfer error when mult is not zero (git-fixes). * usb: cdns3: improve handling of unaligned address case (git-fixes). * usb: cdns3: optimize OUT transfer by copying only actual received data (git- fixes). * usb: cdns3: skip set TRB_IOC when usb_request: no_interrupt is true (git- fixes). * USB: core: Fix duplicate endpoint bug by clearing reserved bits in the descriptor (git-fixes). * usb: dwc3: gadget: Do not delay End Transfer on delayed_status (git-fixes). * usb: dwc3: gadget: Force sending delayed status during soft disconnect (git- fixes). * usb: dwc3: gadget: Synchronize IRQ between soft connect/disconnect (git- fixes). * usb: gadget: call usb_gadget_check_config() to verify UDC capability (git- fixes). * usb: gadget: configfs: Prevent OOB read/write in usb_string_copy() (stable- fixes). * usb: gadget: printer: SS+ support (stable-fixes). * usb: misc: uss720: check for incompatible versions of the Belkin F5U002 (stable-fixes). * USB: serial: mos7840: fix crash on resume (git-fixes). * USB: serial: option: add Fibocom FM350-GL (stable-fixes). * USB: serial: option: add Netprisma LCUK54 series modules (stable-fixes). * USB: serial: option: add Rolling RW350-GL variants (stable-fixes). * USB: serial: option: add support for Foxconn T99W651 (stable-fixes). * USB: serial: option: add Telit FN912 rmnet compositions (stable-fixes). * USB: serial: option: add Telit generic core-dump composition (stable-fixes). * usb: typec: tcpm: clear pd_event queue in PORT_RESET (git-fixes). * usb: xhci-plat: Do not include xhci.h (git-fixes). * USB: xhci-plat: fix legacy PHY double init (git-fixes). * wifi: ath11k: fix wrong handling of CCMP256 and GCMP ciphers (git-fixes). * wifi: brcmsmac: LCN PHY code is used for BCM4313 2G-only device (git-fixes). * wifi: cfg80211: fix typo in cfg80211_calculate_bitrate_he() (git-fixes). * wifi: cfg80211: handle 2x996 RU allocation in cfg80211_calculate_bitrate_he() (git-fixes). * wifi: cfg80211: restrict NL80211_ATTR_TXQ_QUANTUM values (git-fixes). * wifi: cfg80211: wext: add extra SIOCSIWSCAN data check (stable-fixes). * wifi: iwlwifi: mvm: d3: fix WoWLAN command version lookup (stable-fixes). * wifi: iwlwifi: mvm: Handle BIGTK cipher in kek_kck cmd (stable-fixes). * wifi: iwlwifi: mvm: properly set 6 GHz channel direct probe option (stable- fixes). * wifi: mac80211: disable softirqs for queued frame handling (git-fixes). * wifi: mac80211: fix UBSAN noise in ieee80211_prep_hw_scan() (stable-fixes). * wifi: mac80211: handle tasklet frames before stopping (stable-fixes). * wifi: mac80211: mesh: init nonpeer_pm to active by default in mesh sdata (stable-fixes). * wifi: mt76: replace skb_put with skb_put_zero (stable-fixes). * wifi: mwifiex: Fix interface type change (git-fixes). * wifi: rtw89: Fix array index mistake in rtw89_sta_info_get_iter() (git- fixes). * wifi: wilc1000: fix ies_len type in connect path (git-fixes). * workqueue: Improve scalability of workqueue watchdog touch (bsc#1193454). * workqueue: wq_watchdog_touch is always called with valid CPU (bsc#1193454). * x86/amd_nb: Use Family 19h Models 60h-7Fh Function 4 IDs (git-fixes). * x86/apic: Force native_apic_mem_read() to use the MOV instruction (git- fixes). * x86/bhi: Avoid warning in #DB handler due to BHI mitigation (git-fixes). * x86/bugs: Remove default case for fully switched enums (bsc#1227900). * x86/fpu: Fix AMD X86_BUG_FXSAVE_LEAK fixup (git-fixes). * x86/ibt,ftrace: Search for **fentry** location (git-fixes). * x86/Kconfig: Transmeta Crusoe is CPU family 5, not 6 (git-fixes). * x86/mm: Allow guest.enc_status_change_prepare() to fail (git-fixes). * x86/mm: Fix enc_status_change_finish_noop() (git-fixes). * x86/purgatory: Switch to the position-independent small code model (git- fixes). * x86/srso: Move retbleed IBPB check into existing 'has_microcode' code block (bsc#1227900). * x86/srso: Remove 'pred_cmd' label (bsc#1227900). * x86: Stop using weak symbols for __iowrite32_copy() (bsc#1226502) * x86/tdx: Fix race between set_memory_encrypted() and load_unaligned_zeropad() (git-fixes). * xfs: Add cond_resched to block unmap range and reflink remap path (bsc#1228226). * xhci: Apply broken streams quirk to Etron EJ188 xHCI host (stable-fixes). * xhci: Apply reset resume quirk to Etron EJ188 xHCI host (stable-fixes). * xhci: Set correct transferred length for cancelled bulk transfers (stable- fixes). ## Special Instructions and Notes: * Please reboot the system after installing this update. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.5 zypper in -t patch SUSE-2024-2894=1 openSUSE-SLE-15.5-2024-2894=1 * openSUSE Leap Micro 5.5 zypper in -t patch openSUSE-Leap-Micro-5.5-2024-2894=1 * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2024-2894=1 * SUSE Linux Enterprise Live Patching 15-SP5 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP5-2024-2894=1 * SUSE Real Time Module 15-SP5 zypper in -t patch SUSE-SLE-Module-RT-15-SP5-2024-2894=1 ## Package List: * openSUSE Leap 15.5 (noarch) * kernel-source-rt-5.14.21-150500.13.64.1 * kernel-devel-rt-5.14.21-150500.13.64.1 * openSUSE Leap 15.5 (x86_64) * kernel-rt-livepatch-5.14.21-150500.13.64.1 * ocfs2-kmp-rt-debuginfo-5.14.21-150500.13.64.1 * cluster-md-kmp-rt-debuginfo-5.14.21-150500.13.64.1 * kernel-rt_debug-devel-5.14.21-150500.13.64.1 * kernel-livepatch-SLE15-SP5-RT_Update_18-debugsource-1-150500.11.3.1 * ocfs2-kmp-rt-5.14.21-150500.13.64.1 * gfs2-kmp-rt-5.14.21-150500.13.64.1 * kernel-rt_debug-debuginfo-5.14.21-150500.13.64.1 * kernel-rt-optional-debuginfo-5.14.21-150500.13.64.1 * kernel-livepatch-5_14_21-150500_13_64-rt-debuginfo-1-150500.11.3.1 * reiserfs-kmp-rt-5.14.21-150500.13.64.1 * kernel-rt-devel-debuginfo-5.14.21-150500.13.64.1 * kernel-rt-devel-5.14.21-150500.13.64.1 * kernel-rt-debuginfo-5.14.21-150500.13.64.1 * kselftests-kmp-rt-debuginfo-5.14.21-150500.13.64.1 * kernel-rt_debug-devel-debuginfo-5.14.21-150500.13.64.1 * kernel-rt_debug-debugsource-5.14.21-150500.13.64.1 * cluster-md-kmp-rt-5.14.21-150500.13.64.1 * kernel-rt_debug-livepatch-devel-5.14.21-150500.13.64.1 * kernel-rt_debug-vdso-5.14.21-150500.13.64.1 * reiserfs-kmp-rt-debuginfo-5.14.21-150500.13.64.1 * kernel-rt_debug-vdso-debuginfo-5.14.21-150500.13.64.1 * gfs2-kmp-rt-debuginfo-5.14.21-150500.13.64.1 * dlm-kmp-rt-5.14.21-150500.13.64.1 * kernel-rt-optional-5.14.21-150500.13.64.1 * kernel-rt-debugsource-5.14.21-150500.13.64.1 * dlm-kmp-rt-debuginfo-5.14.21-150500.13.64.1 * kernel-rt-livepatch-devel-5.14.21-150500.13.64.1 * kernel-rt-vdso-debuginfo-5.14.21-150500.13.64.1 * kernel-syms-rt-5.14.21-150500.13.64.1 * kernel-rt-extra-5.14.21-150500.13.64.1 * kernel-livepatch-5_14_21-150500_13_64-rt-1-150500.11.3.1 * kselftests-kmp-rt-5.14.21-150500.13.64.1 * kernel-rt-extra-debuginfo-5.14.21-150500.13.64.1 * kernel-rt-vdso-5.14.21-150500.13.64.1 * openSUSE Leap 15.5 (nosrc x86_64) * kernel-rt_debug-5.14.21-150500.13.64.1 * kernel-rt-5.14.21-150500.13.64.1 * openSUSE Leap Micro 5.5 (nosrc x86_64) * kernel-rt-5.14.21-150500.13.64.1 * openSUSE Leap Micro 5.5 (x86_64) * kernel-rt-debuginfo-5.14.21-150500.13.64.1 * kernel-rt-debugsource-5.14.21-150500.13.64.1 * SUSE Linux Enterprise Micro 5.5 (nosrc x86_64) * kernel-rt-5.14.21-150500.13.64.1 * SUSE Linux Enterprise Micro 5.5 (x86_64) * kernel-rt-debuginfo-5.14.21-150500.13.64.1 * kernel-rt-debugsource-5.14.21-150500.13.64.1 * SUSE Linux Enterprise Micro 5.5 (noarch) * kernel-source-rt-5.14.21-150500.13.64.1 * SUSE Linux Enterprise Live Patching 15-SP5 (x86_64) * kernel-livepatch-SLE15-SP5-RT_Update_18-debugsource-1-150500.11.3.1 * kernel-livepatch-5_14_21-150500_13_64-rt-1-150500.11.3.1 * kernel-livepatch-5_14_21-150500_13_64-rt-debuginfo-1-150500.11.3.1 * SUSE Real Time Module 15-SP5 (x86_64) * ocfs2-kmp-rt-debuginfo-5.14.21-150500.13.64.1 * cluster-md-kmp-rt-debuginfo-5.14.21-150500.13.64.1 * kernel-rt_debug-devel-5.14.21-150500.13.64.1 * ocfs2-kmp-rt-5.14.21-150500.13.64.1 * gfs2-kmp-rt-5.14.21-150500.13.64.1 * kernel-rt_debug-debuginfo-5.14.21-150500.13.64.1 * kernel-rt-devel-debuginfo-5.14.21-150500.13.64.1 * kernel-rt-devel-5.14.21-150500.13.64.1 * kernel-rt-debuginfo-5.14.21-150500.13.64.1 * kernel-rt_debug-devel-debuginfo-5.14.21-150500.13.64.1 * kernel-rt_debug-debugsource-5.14.21-150500.13.64.1 * cluster-md-kmp-rt-5.14.21-150500.13.64.1 * kernel-rt_debug-vdso-5.14.21-150500.13.64.1 * kernel-rt_debug-vdso-debuginfo-5.14.21-150500.13.64.1 * gfs2-kmp-rt-debuginfo-5.14.21-150500.13.64.1 * dlm-kmp-rt-5.14.21-150500.13.64.1 * kernel-rt-debugsource-5.14.21-150500.13.64.1 * dlm-kmp-rt-debuginfo-5.14.21-150500.13.64.1 * kernel-rt-vdso-debuginfo-5.14.21-150500.13.64.1 * kernel-syms-rt-5.14.21-150500.13.64.1 * kernel-rt-vdso-5.14.21-150500.13.64.1 * SUSE Real Time Module 15-SP5 (noarch) * kernel-source-rt-5.14.21-150500.13.64.1 * kernel-devel-rt-5.14.21-150500.13.64.1 * SUSE Real Time Module 15-SP5 (nosrc x86_64) * kernel-rt_debug-5.14.21-150500.13.64.1 * kernel-rt-5.14.21-150500.13.64.1 ## References: * https://www.suse.com/security/cve/CVE-2021-47086.html * https://www.suse.com/security/cve/CVE-2021-47103.html * https://www.suse.com/security/cve/CVE-2021-47186.html * https://www.suse.com/security/cve/CVE-2021-47402.html * https://www.suse.com/security/cve/CVE-2021-47546.html * https://www.suse.com/security/cve/CVE-2021-47547.html * https://www.suse.com/security/cve/CVE-2021-47588.html * https://www.suse.com/security/cve/CVE-2021-47590.html * https://www.suse.com/security/cve/CVE-2021-47591.html * https://www.suse.com/security/cve/CVE-2021-47593.html * https://www.suse.com/security/cve/CVE-2021-47598.html * https://www.suse.com/security/cve/CVE-2021-47599.html * https://www.suse.com/security/cve/CVE-2021-47606.html * https://www.suse.com/security/cve/CVE-2021-47622.html * https://www.suse.com/security/cve/CVE-2021-47623.html * https://www.suse.com/security/cve/CVE-2021-47624.html * https://www.suse.com/security/cve/CVE-2022-48713.html * https://www.suse.com/security/cve/CVE-2022-48730.html * https://www.suse.com/security/cve/CVE-2022-48732.html * https://www.suse.com/security/cve/CVE-2022-48749.html * https://www.suse.com/security/cve/CVE-2022-48756.html * https://www.suse.com/security/cve/CVE-2022-48773.html * https://www.suse.com/security/cve/CVE-2022-48774.html * https://www.suse.com/security/cve/CVE-2022-48775.html * https://www.suse.com/security/cve/CVE-2022-48776.html * https://www.suse.com/security/cve/CVE-2022-48777.html * https://www.suse.com/security/cve/CVE-2022-48778.html * https://www.suse.com/security/cve/CVE-2022-48780.html * https://www.suse.com/security/cve/CVE-2022-48783.html * https://www.suse.com/security/cve/CVE-2022-48784.html * https://www.suse.com/security/cve/CVE-2022-48785.html * https://www.suse.com/security/cve/CVE-2022-48786.html * https://www.suse.com/security/cve/CVE-2022-48787.html * https://www.suse.com/security/cve/CVE-2022-48788.html * https://www.suse.com/security/cve/CVE-2022-48789.html * https://www.suse.com/security/cve/CVE-2022-48790.html * https://www.suse.com/security/cve/CVE-2022-48791.html * https://www.suse.com/security/cve/CVE-2022-48792.html * https://www.suse.com/security/cve/CVE-2022-48793.html * https://www.suse.com/security/cve/CVE-2022-48794.html * https://www.suse.com/security/cve/CVE-2022-48796.html * https://www.suse.com/security/cve/CVE-2022-48797.html * https://www.suse.com/security/cve/CVE-2022-48798.html * https://www.suse.com/security/cve/CVE-2022-48799.html * https://www.suse.com/security/cve/CVE-2022-48800.html * https://www.suse.com/security/cve/CVE-2022-48801.html * https://www.suse.com/security/cve/CVE-2022-48802.html * https://www.suse.com/security/cve/CVE-2022-48803.html * https://www.suse.com/security/cve/CVE-2022-48804.html * https://www.suse.com/security/cve/CVE-2022-48805.html * https://www.suse.com/security/cve/CVE-2022-48806.html * https://www.suse.com/security/cve/CVE-2022-48807.html * https://www.suse.com/security/cve/CVE-2022-48809.html * https://www.suse.com/security/cve/CVE-2022-48810.html * https://www.suse.com/security/cve/CVE-2022-48811.html * https://www.suse.com/security/cve/CVE-2022-48812.html * https://www.suse.com/security/cve/CVE-2022-48813.html * https://www.suse.com/security/cve/CVE-2022-48814.html * https://www.suse.com/security/cve/CVE-2022-48815.html * https://www.suse.com/security/cve/CVE-2022-48816.html * https://www.suse.com/security/cve/CVE-2022-48817.html * https://www.suse.com/security/cve/CVE-2022-48818.html * https://www.suse.com/security/cve/CVE-2022-48820.html * https://www.suse.com/security/cve/CVE-2022-48821.html * https://www.suse.com/security/cve/CVE-2022-48822.html * https://www.suse.com/security/cve/CVE-2022-48823.html * https://www.suse.com/security/cve/CVE-2022-48824.html * https://www.suse.com/security/cve/CVE-2022-48825.html * https://www.suse.com/security/cve/CVE-2022-48826.html * https://www.suse.com/security/cve/CVE-2022-48827.html * https://www.suse.com/security/cve/CVE-2022-48828.html * https://www.suse.com/security/cve/CVE-2022-48829.html * https://www.suse.com/security/cve/CVE-2022-48830.html * https://www.suse.com/security/cve/CVE-2022-48831.html * https://www.suse.com/security/cve/CVE-2022-48834.html * https://www.suse.com/security/cve/CVE-2022-48835.html * https://www.suse.com/security/cve/CVE-2022-48836.html * https://www.suse.com/security/cve/CVE-2022-48837.html * https://www.suse.com/security/cve/CVE-2022-48838.html * https://www.suse.com/security/cve/CVE-2022-48839.html * https://www.suse.com/security/cve/CVE-2022-48840.html * https://www.suse.com/security/cve/CVE-2022-48841.html * https://www.suse.com/security/cve/CVE-2022-48842.html * https://www.suse.com/security/cve/CVE-2022-48843.html * https://www.suse.com/security/cve/CVE-2022-48844.html * https://www.suse.com/security/cve/CVE-2022-48846.html * https://www.suse.com/security/cve/CVE-2022-48847.html * https://www.suse.com/security/cve/CVE-2022-48849.html * https://www.suse.com/security/cve/CVE-2022-48850.html * https://www.suse.com/security/cve/CVE-2022-48851.html * https://www.suse.com/security/cve/CVE-2022-48852.html * https://www.suse.com/security/cve/CVE-2022-48853.html * https://www.suse.com/security/cve/CVE-2022-48855.html * https://www.suse.com/security/cve/CVE-2022-48856.html * https://www.suse.com/security/cve/CVE-2022-48857.html * https://www.suse.com/security/cve/CVE-2022-48858.html * https://www.suse.com/security/cve/CVE-2022-48859.html * https://www.suse.com/security/cve/CVE-2022-48860.html * https://www.suse.com/security/cve/CVE-2022-48861.html * https://www.suse.com/security/cve/CVE-2022-48862.html * https://www.suse.com/security/cve/CVE-2022-48863.html * https://www.suse.com/security/cve/CVE-2022-48864.html * https://www.suse.com/security/cve/CVE-2022-48866.html * https://www.suse.com/security/cve/CVE-2023-1582.html * https://www.suse.com/security/cve/CVE-2023-37453.html * https://www.suse.com/security/cve/CVE-2023-52435.html * https://www.suse.com/security/cve/CVE-2023-52573.html * https://www.suse.com/security/cve/CVE-2023-52580.html * https://www.suse.com/security/cve/CVE-2023-52591.html * https://www.suse.com/security/cve/CVE-2023-52735.html * https://www.suse.com/security/cve/CVE-2023-52751.html * https://www.suse.com/security/cve/CVE-2023-52762.html * https://www.suse.com/security/cve/CVE-2023-52775.html * https://www.suse.com/security/cve/CVE-2023-52812.html * https://www.suse.com/security/cve/CVE-2023-52857.html * https://www.suse.com/security/cve/CVE-2023-52863.html * https://www.suse.com/security/cve/CVE-2023-52885.html * https://www.suse.com/security/cve/CVE-2023-52886.html * https://www.suse.com/security/cve/CVE-2024-25741.html * https://www.suse.com/security/cve/CVE-2024-26583.html * https://www.suse.com/security/cve/CVE-2024-26584.html * https://www.suse.com/security/cve/CVE-2024-26585.html * https://www.suse.com/security/cve/CVE-2024-26615.html * https://www.suse.com/security/cve/CVE-2024-26633.html * https://www.suse.com/security/cve/CVE-2024-26635.html * https://www.suse.com/security/cve/CVE-2024-26636.html * https://www.suse.com/security/cve/CVE-2024-26641.html * https://www.suse.com/security/cve/CVE-2024-26661.html * https://www.suse.com/security/cve/CVE-2024-26663.html * https://www.suse.com/security/cve/CVE-2024-26665.html * https://www.suse.com/security/cve/CVE-2024-26800.html * https://www.suse.com/security/cve/CVE-2024-26802.html * https://www.suse.com/security/cve/CVE-2024-26813.html * https://www.suse.com/security/cve/CVE-2024-26814.html * https://www.suse.com/security/cve/CVE-2024-26863.html * https://www.suse.com/security/cve/CVE-2024-26889.html * https://www.suse.com/security/cve/CVE-2024-26920.html * https://www.suse.com/security/cve/CVE-2024-26935.html * https://www.suse.com/security/cve/CVE-2024-269355.html * https://www.suse.com/security/cve/CVE-2024-26961.html * https://www.suse.com/security/cve/CVE-2024-26976.html * https://www.suse.com/security/cve/CVE-2024-27015.html * https://www.suse.com/security/cve/CVE-2024-27019.html * https://www.suse.com/security/cve/CVE-2024-27020.html * https://www.suse.com/security/cve/CVE-2024-27025.html * https://www.suse.com/security/cve/CVE-2024-27065.html * https://www.suse.com/security/cve/CVE-2024-27402.html * https://www.suse.com/security/cve/CVE-2024-27437.html * https://www.suse.com/security/cve/CVE-2024-35805.html * https://www.suse.com/security/cve/CVE-2024-35819.html * https://www.suse.com/security/cve/CVE-2024-35837.html * https://www.suse.com/security/cve/CVE-2024-35853.html * https://www.suse.com/security/cve/CVE-2024-35854.html * https://www.suse.com/security/cve/CVE-2024-35855.html * https://www.suse.com/security/cve/CVE-2024-35889.html * https://www.suse.com/security/cve/CVE-2024-35890.html * https://www.suse.com/security/cve/CVE-2024-35893.html * https://www.suse.com/security/cve/CVE-2024-35899.html * https://www.suse.com/security/cve/CVE-2024-35934.html * https://www.suse.com/security/cve/CVE-2024-35949.html * https://www.suse.com/security/cve/CVE-2024-35961.html * https://www.suse.com/security/cve/CVE-2024-35979.html * https://www.suse.com/security/cve/CVE-2024-35995.html * https://www.suse.com/security/cve/CVE-2024-36000.html * https://www.suse.com/security/cve/CVE-2024-36004.html * https://www.suse.com/security/cve/CVE-2024-36288.html * https://www.suse.com/security/cve/CVE-2024-36889.html * https://www.suse.com/security/cve/CVE-2024-36901.html * https://www.suse.com/security/cve/CVE-2024-36902.html * https://www.suse.com/security/cve/CVE-2024-36909.html * https://www.suse.com/security/cve/CVE-2024-36910.html * https://www.suse.com/security/cve/CVE-2024-36911.html * https://www.suse.com/security/cve/CVE-2024-36912.html * https://www.suse.com/security/cve/CVE-2024-36913.html * https://www.suse.com/security/cve/CVE-2024-36914.html * https://www.suse.com/security/cve/CVE-2024-36919.html * https://www.suse.com/security/cve/CVE-2024-36923.html * https://www.suse.com/security/cve/CVE-2024-36924.html * https://www.suse.com/security/cve/CVE-2024-36926.html * https://www.suse.com/security/cve/CVE-2024-36939.html * https://www.suse.com/security/cve/CVE-2024-36941.html * https://www.suse.com/security/cve/CVE-2024-36942.html * https://www.suse.com/security/cve/CVE-2024-36944.html * https://www.suse.com/security/cve/CVE-2024-36946.html * https://www.suse.com/security/cve/CVE-2024-36947.html * https://www.suse.com/security/cve/CVE-2024-36950.html * https://www.suse.com/security/cve/CVE-2024-36952.html * https://www.suse.com/security/cve/CVE-2024-36955.html * https://www.suse.com/security/cve/CVE-2024-36959.html * https://www.suse.com/security/cve/CVE-2024-36974.html * https://www.suse.com/security/cve/CVE-2024-38548.html * https://www.suse.com/security/cve/CVE-2024-38555.html * https://www.suse.com/security/cve/CVE-2024-38558.html * https://www.suse.com/security/cve/CVE-2024-38559.html * https://www.suse.com/security/cve/CVE-2024-38570.html * https://www.suse.com/security/cve/CVE-2024-38586.html * https://www.suse.com/security/cve/CVE-2024-38588.html * https://www.suse.com/security/cve/CVE-2024-38598.html * https://www.suse.com/security/cve/CVE-2024-38628.html * https://www.suse.com/security/cve/CVE-2024-39276.html * https://www.suse.com/security/cve/CVE-2024-39371.html * https://www.suse.com/security/cve/CVE-2024-39463.html * https://www.suse.com/security/cve/CVE-2024-39472.html * https://www.suse.com/security/cve/CVE-2024-39475.html * https://www.suse.com/security/cve/CVE-2024-39482.html * https://www.suse.com/security/cve/CVE-2024-39487.html * https://www.suse.com/security/cve/CVE-2024-39488.html * https://www.suse.com/security/cve/CVE-2024-39490.html * https://www.suse.com/security/cve/CVE-2024-39493.html * https://www.suse.com/security/cve/CVE-2024-39494.html * https://www.suse.com/security/cve/CVE-2024-39497.html * https://www.suse.com/security/cve/CVE-2024-39499.html * https://www.suse.com/security/cve/CVE-2024-39500.html * https://www.suse.com/security/cve/CVE-2024-39501.html * https://www.suse.com/security/cve/CVE-2024-39502.html * https://www.suse.com/security/cve/CVE-2024-39505.html * https://www.suse.com/security/cve/CVE-2024-39506.html * https://www.suse.com/security/cve/CVE-2024-39507.html * https://www.suse.com/security/cve/CVE-2024-39508.html * https://www.suse.com/security/cve/CVE-2024-39509.html * https://www.suse.com/security/cve/CVE-2024-40900.html * https://www.suse.com/security/cve/CVE-2024-40901.html * https://www.suse.com/security/cve/CVE-2024-40902.html * https://www.suse.com/security/cve/CVE-2024-40903.html * https://www.suse.com/security/cve/CVE-2024-40904.html * https://www.suse.com/security/cve/CVE-2024-40906.html * https://www.suse.com/security/cve/CVE-2024-40908.html * https://www.suse.com/security/cve/CVE-2024-40909.html * https://www.suse.com/security/cve/CVE-2024-40911.html * https://www.suse.com/security/cve/CVE-2024-40912.html * https://www.suse.com/security/cve/CVE-2024-40916.html * https://www.suse.com/security/cve/CVE-2024-40919.html * https://www.suse.com/security/cve/CVE-2024-40923.html * https://www.suse.com/security/cve/CVE-2024-40924.html * https://www.suse.com/security/cve/CVE-2024-40927.html * https://www.suse.com/security/cve/CVE-2024-40929.html * https://www.suse.com/security/cve/CVE-2024-40931.html * https://www.suse.com/security/cve/CVE-2024-40932.html * https://www.suse.com/security/cve/CVE-2024-40934.html * https://www.suse.com/security/cve/CVE-2024-40935.html * https://www.suse.com/security/cve/CVE-2024-40937.html * https://www.suse.com/security/cve/CVE-2024-40940.html * https://www.suse.com/security/cve/CVE-2024-40941.html * https://www.suse.com/security/cve/CVE-2024-40942.html * https://www.suse.com/security/cve/CVE-2024-40943.html * https://www.suse.com/security/cve/CVE-2024-40945.html * https://www.suse.com/security/cve/CVE-2024-40953.html * https://www.suse.com/security/cve/CVE-2024-40954.html * https://www.suse.com/security/cve/CVE-2024-40956.html * https://www.suse.com/security/cve/CVE-2024-40958.html * https://www.suse.com/security/cve/CVE-2024-40959.html * https://www.suse.com/security/cve/CVE-2024-40960.html * https://www.suse.com/security/cve/CVE-2024-40961.html * https://www.suse.com/security/cve/CVE-2024-40966.html * https://www.suse.com/security/cve/CVE-2024-40967.html * https://www.suse.com/security/cve/CVE-2024-40970.html * https://www.suse.com/security/cve/CVE-2024-40972.html * https://www.suse.com/security/cve/CVE-2024-40976.html * https://www.suse.com/security/cve/CVE-2024-40977.html * https://www.suse.com/security/cve/CVE-2024-40981.html * https://www.suse.com/security/cve/CVE-2024-40982.html * https://www.suse.com/security/cve/CVE-2024-40984.html * https://www.suse.com/security/cve/CVE-2024-40987.html * https://www.suse.com/security/cve/CVE-2024-40988.html * https://www.suse.com/security/cve/CVE-2024-40989.html * https://www.suse.com/security/cve/CVE-2024-40990.html * https://www.suse.com/security/cve/CVE-2024-40994.html * https://www.suse.com/security/cve/CVE-2024-40998.html * https://www.suse.com/security/cve/CVE-2024-40999.html * https://www.suse.com/security/cve/CVE-2024-41002.html * https://www.suse.com/security/cve/CVE-2024-41004.html * https://www.suse.com/security/cve/CVE-2024-41006.html * https://www.suse.com/security/cve/CVE-2024-41009.html * https://www.suse.com/security/cve/CVE-2024-41011.html * https://www.suse.com/security/cve/CVE-2024-41012.html * https://www.suse.com/security/cve/CVE-2024-41013.html * https://www.suse.com/security/cve/CVE-2024-41014.html * https://www.suse.com/security/cve/CVE-2024-41015.html * https://www.suse.com/security/cve/CVE-2024-41016.html * https://www.suse.com/security/cve/CVE-2024-41017.html * https://www.suse.com/security/cve/CVE-2024-41040.html * https://www.suse.com/security/cve/CVE-2024-41041.html * https://www.suse.com/security/cve/CVE-2024-41044.html * https://www.suse.com/security/cve/CVE-2024-41048.html * https://www.suse.com/security/cve/CVE-2024-41057.html * https://www.suse.com/security/cve/CVE-2024-41058.html * https://www.suse.com/security/cve/CVE-2024-41059.html * https://www.suse.com/security/cve/CVE-2024-41063.html * https://www.suse.com/security/cve/CVE-2024-41064.html * https://www.suse.com/security/cve/CVE-2024-41066.html * https://www.suse.com/security/cve/CVE-2024-41069.html * https://www.suse.com/security/cve/CVE-2024-41070.html * https://www.suse.com/security/cve/CVE-2024-41071.html * https://www.suse.com/security/cve/CVE-2024-41072.html * https://www.suse.com/security/cve/CVE-2024-41076.html * https://www.suse.com/security/cve/CVE-2024-41078.html * https://www.suse.com/security/cve/CVE-2024-41081.html * https://www.suse.com/security/cve/CVE-2024-41087.html * https://www.suse.com/security/cve/CVE-2024-41090.html * https://www.suse.com/security/cve/CVE-2024-41091.html * https://www.suse.com/security/cve/CVE-2024-42070.html * https://www.suse.com/security/cve/CVE-2024-42079.html * https://www.suse.com/security/cve/CVE-2024-42093.html * https://www.suse.com/security/cve/CVE-2024-42096.html * https://www.suse.com/security/cve/CVE-2024-42105.html * https://www.suse.com/security/cve/CVE-2024-42122.html * https://www.suse.com/security/cve/CVE-2024-42124.html * https://www.suse.com/security/cve/CVE-2024-42145.html * https://www.suse.com/security/cve/CVE-2024-42161.html * https://www.suse.com/security/cve/CVE-2024-42224.html * https://www.suse.com/security/cve/CVE-2024-42230.html * https://bugzilla.suse.com/show_bug.cgi?id=1082555 * https://bugzilla.suse.com/show_bug.cgi?id=1193454 * https://bugzilla.suse.com/show_bug.cgi?id=1193554 * https://bugzilla.suse.com/show_bug.cgi?id=1193787 * https://bugzilla.suse.com/show_bug.cgi?id=1194324 * https://bugzilla.suse.com/show_bug.cgi?id=1194869 * https://bugzilla.suse.com/show_bug.cgi?id=1195357 * https://bugzilla.suse.com/show_bug.cgi?id=1195668 * https://bugzilla.suse.com/show_bug.cgi?id=1195927 * https://bugzilla.suse.com/show_bug.cgi?id=1195957 * https://bugzilla.suse.com/show_bug.cgi?id=1196018 * https://bugzilla.suse.com/show_bug.cgi?id=1196823 * https://bugzilla.suse.com/show_bug.cgi?id=1197146 * https://bugzilla.suse.com/show_bug.cgi?id=1197246 * https://bugzilla.suse.com/show_bug.cgi?id=1197762 * https://bugzilla.suse.com/show_bug.cgi?id=1202346 * https://bugzilla.suse.com/show_bug.cgi?id=1202686 * https://bugzilla.suse.com/show_bug.cgi?id=1208783 * https://bugzilla.suse.com/show_bug.cgi?id=1209636 * https://bugzilla.suse.com/show_bug.cgi?id=1213123 * https://bugzilla.suse.com/show_bug.cgi?id=1215492 * https://bugzilla.suse.com/show_bug.cgi?id=1215587 * https://bugzilla.suse.com/show_bug.cgi?id=1216834 * https://bugzilla.suse.com/show_bug.cgi?id=1219832 * https://bugzilla.suse.com/show_bug.cgi?id=1220138 * https://bugzilla.suse.com/show_bug.cgi?id=1220185 * https://bugzilla.suse.com/show_bug.cgi?id=1220186 * https://bugzilla.suse.com/show_bug.cgi?id=1220187 * https://bugzilla.suse.com/show_bug.cgi?id=1220869 * https://bugzilla.suse.com/show_bug.cgi?id=1220876 * https://bugzilla.suse.com/show_bug.cgi?id=1220942 * https://bugzilla.suse.com/show_bug.cgi?id=1220952 * https://bugzilla.suse.com/show_bug.cgi?id=1221010 * https://bugzilla.suse.com/show_bug.cgi?id=1221044 * https://bugzilla.suse.com/show_bug.cgi?id=1221647 * https://bugzilla.suse.com/show_bug.cgi?id=1221654 * https://bugzilla.suse.com/show_bug.cgi?id=1221656 * https://bugzilla.suse.com/show_bug.cgi?id=1221659 * https://bugzilla.suse.com/show_bug.cgi?id=1221777 * https://bugzilla.suse.com/show_bug.cgi?id=1222011 * https://bugzilla.suse.com/show_bug.cgi?id=1222323 * https://bugzilla.suse.com/show_bug.cgi?id=1222326 * https://bugzilla.suse.com/show_bug.cgi?id=1222328 * https://bugzilla.suse.com/show_bug.cgi?id=1222625 * https://bugzilla.suse.com/show_bug.cgi?id=1222702 * https://bugzilla.suse.com/show_bug.cgi?id=1222728 * https://bugzilla.suse.com/show_bug.cgi?id=1222799 * https://bugzilla.suse.com/show_bug.cgi?id=1222809 * https://bugzilla.suse.com/show_bug.cgi?id=1222810 * https://bugzilla.suse.com/show_bug.cgi?id=1223021 * https://bugzilla.suse.com/show_bug.cgi?id=1223180 * https://bugzilla.suse.com/show_bug.cgi?id=1223635 * https://bugzilla.suse.com/show_bug.cgi?id=1223652 * https://bugzilla.suse.com/show_bug.cgi?id=1223675 * https://bugzilla.suse.com/show_bug.cgi?id=1223778 * https://bugzilla.suse.com/show_bug.cgi?id=1223806 * https://bugzilla.suse.com/show_bug.cgi?id=1223813 * https://bugzilla.suse.com/show_bug.cgi?id=1223815 * https://bugzilla.suse.com/show_bug.cgi?id=1223836 * https://bugzilla.suse.com/show_bug.cgi?id=1223863 * https://bugzilla.suse.com/show_bug.cgi?id=1224414 * https://bugzilla.suse.com/show_bug.cgi?id=1224499 * https://bugzilla.suse.com/show_bug.cgi?id=1224500 * https://bugzilla.suse.com/show_bug.cgi?id=1224512 * https://bugzilla.suse.com/show_bug.cgi?id=1224516 * https://bugzilla.suse.com/show_bug.cgi?id=1224517 * https://bugzilla.suse.com/show_bug.cgi?id=1224545 * https://bugzilla.suse.com/show_bug.cgi?id=1224548 * https://bugzilla.suse.com/show_bug.cgi?id=1224557 * https://bugzilla.suse.com/show_bug.cgi?id=1224572 * https://bugzilla.suse.com/show_bug.cgi?id=1224573 * https://bugzilla.suse.com/show_bug.cgi?id=1224585 * https://bugzilla.suse.com/show_bug.cgi?id=1224604 * https://bugzilla.suse.com/show_bug.cgi?id=1224636 * https://bugzilla.suse.com/show_bug.cgi?id=1224641 * https://bugzilla.suse.com/show_bug.cgi?id=1224683 * https://bugzilla.suse.com/show_bug.cgi?id=1224694 * https://bugzilla.suse.com/show_bug.cgi?id=1224700 * https://bugzilla.suse.com/show_bug.cgi?id=1224743 * https://bugzilla.suse.com/show_bug.cgi?id=1225088 * https://bugzilla.suse.com/show_bug.cgi?id=1225272 * https://bugzilla.suse.com/show_bug.cgi?id=1225301 * https://bugzilla.suse.com/show_bug.cgi?id=1225475 * https://bugzilla.suse.com/show_bug.cgi?id=1225489 * https://bugzilla.suse.com/show_bug.cgi?id=1225504 * https://bugzilla.suse.com/show_bug.cgi?id=1225505 * https://bugzilla.suse.com/show_bug.cgi?id=1225564 * https://bugzilla.suse.com/show_bug.cgi?id=1225573 * https://bugzilla.suse.com/show_bug.cgi?id=1225581 * https://bugzilla.suse.com/show_bug.cgi?id=1225586 * https://bugzilla.suse.com/show_bug.cgi?id=1225711 * https://bugzilla.suse.com/show_bug.cgi?id=1225717 * https://bugzilla.suse.com/show_bug.cgi?id=1225719 * https://bugzilla.suse.com/show_bug.cgi?id=1225744 * https://bugzilla.suse.com/show_bug.cgi?id=1225745 * https://bugzilla.suse.com/show_bug.cgi?id=1225746 * https://bugzilla.suse.com/show_bug.cgi?id=1225752 * https://bugzilla.suse.com/show_bug.cgi?id=1225753 * https://bugzilla.suse.com/show_bug.cgi?id=1225757 * https://bugzilla.suse.com/show_bug.cgi?id=1225767 * https://bugzilla.suse.com/show_bug.cgi?id=1225810 * https://bugzilla.suse.com/show_bug.cgi?id=1225815 * https://bugzilla.suse.com/show_bug.cgi?id=1225820 * https://bugzilla.suse.com/show_bug.cgi?id=1225829 * https://bugzilla.suse.com/show_bug.cgi?id=1225835 * https://bugzilla.suse.com/show_bug.cgi?id=1225838 * https://bugzilla.suse.com/show_bug.cgi?id=1225839 * https://bugzilla.suse.com/show_bug.cgi?id=1225843 * https://bugzilla.suse.com/show_bug.cgi?id=1225847 * https://bugzilla.suse.com/show_bug.cgi?id=1225851 * https://bugzilla.suse.com/show_bug.cgi?id=1225856 * https://bugzilla.suse.com/show_bug.cgi?id=1225895 * https://bugzilla.suse.com/show_bug.cgi?id=1225898 * https://bugzilla.suse.com/show_bug.cgi?id=1225903 * https://bugzilla.suse.com/show_bug.cgi?id=1226202 * https://bugzilla.suse.com/show_bug.cgi?id=1226502 * https://bugzilla.suse.com/show_bug.cgi?id=1226519 * https://bugzilla.suse.com/show_bug.cgi?id=1226551 * https://bugzilla.suse.com/show_bug.cgi?id=1226555 * https://bugzilla.suse.com/show_bug.cgi?id=1226565 * https://bugzilla.suse.com/show_bug.cgi?id=1226568 * https://bugzilla.suse.com/show_bug.cgi?id=1226570 * https://bugzilla.suse.com/show_bug.cgi?id=1226571 * https://bugzilla.suse.com/show_bug.cgi?id=1226574 * https://bugzilla.suse.com/show_bug.cgi?id=1226588 * https://bugzilla.suse.com/show_bug.cgi?id=1226607 * https://bugzilla.suse.com/show_bug.cgi?id=1226650 * https://bugzilla.suse.com/show_bug.cgi?id=1226698 * https://bugzilla.suse.com/show_bug.cgi?id=1226713 * https://bugzilla.suse.com/show_bug.cgi?id=1226716 * https://bugzilla.suse.com/show_bug.cgi?id=1226750 * https://bugzilla.suse.com/show_bug.cgi?id=1226757 * https://bugzilla.suse.com/show_bug.cgi?id=1226758 * https://bugzilla.suse.com/show_bug.cgi?id=1226775 * https://bugzilla.suse.com/show_bug.cgi?id=1226783 * https://bugzilla.suse.com/show_bug.cgi?id=1226785 * https://bugzilla.suse.com/show_bug.cgi?id=1226834 * https://bugzilla.suse.com/show_bug.cgi?id=1226837 * https://bugzilla.suse.com/show_bug.cgi?id=1226911 * https://bugzilla.suse.com/show_bug.cgi?id=1226990 * https://bugzilla.suse.com/show_bug.cgi?id=1226993 * https://bugzilla.suse.com/show_bug.cgi?id=1227090 * https://bugzilla.suse.com/show_bug.cgi?id=1227121 * https://bugzilla.suse.com/show_bug.cgi?id=1227157 * https://bugzilla.suse.com/show_bug.cgi?id=1227162 * https://bugzilla.suse.com/show_bug.cgi?id=1227362 * https://bugzilla.suse.com/show_bug.cgi?id=1227383 * https://bugzilla.suse.com/show_bug.cgi?id=1227432 * https://bugzilla.suse.com/show_bug.cgi?id=1227435 * https://bugzilla.suse.com/show_bug.cgi?id=1227447 * https://bugzilla.suse.com/show_bug.cgi?id=1227487 * https://bugzilla.suse.com/show_bug.cgi?id=1227549 * https://bugzilla.suse.com/show_bug.cgi?id=1227573 * https://bugzilla.suse.com/show_bug.cgi?id=1227618 * https://bugzilla.suse.com/show_bug.cgi?id=1227620 * https://bugzilla.suse.com/show_bug.cgi?id=1227626 * https://bugzilla.suse.com/show_bug.cgi?id=1227635 * https://bugzilla.suse.com/show_bug.cgi?id=1227661 * https://bugzilla.suse.com/show_bug.cgi?id=1227716 * https://bugzilla.suse.com/show_bug.cgi?id=1227722 * https://bugzilla.suse.com/show_bug.cgi?id=1227724 * https://bugzilla.suse.com/show_bug.cgi?id=1227725 * https://bugzilla.suse.com/show_bug.cgi?id=1227728 * https://bugzilla.suse.com/show_bug.cgi?id=1227729 * https://bugzilla.suse.com/show_bug.cgi?id=1227730 * https://bugzilla.suse.com/show_bug.cgi?id=1227732 * https://bugzilla.suse.com/show_bug.cgi?id=1227733 * https://bugzilla.suse.com/show_bug.cgi?id=1227750 * https://bugzilla.suse.com/show_bug.cgi?id=1227754 * https://bugzilla.suse.com/show_bug.cgi?id=1227755 * https://bugzilla.suse.com/show_bug.cgi?id=1227760 * https://bugzilla.suse.com/show_bug.cgi?id=1227762 * https://bugzilla.suse.com/show_bug.cgi?id=1227763 * https://bugzilla.suse.com/show_bug.cgi?id=1227764 * https://bugzilla.suse.com/show_bug.cgi?id=1227766 * https://bugzilla.suse.com/show_bug.cgi?id=1227770 * https://bugzilla.suse.com/show_bug.cgi?id=1227771 * https://bugzilla.suse.com/show_bug.cgi?id=1227772 * https://bugzilla.suse.com/show_bug.cgi?id=1227774 * https://bugzilla.suse.com/show_bug.cgi?id=1227779 * https://bugzilla.suse.com/show_bug.cgi?id=1227780 * https://bugzilla.suse.com/show_bug.cgi?id=1227783 * https://bugzilla.suse.com/show_bug.cgi?id=1227786 * https://bugzilla.suse.com/show_bug.cgi?id=1227787 * https://bugzilla.suse.com/show_bug.cgi?id=1227790 * https://bugzilla.suse.com/show_bug.cgi?id=1227792 * https://bugzilla.suse.com/show_bug.cgi?id=1227796 * https://bugzilla.suse.com/show_bug.cgi?id=1227797 * https://bugzilla.suse.com/show_bug.cgi?id=1227798 * https://bugzilla.suse.com/show_bug.cgi?id=1227800 * https://bugzilla.suse.com/show_bug.cgi?id=1227802 * https://bugzilla.suse.com/show_bug.cgi?id=1227806 * https://bugzilla.suse.com/show_bug.cgi?id=1227808 * https://bugzilla.suse.com/show_bug.cgi?id=1227810 * https://bugzilla.suse.com/show_bug.cgi?id=1227812 * https://bugzilla.suse.com/show_bug.cgi?id=1227813 * https://bugzilla.suse.com/show_bug.cgi?id=1227814 * https://bugzilla.suse.com/show_bug.cgi?id=1227816 * https://bugzilla.suse.com/show_bug.cgi?id=1227820 * https://bugzilla.suse.com/show_bug.cgi?id=1227823 * https://bugzilla.suse.com/show_bug.cgi?id=1227824 * https://bugzilla.suse.com/show_bug.cgi?id=1227828 * https://bugzilla.suse.com/show_bug.cgi?id=1227829 * https://bugzilla.suse.com/show_bug.cgi?id=1227836 * https://bugzilla.suse.com/show_bug.cgi?id=1227846 * https://bugzilla.suse.com/show_bug.cgi?id=1227849 * https://bugzilla.suse.com/show_bug.cgi?id=1227851 * https://bugzilla.suse.com/show_bug.cgi?id=1227862 * https://bugzilla.suse.com/show_bug.cgi?id=1227864 * https://bugzilla.suse.com/show_bug.cgi?id=1227865 * https://bugzilla.suse.com/show_bug.cgi?id=1227866 * https://bugzilla.suse.com/show_bug.cgi?id=1227870 * https://bugzilla.suse.com/show_bug.cgi?id=1227884 * https://bugzilla.suse.com/show_bug.cgi?id=1227886 * https://bugzilla.suse.com/show_bug.cgi?id=1227891 * https://bugzilla.suse.com/show_bug.cgi?id=1227893 * https://bugzilla.suse.com/show_bug.cgi?id=1227899 * https://bugzilla.suse.com/show_bug.cgi?id=1227900 * https://bugzilla.suse.com/show_bug.cgi?id=1227910 * https://bugzilla.suse.com/show_bug.cgi?id=1227913 * https://bugzilla.suse.com/show_bug.cgi?id=1227917 * https://bugzilla.suse.com/show_bug.cgi?id=1227919 * https://bugzilla.suse.com/show_bug.cgi?id=1227920 * https://bugzilla.suse.com/show_bug.cgi?id=1227921 * https://bugzilla.suse.com/show_bug.cgi?id=1227922 * https://bugzilla.suse.com/show_bug.cgi?id=1227923 * https://bugzilla.suse.com/show_bug.cgi?id=1227924 * https://bugzilla.suse.com/show_bug.cgi?id=1227925 * https://bugzilla.suse.com/show_bug.cgi?id=1227927 * https://bugzilla.suse.com/show_bug.cgi?id=1227928 * https://bugzilla.suse.com/show_bug.cgi?id=1227931 * https://bugzilla.suse.com/show_bug.cgi?id=1227932 * https://bugzilla.suse.com/show_bug.cgi?id=1227933 * https://bugzilla.suse.com/show_bug.cgi?id=1227935 * https://bugzilla.suse.com/show_bug.cgi?id=1227936 * https://bugzilla.suse.com/show_bug.cgi?id=1227938 * https://bugzilla.suse.com/show_bug.cgi?id=1227941 * https://bugzilla.suse.com/show_bug.cgi?id=1227942 * https://bugzilla.suse.com/show_bug.cgi?id=1227944 * https://bugzilla.suse.com/show_bug.cgi?id=1227945 * https://bugzilla.suse.com/show_bug.cgi?id=1227947 * https://bugzilla.suse.com/show_bug.cgi?id=1227948 * https://bugzilla.suse.com/show_bug.cgi?id=1227949 * https://bugzilla.suse.com/show_bug.cgi?id=1227950 * https://bugzilla.suse.com/show_bug.cgi?id=1227952 * https://bugzilla.suse.com/show_bug.cgi?id=1227953 * https://bugzilla.suse.com/show_bug.cgi?id=1227954 * https://bugzilla.suse.com/show_bug.cgi?id=1227956 * https://bugzilla.suse.com/show_bug.cgi?id=1227957 * https://bugzilla.suse.com/show_bug.cgi?id=1227963 * https://bugzilla.suse.com/show_bug.cgi?id=1227964 * https://bugzilla.suse.com/show_bug.cgi?id=1227965 * https://bugzilla.suse.com/show_bug.cgi?id=1227968 * https://bugzilla.suse.com/show_bug.cgi?id=1227969 * https://bugzilla.suse.com/show_bug.cgi?id=1227970 * https://bugzilla.suse.com/show_bug.cgi?id=1227971 * https://bugzilla.suse.com/show_bug.cgi?id=1227972 * https://bugzilla.suse.com/show_bug.cgi?id=1227975 * https://bugzilla.suse.com/show_bug.cgi?id=1227976 * https://bugzilla.suse.com/show_bug.cgi?id=1227981 * https://bugzilla.suse.com/show_bug.cgi?id=1227982 * https://bugzilla.suse.com/show_bug.cgi?id=1227985 * https://bugzilla.suse.com/show_bug.cgi?id=1227986 * https://bugzilla.suse.com/show_bug.cgi?id=1227987 * https://bugzilla.suse.com/show_bug.cgi?id=1227988 * https://bugzilla.suse.com/show_bug.cgi?id=1227989 * https://bugzilla.suse.com/show_bug.cgi?id=1227990 * https://bugzilla.suse.com/show_bug.cgi?id=1227991 * https://bugzilla.suse.com/show_bug.cgi?id=1227992 * https://bugzilla.suse.com/show_bug.cgi?id=1227993 * https://bugzilla.suse.com/show_bug.cgi?id=1227995 * https://bugzilla.suse.com/show_bug.cgi?id=1227996 * https://bugzilla.suse.com/show_bug.cgi?id=1227997 * https://bugzilla.suse.com/show_bug.cgi?id=1228000 * https://bugzilla.suse.com/show_bug.cgi?id=1228002 * https://bugzilla.suse.com/show_bug.cgi?id=1228003 * https://bugzilla.suse.com/show_bug.cgi?id=1228004 * https://bugzilla.suse.com/show_bug.cgi?id=1228005 * https://bugzilla.suse.com/show_bug.cgi?id=1228006 * https://bugzilla.suse.com/show_bug.cgi?id=1228007 * https://bugzilla.suse.com/show_bug.cgi?id=1228008 * https://bugzilla.suse.com/show_bug.cgi?id=1228009 * https://bugzilla.suse.com/show_bug.cgi?id=1228010 * https://bugzilla.suse.com/show_bug.cgi?id=1228011 * https://bugzilla.suse.com/show_bug.cgi?id=1228013 * https://bugzilla.suse.com/show_bug.cgi?id=1228014 * https://bugzilla.suse.com/show_bug.cgi?id=1228015 * https://bugzilla.suse.com/show_bug.cgi?id=1228019 * https://bugzilla.suse.com/show_bug.cgi?id=1228020 * https://bugzilla.suse.com/show_bug.cgi?id=1228025 * https://bugzilla.suse.com/show_bug.cgi?id=1228028 * https://bugzilla.suse.com/show_bug.cgi?id=1228035 * https://bugzilla.suse.com/show_bug.cgi?id=1228037 * https://bugzilla.suse.com/show_bug.cgi?id=1228038 * https://bugzilla.suse.com/show_bug.cgi?id=1228039 * https://bugzilla.suse.com/show_bug.cgi?id=1228040 * https://bugzilla.suse.com/show_bug.cgi?id=1228045 * https://bugzilla.suse.com/show_bug.cgi?id=1228054 * https://bugzilla.suse.com/show_bug.cgi?id=1228055 * https://bugzilla.suse.com/show_bug.cgi?id=1228056 * https://bugzilla.suse.com/show_bug.cgi?id=1228060 * https://bugzilla.suse.com/show_bug.cgi?id=1228061 * https://bugzilla.suse.com/show_bug.cgi?id=1228062 * https://bugzilla.suse.com/show_bug.cgi?id=1228063 * https://bugzilla.suse.com/show_bug.cgi?id=1228064 * https://bugzilla.suse.com/show_bug.cgi?id=1228066 * https://bugzilla.suse.com/show_bug.cgi?id=1228067 * https://bugzilla.suse.com/show_bug.cgi?id=1228068 * https://bugzilla.suse.com/show_bug.cgi?id=1228071 * https://bugzilla.suse.com/show_bug.cgi?id=1228079 * https://bugzilla.suse.com/show_bug.cgi?id=1228090 * https://bugzilla.suse.com/show_bug.cgi?id=1228114 * https://bugzilla.suse.com/show_bug.cgi?id=1228140 * https://bugzilla.suse.com/show_bug.cgi?id=1228190 * https://bugzilla.suse.com/show_bug.cgi?id=1228191 * https://bugzilla.suse.com/show_bug.cgi?id=1228195 * https://bugzilla.suse.com/show_bug.cgi?id=1228202 * https://bugzilla.suse.com/show_bug.cgi?id=1228226 * https://bugzilla.suse.com/show_bug.cgi?id=1228235 * https://bugzilla.suse.com/show_bug.cgi?id=1228237 * https://bugzilla.suse.com/show_bug.cgi?id=1228247 * https://bugzilla.suse.com/show_bug.cgi?id=1228327 * https://bugzilla.suse.com/show_bug.cgi?id=1228328 * https://bugzilla.suse.com/show_bug.cgi?id=1228330 * https://bugzilla.suse.com/show_bug.cgi?id=1228403 * https://bugzilla.suse.com/show_bug.cgi?id=1228405 * https://bugzilla.suse.com/show_bug.cgi?id=1228408 * https://bugzilla.suse.com/show_bug.cgi?id=1228409 * https://bugzilla.suse.com/show_bug.cgi?id=1228410 * https://bugzilla.suse.com/show_bug.cgi?id=1228418 * https://bugzilla.suse.com/show_bug.cgi?id=1228440 * https://bugzilla.suse.com/show_bug.cgi?id=1228459 * https://bugzilla.suse.com/show_bug.cgi?id=1228462 * https://bugzilla.suse.com/show_bug.cgi?id=1228470 * https://bugzilla.suse.com/show_bug.cgi?id=1228518 * https://bugzilla.suse.com/show_bug.cgi?id=1228520 * https://bugzilla.suse.com/show_bug.cgi?id=1228530 * https://bugzilla.suse.com/show_bug.cgi?id=1228561 * https://bugzilla.suse.com/show_bug.cgi?id=1228565 * https://bugzilla.suse.com/show_bug.cgi?id=1228580 * https://bugzilla.suse.com/show_bug.cgi?id=1228581 * https://bugzilla.suse.com/show_bug.cgi?id=1228591 * https://bugzilla.suse.com/show_bug.cgi?id=1228599 * https://bugzilla.suse.com/show_bug.cgi?id=1228617 * https://bugzilla.suse.com/show_bug.cgi?id=1228625 * https://bugzilla.suse.com/show_bug.cgi?id=1228626 * https://bugzilla.suse.com/show_bug.cgi?id=1228633 * https://bugzilla.suse.com/show_bug.cgi?id=1228640 * https://bugzilla.suse.com/show_bug.cgi?id=1228644 * https://bugzilla.suse.com/show_bug.cgi?id=1228649 * https://bugzilla.suse.com/show_bug.cgi?id=1228655 * https://bugzilla.suse.com/show_bug.cgi?id=1228665 * https://bugzilla.suse.com/show_bug.cgi?id=1228672 * https://bugzilla.suse.com/show_bug.cgi?id=1228680 * https://bugzilla.suse.com/show_bug.cgi?id=1228705 * https://bugzilla.suse.com/show_bug.cgi?id=1228723 * https://bugzilla.suse.com/show_bug.cgi?id=1228743 * https://bugzilla.suse.com/show_bug.cgi?id=1228756 * https://bugzilla.suse.com/show_bug.cgi?id=1228801 * https://bugzilla.suse.com/show_bug.cgi?id=1228850 * https://bugzilla.suse.com/show_bug.cgi?id=1228857 * https://jira.suse.com/browse/PED-8582 * https://jira.suse.com/browse/PED-8690 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Aug 13 16:34:33 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Tue, 13 Aug 2024 16:34:33 -0000 Subject: SUSE-SU-2024:2898-1: important: Security update for gtk3 Message-ID: <172356687378.12336.12344836184168449417@smelt2.prg2.suse.org> # Security update for gtk3 Announcement ID: SUSE-SU-2024:2898-1 Rating: important References: * bsc#1228120 Cross-References: * CVE-2024-6655 CVSS scores: * CVE-2024-6655 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H Affected Products: * SUSE Enterprise Storage 7.1 * SUSE Linux Enterprise High Performance Computing 15 SP2 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 * SUSE Linux Enterprise High Performance Computing 15 SP3 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 * SUSE Linux Enterprise Micro 5.2 * SUSE Linux Enterprise Micro for Rancher 5.2 * SUSE Linux Enterprise Server 15 SP2 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 * SUSE Linux Enterprise Server 15 SP3 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 An update that solves one vulnerability can now be installed. ## Description: This update for gtk3 fixes the following issues: * CVE-2024-6655: Fixed library injection from current working directory (bsc#1228120). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 zypper in -t patch SUSE-SLE-Product-HPC-15-SP2-LTSS-2024-2898=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 zypper in -t patch SUSE-SLE-Product-HPC-15-SP3-LTSS-2024-2898=1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 zypper in -t patch SUSE-SLE-Product-SLES-15-SP2-LTSS-2024-2898=1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 zypper in -t patch SUSE-SLE-Product-SLES-15-SP3-LTSS-2024-2898=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP2-2024-2898=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP3-2024-2898=1 * SUSE Enterprise Storage 7.1 zypper in -t patch SUSE-Storage-7.1-2024-2898=1 * SUSE Linux Enterprise Micro 5.2 zypper in -t patch SUSE-SUSE-MicroOS-5.2-2024-2898=1 * SUSE Linux Enterprise Micro for Rancher 5.2 zypper in -t patch SUSE-SUSE-MicroOS-5.2-2024-2898=1 ## Package List: * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 (aarch64 x86_64) * gtk3-tools-3.24.20-150200.3.9.1 * gettext-its-gtk3-3.24.20-150200.3.9.1 * gtk3-debugsource-3.24.20-150200.3.9.1 * libgtk-3-0-debuginfo-3.24.20-150200.3.9.1 * gtk3-tools-debuginfo-3.24.20-150200.3.9.1 * gtk3-devel-3.24.20-150200.3.9.1 * typelib-1_0-Gtk-3_0-3.24.20-150200.3.9.1 * gtk3-devel-doc-3.24.20-150200.3.9.1 * gtk3-devel-debuginfo-3.24.20-150200.3.9.1 * libgtk-3-0-3.24.20-150200.3.9.1 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 (noarch) * gtk3-lang-3.24.20-150200.3.9.1 * gtk3-data-3.24.20-150200.3.9.1 * gtk3-schema-3.24.20-150200.3.9.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (aarch64 x86_64) * gtk3-tools-3.24.20-150200.3.9.1 * gettext-its-gtk3-3.24.20-150200.3.9.1 * gtk3-debugsource-3.24.20-150200.3.9.1 * libgtk-3-0-debuginfo-3.24.20-150200.3.9.1 * gtk3-tools-debuginfo-3.24.20-150200.3.9.1 * gtk3-devel-3.24.20-150200.3.9.1 * typelib-1_0-Gtk-3_0-3.24.20-150200.3.9.1 * gtk3-devel-doc-3.24.20-150200.3.9.1 * gtk3-devel-debuginfo-3.24.20-150200.3.9.1 * libgtk-3-0-3.24.20-150200.3.9.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (noarch) * gtk3-lang-3.24.20-150200.3.9.1 * gtk3-data-3.24.20-150200.3.9.1 * gtk3-schema-3.24.20-150200.3.9.1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (aarch64 ppc64le s390x x86_64) * gtk3-tools-3.24.20-150200.3.9.1 * gettext-its-gtk3-3.24.20-150200.3.9.1 * gtk3-debugsource-3.24.20-150200.3.9.1 * libgtk-3-0-debuginfo-3.24.20-150200.3.9.1 * gtk3-tools-debuginfo-3.24.20-150200.3.9.1 * gtk3-devel-3.24.20-150200.3.9.1 * typelib-1_0-Gtk-3_0-3.24.20-150200.3.9.1 * gtk3-devel-doc-3.24.20-150200.3.9.1 * gtk3-devel-debuginfo-3.24.20-150200.3.9.1 * libgtk-3-0-3.24.20-150200.3.9.1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (noarch) * gtk3-lang-3.24.20-150200.3.9.1 * gtk3-data-3.24.20-150200.3.9.1 * gtk3-schema-3.24.20-150200.3.9.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (aarch64 ppc64le s390x x86_64) * gtk3-tools-3.24.20-150200.3.9.1 * gettext-its-gtk3-3.24.20-150200.3.9.1 * gtk3-debugsource-3.24.20-150200.3.9.1 * libgtk-3-0-debuginfo-3.24.20-150200.3.9.1 * gtk3-tools-debuginfo-3.24.20-150200.3.9.1 * gtk3-devel-3.24.20-150200.3.9.1 * typelib-1_0-Gtk-3_0-3.24.20-150200.3.9.1 * gtk3-devel-doc-3.24.20-150200.3.9.1 * gtk3-devel-debuginfo-3.24.20-150200.3.9.1 * libgtk-3-0-3.24.20-150200.3.9.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (noarch) * gtk3-lang-3.24.20-150200.3.9.1 * gtk3-data-3.24.20-150200.3.9.1 * gtk3-schema-3.24.20-150200.3.9.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 (ppc64le x86_64) * gtk3-tools-3.24.20-150200.3.9.1 * gettext-its-gtk3-3.24.20-150200.3.9.1 * gtk3-debugsource-3.24.20-150200.3.9.1 * libgtk-3-0-debuginfo-3.24.20-150200.3.9.1 * gtk3-tools-debuginfo-3.24.20-150200.3.9.1 * gtk3-devel-3.24.20-150200.3.9.1 * typelib-1_0-Gtk-3_0-3.24.20-150200.3.9.1 * gtk3-devel-doc-3.24.20-150200.3.9.1 * gtk3-devel-debuginfo-3.24.20-150200.3.9.1 * libgtk-3-0-3.24.20-150200.3.9.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 (noarch) * gtk3-lang-3.24.20-150200.3.9.1 * gtk3-data-3.24.20-150200.3.9.1 * gtk3-schema-3.24.20-150200.3.9.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (ppc64le x86_64) * gtk3-tools-3.24.20-150200.3.9.1 * gettext-its-gtk3-3.24.20-150200.3.9.1 * gtk3-debugsource-3.24.20-150200.3.9.1 * libgtk-3-0-debuginfo-3.24.20-150200.3.9.1 * gtk3-tools-debuginfo-3.24.20-150200.3.9.1 * gtk3-devel-3.24.20-150200.3.9.1 * typelib-1_0-Gtk-3_0-3.24.20-150200.3.9.1 * gtk3-devel-doc-3.24.20-150200.3.9.1 * gtk3-devel-debuginfo-3.24.20-150200.3.9.1 * libgtk-3-0-3.24.20-150200.3.9.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (noarch) * gtk3-lang-3.24.20-150200.3.9.1 * gtk3-data-3.24.20-150200.3.9.1 * gtk3-schema-3.24.20-150200.3.9.1 * SUSE Enterprise Storage 7.1 (aarch64 x86_64) * gtk3-tools-3.24.20-150200.3.9.1 * gettext-its-gtk3-3.24.20-150200.3.9.1 * gtk3-debugsource-3.24.20-150200.3.9.1 * libgtk-3-0-debuginfo-3.24.20-150200.3.9.1 * gtk3-tools-debuginfo-3.24.20-150200.3.9.1 * gtk3-devel-3.24.20-150200.3.9.1 * typelib-1_0-Gtk-3_0-3.24.20-150200.3.9.1 * gtk3-devel-doc-3.24.20-150200.3.9.1 * gtk3-devel-debuginfo-3.24.20-150200.3.9.1 * libgtk-3-0-3.24.20-150200.3.9.1 * SUSE Enterprise Storage 7.1 (noarch) * gtk3-lang-3.24.20-150200.3.9.1 * gtk3-data-3.24.20-150200.3.9.1 * gtk3-schema-3.24.20-150200.3.9.1 * SUSE Linux Enterprise Micro 5.2 (noarch) * gtk3-schema-3.24.20-150200.3.9.1 * gtk3-data-3.24.20-150200.3.9.1 * SUSE Linux Enterprise Micro 5.2 (aarch64 s390x x86_64) * gtk3-tools-3.24.20-150200.3.9.1 * gtk3-debugsource-3.24.20-150200.3.9.1 * libgtk-3-0-debuginfo-3.24.20-150200.3.9.1 * gtk3-tools-debuginfo-3.24.20-150200.3.9.1 * typelib-1_0-Gtk-3_0-3.24.20-150200.3.9.1 * libgtk-3-0-3.24.20-150200.3.9.1 * SUSE Linux Enterprise Micro for Rancher 5.2 (noarch) * gtk3-schema-3.24.20-150200.3.9.1 * gtk3-data-3.24.20-150200.3.9.1 * SUSE Linux Enterprise Micro for Rancher 5.2 (aarch64 s390x x86_64) * gtk3-tools-3.24.20-150200.3.9.1 * gtk3-debugsource-3.24.20-150200.3.9.1 * libgtk-3-0-debuginfo-3.24.20-150200.3.9.1 * gtk3-tools-debuginfo-3.24.20-150200.3.9.1 * typelib-1_0-Gtk-3_0-3.24.20-150200.3.9.1 * libgtk-3-0-3.24.20-150200.3.9.1 ## References: * https://www.suse.com/security/cve/CVE-2024-6655.html * https://bugzilla.suse.com/show_bug.cgi?id=1228120 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Aug 13 16:34:35 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Tue, 13 Aug 2024 16:34:35 -0000 Subject: SUSE-SU-2024:2897-1: important: Security update for gtk2 Message-ID: <172356687594.12336.1553346577326460941@smelt2.prg2.suse.org> # Security update for gtk2 Announcement ID: SUSE-SU-2024:2897-1 Rating: important References: * bsc#1228120 Cross-References: * CVE-2024-6655 CVSS scores: * CVE-2024-6655 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H Affected Products: * SUSE Enterprise Storage 7.1 * SUSE Linux Enterprise High Performance Computing 15 SP2 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 * SUSE Linux Enterprise High Performance Computing 15 SP3 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 * SUSE Linux Enterprise Server 15 SP2 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 * SUSE Linux Enterprise Server 15 SP3 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 An update that solves one vulnerability can now be installed. ## Description: This update for gtk2 fixes the following issues: * CVE-2024-6655: Fixed library injection from current working directory (bsc#1228120). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 zypper in -t patch SUSE-SLE-Product-HPC-15-SP2-LTSS-2024-2897=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 zypper in -t patch SUSE-SLE-Product-HPC-15-SP3-LTSS-2024-2897=1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 zypper in -t patch SUSE-SLE-Product-SLES-15-SP2-LTSS-2024-2897=1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 zypper in -t patch SUSE-SLE-Product-SLES-15-SP3-LTSS-2024-2897=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP2-2024-2897=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP3-2024-2897=1 * SUSE Enterprise Storage 7.1 zypper in -t patch SUSE-Storage-7.1-2024-2897=1 ## Package List: * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 (noarch) * gtk2-data-2.24.32+67-150200.4.3.1 * gtk2-lang-2.24.32+67-150200.4.3.1 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 (aarch64 x86_64) * typelib-1_0-Gtk-2_0-2.24.32+67-150200.4.3.1 * gtk2-tools-debuginfo-2.24.32+67-150200.4.3.1 * gtk2-debugsource-2.24.32+67-150200.4.3.1 * gtk2-devel-2.24.32+67-150200.4.3.1 * gtk2-tools-2.24.32+67-150200.4.3.1 * gtk2-devel-debuginfo-2.24.32+67-150200.4.3.1 * libgtk-2_0-0-debuginfo-2.24.32+67-150200.4.3.1 * libgtk-2_0-0-2.24.32+67-150200.4.3.1 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 (x86_64) * libgtk-2_0-0-32bit-2.24.32+67-150200.4.3.1 * gtk2-tools-32bit-2.24.32+67-150200.4.3.1 * gtk2-tools-32bit-debuginfo-2.24.32+67-150200.4.3.1 * libgtk-2_0-0-32bit-debuginfo-2.24.32+67-150200.4.3.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (noarch) * gtk2-data-2.24.32+67-150200.4.3.1 * gtk2-lang-2.24.32+67-150200.4.3.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (aarch64 x86_64) * typelib-1_0-Gtk-2_0-2.24.32+67-150200.4.3.1 * gtk2-tools-debuginfo-2.24.32+67-150200.4.3.1 * gtk2-debugsource-2.24.32+67-150200.4.3.1 * gtk2-devel-2.24.32+67-150200.4.3.1 * gtk2-tools-2.24.32+67-150200.4.3.1 * gtk2-devel-debuginfo-2.24.32+67-150200.4.3.1 * libgtk-2_0-0-debuginfo-2.24.32+67-150200.4.3.1 * libgtk-2_0-0-2.24.32+67-150200.4.3.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (x86_64) * libgtk-2_0-0-32bit-2.24.32+67-150200.4.3.1 * gtk2-tools-32bit-2.24.32+67-150200.4.3.1 * gtk2-tools-32bit-debuginfo-2.24.32+67-150200.4.3.1 * libgtk-2_0-0-32bit-debuginfo-2.24.32+67-150200.4.3.1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (noarch) * gtk2-data-2.24.32+67-150200.4.3.1 * gtk2-lang-2.24.32+67-150200.4.3.1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (aarch64 ppc64le s390x x86_64) * typelib-1_0-Gtk-2_0-2.24.32+67-150200.4.3.1 * gtk2-tools-debuginfo-2.24.32+67-150200.4.3.1 * gtk2-debugsource-2.24.32+67-150200.4.3.1 * gtk2-devel-2.24.32+67-150200.4.3.1 * gtk2-tools-2.24.32+67-150200.4.3.1 * gtk2-devel-debuginfo-2.24.32+67-150200.4.3.1 * libgtk-2_0-0-debuginfo-2.24.32+67-150200.4.3.1 * libgtk-2_0-0-2.24.32+67-150200.4.3.1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (x86_64) * libgtk-2_0-0-32bit-2.24.32+67-150200.4.3.1 * gtk2-tools-32bit-2.24.32+67-150200.4.3.1 * gtk2-tools-32bit-debuginfo-2.24.32+67-150200.4.3.1 * libgtk-2_0-0-32bit-debuginfo-2.24.32+67-150200.4.3.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (noarch) * gtk2-data-2.24.32+67-150200.4.3.1 * gtk2-lang-2.24.32+67-150200.4.3.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (aarch64 ppc64le s390x x86_64) * typelib-1_0-Gtk-2_0-2.24.32+67-150200.4.3.1 * gtk2-tools-debuginfo-2.24.32+67-150200.4.3.1 * gtk2-debugsource-2.24.32+67-150200.4.3.1 * gtk2-devel-2.24.32+67-150200.4.3.1 * gtk2-tools-2.24.32+67-150200.4.3.1 * gtk2-devel-debuginfo-2.24.32+67-150200.4.3.1 * libgtk-2_0-0-debuginfo-2.24.32+67-150200.4.3.1 * libgtk-2_0-0-2.24.32+67-150200.4.3.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (x86_64) * libgtk-2_0-0-32bit-2.24.32+67-150200.4.3.1 * gtk2-tools-32bit-2.24.32+67-150200.4.3.1 * gtk2-tools-32bit-debuginfo-2.24.32+67-150200.4.3.1 * libgtk-2_0-0-32bit-debuginfo-2.24.32+67-150200.4.3.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 (noarch) * gtk2-data-2.24.32+67-150200.4.3.1 * gtk2-lang-2.24.32+67-150200.4.3.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 (ppc64le x86_64) * typelib-1_0-Gtk-2_0-2.24.32+67-150200.4.3.1 * gtk2-tools-debuginfo-2.24.32+67-150200.4.3.1 * gtk2-debugsource-2.24.32+67-150200.4.3.1 * gtk2-devel-2.24.32+67-150200.4.3.1 * gtk2-tools-2.24.32+67-150200.4.3.1 * gtk2-devel-debuginfo-2.24.32+67-150200.4.3.1 * libgtk-2_0-0-debuginfo-2.24.32+67-150200.4.3.1 * libgtk-2_0-0-2.24.32+67-150200.4.3.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 (x86_64) * libgtk-2_0-0-32bit-2.24.32+67-150200.4.3.1 * gtk2-tools-32bit-2.24.32+67-150200.4.3.1 * gtk2-tools-32bit-debuginfo-2.24.32+67-150200.4.3.1 * libgtk-2_0-0-32bit-debuginfo-2.24.32+67-150200.4.3.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (noarch) * gtk2-data-2.24.32+67-150200.4.3.1 * gtk2-lang-2.24.32+67-150200.4.3.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (ppc64le x86_64) * typelib-1_0-Gtk-2_0-2.24.32+67-150200.4.3.1 * gtk2-tools-debuginfo-2.24.32+67-150200.4.3.1 * gtk2-debugsource-2.24.32+67-150200.4.3.1 * gtk2-devel-2.24.32+67-150200.4.3.1 * gtk2-tools-2.24.32+67-150200.4.3.1 * gtk2-devel-debuginfo-2.24.32+67-150200.4.3.1 * libgtk-2_0-0-debuginfo-2.24.32+67-150200.4.3.1 * libgtk-2_0-0-2.24.32+67-150200.4.3.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (x86_64) * libgtk-2_0-0-32bit-2.24.32+67-150200.4.3.1 * gtk2-tools-32bit-2.24.32+67-150200.4.3.1 * gtk2-tools-32bit-debuginfo-2.24.32+67-150200.4.3.1 * libgtk-2_0-0-32bit-debuginfo-2.24.32+67-150200.4.3.1 * SUSE Enterprise Storage 7.1 (noarch) * gtk2-data-2.24.32+67-150200.4.3.1 * gtk2-lang-2.24.32+67-150200.4.3.1 * SUSE Enterprise Storage 7.1 (aarch64 x86_64) * typelib-1_0-Gtk-2_0-2.24.32+67-150200.4.3.1 * gtk2-tools-debuginfo-2.24.32+67-150200.4.3.1 * gtk2-debugsource-2.24.32+67-150200.4.3.1 * gtk2-devel-2.24.32+67-150200.4.3.1 * gtk2-tools-2.24.32+67-150200.4.3.1 * gtk2-devel-debuginfo-2.24.32+67-150200.4.3.1 * libgtk-2_0-0-debuginfo-2.24.32+67-150200.4.3.1 * libgtk-2_0-0-2.24.32+67-150200.4.3.1 * SUSE Enterprise Storage 7.1 (x86_64) * libgtk-2_0-0-32bit-2.24.32+67-150200.4.3.1 * gtk2-tools-32bit-2.24.32+67-150200.4.3.1 * gtk2-tools-32bit-debuginfo-2.24.32+67-150200.4.3.1 * libgtk-2_0-0-32bit-debuginfo-2.24.32+67-150200.4.3.1 ## References: * https://www.suse.com/security/cve/CVE-2024-6655.html * https://bugzilla.suse.com/show_bug.cgi?id=1228120 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Aug 13 16:39:55 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Tue, 13 Aug 2024 16:39:55 -0000 Subject: SUSE-SU-2024:2896-1: important: Security update for the Linux Kernel Message-ID: <172356719532.12336.1079991235122006622@smelt2.prg2.suse.org> # Security update for the Linux Kernel Announcement ID: SUSE-SU-2024:2896-1 Rating: important References: * bsc#1186716 * bsc#1194869 * bsc#1195775 * bsc#1204562 * bsc#1209834 * bsc#1215199 * bsc#1215587 * bsc#1217481 * bsc#1217912 * bsc#1218442 * bsc#1218730 * bsc#1218820 * bsc#1219224 * bsc#1219478 * bsc#1219596 * bsc#1219633 * bsc#1219832 * bsc#1219847 * bsc#1219953 * bsc#1220138 * bsc#1220427 * bsc#1220430 * bsc#1220942 * bsc#1221057 * bsc#1221086 * bsc#1221647 * bsc#1221654 * bsc#1221656 * bsc#1221659 * bsc#1221777 * bsc#1221958 * bsc#1222011 * bsc#1222015 * bsc#1222080 * bsc#1222241 * bsc#1222326 * bsc#1222328 * bsc#1222380 * bsc#1222438 * bsc#1222463 * bsc#1222588 * bsc#1222617 * bsc#1222619 * bsc#1222768 * bsc#1222775 * bsc#1222779 * bsc#1222809 * bsc#1222810 * bsc#1222893 * bsc#1223010 * bsc#1223018 * bsc#1223021 * bsc#1223265 * bsc#1223570 * bsc#1223731 * bsc#1223740 * bsc#1223778 * bsc#1223804 * bsc#1223806 * bsc#1223807 * bsc#1223813 * bsc#1223815 * bsc#1223836 * bsc#1223863 * bsc#1224049 * bsc#1224187 * bsc#1224414 * bsc#1224422 * bsc#1224439 * bsc#1224490 * bsc#1224497 * bsc#1224498 * bsc#1224499 * bsc#1224512 * bsc#1224515 * bsc#1224516 * bsc#1224520 * bsc#1224523 * bsc#1224539 * bsc#1224540 * bsc#1224544 * bsc#1224545 * bsc#1224549 * bsc#1224572 * bsc#1224575 * bsc#1224583 * bsc#1224584 * bsc#1224589 * bsc#1224604 * bsc#1224606 * bsc#1224612 * bsc#1224614 * bsc#1224619 * bsc#1224636 * bsc#1224641 * bsc#1224655 * bsc#1224659 * bsc#1224661 * bsc#1224662 * bsc#1224670 * bsc#1224673 * bsc#1224698 * bsc#1224735 * bsc#1224743 * bsc#1224751 * bsc#1224759 * bsc#1224767 * bsc#1224928 * bsc#1224930 * bsc#1224932 * bsc#1224933 * bsc#1224935 * bsc#1224937 * bsc#1224939 * bsc#1224941 * bsc#1224944 * bsc#1224946 * bsc#1224947 * bsc#1224949 * bsc#1224951 * bsc#1224988 * bsc#1224992 * bsc#1224998 * bsc#1225000 * bsc#1225001 * bsc#1225004 * bsc#1225006 * bsc#1225008 * bsc#1225009 * bsc#1225014 * bsc#1225015 * bsc#1225022 * bsc#1225025 * bsc#1225028 * bsc#1225029 * bsc#1225031 * bsc#1225036 * bsc#1225041 * bsc#1225044 * bsc#1225049 * bsc#1225050 * bsc#1225076 * bsc#1225077 * bsc#1225078 * bsc#1225081 * bsc#1225085 * bsc#1225086 * bsc#1225088 * bsc#1225090 * bsc#1225092 * bsc#1225096 * bsc#1225097 * bsc#1225098 * bsc#1225101 * bsc#1225103 * bsc#1225104 * bsc#1225105 * bsc#1225106 * bsc#1225108 * bsc#1225120 * bsc#1225132 * bsc#1225172 * bsc#1225180 * bsc#1225272 * bsc#1225300 * bsc#1225391 * bsc#1225472 * bsc#1225475 * bsc#1225476 * bsc#1225477 * bsc#1225478 * bsc#1225485 * bsc#1225489 * bsc#1225490 * bsc#1225527 * bsc#1225529 * bsc#1225530 * bsc#1225532 * bsc#1225534 * bsc#1225548 * bsc#1225550 * bsc#1225553 * bsc#1225554 * bsc#1225555 * bsc#1225556 * bsc#1225557 * bsc#1225559 * bsc#1225560 * bsc#1225564 * bsc#1225565 * bsc#1225566 * bsc#1225568 * bsc#1225569 * bsc#1225570 * bsc#1225571 * bsc#1225572 * bsc#1225573 * bsc#1225577 * bsc#1225581 * bsc#1225583 * bsc#1225584 * bsc#1225585 * bsc#1225586 * bsc#1225587 * bsc#1225588 * bsc#1225589 * bsc#1225590 * bsc#1225591 * bsc#1225592 * bsc#1225594 * bsc#1225595 * bsc#1225599 * bsc#1225600 * bsc#1225601 * bsc#1225602 * bsc#1225605 * bsc#1225609 * bsc#1225611 * bsc#1225681 * bsc#1225702 * bsc#1225711 * bsc#1225717 * bsc#1225719 * bsc#1225723 * bsc#1225726 * bsc#1225731 * bsc#1225732 * bsc#1225737 * bsc#1225741 * bsc#1225744 * bsc#1225745 * bsc#1225746 * bsc#1225752 * bsc#1225753 * bsc#1225757 * bsc#1225758 * bsc#1225759 * bsc#1225760 * bsc#1225761 * bsc#1225762 * bsc#1225763 * bsc#1225767 * bsc#1225770 * bsc#1225805 * bsc#1225810 * bsc#1225815 * bsc#1225820 * bsc#1225823 * bsc#1225827 * bsc#1225829 * bsc#1225830 * bsc#1225834 * bsc#1225835 * bsc#1225839 * bsc#1225840 * bsc#1225843 * bsc#1225847 * bsc#1225851 * bsc#1225856 * bsc#1225866 * bsc#1225872 * bsc#1225894 * bsc#1225895 * bsc#1225896 * bsc#1225898 * bsc#1225903 * bsc#1226022 * bsc#1226131 * bsc#1226145 * bsc#1226149 * bsc#1226155 * bsc#1226158 * bsc#1226163 * bsc#1226202 * bsc#1226211 * bsc#1226212 * bsc#1226213 * bsc#1226226 * bsc#1226457 * bsc#1226502 * bsc#1226503 * bsc#1226513 * bsc#1226514 * bsc#1226519 * bsc#1226520 * bsc#1226582 * bsc#1226587 * bsc#1226588 * bsc#1226592 * bsc#1226593 * bsc#1226594 * bsc#1226595 * bsc#1226597 * bsc#1226607 * bsc#1226608 * bsc#1226610 * bsc#1226612 * bsc#1226613 * bsc#1226630 * bsc#1226632 * bsc#1226633 * bsc#1226634 * bsc#1226637 * bsc#1226657 * bsc#1226658 * bsc#1226734 * bsc#1226735 * bsc#1226737 * bsc#1226738 * bsc#1226739 * bsc#1226740 * bsc#1226741 * bsc#1226742 * bsc#1226744 * bsc#1226746 * bsc#1226747 * bsc#1226749 * bsc#1226750 * bsc#1226754 * bsc#1226757 * bsc#1226758 * bsc#1226760 * bsc#1226761 * bsc#1226764 * bsc#1226767 * bsc#1226768 * bsc#1226769 * bsc#1226771 * bsc#1226772 * bsc#1226774 * bsc#1226775 * bsc#1226776 * bsc#1226777 * bsc#1226780 * bsc#1226781 * bsc#1226783 * bsc#1226785 * bsc#1226786 * bsc#1226788 * bsc#1226789 * bsc#1226790 * bsc#1226791 * bsc#1226796 * bsc#1226799 * bsc#1226837 * bsc#1226839 * bsc#1226840 * bsc#1226841 * bsc#1226842 * bsc#1226844 * bsc#1226848 * bsc#1226852 * bsc#1226856 * bsc#1226857 * bsc#1226859 * bsc#1226861 * bsc#1226863 * bsc#1226864 * bsc#1226866 * bsc#1226867 * bsc#1226868 * bsc#1226875 * bsc#1226876 * bsc#1226878 * bsc#1226879 * bsc#1226883 * bsc#1226886 * bsc#1226890 * bsc#1226891 * bsc#1226894 * bsc#1226895 * bsc#1226905 * bsc#1226908 * bsc#1226909 * bsc#1226911 * bsc#1226915 * bsc#1226928 * bsc#1226934 * bsc#1226938 * bsc#1226939 * bsc#1226941 * bsc#1226948 * bsc#1226949 * bsc#1226950 * bsc#1226962 * bsc#1226976 * bsc#1226989 * bsc#1226990 * bsc#1226992 * bsc#1226993 * bsc#1226994 * bsc#1226995 * bsc#1226996 * bsc#1227066 * bsc#1227072 * bsc#1227085 * bsc#1227089 * bsc#1227090 * bsc#1227096 * bsc#1227101 * bsc#1227103 * bsc#1227149 * bsc#1227190 * bsc#1227282 * bsc#1227362 * bsc#1227363 * bsc#1227383 * bsc#1227432 * bsc#1227433 * bsc#1227434 * bsc#1227435 * bsc#1227443 * bsc#1227446 * bsc#1227447 * bsc#1227487 * bsc#1227573 * bsc#1227626 * bsc#1227716 * bsc#1227719 * bsc#1227723 * bsc#1227730 * bsc#1227736 * bsc#1227755 * bsc#1227757 * bsc#1227762 * bsc#1227763 * bsc#1227779 * bsc#1227780 * bsc#1227783 * bsc#1227786 * bsc#1227788 * bsc#1227789 * bsc#1227797 * bsc#1227800 * bsc#1227801 * bsc#1227803 * bsc#1227806 * bsc#1227813 * bsc#1227814 * bsc#1227836 * bsc#1227855 * bsc#1227862 * bsc#1227866 * bsc#1227886 * bsc#1227899 * bsc#1227910 * bsc#1227913 * bsc#1227926 * bsc#1228090 * bsc#1228192 * bsc#1228193 * bsc#1228211 * bsc#1228269 * bsc#1228289 * bsc#1228327 * bsc#1228328 * bsc#1228403 * bsc#1228405 * bsc#1228408 * bsc#1228417 * jsc#PED-8491 * jsc#PED-8570 * jsc#PED-8644 * jsc#PED-8688 * jsc#PED-8701 * jsc#PED-8954 Cross-References: * CVE-2021-47432 * CVE-2022-48772 * CVE-2023-38417 * CVE-2023-47210 * CVE-2023-51780 * CVE-2023-52435 * CVE-2023-52472 * CVE-2023-52622 * CVE-2023-52656 * CVE-2023-52672 * CVE-2023-52699 * CVE-2023-52735 * CVE-2023-52749 * CVE-2023-52750 * CVE-2023-52751 * CVE-2023-52753 * CVE-2023-52754 * CVE-2023-52757 * CVE-2023-52759 * CVE-2023-52762 * CVE-2023-52763 * CVE-2023-52764 * CVE-2023-52765 * CVE-2023-52766 * CVE-2023-52767 * CVE-2023-52768 * CVE-2023-52769 * CVE-2023-52773 * CVE-2023-52774 * CVE-2023-52775 * CVE-2023-52776 * CVE-2023-52777 * CVE-2023-52780 * CVE-2023-52781 * CVE-2023-52782 * CVE-2023-52783 * CVE-2023-52784 * CVE-2023-52786 * CVE-2023-52787 * CVE-2023-52788 * CVE-2023-52789 * CVE-2023-52791 * CVE-2023-52792 * CVE-2023-52794 * CVE-2023-52795 * CVE-2023-52796 * CVE-2023-52798 * CVE-2023-52799 * CVE-2023-52800 * CVE-2023-52801 * CVE-2023-52803 * CVE-2023-52804 * CVE-2023-52805 * CVE-2023-52806 * CVE-2023-52807 * CVE-2023-52808 * CVE-2023-52809 * CVE-2023-52810 * CVE-2023-52811 * CVE-2023-52812 * CVE-2023-52813 * CVE-2023-52814 * CVE-2023-52815 * CVE-2023-52816 * CVE-2023-52817 * CVE-2023-52818 * CVE-2023-52819 * CVE-2023-52821 * CVE-2023-52825 * CVE-2023-52826 * CVE-2023-52827 * CVE-2023-52829 * CVE-2023-52832 * CVE-2023-52833 * CVE-2023-52834 * CVE-2023-52835 * CVE-2023-52836 * CVE-2023-52837 * CVE-2023-52838 * CVE-2023-52840 * CVE-2023-52841 * CVE-2023-52842 * CVE-2023-52843 * CVE-2023-52844 * CVE-2023-52845 * CVE-2023-52846 * CVE-2023-52847 * CVE-2023-52849 * CVE-2023-52850 * CVE-2023-52851 * CVE-2023-52853 * CVE-2023-52854 * CVE-2023-52855 * CVE-2023-52856 * CVE-2023-52857 * CVE-2023-52858 * CVE-2023-52861 * CVE-2023-52862 * CVE-2023-52863 * CVE-2023-52864 * CVE-2023-52865 * CVE-2023-52866 * CVE-2023-52867 * CVE-2023-52868 * CVE-2023-52869 * CVE-2023-52870 * CVE-2023-52871 * CVE-2023-52872 * CVE-2023-52873 * CVE-2023-52874 * CVE-2023-52875 * CVE-2023-52876 * CVE-2023-52877 * CVE-2023-52878 * CVE-2023-52879 * CVE-2023-52880 * CVE-2023-52881 * CVE-2023-52883 * CVE-2023-52884 * CVE-2024-25741 * CVE-2024-26615 * CVE-2024-26623 * CVE-2024-26625 * CVE-2024-26633 * CVE-2024-26635 * CVE-2024-26636 * CVE-2024-26641 * CVE-2024-26663 * CVE-2024-26665 * CVE-2024-26676 * CVE-2024-26691 * CVE-2024-26734 * CVE-2024-26750 * CVE-2024-26758 * CVE-2024-26767 * CVE-2024-26780 * CVE-2024-26785 * CVE-2024-26813 * CVE-2024-26814 * CVE-2024-26826 * CVE-2024-26845 * CVE-2024-26863 * CVE-2024-26889 * CVE-2024-26920 * CVE-2024-26944 * CVE-2024-27012 * CVE-2024-27015 * CVE-2024-27016 * CVE-2024-27019 * CVE-2024-27020 * CVE-2024-27025 * CVE-2024-27064 * CVE-2024-27065 * CVE-2024-27402 * CVE-2024-27404 * CVE-2024-27414 * CVE-2024-27419 * CVE-2024-33619 * CVE-2024-34777 * CVE-2024-35247 * CVE-2024-35805 * CVE-2024-35807 * CVE-2024-35827 * CVE-2024-35831 * CVE-2024-35843 * CVE-2024-35848 * CVE-2024-35853 * CVE-2024-35854 * CVE-2024-35857 * CVE-2024-35880 * CVE-2024-35884 * CVE-2024-35886 * CVE-2024-35890 * CVE-2024-35892 * CVE-2024-35893 * CVE-2024-35896 * CVE-2024-35898 * CVE-2024-35899 * CVE-2024-35900 * CVE-2024-35908 * CVE-2024-35925 * CVE-2024-35926 * CVE-2024-35934 * CVE-2024-35942 * CVE-2024-35957 * CVE-2024-35962 * CVE-2024-35970 * CVE-2024-35976 * CVE-2024-35979 * CVE-2024-35998 * CVE-2024-36003 * CVE-2024-36004 * CVE-2024-36005 * CVE-2024-36008 * CVE-2024-36010 * CVE-2024-36017 * CVE-2024-36024 * CVE-2024-36281 * CVE-2024-36477 * CVE-2024-36478 * CVE-2024-36479 * CVE-2024-36882 * CVE-2024-36887 * CVE-2024-36889 * CVE-2024-36899 * CVE-2024-36900 * CVE-2024-36901 * CVE-2024-36902 * CVE-2024-36903 * CVE-2024-36904 * CVE-2024-36909 * CVE-2024-36910 * CVE-2024-36911 * CVE-2024-36912 * CVE-2024-36913 * CVE-2024-36914 * CVE-2024-36915 * CVE-2024-36916 * CVE-2024-36917 * CVE-2024-36919 * CVE-2024-36922 * CVE-2024-36923 * CVE-2024-36924 * CVE-2024-36926 * CVE-2024-36930 * CVE-2024-36934 * CVE-2024-36935 * CVE-2024-36937 * CVE-2024-36938 * CVE-2024-36940 * CVE-2024-36941 * CVE-2024-36942 * CVE-2024-36944 * CVE-2024-36945 * CVE-2024-36946 * CVE-2024-36947 * CVE-2024-36949 * CVE-2024-36950 * CVE-2024-36951 * CVE-2024-36952 * CVE-2024-36955 * CVE-2024-36957 * CVE-2024-36959 * CVE-2024-36960 * CVE-2024-36962 * CVE-2024-36964 * CVE-2024-36965 * CVE-2024-36967 * CVE-2024-36969 * CVE-2024-36971 * CVE-2024-36972 * CVE-2024-36973 * CVE-2024-36974 * CVE-2024-36975 * CVE-2024-36977 * CVE-2024-36978 * CVE-2024-37021 * CVE-2024-37078 * CVE-2024-37353 * CVE-2024-37354 * CVE-2024-38381 * CVE-2024-38384 * CVE-2024-38385 * CVE-2024-38388 * CVE-2024-38390 * CVE-2024-38391 * CVE-2024-38539 * CVE-2024-38540 * CVE-2024-38541 * CVE-2024-38543 * CVE-2024-38544 * CVE-2024-38545 * CVE-2024-38546 * CVE-2024-38547 * CVE-2024-38548 * CVE-2024-38549 * CVE-2024-38550 * CVE-2024-38551 * CVE-2024-38552 * CVE-2024-38553 * CVE-2024-38554 * CVE-2024-38555 * CVE-2024-38556 * CVE-2024-38557 * CVE-2024-38558 * CVE-2024-38559 * CVE-2024-38560 * CVE-2024-38562 * CVE-2024-38564 * CVE-2024-38565 * CVE-2024-38566 * CVE-2024-38567 * CVE-2024-38568 * CVE-2024-38569 * CVE-2024-38570 * CVE-2024-38571 * CVE-2024-38572 * CVE-2024-38573 * CVE-2024-38575 * CVE-2024-38578 * CVE-2024-38579 * CVE-2024-38580 * CVE-2024-38581 * CVE-2024-38582 * CVE-2024-38583 * CVE-2024-38586 * CVE-2024-38587 * CVE-2024-38588 * CVE-2024-38590 * CVE-2024-38591 * CVE-2024-38592 * CVE-2024-38594 * CVE-2024-38595 * CVE-2024-38597 * CVE-2024-38598 * CVE-2024-38599 * CVE-2024-38600 * CVE-2024-38601 * CVE-2024-38602 * CVE-2024-38603 * CVE-2024-38604 * CVE-2024-38605 * CVE-2024-38608 * CVE-2024-38610 * CVE-2024-38611 * CVE-2024-38615 * CVE-2024-38616 * CVE-2024-38617 * CVE-2024-38618 * CVE-2024-38619 * CVE-2024-38621 * CVE-2024-38622 * CVE-2024-38627 * CVE-2024-38628 * CVE-2024-38629 * CVE-2024-38630 * CVE-2024-38633 * CVE-2024-38634 * CVE-2024-38635 * CVE-2024-38636 * CVE-2024-38659 * CVE-2024-38661 * CVE-2024-38663 * CVE-2024-38664 * CVE-2024-38780 * CVE-2024-39276 * CVE-2024-39277 * CVE-2024-39291 * CVE-2024-39296 * CVE-2024-39301 * CVE-2024-39362 * CVE-2024-39371 * CVE-2024-39463 * CVE-2024-39466 * CVE-2024-39468 * CVE-2024-39469 * CVE-2024-39471 * CVE-2024-39472 * CVE-2024-39473 * CVE-2024-39474 * CVE-2024-39475 * CVE-2024-39479 * CVE-2024-39481 * CVE-2024-39482 * CVE-2024-39487 * CVE-2024-39490 * CVE-2024-39494 * CVE-2024-39496 * CVE-2024-39498 * CVE-2024-39502 * CVE-2024-39504 * CVE-2024-39507 * CVE-2024-40901 * CVE-2024-40906 * CVE-2024-40908 * CVE-2024-40919 * CVE-2024-40923 * CVE-2024-40925 * CVE-2024-40928 * CVE-2024-40931 * CVE-2024-40935 * CVE-2024-40937 * CVE-2024-40940 * CVE-2024-40947 * CVE-2024-40948 * CVE-2024-40953 * CVE-2024-40960 * CVE-2024-40961 * CVE-2024-40966 * CVE-2024-40970 * CVE-2024-40972 * CVE-2024-40975 * CVE-2024-40979 * CVE-2024-40998 * CVE-2024-40999 * CVE-2024-41006 * CVE-2024-41011 * CVE-2024-41013 * CVE-2024-41014 * CVE-2024-41017 * CVE-2024-41090 * CVE-2024-41091 CVSS scores: * CVE-2021-47432 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48772 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-38417 ( SUSE ): 4.3 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2023-47210 ( SUSE ): 4.7 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L * CVE-2023-51780 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-51780 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-52435 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52435 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52472 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2023-52472 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52622 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52656 ( SUSE ): 2.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2023-52672 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52699 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52735 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52749 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52750 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52751 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52753 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52753 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52754 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52757 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52759 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52762 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52763 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52764 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52765 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52766 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2023-52767 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52768 ( SUSE ): 5.6 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:H * CVE-2023-52769 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2023-52769 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-52773 ( SUSE ): 4.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52773 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52774 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52775 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N * CVE-2023-52776 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N * CVE-2023-52777 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2023-52780 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52781 ( SUSE ): 4.3 CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2023-52782 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52783 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52783 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52784 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52786 ( SUSE ): 3.6 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L * CVE-2023-52787 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52788 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52789 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52791 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52792 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52794 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2023-52795 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2023-52796 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52798 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2023-52799 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52800 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2023-52801 ( SUSE ): 4.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52803 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2023-52804 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2023-52805 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2023-52806 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52806 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52807 ( SUSE ): 5.1 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:H * CVE-2023-52808 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52809 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52809 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52810 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52811 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52812 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2023-52813 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52814 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52814 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52815 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52815 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52816 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52817 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52817 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52818 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2023-52819 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2023-52821 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52821 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52825 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2023-52826 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52827 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2023-52827 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2023-52829 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N * CVE-2023-52832 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52833 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52834 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2023-52835 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2023-52836 ( SUSE ): 0.0 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:N * CVE-2023-52837 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2023-52838 ( SUSE ): 2.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2023-52840 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2023-52841 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52842 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52843 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52844 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52845 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52846 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-52847 ( SUSE ): 5.8 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2023-52849 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52850 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52851 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52853 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52854 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52855 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52856 ( SUSE ): 4.6 CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52857 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52858 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52861 ( SUSE ): 4.3 CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52862 ( SUSE ): 4.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52863 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52864 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52865 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52866 ( SUSE ): 6.2 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52867 ( SUSE ): 5.1 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:H * CVE-2023-52868 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52869 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52870 ( SUSE ): 4.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52871 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2023-52872 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52873 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52874 ( SUSE ): 3.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N * CVE-2023-52875 ( SUSE ): 4.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52876 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52877 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52878 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52879 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52880 ( SUSE ): 8.4 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2023-52881 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:L * CVE-2023-52883 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52884 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-25741 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:L * CVE-2024-26615 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26623 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26625 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26633 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26635 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2024-26636 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26641 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2024-26663 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26665 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26676 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26691 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26734 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26750 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26780 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26785 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26813 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26814 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26826 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26845 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26863 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26889 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26920 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26944 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2024-27012 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27012 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27015 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27015 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27016 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27016 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27019 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27019 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2024-27020 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27020 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-27025 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2024-27064 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27065 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27402 ( SUSE ): 5.8 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2024-27404 ( SUSE ): 5.8 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2024-27414 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2024-27419 ( SUSE ): 2.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N * CVE-2024-33619 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-34777 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2024-35247 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35805 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35807 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35827 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35831 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35843 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35848 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35853 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35854 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35857 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35880 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35884 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35886 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35890 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35892 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35893 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35896 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35898 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35899 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35900 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35908 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35925 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35926 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L * CVE-2024-35934 ( SUSE ): 2.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-35942 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-35957 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35962 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35970 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35976 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35979 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35998 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36003 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36004 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36005 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36008 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36008 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36010 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36017 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2024-36024 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36281 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36477 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N * CVE-2024-36477 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-36478 ( SUSE ): 4.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36479 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36882 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36887 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36889 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N * CVE-2024-36899 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-36900 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36901 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36901 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36902 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36902 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36903 ( SUSE ): 5.6 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L * CVE-2024-36904 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-36909 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2024-36910 ( SUSE ): 6.0 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N * CVE-2024-36911 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2024-36912 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2024-36913 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2024-36914 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36915 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2024-36916 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2024-36917 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36919 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36922 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36923 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2024-36924 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36926 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36926 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36930 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36930 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36934 ( SUSE ): 5.1 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:L * CVE-2024-36935 ( SUSE ): 5.1 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:L * CVE-2024-36937 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36938 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36938 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36940 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2024-36941 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36942 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L * CVE-2024-36944 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36945 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36946 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N * CVE-2024-36947 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2024-36949 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36950 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36951 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36952 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36955 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-36957 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-36959 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36960 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2024-36962 ( SUSE ): 6.2 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36964 ( SUSE ): 7.2 CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2024-36965 ( SUSE ): 5.6 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:H * CVE-2024-36965 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36967 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36967 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36969 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36969 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36971 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-36971 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-36972 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36973 ( SUSE ): 6.2 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36974 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-36975 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36977 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36978 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:L * CVE-2024-37021 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-37078 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-37353 ( SUSE ): 3.9 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:L/I:L/A:L * CVE-2024-37354 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2024-38381 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2024-38384 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38385 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38388 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-38390 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38391 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-38539 ( SUSE ): 2.3 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:L * CVE-2024-38540 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38541 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2024-38543 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38544 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38545 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38546 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38547 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38548 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38549 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38550 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38551 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38552 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2024-38553 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38554 ( SUSE ): 4.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38555 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38556 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38557 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38558 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L * CVE-2024-38559 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2024-38560 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38562 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38564 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2024-38565 ( SUSE ): 5.7 CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2024-38566 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38567 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38568 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:L * CVE-2024-38569 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:L * CVE-2024-38570 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2024-38570 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-38571 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38571 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38572 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2024-38573 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38575 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38578 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2024-38579 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2024-38580 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38581 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2024-38581 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-38582 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38583 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-38583 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-38586 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38587 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:L * CVE-2024-38588 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38590 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38591 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38592 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38594 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2024-38595 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-38597 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38598 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38599 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2024-38600 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38601 ( SUSE ): 4.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38602 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38603 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38603 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38604 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38605 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38608 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L * CVE-2024-38610 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-38611 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L * CVE-2024-38615 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38616 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38617 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38618 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38619 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38621 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38622 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38627 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38628 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38629 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38630 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2024-38633 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38634 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38635 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38636 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-38659 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:L/A:H * CVE-2024-38661 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38663 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38664 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38664 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-38780 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38780 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39276 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39277 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2024-39277 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-39291 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39291 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-39296 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39301 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39362 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39371 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39463 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-39466 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39468 ( SUSE ): 4.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39469 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39471 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39472 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L * CVE-2024-39472 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39473 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39473 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39474 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39474 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39475 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39475 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39479 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2024-39479 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-39481 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39481 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39482 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L * CVE-2024-39482 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39487 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2024-39490 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-39494 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-39494 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-39496 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-39496 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-39498 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39502 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2024-39504 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39507 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40901 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L * CVE-2024-40906 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40908 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40919 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40923 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40925 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40928 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-40931 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2024-40935 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40937 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-40940 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40947 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40948 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40953 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40960 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40961 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40966 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40970 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40972 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40975 ( SUSE ): 2.1 CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-40979 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40998 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40999 ( SUSE ): 3.6 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L * CVE-2024-41006 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L * CVE-2024-41011 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-41013 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2024-41014 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-41017 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-41090 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H * CVE-2024-41091 ( SUSE ): 6.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H Affected Products: * openSUSE Leap 15.6 * Public Cloud Module 15-SP6 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 An update that solves 402 vulnerabilities, contains six features and has 58 security fixes can now be installed. ## Description: The SUSE Linux Enterprise 15 SP6 Azure kernel was updated to receive various security bugfixes. The following security bugs were fixed: * CVE-2024-41014: xfs: add bounds checking to xlog_recover_process_data (bsc#1228408). * CVE-2024-41013: xfs: do not walk off the end of a directory data block (bsc#1228405). * CVE-2024-41017: jfs: do not walk off the end of ealist (bsc#1228403). * CVE-2024-40972: ext4: fold quota accounting into ext4_xattr_inode_lookup_create() (bsc#1227910). * CVE-2024-39276: ext4: fix mb_cache_entry's e_refcnt leak in ext4_xattr_block_cache_find() (bsc#1226993). * CVE-2024-40925: block: fix request.queuelist usage in flush (bsc#1227789). * CVE-2024-40998: ext4: fix uninitialized ratelimit_state->lock access in __ext4_fill_super() (bsc#1227866). * CVE-2024-39494: ima: Fix use-after-free on a dentry's dname.name (bsc#1227716). * CVE-2024-39496: btrfs: zoned: fix use-after-free due to race with dev replace (bsc#1227719). * CVE-2024-41091: tun: add missing verification for short frame (bsc#1228327). * CVE-2024-41090: tap: add missing verification for short frame (bsc#1228328). * CVE-2024-40999: net: ena: Add validation for completion descriptors consistency (bsc#1227913). * CVE-2024-40966: kABI: tty: add the option to have a tty reject a new ldisc (bsc#1227886). * CVE-2024-40975: platform/x86: x86-android-tablets: Unregister devices in reverse order (bsc#1227926). * CVE-2024-40970: Avoid hw_desc array overrun in dw-axi-dmac (bsc#1227899). * CVE-2024-40947: ima: Avoid blocking in RCU read-side critical section (bsc#1227803). * CVE-2024-40908: bpf: Set run context for rawtp test_run callback (bsc#1227783). * CVE-2024-40960: ipv6: prevent possible NULL dereference in rt6_probe() (bsc#1227813). * CVE-2024-40935: cachefiles: flush all requests after setting CACHEFILES_DEAD (bsc#1227797). * CVE-2024-40961: ipv6: prevent possible NULL deref in fib6_nh_init() (bsc#1227814). * CVE-2024-39504: netfilter: nft_inner: validate mandatory meta and payload (bsc#1227757). * CVE-2024-41006: netrom: Fix a memory leak in nr_heartbeat_expiry() (bsc#1227862). * CVE-2024-40937: gve: Clear napi->skb before dev_kfree_skb_any() (bsc#1227836). * CVE-2024-39507: net: hns3: fix kernel crash problem in concurrent scenario (bsc#1227730). * CVE-2024-40940: net/mlx5: Fix tainted pointer delete is case of flow rules creation fail (bsc#1227800). * CVE-2024-40928: net: ethtool: fix the error condition in ethtool_get_phy_stats_ethtool() (bsc#1227788). * CVE-2024-26944: btrfs: zoned: fix lock ordering in btrfs_zone_activate() (bsc#1223731). * CVE-2024-40923: vmxnet3: disable rx data ring on dma allocation failure (bsc#1227786). * CVE-2024-40931: mptcp: ensure snd_una is properly initialized on connect (bsc#1227780). * CVE-2024-40919: bnxt_en: Adjust logging of firmware messages in case of released token in __hwrm_send() (bsc#1227779). * CVE-2024-39487: bonding: Fix out-of-bounds read in bond_option_arp_ip_targets_set() (bsc#1227573) * CVE-2024-35908: tls: get psock ref after taking rxlock to avoid leak (bsc#1224490) * CVE-2024-35899: netfilter: nf_tables: flush pending destroy work before exit_net release (bsc#1224499) * CVE-2024-35934: net/smc: reduce rtnl pressure in smc_pnet_create_pnetids_list() (bsc#1224641) * CVE-2024-35893: net/sched: act_skbmod: prevent kernel-infoleak (bsc#1224512) * CVE-2024-40901: scsi: mpt3sas: Avoid test/set_bit() operating in non- allocated memory (bsc#1227762). * CVE-2024-39472: xfs: fix log recovery buffer allocation for the legacy h_size fixup (bsc#1227432). * CVE-2024-40953: KVM: Fix a data race on last_boosted_vcpu in kvm_vcpu_on_spin() (bsc#1227806). * CVE-2024-27404: mptcp: fix data races on remote_id (bsc#1224422) * CVE-2024-27020: netfilter: nf_tables: Fix potential data-race in __nft_expr_type_get() (bsc#1223815) * CVE-2024-27019: netfilter: nf_tables: Fix potential data-race in __nft_obj_type_get() (bsc#1223813) * CVE-2024-40948: mm/page_table_check: fix crash on ZONE_DEVICE (bsc#1227801). * CVE-2024-35890: gro: fix ownership transfer (bsc#1224516). * CVE-2024-36902: ipv6: fib6_rules: avoid possible NULL dereference in fib6_rule_action() (bsc#1225719). * CVE-2024-36946: phonet: fix rtm_phonet_notify() skb allocation (bsc#1225851). * CVE-2024-38586: r8169: Fix possible ring buffer corruption on fragmented Tx packets (bsc#1226750). * CVE-2024-39468: smb: client: fix deadlock in smb2_find_smb_tcon() (bsc#1227103. * CVE-2024-40906: net/mlx5: Always stop health timer during driver removal (bsc#1227763). * CVE-2024-27012: netfilter: nf_tables: restore set elements when delete set fails (bsc#1223804). * CVE-2024-39498: drm/mst: Fix NULL pointer dereference at drm_dp_add_payload_part2 (bsc#1227723) * CVE-2024-39502: ionic: fix use after netif_napi_del() (bsc#1227755). * CVE-2024-27016: netfilter: flowtable: validate pppoe header (bsc#1223807). * CVE-2024-36901: ipv6: prevent NULL dereference in ip6_output() (bsc#1225711) * CVE-2024-36004: i40e: Do not use WQ_MEM_RECLAIM flag for workqueue (bsc#1224545) * CVE-2024-27025: nbd: null check for nla_nest_start (bsc#1223778) * CVE-2024-35853: mlxsw: spectrum_acl_tcam: Fix memory leak during rehash (bsc#1224604). * CVE-2024-35854: Fixed possible use-after-free during rehash (bsc#1224636). * CVE-2024-27402: phonet/pep: fix racy skb_queue_empty() use (bsc#1224414). * CVE-2023-52435: net: prevent mss overflow in skb_segment() (bsc#1220138). * CVE-2024-27065: netfilter: nf_tables: do not compare internal table flags on updates (bsc#1223836). * CVE-2024-27015: netfilter: flowtable: incorrect pppoe tuple (bsc#1223806). * CVE-2024-27064: netfilter: nf_tables: Fix a memory leak in nf_tables_updchain (bsc#1223740). * CVE-2024-26663: tipc: Check the bearer type before calling tipc_udp_nl_bearer_add() (bsc#1222326). * CVE-2023-47210: wifi: iwlwifi: bump FW API to 90 for BZ/SC devices (bsc#1225601, bsc#1225600). * CVE-2023-52775: net/smc: avoid data corruption caused by decline (bsc#1225088). * CVE-2024-38558: net: openvswitch: fix overwriting ct original tuple for ICMPv6 (bsc#1226783). * CVE-2024-39490: ipv6: sr: fix missing sk_buff release in seg6_input_core (bsc#1227626). * CVE-2024-26826: mptcp: fix data re-injection from stale subflow (bsc#1223010). * CVE-2024-26615: net/smc: fix illegal rmb_desc access in SMC-D connection dump (bsc#1220942). * CVE-2024-35942: pmdomain: imx8mp-blk-ctrl: imx8mp_blk: Add fdcc clock to hdmimix domain (bsc#1224589). * CVE-2024-26691: KVM: arm64: Fix circular locking dependency (bsc#1222463). * CVE-2024-36909: Drivers: hv: vmbus: Do not free ring buffers that couldn't be re-encrypted (bsc#1225744). * CVE-2024-36910: uio_hv_generic: Do not free decrypted memory (bsc#1225717). * CVE-2024-36911: hv_netvsc: Do not free decrypted memory (bsc#1225745). * CVE-2024-36912: Drivers: hv: vmbus: Track decrypted status in vmbus_gpadl (bsc#1225752). * CVE-2024-36913: Drivers: hv: vmbus: Leak pages if set_memory_encrypted() fails (bsc#1225753). * CVE-2024-26665: tunnels: fix out of bounds access when building IPv6 PMTU error (bsc#1222328). * CVE-2024-38659: enic: Validate length of nl attributes in enic_set_vf_port (bsc#1226883). * CVE-2023-52751: smb: client: fix use-after-free in smb2_query_info_compound() (bsc#1225489). * CVE-2024-39482: bcache: fix variable length array abuse in btree_iter (bsc#1227447). * CVE-2024-39474: mm/vmalloc: fix vmalloc which may return null if called with __GFP_NOFAIL (bsc#1227434). * CVE-2024-26636: llc: make llc_ui_sendmsg() more robust against bonding changes (bsc#1221659). * CVE-2024-26635: llc: Drop support for ETH_P_TR_802_2 (bsc#1221656). * CVE-2024-38598: md: fix resync softlockup when bitmap size is less than array size (bsc#1226757). * CVE-2024-36003: ice: fix LAG and VF lock dependency in ice_reset_vf() (bsc#1224544). * CVE-2024-38604: block: refine the EOF check in blkdev_iomap_begin (bsc#1226866). * CVE-2024-26641: ip6_tunnel: make sure to pull inner header in __ip6_tnl_rcv() (bsc#1221654). * CVE-2024-26863: hsr: Fix uninit-value access in hsr_get_node() (bsc#1223021). * CVE-2024-26633: ip6_tunnel: fix NEXTHDR_FRAGMENT handling in ip6_tnl_parse_tlv_enc_lim() (bsc#1221647). * CVE-2024-26623: pds_core: Prevent race issues involving the adminq (bsc#1221057). * CVE-2024-26785: iommufd: Fix protection fault in iommufd_test_syz_conv_iova (bsc#1222779). * CVE-2024-26734: devlink: fix possible use-after-free and memory leaks in devlink_init() (bsc#1222438). * CVE-2024-35805: dm snapshot: fix lockup in dm_exception_table_exit (bsc#1224743). * CVE-2024-39371: io_uring: check for non-NULL file pointer in io_file_can_poll() (bsc#1226990). * CVE-2023-52846: hsr: Prevent use after free in prp_create_tagged_frame() (bsc#1225098). * CVE-2024-38610: drivers/virt/acrn: fix PFNMAP PTE checks in acrn_vm_ram_map() (bsc#1226758). * CVE-2024-37354: btrfs: fix crash on racing fsync and size-extending write into prealloc (bsc#1227101). * CVE-2024-36919: scsi: bnx2fc: Remove spin_lock_bh while releasing resources after upload (bsc#1225767). * CVE-2024-38559: scsi: qedf: Ensure the copied buf is NUL terminated (bsc#1226785). * CVE-2024-38570: gfs2: Fix potential glock use-after-free on unmount (bsc#1226775). * CVE-2024-36904: tcp: Use refcount_inc_not_zero() in tcp_twsk_unique() (bsc#1225732). * CVE-2023-52881: tcp: do not accept ACK of bytes we never sent (bsc#1225611). * CVE-2024-37353: virtio: fixed a double free in vp_del_vqs() (bsc#1226875). * CVE-2024-39301: net/9p: fix uninit-value in p9_client_rpc() (bsc#1226994). * CVE-2024-35843: iommu/vt-d: Use device rbtree in iopf reporting path (bsc#1224751). * CVE-2024-37078: nilfs2: fix potential kernel bug due to lack of writeback flag waiting (bsc#1227066). * CVE-2024-35247: fpga: region: add owner module and take its refcount (bsc#1226948). * CVE-2024-36479: fpga: bridge: add owner module and take its refcount (bsc#1226949). * CVE-2024-37021: fpga: manager: add owner module and take its refcount (bsc#1226950). * CVE-2024-36281: net/mlx5: Use mlx5_ipsec_rx_status_destroy to correctly delete status rules (bsc#1226799). * CVE-2024-38580: epoll: be better about file lifetimes (bsc#1226610). * CVE-2024-36478: null_blk: fix null-ptr-dereference while configuring 'power' and 'submit_queues' (bsc#1226841). * CVE-2024-38636: f2fs: multidev: fix to recognize valid zero block address (bsc#1226879). * CVE-2024-38661: s390/ap: Fix crash in AP internal function modify_bitmap() (bsc#1226996). * CVE-2024-38564: bpf: Add BPF_PROG_TYPE_CGROUP_SKB attach type enforcement in BPF_LINK_CREATE (bsc#1226789). * CVE-2024-38566: bpf: Fix verifier assumptions about socket->sk (bsc#1226790). * CVE-2024-38560: scsi: bfa: Ensure the copied buf is NUL terminated (bsc#1226786). * CVE-2024-36978: net: sched: sch_multiq: fix possible OOB write in multiq_tune() (bsc#1226514). * CVE-2024-36917: block: fix overflow in blk_ioctl_discard() (bsc#1225770). * CVE-2024-36974: net/sched: taprio: always validate TCA_TAPRIO_ATTR_PRIOMAP (bsc#1226519). * CVE-2024-38627: stm class: Fix a double free in stm_register_device() (bsc#1226857). * CVE-2024-38603: drivers/perf: hisi: hns3: Actually use devm_add_action_or_reset() (bsc#1226842). * CVE-2024-38553: net: fec: remove .ndo_poll_controller to avoid deadlock (bsc#1226744). * CVE-2024-38555: net/mlx5: Discard command completions in internal error (bsc#1226607). * CVE-2024-38556: net/mlx5: Add a timeout to acquire the command queue semaphore (bsc#1226774). * CVE-2024-38557: net/mlx5: Reload only IB representors upon lag disable/enable (bsc#1226781). * CVE-2024-38608: net/mlx5e: Fix netif state handling (bsc#1226746). * CVE-2024-38597: eth: sungem: remove .ndo_poll_controller to avoid deadlocks (bsc#1226749). * CVE-2024-38594: net: stmmac: move the EST lock to struct stmmac_priv (bsc#1226734). * CVE-2024-38569: drivers/perf: hisi_pcie: Fix out-of-bound access when valid event group (bsc#1226772). * CVE-2024-38568: drivers/perf: hisi: hns3: Fix out-of-bound access when valid event group (bsc#1226771). * CVE-2024-26814: vfio/fsl-mc: Block calling interrupt handler without trigger (bsc#1222810). * CVE-2024-26813: vfio/platform: Create persistent IRQ handlers (bsc#1222809). * CVE-2024-36945: net/smc: fix neighbour and rtable leak in smc_ib_find_route() (bsc#1225823). * CVE-2024-36923: fs/9p: fix uninitialized values during inode evict (bsc#1225815). * CVE-2024-36971: net: fix __dst_negative_advice() race (bsc#1226145). * CVE-2024-27414: rtnetlink: fix error logic of IFLA_BRIDGE_FLAGS writing back (bsc#1224439). * CVE-2024-35900: netfilter: nf_tables: reject new basechain after table flag update (bsc#1224497). * CVE-2024-35886: ipv6: Fix infinite recursion in fib6_dump_done() (bsc#1224670). * CVE-2024-36024: drm/amd/display: Disable idle reallow as part of command/gpint execution (bsc#1225702). * CVE-2024-36903: ipv6: Fix potential uninit-value access in __ip6_make_skb() (bsc#1225741). * CVE-2024-36914: drm/amd/display: Skip on writeback when it's not applicable (bsc#1225757). * CVE-2024-36899: gpiolib: cdev: Fix use after free in lineinfo_changed_notify (bsc#1225737). * CVE-2024-35979: raid1: fix use-after-free for original bio in raid1_write_request() (bsc#1224572). * CVE-2024-35807: ext4: fix corruption during on-line resize (bsc#1224735). * CVE-2023-52622: ext4: avoid online resizing failures due to oversized flex bg (bsc#1222080). * CVE-2023-52843: llc: verify mac len before reading mac header (bsc#1224951). * CVE-2024-35898: netfilter: nf_tables: Fix potential data-race in __nft_flowtable_type_get() (bsc#1224498). * CVE-2024-36915: nfc: llcp: fix nfc_llcp_setsockopt() unsafe copies (bsc#1225758). * CVE-2024-36017: rtnetlink: Correct nested IFLA_VF_VLAN_LIST attribute validation (bsc#1225681). * CVE-2024-36882: mm: use memalloc_nofs_save() in page_cache_ra_order() (bsc#1225723). * CVE-2024-36916: blk-iocost: avoid out of bounds shift (bsc#1225759). * CVE-2024-36900: net: hns3: fix kernel crash when devlink reload during initialization (bsc#1225726). * CVE-2023-52787: blk-mq: make sure active queue usage is held for bio_integrity_prep() (bsc#1225105). * CVE-2024-35925: block: prevent division by zero in blk_rq_stat_sum() (bsc#1224661). * CVE-2023-52837: nbd: fix uaf in nbd_open (bsc#1224935). * CVE-2023-52786: ext4: fix racy may inline data check in dio write (bsc#1224939). * CVE-2024-36934: bna: ensure the copied buf is NUL terminated (bsc#1225760). * CVE-2024-36935: ice: ensure the copied buf is NUL terminated (bsc#1225763). * CVE-2024-36937: xdp: use flags field to disambiguate broadcast redirect (bsc#1225834). * CVE-2023-52672: pipe: wakeup wr_wait after setting max_usage (bsc#1224614). * CVE-2023-52845: tipc: Change nla_policy for bearer-related names to NLA_NUL_STRING (bsc#1225585). * CVE-2024-36005: netfilter: nf_tables: honor table dormant flag from netdev release event path (bsc#1224539). * CVE-2024-26845: scsi: target: core: Add TMF to tmr_list handling (bsc#1223018). * CVE-2024-35892: net/sched: fix lockdep splat in qdisc_tree_reduce_backlog() (bsc#1224515). * CVE-2024-35848: eeprom: at24: fix memory corruption race condition (bsc#1224612). * CVE-2024-35884: udp: do not accept non-tunnel GSO skbs landing in a tunnel (bsc#1224520). * CVE-2024-35857: icmp: prevent possible NULL dereferences from icmp_build_probe() (bsc#1224619). * CVE-2023-52735: bpf, sockmap: Don't let sock_map_{close,destroy,unhash} call itself (bsc#1225475). * CVE-2024-35926: crypto: iaa - Fix async_disable descriptor leak (bsc#1224655). * CVE-2024-35976: Validate user input for XDP_{UMEM|COMPLETION}_FILL_RING (bsc#1224575). * CVE-2024-36938: Fixed NULL pointer dereference in sk_psock_skb_ingress_enqueue (bsc#1225761). * CVE-2024-36008: ipv4: check for NULL idev in ip_route_use_hint() (bsc#1224540). * CVE-2024-35998: Fixed lock ordering potential deadlock in cifs_sync_mid_result (bsc#1224549). * CVE-2023-52757: Fixed potential deadlock when releasing mids (bsc#1225548). * CVE-2024-27419: Fixed data-races around sysctl_net_busy_read (bsc#1224759) * CVE-2024-36957: octeontx2-af: avoid off-by-one read from userspace (bsc#1225762). * CVE-2024-26625: Call sock_orphan() at release time (bsc#1221086) * CVE-2024-35880: io_uring/kbuf: hold io_buffer_list reference over mmap (bsc#1224523). * CVE-2024-35831: io_uring: Fix release of pinned pages when __io_uaddr_map fails (bsc#1224698). * CVE-2024-35827: io_uring/net: fix overflow check in io_recvmsg_mshot_prep() (bsc#1224606). * CVE-2023-52656: Dropped any code related to SCM_RIGHTS (bsc#1224187). * CVE-2023-52699: sysv: don't call sb_bread() with pointers_lock held (bsc#1224659). The following non-security bugs were fixed: * ACPI: EC: Abort address space access upon error (stable-fixes). * ACPI: EC: Avoid returning AE_OK on errors in address space handler (stable- fixes). * ACPI: EC: Evaluate orphan _REG under EC device (git-fixes). * ACPI: EC: Install address space handler at the namespace root (stable- fixes). * ACPI: processor_idle: Fix invalid comparison with insertion sort for latency (git-fixes). * ACPI: resource: Do IRQ override on TongFang GXxHRXx and GMxHGxx (stable- fixes). * ACPI: x86: Add PNP_UART1_SKIP quirk for Lenovo Blade2 tablets (stable- fixes). * ACPI: x86: Force StorageD3Enable on more products (stable-fixes). * ACPICA: Revert "ACPICA: avoid Info: mapping multiple BARs. Your kernel is fine." (git-fixes). * ALSA/hda: intel-dsp-config: Document AVS as dsp_driver option (git-fixes). * ALSA: PCM: Allow resume only for suspended streams (stable-fixes). * ALSA: dmaengine: Synchronize dma channel after drop() (stable-fixes). * ALSA: dmaengine_pcm: terminate dmaengine before synchronize (stable-fixes). * ALSA: emux: improve patch ioctl data validation (stable-fixes). * ALSA: hda/conexant: Mute speakers at suspend / shutdown (bsc#1228269). * ALSA: hda/generic: Add a helper to mute speakers at suspend/shutdown (bsc#1228269). * ALSA: hda/realtek: Add more codec ID to no shutup pins list (stable-fixes). * ALSA: hda/realtek: Add quirk for Lenovo Yoga Pro 7 14AHP9 (stable-fixes). * ALSA: hda/realtek: Add quirk for Lenovo Yoga Pro 7 14ARP8 (stable-fixes). * ALSA: hda/realtek: Enable Mute LED on HP 250 G7 (stable-fixes). * ALSA: hda/realtek: Enable headset mic on IdeaPad 330-17IKB 81DM (git-fixes). * ALSA: hda/realtek: Enable headset mic on Positivo SU C1400 (stable-fixes). * ALSA: hda/realtek: Fix conflicting quirk for PCI SSID 17aa:3820 (git-fixes). * ALSA: hda/realtek: Fix the speaker output on Samsung Galaxy Book Pro 360 (stable-fixes). * ALSA: hda/realtek: Limit mic boost on N14AP7 (stable-fixes). * ALSA: hda/realtek: Limit mic boost on VAIO PRO PX (stable-fixes). * ALSA: hda/realtek: Remove Framework Laptop 16 from quirks (git-fixes). * ALSA: hda/realtek: Support Lenovo Thinkbook 13x Gen 4 (stable-fixes). * ALSA: hda/realtek: Support Lenovo Thinkbook 16P Gen 5 (stable-fixes). * ALSA: hda/realtek: add quirk for Clevo V5[46]0TU (stable-fixes). * ALSA: hda/realtek: cs35l41: Fixup remaining asus strix models (git-fixes). * ALSA: hda/realtek: fix mute/micmute LEDs do not work for EliteBook 645/665 G11 (stable-fixes). * ALSA: hda/realtek: fix mute/micmute LEDs do not work for ProBook 445/465 G11 (stable-fixes). * ALSA: hda/relatek: Enable Mute LED on HP Laptop 15-gw0xxx (stable-fixes). * ALSA: hda/tas2781: Add new quirk for Lenovo Hera2 Laptop (stable-fixes). * ALSA: hda: cs35l41: Component should be unbound before deconstruction (git- fixes). * ALSA: hda: cs35l41: Fix swapped l/r audio channels for Lenovo ThinBook 13x Gen4 (git-fixes). * ALSA: hda: cs35l41: Possible null pointer dereference in cs35l41_hda_unbind() (git-fixes). * ALSA: hda: cs35l41: Support Lenovo Thinkbook 13x Gen 4 (stable-fixes). * ALSA: hda: cs35l41: Support Lenovo Thinkbook 16P Gen 5 (stable-fixes). * ALSA: hda: cs35l56: Component should be unbound before deconstruction (git- fixes). * ALSA: hda: cs35l56: Fix lifecycle of codec pointer (stable-fixes). * ALSA: hda: tas2781: Component should be unbound before deconstruction (git- fixes). * ALSA: pcm_dmaengine: Do not synchronize DMA channel when DMA is paused (git- fixes). * ALSA: seq: Fix missing MSB in MIDI2 SPP conversion (git-fixes). * ALSA: seq: Fix missing channel at encoding RPN/NRPN MIDI2 messages (git- fixes). * ALSA: seq: ump: Fix missing System Reset message handling (git-fixes). * ALSA: seq: ump: Skip useless ports for static blocks (git-fixes). * ALSA: ump: Do not update FB name for static blocks (git-fixes). * ALSA: ump: Force 1 Group for MIDI1 FBs (git-fixes). * ALSA: usb-audio: Add a quirk for Sonix HD USB Camera (stable-fixes). * ALSA: usb-audio: Fix microphone sound on HD webcam (stable-fixes). * ALSA: usb-audio: Move HD Webcam quirk to the right place (git-fixes). * ASoC: Intel: common: add ACPI matching tables for Arrow Lake (stable-fixes). * ASoC: Intel: sof-sdw: really remove FOUR_SPEAKER quirk (git-fixes). * ASoC: Intel: sof_sdw: add JD2 quirk for HP Omen 14 (stable-fixes). * ASoC: Intel: sof_sdw: add quirk for Dell SKU 0C0F (stable-fixes). * ASoC: Intel: use soc_intel_is_byt_cr() only when IOSF_MBI is reachable (git- fixes). * ASoC: SOF: Intel: hda-pcm: Limit the maximum number of periods by MAX_BDL_ENTRIES (stable-fixes). * ASoC: SOF: Intel: hda: fix null deref on system suspend entry (git-fixes). * ASoC: SOF: imx8m: Fix DSP control regmap retrieval (git-fixes). * ASoC: SOF: ipc4-topology: Preserve the DMA Link ID for ChainDMA on unprepare (git-fixes). * ASoC: SOF: ipc4-topology: Use correct queue_id for requesting input pin format (stable-fixes). * ASoC: SOF: pcm: Restrict DSP D0i3 during S0ix to IPC3 (stable-fixes). * ASoC: SOF: sof-audio: Skip unprepare for in-use widgets on error rollback (stable-fixes). * ASoC: TAS2781: Fix tasdev_load_calibrated_data() (git-fixes). * ASoC: amd: Adjust error handling in case of absent codec device (git-fixes). * ASoC: amd: acp: add a null check for chip_pdev structure (git-fixes). * ASoC: amd: acp: remove i2s configuration check in acp_i2s_probe() (git- fixes). * ASoC: amd: yc: Fix non-functional mic on ASUS M5602RA (stable-fixes). * ASoC: amd: yc: Support mic on Lenovo Thinkpad E16 Gen 2 (bsc#1228269). * ASoC: cs35l56: Accept values greater than 0 as IRQ numbers (git-fixes). * ASoC: fsl-asoc-card: set priv->pdev before using it (git-fixes). * ASoC: fsl: fsl_qmc_audio: Check devm_kasprintf() returned value (git-fixes). * ASoC: max98088: Check for clk_prepare_enable() error (git-fixes). * ASoC: q6apm-lpass-dai: close graph on prepare errors (git-fixes). * ASoC: qcom: Adjust issues in case of DT error in asoc_qcom_lpass_cpu_platform_probe() (git-fixes). * ASoC: rockchip: i2s-tdm: Fix trcm mode by setting clock on right mclk (git- fixes). * ASoC: rt711-sdw: add missing readable registers (stable-fixes). * ASoC: rt722-sdca-sdw: add debounce time for type detection (stable-fixes). * ASoC: rt722-sdca-sdw: add silence detection register as volatile (stable- fixes). * ASoC: sof: amd: fix for firmware reload failure in Vangogh platform (git- fixes). * ASoC: ti: davinci-mcasp: Set min period size using FIFO config (stable- fixes). * ASoC: ti: omap-hdmi: Fix too long driver name (stable-fixes). * ASoC: topology: Do not assign fields that are already set (stable-fixes). * ASoC: topology: Fix references to freed memory (stable-fixes). * ASoc: tas2781: Enable RCA-based playback without DSP firmware download (git- fixes). * Bluetooth: ISO: Check socket flag instead of hcon (git-fixes). * Bluetooth: ISO: Fix BIS cleanup (stable-fixes). * Bluetooth: Ignore too large handle values in BIG (git-fixes). * Bluetooth: L2CAP: Fix rejecting L2CAP_CONN_PARAM_UPDATE_REQ (git-fixes). * Bluetooth: Remove usage of the deprecated ida_simple_xx() API (stable- fixes). * Bluetooth: ath3k: Fix multiple issues reported by checkpatch.pl (stable- fixes). * Bluetooth: btintel: Refactor btintel_set_ppag() (git-fixes). * Bluetooth: btnxpuart: Add handling for boot-signature timeout errors (git- fixes). * Bluetooth: btnxpuart: Enable Power Save feature on startup (stable-fixes). * Bluetooth: hci_bcm4377: Fix msgid release (git-fixes). * Bluetooth: hci_bcm4377: Use correct unit for timeouts (git-fixes). * Bluetooth: hci_core: cancel all works upon hci_unregister_dev() (stable- fixes). * Bluetooth: hci_event: Fix setting of unicast qos interval (git-fixes). * Bluetooth: hci_event: Remove code to removed CONFIG_BT_HS (stable-fixes). * Bluetooth: hci_event: Set QoS encryption from BIGInfo report (git-fixes). * Bluetooth: qca: Fix BT enable failure again for QCA6390 after warm reboot (git-fixes). * Bluetooth: qca: set power_ctrl_enabled on NULL returned by gpiod_get_optional() (git-fixes). * Enable CONFIG_SCHED_CLUSTER=y on arm64 (jsc#PED-8701). * HID: Add quirk for Logitech Casa touchpad (stable-fixes). * HID: Ignore battery for ELAN touchscreens 2F2C and 4116 (stable-fixes). * HID: core: remove unnecessary WARN_ON() in implement() (git-fixes). * HID: logitech-dj: Fix memory leak in logi_dj_recv_switch_to_dj_mode() (git- fixes). * HID: mcp-2221: cancel delayed_work only when CONFIG_IIO is enabled (stable- fixes). * HID: wacom: Modify pen IDs (git-fixes). * Input: ads7846 - use spi_device_id table (stable-fixes). * Input: elan_i2c - do not leave interrupt disabled on suspend failure (git- fixes). * Input: elantech - fix touchpad state on resume for Lenovo N24 (stable- fixes). * Input: ff-core - prefer struct_size over open coded arithmetic (stable- fixes). * Input: i8042 - add Ayaneo Kun to i8042 quirk table (stable-fixes). * Input: ili210x - fix ili251x_read_touch_data() return value (git-fixes). * Input: qt1050 - handle CHIP_ID reading error (git-fixes). * Input: silead - Always support 10 fingers (stable-fixes). * Input: xpad - add support for ASUS ROG RAIKIRI (git-fixes). * Input: xpad - add support for ASUS ROG RAIKIRI PRO (stable-fixes). * KVM: SEV-ES: Delegate LBR virtualization to the processor (git-fixes). * KVM: SEV-ES: Disallow SEV-ES guests when X86_FEATURE_LBRV is absent (git- fixes). * KVM: SVM: WARN on vNMI + NMI window iff NMIs are outright masked (git- fixes). * KVM: arm64: Use local TLBI on permission relaxation (bsc#1219478). * KVM: x86/pmu: Prioritize VMX interception over #GP on RDPMC due to bad index (bsc#1226158). * KVM: x86: Always sync PIR to IRR prior to scanning I/O APIC routes (git- fixes). * KVM: x86: Do not advertise guest.MAXPHYADDR as host.MAXPHYADDR in CPUID (git-fixes). * NFS: Fix READ_PLUS when server does not support OP_READ_PLUS (git-fixes). * NFS: abort nfs_atomic_open_v23 if name is too long (bsc#1219847). * NFS: add atomic_open for NFSv3 to handle O_TRUNC correctly (bsc#1219847). * NFS: add barriers when testing for NFS_FSDATA_BLOCKED (git-fixes). * NFS: avoid infinite loop in pnfs_update_layout (bsc#1219633 bsc#1226226). * NFSD: Fix checksum mismatches in the duplicate reply cache (git-fixes). * NFSv4.1 enforce rootpath check in fs_location query (git-fixes). * NFSv4.x: by default serialize open/close operations (bsc#1223863 bsc#1227362). * NFSv4: Fixup smatch warning for ambiguous return (git-fixes). * PCI/ASPM: Update save_state when configuration changes (bsc#1226915) * PCI/DPC: Fix use-after-free on concurrent DPC and hot-removal (git-fixes). * PCI/MSI: Fix UAF in msi_capability_init (git-fixes). * PCI/PM: Avoid D3cold for HP Pavilion 17 PC/1972 PCIe Ports (stable-fixes). * PCI: Clear Secondary Status errors after enumeration (bsc#1226928) * PCI: Do not wait for disconnected devices when resuming (git-fixes). * PCI: Extend ACS configurability (bsc#1228090). * PCI: Fix resource double counting on remove & rescan (git-fixes). * PCI: Introduce cleanup helpers for device reference counts and locks (stable-fixes). * PCI: dw-rockchip: Fix initial PERST# GPIO value (git-fixes). * PCI: dwc: Fix index 0 incorrectly being interpreted as a free ATU slot (git- fixes). * PCI: endpoint: Clean up error handling in vpci_scan_bus() (git-fixes). * PCI: endpoint: Fix error handling in epf_ntb_epc_cleanup() (git-fixes). * PCI: endpoint: pci-epf-test: Make use of cached 'epc_features' in pci_epf_test_core_init() (git-fixes). * PCI: keystone: Do not enable BAR 0 for AM654x (git-fixes). * PCI: keystone: Fix NULL pointer dereference in case of DT error in ks_pcie_setup_rc_app_regs() (git-fixes). * PCI: keystone: Relocate ks_pcie_set/clear_dbi_mode() (git-fixes). * PCI: qcom-ep: Disable resources unconditionally during PERST# assert (git- fixes). * PCI: rcar: Demote WARN() to dev_warn_ratelimited() in rcar_pcie_wakeup() (git-fixes). * PCI: rockchip: Use GPIOD_OUT_LOW flag while requesting ep_gpio (git-fixes). * PCI: tegra194: Set EP alignment restriction for inbound ATU (git-fixes). * PCI: vmd: Create domain symlink before pci_bus_add_devices() (bsc#1227363). * RAS/AMD/ATL: Fix MI300 bank hash (bsc#1225300). * RAS/AMD/ATL: Use system settings for MI300 DRAM to normalized address translation (bsc#1225300). * RDMA/bnxt_re: Fix the max msix vectors macro (git-fixes) * RDMA/mana_ib: Ignore optional access flags for MRs (git-fixes). * RDMA/mlx5: Add check for srq max_sge attribute (git-fixes) * RDMA/mlx5: Ensure created mkeys always have a populated rb_key (git-fixes) * RDMA/mlx5: Fix unwind flow as part of mlx5_ib_stage_init_init (git-fixes) * RDMA/mlx5: Follow rb_key.ats when creating new mkeys (git-fixes) * RDMA/mlx5: Remove extra unlock on error path (git-fixes) * RDMA/restrack: Fix potential invalid address access (git-fixes) * RDMA/rxe: Fix data copy for IB_SEND_INLINE (git-fixes) * RDMA/rxe: Fix responder length checking for UD request packets (git-fixes) * SUNRPC: Fix gss_free_in_token_pages() (git-fixes). * SUNRPC: Fix loop termination condition in gss_free_in_token_pages() (git- fixes). * SUNRPC: avoid soft lockup when transmitting UDP to reachable server (bsc#1225272). * SUNRPC: return proper error from gss_wrap_req_priv (git-fixes). * Temporarily drop KVM patch that caused a regression (bsc#1226158) * USB: Add USB_QUIRK_NO_SET_INTF quirk for START BP-850k (stable-fixes). * USB: class: cdc-wdm: Fix CPU lockup caused by excessive log messages (git- fixes). * USB: core: Fix duplicate endpoint bug by clearing reserved bits in the descriptor (git-fixes). * USB: serial: mos7840: fix crash on resume (git-fixes). * USB: serial: option: add Fibocom FM350-GL (stable-fixes). * USB: serial: option: add Netprisma LCUK54 series modules (stable-fixes). * USB: serial: option: add Rolling RW350-GL variants (stable-fixes). * USB: serial: option: add Telit FN912 rmnet compositions (stable-fixes). * USB: serial: option: add Telit generic core-dump composition (stable-fixes). * USB: serial: option: add support for Foxconn T99W651 (stable-fixes). * USB: xen-hcd: Traverse host/ when CONFIG_USB_XEN_HCD is selected (git- fixes). * X.509: Fix the parser of extended key usage for length (bsc#1218820). * arm64/io: Provide a WC friendly __iowriteXX_copy() (bsc#1226502) * arm64/io: add constant-argument check (bsc#1226502 git-fixes) * arm64: asm-bug: Add .align 2 to the end of __BUG_ENTRY (git-fixes). * arm64: dts: freescale: imx8mm-verdin: enable hysteresis on slow input (git- fixes) * arm64: dts: imx8qm-mek: fix gpio number for reg_usdhc2_vmmc (git-fixes) * arm64: dts: imx93-11x11-evk: Remove the 'no-sdio' property (git-fixes) * arm64: dts: rockchip: Add mdio and ethernet-phy nodes to (git-fixes) * arm64: dts: rockchip: Add missing power-domains for rk356x vop_mmu (git- fixes) * arm64: dts: rockchip: Add pinctrl for UART0 to rk3308-rock-pi-s (git-fixes) * arm64: dts: rockchip: Add sdmmc related properties on (git-fixes) * arm64: dts: rockchip: Add sound-dai-cells for RK3368 (git-fixes) * arm64: dts: rockchip: Drop invalid mic-in-differential on (git-fixes) * arm64: dts: rockchip: Fix SD NAND and eMMC init on rk3308-rock-pi-s (git- fixes) * arm64: dts: rockchip: Fix mic-in-differential usage on (git-fixes) * arm64: dts: rockchip: Fix mic-in-differential usage on rk3566-roc-pc (git- fixes) * arm64: dts: rockchip: Fix the DCDC_REG2 minimum voltage on Quartz64 (git- fixes) * arm64: dts: rockchip: Fix the value of `dlg,jack-det-rate` mismatch (git- fixes) * arm64: dts: rockchip: Increase VOP clk rate on RK3328 (git-fixes) * arm64: dts: rockchip: Rename LED related pinctrl nodes on (git-fixes) * arm64: dts: rockchip: Update WIFi/BT related nodes on (git-fixes) * arm64: dts: rockchip: fix PMIC interrupt pin on ROCK Pi E (git-fixes) * arm64: mm: Batch dsb and isb when populating pgtables (jsc#PED-8688). * arm64: mm: Do not remap pgtables for allocate vs populate (jsc#PED-8688). * arm64: mm: Do not remap pgtables per-cont(pte|pmd) block (jsc#PED-8688). * ata,scsi: libata-core: Do not leak memory for ata_port struct members (git- fixes). * ata: ahci: Clean up sysfs file on error (git-fixes). * ata: libata-core: Fix double free on error (git-fixes). * ata: libata-core: Fix null pointer dereference on error (git-fixes). * ata: libata-scsi: Fix offsets for the fixed format sense data (git-fixes). * auxdisplay: ht16k33: Drop reference after LED registration (git-fixes). * ax25: Fix refcount imbalance on inbound connections (git-fixes). * batman-adv: Do not accept TT entries for out-of-spec VIDs (git-fixes). * batman-adv: bypass empty buckets in batadv_purge_orig_ref() (stable-fixes). * block: Move checking GENHD_FL_NO_PART to bdev_add_partition() (bsc#1226213). * bluetooth/hci: disallow setting handle bigger than HCI_CONN_HANDLE_MAX (git- fixes). * bpf: check bpf_func_state->callback_depth when pruning states (bsc#1225903). * bpf: correct loop detection for iterators convergence (bsc#1225903). * bpf: exact states comparison for iterator convergence checks (bsc#1225903). * bpf: extract __check_reg_arg() utility function (bsc#1225903). * bpf: extract same_callsites() as utility function (bsc#1225903). * bpf: extract setup_func_entry() utility function (bsc#1225903). * bpf: keep track of max number of bpf_loop callback iterations (bsc#1225903). * bpf: move explored_state() closer to the beginning of verifier.c (bsc#1225903). * bpf: print full verifier states on infinite loop detection (bsc#1225903). * bpf: verify callbacks as if they are called unknown number of times (bsc#1225903). * bpf: widening for callback iterators (bsc#1225903). * bus: mhi: host: allow MHI client drivers to provide the firmware via a pointer (bsc#1227149). * bytcr_rt5640 : inverse jack detect for Archos 101 cesium (stable-fixes). * cachefiles: add output string to cachefiles_obj_[get|put]_ondemand_fd (git- fixes). * cachefiles: remove requests from xarray during flushing requests (bsc#1226588). * can: kvaser_usb: Explicitly initialize family in leafimx driver_info struct (git-fixes). * can: kvaser_usb: fix return value for hif_usb_send_regout (stable-fixes). * can: mcp251xfd: fix infinite loop when xmit fails (git-fixes). * cdrom: rearrange last_media_change check to avoid unintentional overflow (stable-fixes). * ceph: add ceph_cap_unlink_work to fire check_caps() immediately (bsc#1226022). * ceph: always check dir caps asynchronously (bsc#1226022). * ceph: always queue a writeback when revoking the Fb caps (bsc#1226022). * ceph: break the check delayed cap loop every 5s (bsc#1226022). * ceph: fix incorrect kmalloc size of pagevec mempool (bsc#1228417). * ceph: switch to use cap_delay_lock for the unlink delay list (bsc#1226022). * char: tpm: Fix possible memory leak in tpm_bios_measurements_open() (git- fixes). * checkpatch: really skip LONG_LINE_* when LONG_LINE is ignored (git-fixes). * cifs: Add a laundromat thread for cached directories (git-fixes, bsc#1225172). * clk: davinci: da8xx-cfgchip: Initialize clk_init_data before use (git- fixes). * clk: mediatek: mt8183: Only enable runtime PM on mt8183-mfgcfg (git-fixes). * clk: qcom: clk-alpha-pll: set ALPHA_EN bit for Stromer Plus PLLs (git- fixes). * clk: qcom: gcc-sm6350: Fix gpll6* & gpll7 parents (git-fixes). * clkdev: Update clkdev id usage to allow for longer names (stable-fixes). * config/arm64: Enable CoreSight PMU drivers (bsc#1228289 jsc#PED-7859) * counter: ti-eqep: enable clock at probe (git-fixes). * cpufreq/amd-pstate: Fix the scaling_max_freq setting on shared memory CPPC systems (git-fixes). * cpufreq: amd-pstate: Fix the inconsistency in max frequency units (git- fixes). * cpufreq: amd-pstate: fix memory leak on CPU EPP exit (stable-fixes). * cpufreq: ti-cpufreq: Handle deferred probe with dev_err_probe() (git-fixes). * crypto/ecdh: make ecdh_compute_value() to zeroize the public key (bsc#1222768). * crypto/ecdsa: make ecdsa_ecc_ctx_deinit() to zeroize the public key (bsc#1222768). * crypto: aead,cipher - zeroize key buffer after use (stable-fixes). * crypto: ccp - Fix null pointer dereference in __sev_snp_shutdown_locked (git-fixes). * crypto: deflate - Add aliases to deflate (bsc#1227190). * crypto: ecdh - explicitly zeroize private_key (stable-fixes). * crypto: ecdsa - Fix the public key format description (git-fixes). * crypto: ecrdsa - Fix module auto-load on add_key (stable-fixes). * crypto: hisilicon/debugfs - Fix debugfs uninit process issue (stable-fixes). * crypto: hisilicon/qm - Add the err memory release process to qm uninit (stable-fixes). * crypto: hisilicon/sec - Fix memory leak for sec resource release (stable- fixes). * crypto: iaa - Account for cpu-less numa nodes (bsc#1227190). * crypto: qat - extend scope of lock in adf_cfg_add_key_value_param() (git- fixes). * cxl/region: Fix cxlr_pmem leaks (git-fixes). * cxl/region: Fix memregion leaks in devm_cxl_add_region() (git-fixes). * cxl/test: Add missing vmalloc.h for tools/testing/cxl/test/mem.c (git- fixes). * cxl/trace: Correct DPA field masks for general_media & dram events (git- fixes). * decompress_bunzip2: fix rare decompression failure (git-fixes). * devres: Fix devm_krealloc() wasting memory (git-fixes). * devres: Fix memory leakage caused by driver API devm_free_percpu() (git- fixes). * dlm: fix user space lock decision to copy lvb (git-fixes). * dma: fix call order in dmam_free_coherent (git-fixes). * dmaengine: idxd: Fix possible Use-After-Free in irq_process_work_list (git- fixes). * dmaengine: ioatdma: Fix error path in ioat3_dma_probe() (git-fixes). * dmaengine: ioatdma: Fix kmemleak in ioat_pci_probe() (git-fixes). * dmaengine: ioatdma: Fix leaking on version mismatch (git-fixes). * dmaengine: ioatdma: Fix missing kmem_cache_destroy() (git-fixes). * dmaengine: ti: k3-udma: Fix BCHAN count with UHC and HC channels (git- fixes). * docs: crypto: async-tx-api: fix broken code example (git-fixes). * dpll: spec: use proper enum for pin capabilities attribute (git-fixes). * drivers/xen: Improve the late XenStore init protocol (git-fixes). * drivers: core: synchronize really_probe() and dev_uevent() (git-fixes). * drivers: soc: xilinx: check return status of get_api_version() (git-fixes). * drm/amd/amdgpu: Fix uninitialized variable warnings (git-fixes). * drm/amd/display: ASSERT when failing to find index by plane/stream id (stable-fixes). * drm/amd/display: Account for cursor prefetch BW in DML1 mode support (stable-fixes). * drm/amd/display: Add VCO speed parameter for DCN31 FPU (stable-fixes). * drm/amd/display: Add dtbclk access to dcn315 (stable-fixes). * drm/amd/display: Add refresh rate range check (stable-fixes). * drm/amd/display: Allocate zero bw after bw alloc enable (stable-fixes). * drm/amd/display: Check index msg_id before read or write (stable-fixes). * drm/amd/display: Check pipe offset before setting vblank (stable-fixes). * drm/amd/display: Disable seamless boot on 128b/132b encoding (stable-fixes). * drm/amd/display: Exit idle optimizations before HDCP execution (stable- fixes). * drm/amd/display: Fix DC mode screen flickering on DCN321 (stable-fixes). * drm/amd/display: Fix array-index-out-of-bounds in dml2/FCLKChangeSupport (stable-fixes). * drm/amd/display: Fix overlapping copy within dml_core_mode_programming (stable-fixes). * drm/amd/display: Fix refresh rate range for some panel (stable-fixes). * drm/amd/display: Fix uninitialized variables in DM (stable-fixes). * drm/amd/display: Move 'struct scaler_data' off stack (git-fixes). * drm/amd/display: Remove pixle rate limit for subvp (stable-fixes). * drm/amd/display: Revert Remove pixle rate limit for subvp (stable-fixes). * drm/amd/display: Send DP_TOTAL_LTTPR_CNT during detection if LTTPR is present (stable-fixes). * drm/amd/display: Set color_mgmt_changed to true on unsuspend (stable-fixes). * drm/amd/display: Skip finding free audio for unknown engine_id (stable- fixes). * drm/amd/display: Skip pipe if the pipe idx not set properly (stable-fixes). * drm/amd/display: Update efficiency bandwidth for dcn351 (stable-fixes). * drm/amd/display: Workaround register access in idle race with cursor (stable-fixes). * drm/amd/display: change dram_clock_latency to 34us for dcn35 (stable-fixes). * drm/amd/display: revert Exit idle optimizations before HDCP execution (stable-fixes). * drm/amd/pm: Fix aldebaran pcie speed reporting (git-fixes). * drm/amd/pm: Restore config space after reset (stable-fixes). * drm/amd/pm: remove logically dead code for renoir (git-fixes). * drm/amd: Fix shutdown (again) on some SMU v13.0.4/11 platforms (git-fixes). * drm/amdgpu/atomfirmware: add intergrated info v2.3 table (stable-fixes). * drm/amdgpu/atomfirmware: fix parsing of vram_info (stable-fixes). * drm/amdgpu/atomfirmware: silence UBSAN warning (stable-fixes). * drm/amdgpu/mes: fix use-after-free issue (stable-fixes). * drm/amdgpu: Check if NBIO funcs are NULL in amdgpu_device_baco_exit (git- fixes). * drm/amdgpu: Fix VRAM memory accounting (stable-fixes). * drm/amdgpu: Fix buffer size in gfx_v9_4_3_init_ cp_compute_microcode() and rlc_microcode() (git-fixes). * drm/amdgpu: Fix memory range calculation (git-fixes). * drm/amdgpu: Fix pci state save during mode-1 reset (git-fixes). * drm/amdgpu: Fix signedness bug in sdma_v4_0_process_trap_irq() (git-fixes). * drm/amdgpu: Fix the ring buffer size for queue VM flush (stable-fixes). * drm/amdgpu: Fix uninitialized variable warnings (stable-fixes). * drm/amdgpu: Indicate CU havest info to CP (stable-fixes). * drm/amdgpu: Initialize timestamp for some legacy SOCs (stable-fixes). * drm/amdgpu: Remove GC HW IP 9.3.0 from noretry=1 (git-fixes). * drm/amdgpu: Update BO eviction priorities (stable-fixes). * drm/amdgpu: Using uninitialized value *size when calling amdgpu_vce_cs_reloc (stable-fixes). * drm/amdgpu: add error handle to avoid out-of-bounds (stable-fixes). * drm/amdgpu: avoid using null object of framebuffer (stable-fixes). * drm/amdgpu: fix UBSAN warning in kv_dpm.c (stable-fixes). * drm/amdgpu: fix locking scope when flushing tlb (stable-fixes). * drm/amdgpu: fix the warning about the expression (int)size - len (stable- fixes). * drm/amdgpu: fix uninitialized scalar variable warning (stable-fixes). * drm/amdgpu: init microcode chip name from ip versions (stable-fixes). * drm/amdgpu: silence UBSAN warning (stable-fixes). * drm/amdkfd: Add VRAM accounting for SVM migration (stable-fixes). * drm/amdkfd: Fix CU Masking for GFX 9.4.3 (git-fixes). * drm/amdkfd: Flush the process wq before creating a kfd_process (stable- fixes). * drm/amdkfd: Let VRAM allocations go to GTT domain on small APUs (stable- fixes). * drm/arm/komeda: Fix komeda probe failing if there are no links in the secondary pipeline (git-fixes). * drm/bridge/panel: Fix runtime warning on panel bridge release (git-fixes). * drm/bridge: it6505: fix hibernate to resume no display issue (git-fixes). * drm/bridge: samsung-dsim: Set P divider based on min/max of fin pll (git- fixes). * drm/dp_mst: Fix all mstb marked as not probed after suspend/resume (git- fixes). * drm/drm_file: Fix pid refcounting race (git-fixes). * drm/etnaviv: fix DMA direction handling for cached RW buffers (git-fixes). * drm/etnaviv: fix tx clock gating on some GC7000 variants (stable-fixes). * drm/exynos/vidi: fix memory leak in .get_modes() (stable-fixes). * drm/exynos: dp: drop driver owner initialization (stable-fixes). * drm/exynos: hdmi: report safe 640x480 mode as a fallback when no EDID found (git-fixes). * drm/fbdev-dma: Fix framebuffer mode for big endian devices (git-fixes). * drm/fbdev-dma: Only set smem_start is enable per module option (git-fixes). * drm/fbdev-generic: Fix framebuffer on big endian devices (git-fixes). * drm/gma500: fix null pointer dereference in cdv_intel_lvds_get_modes (git- fixes). * drm/gma500: fix null pointer dereference in psb_intel_lvds_get_modes (git- fixes). * drm/i915/dp: Do not switch the LTTPR mode on an active link (git-fixes). * drm/i915/gt: Do not consider preemption during execlists_dequeue for gen8 (git-fixes). * drm/i915/gt: Fix potential UAF by revoke of fence registers (git-fixes). * drm/i915/hwmon: Get rid of devm (stable-fixes). * drm/i915/mso: using joiner is not possible with eDP MSO (git-fixes). * drm/komeda: check for error-valued pointer (git-fixes). * drm/lima: Mark simple_ondemand governor as softdep (git-fixes). * drm/lima: add mask irq callback to gp and pp (stable-fixes). * drm/lima: fix shared irq handling on driver remove (stable-fixes). * drm/lima: mask irqs in timeout path before hard reset (stable-fixes). * drm/mediatek: Add DRM_MODE_ROTATE_0 to rotation property (git-fixes). * drm/mediatek: Add OVL compatible name for MT8195 (git-fixes). * drm/mediatek: Add missing plane settings when async update (git-fixes). * drm/mediatek: Call drm_atomic_helper_shutdown() at shutdown time (stable- fixes). * drm/mediatek: Fix XRGB setting error in Mixer (git-fixes). * drm/mediatek: Fix XRGB setting error in OVL (git-fixes). * drm/mediatek: Fix bit depth overwritten for mtk_ovl_set bit_depth() (git- fixes). * drm/mediatek: Fix destination alpha error in OVL (git-fixes). * drm/mediatek: Remove less-than-zero comparison of an unsigned value (git- fixes). * drm/mediatek: Set DRM mode configs accordingly (git-fixes). * drm/mediatek: Support DRM plane alpha in Mixer (git-fixes). * drm/mediatek: Support DRM plane alpha in OVL (git-fixes). * drm/mediatek: Support RGBA8888 and RGBX8888 in OVL on MT8195 (git-fixes). * drm/mediatek: Turn off the layers with zero width or height (git-fixes). * drm/mediatek: Use 8-bit alpha in ETHDR (git-fixes). * drm/meson: fix canvas release in bind function (git-fixes). * drm/mgag200: Bind I2C lifetime to DRM device (git-fixes). * drm/mgag200: Set DDC timeout in milliseconds (git-fixes). * drm/mipi-dsi: Fix theoretical int overflow in mipi_dsi_dcs_write_seq() (git- fixes). * drm/mipi-dsi: Fix theoretical int overflow in mipi_dsi_generic_write_seq() (git-fixes). * drm/msm/dpu: drop validity checks for clear_pending_flush() ctl op (git- fixes). * drm/msm/dpu: fix encoder irq wait skip (git-fixes). * drm/msm/dsi: set VIDEO_COMPRESSION_MODE_CTRL_WC (git-fixes). * drm/msm/mdp5: Remove MDP_CAP_SRC_SPLIT from msm8x53_config (git-fixes). * drm/nouveau/dispnv04: fix null pointer dereference in nv17_tv_get_hd_modes (stable-fixes). * drm/nouveau/dispnv04: fix null pointer dereference in nv17_tv_get_ld_modes (stable-fixes). * drm/nouveau: do not attempt to schedule hpd_work on headless cards (git- fixes). * drm/nouveau: fix null pointer dereference in nouveau_connector_get_modes (git-fixes). * drm/panel: boe-tv101wum-nl6: Check for errors on the NOP in prepare() (git- fixes). * drm/panel: boe-tv101wum-nl6: If prepare fails, disable GPIO before regulators (git-fixes). * drm/panel: himax-hx8394: Handle errors from mipi_dsi_dcs_set_display_on() better (git-fixes). * drm/panel: ilitek-ili9881c: Fix warning with GPIO controllers that sleep (stable-fixes). * drm/panel: ilitek-ili9882t: Check for errors on the NOP in prepare() (git- fixes). * drm/panel: ilitek-ili9882t: If prepare fails, disable GPIO before regulators (git-fixes). * drm/panel: simple: Add missing display timing flags for KOE TX26D202VM0BWA (git-fixes). * drm/panel: sitronix-st7789v: Add check for of_drm_get_panel_orientation (git-fixes). * drm/panfrost: Mark simple_ondemand governor as softdep (git-fixes). * drm/qxl: Add check for drm_cvt_mode (git-fixes). * drm/radeon/radeon_display: Decrease the size of allocated memory (stable- fixes). * drm/radeon: check bo_va->bo is non-NULL before using it (stable-fixes). * drm/radeon: fix UBSAN warning in kv_dpm.c (stable-fixes). * drm/rockchip: vop2: Fix the port mux of VP2 (git-fixes). * drm/sun4i: hdmi: Convert encoder to atomic (stable-fixes). * drm/sun4i: hdmi: Move mode_set into enable (stable-fixes). * drm/ttm: Always take the bo delayed cleanup path for imported bos (git- fixes). * drm/udl: Remove DRM_CONNECTOR_POLL_HPD (git-fixes). * drm/vmwgfx: 3D disabled should not effect STDU memory limits (git-fixes). * drm/vmwgfx: Do not memcmp equivalent pointers (git-fixes). * drm/vmwgfx: Filter modes which exceed graphics memory (git-fixes). * drm/vmwgfx: Fix missing HYPERVISOR_GUEST dependency (stable-fixes). * drm: panel-orientation-quirks: Add quirk for Aya Neo KUN (stable-fixes). * drm: panel-orientation-quirks: Add quirk for Valve Galileo (stable-fixes). * drm: zynqmp_dpsub: Fix an error handling path in zynqmp_dpsub_probe() (git- fixes). * drm: zynqmp_kms: Fix AUX bus not getting unregistered (git-fixes). * eeprom: at24: Probe for DDR3 thermal sensor in the SPD case (stable-fixes). * eeprom: digsy_mtc: Fix 93xx46 driver probe failure (git-fixes). * efi/x86: Free EFI memory map only when installing a new one (git-fixes). * erofs: ensure m_llen is reset to 0 if metadata is invalid (git-fixes). * exfat: fix potential deadlock on __exfat_get_dentry_set (git-fixes). * f2fs: fix error path of __f2fs_build_free_nids (git-fixes). * filelock: fix potential use-after-free in posix_lock_inode (git-fixes). * firmware: cs_dsp: Fix overflow checking of wmfw header (git-fixes). * firmware: cs_dsp: Prevent buffer overrun when processing V2 alg headers (git-fixes). * firmware: cs_dsp: Return error if block header overflows file (git-fixes). * firmware: cs_dsp: Use strnlen() on name fields in V1 wmfw files (git-fixes). * firmware: cs_dsp: Validate payload length before processing block (git- fixes). * firmware: dmi: Stop decoding on broken entry (stable-fixes). * firmware: psci: Fix return value from psci_system_suspend() (git-fixes). * firmware: turris-mox-rwtm: Do not complete if there are no waiters (git- fixes). * firmware: turris-mox-rwtm: Fix checking return value of wait_for_completion_timeout() (git-fixes). * firmware: turris-mox-rwtm: Initialize completion before mailbox (git-fixes). * fpga: dfl-pci: add PCI subdevice ID for Intel D5005 card (stable-fixes). * fs/file: fix the check in find_next_fd() (git-fixes). * fs/pipe: Fix lockdep false-positive in watchqueue pipe_write() (git-fixes). * fuse: verify {g,u}id mount options correctly (bsc#1228193). * genirq/irqdesc: Prevent use-after-free in irq_find_at_or_after() (git- fixes). * gfs2: Do not forget to complete delayed withdraw (git-fixes). * gfs2: Fix "ignore unlock failures after withdraw" (git-fixes). * gfs2: Fix invalid metadata access in punch_hole (git-fixes). * gfs2: Get rid of gfs2_alloc_blocks generation parameter (git-fixes). * gfs2: Rename gfs2_lookup_{ simple => meta } (git-fixes). * gfs2: Use mapping->gfp_mask for metadata inodes (git-fixes). * gfs2: convert to ctime accessor functions (git-fixes). * gpio: davinci: Validate the obtained number of IRQs (git-fixes). * gpio: lpc32xx: fix module autoloading (stable-fixes). * gpio: mc33880: Convert comma to semicolon (git-fixes). * gpio: pca953x: fix pca953x_irq_bus_sync_unlock race (stable-fixes). * gpio: tqmx86: fix broken IRQ_TYPE_EDGE_BOTH interrupt type (git-fixes). * gpio: tqmx86: fix typo in Kconfig label (git-fixes). * gpio: tqmx86: introduce shadow register for GPIO output value (git-fixes). * gpio: tqmx86: store IRQ trigger type and unmask status separately (git- fixes). * gpiolib: cdev: Disallow reconfiguration without direction (uAPI v1) (git- fixes). * hfsplus: fix to avoid false alarm of circular locking (git-fixes). * hfsplus: fix uninit-value in copy_name (git-fixes). * hpet: Support 32-bit userspace (git-fixes). * hwmon: (adt7475) Fix default duty on fan is disabled (git-fixes). * hwmon: (max6697) Fix swapped temp{1,8} critical alarms (git-fixes). * hwmon: (max6697) Fix underflow when writing limit attributes (git-fixes). * hwrng: amd - Convert PCIBIOS_* return codes to errnos (git-fixes). * hwrng: core - Fix wrong quality calculation at hw rng registration (git- fixes). * i2c: at91: Fix the functionality flags of the slave-only interface (git- fixes). * i2c: designware: Fix the functionality flags of the slave-only interface (git-fixes). * i2c: i801: Annotate apanel_addr as __ro_after_init (stable-fixes). * i2c: mark HostNotify target address as used (git-fixes). * i2c: ocores: set IACK bit after core is enabled (git-fixes). * i2c: pnx: Fix potential deadlock warning from del_timer_sync() call in isr (git-fixes). * i2c: rcar: bring hardware to known state when probing (git-fixes). * i2c: testunit: avoid re-issued work after read message (git-fixes). * i2c: testunit: correct Kconfig description (git-fixes). * i2c: testunit: discard write requests while old command is running (git- fixes). * i2c: testunit: do not erase registers after STOP (git-fixes). * i40e: fix: remove needless retries of NVM update (bsc#1227736). * iio: Fix the sorting functionality in iio_gts_build_avail_time_table (git- fixes). * iio: accel: fxls8962af: select IIO_BUFFER & IIO_KFIFO_BUF (git-fixes). * iio: accel: mxc4005: Reset chip on probe() and resume() (stable-fixes). * iio: accel: mxc4005: allow module autoloading via OF compatible (stable- fixes). * iio: adc: ad7266: Fix variable checking bug (git-fixes). * iio: adc: ad9467: fix scan type sign (git-fixes). * iio: adc: ad9467: use chip_info variables instead of array (stable-fixes). * iio: adc: ad9467: use spi_get_device_match_data() (stable-fixes). * iio: chemical: bme680: Fix calibration data variable (git-fixes). * iio: chemical: bme680: Fix overflows in compensate() functions (git-fixes). * iio: chemical: bme680: Fix pressure value output (git-fixes). * iio: chemical: bme680: Fix sensor data read operation (git-fixes). * iio: dac: ad5592r: fix temperature channel scaling value (git-fixes). * iio: frequency: adrf6780: rm clk provider include (git-fixes). * iio: imu: inv_icm42600: delete unneeded update watermark call (git-fixes). * iio: pressure: bmp280: Fix BMP580 temperature reading (stable-fixes). * iio: pressure: fix some word spelling errors (stable-fixes). * iio: xilinx-ams: Do not include ams_ctrl_channels in scan_mask (git-fixes). * input: Add event code for accessibility key (stable-fixes). * input: Add support for "Do Not Disturb" (stable-fixes). * intel_th: pci: Add Granite Rapids SOC support (stable-fixes). * intel_th: pci: Add Granite Rapids support (stable-fixes). * intel_th: pci: Add Lunar Lake support (stable-fixes). * intel_th: pci: Add Meteor Lake-S CPU support (stable-fixes). * intel_th: pci: Add Meteor Lake-S support (stable-fixes). * intel_th: pci: Add Sapphire Rapids SOC support (stable-fixes). * interconnect: qcom: qcm2290: Fix mas_snoc_bimc RPM master ID (git-fixes). * io-wq: write next_work before dropping acct_lock (git-fixes). * io_uring/io-wq: Use set_bit() and test_bit() at worker->flags (git-fixes). * io_uring/io-wq: avoid garbage value of 'match' in io_wq_enqueue() (git- fixes). * io_uring/kbuf: get rid of bl->is_ready (git-fixes). * io_uring/kbuf: get rid of lower BGID lists (git-fixes). * io_uring/kbuf: protect io_buffer_list teardown with a reference (git-fixes). Reuses a padding space in the structure. * io_uring/kbuf: rename is_mapped (git-fixes). * io_uring/net: correct the type of variable (git-fixes). * io_uring/net: correctly handle multishot recvmsg retry setup (git-fixes). * io_uring/net: fix sendzc lazy wake polling (git-fixes). * io_uring/net: move receive multishot out of the generic msghdr path (git- fixes). * io_uring/net: restore msg_control on sendzc retry (git-fixes). * io_uring/net: unify how recvmsg and sendmsg copy in the msghdr (git-fixes). * io_uring/rsrc: do not lock while !TASK_RUNNING (git-fixes). * io_uring/rsrc: fix incorrect assignment of iter->nr_segs in io_import_fixed (git-fixes). * io_uring/rw: do not allow multishot reads without NOWAIT support (git- fixes). * io_uring/rw: return IOU_ISSUE_SKIP_COMPLETE for multishot retry (git-fixes). * io_uring/sqpoll: work around a potential audit memory leak (git-fixes). * io_uring/unix: drop usage of io_uring socket (git-fixes). * io_uring: Fix io_cqring_wait() not restoring sigmask on get_timespec64() failure (git-fixes). * io_uring: clean rings on NO_MMAP alloc fail (git-fixes). * io_uring: clear opcode specific data for an early failure (git-fixes). * io_uring: do not save/restore iowait state (git-fixes). * io_uring: fail NOP if non-zero op flags is passed in (git-fixes). * io_uring: fix io_queue_proc modifying req->flags (git-fixes). * io_uring: fix mshot io-wq checks (git-fixes). * io_uring: fix mshot read defer taskrun cqe posting (git-fixes). * io_uring: fix poll_remove stalled req completion (git-fixes). * io_uring: remove looping around handling traditional task_work (git-fixes). * io_uring: remove unconditional looping in local task_work handling (git- fixes). * io_uring: use private workqueue for exit work (git-fixes). * io_uring: use the right type for work_llist empty check (git-fixes). * iommu/amd: Enhance def_domain_type to handle untrusted device (git-fixes). * iommu/amd: Fix panic accessing amd_iommu_enable_faulting (bsc#1224767). * iommu/amd: Fix sysfs leak in iommu init (git-fixes). * iommu/arm-smmu-v3: Free MSIs in case of ENOMEM (git-fixes). * iommu/vt-d: Allocate DMAR fault interrupts locally (bsc#1224767). * iommu/vt-d: Fix WARN_ON in iommu probe path (git-fixes). * iommu/vt-d: Improve ITE fault handling if target device isn't present (git- fixes). * iommu/vt-d: Use rbtree to track iommu probed devices (git-fixes). * iommu: Fix compilation without CONFIG_IOMMU_INTEL (git-fixes). * iommu: Return right value in iommu_sva_bind_device() (git-fixes). * iommu: Undo pasid attachment only for the devices that have succeeded (git- fixes). * iommu: mtk: fix module autoloading (git-fixes). * ipmi: ssif_bmc: prevent integer overflow on 32bit systems (git-fixes). * ipvs: Fix checksumming on GSO of SCTP packets (bsc#1221958) * iwlwifi: fw: fix more kernel-doc warnings (bsc#1227149). * iwlwifi: mvm: Drop unused fw_trips_index[] from iwl_mvm_thermal_device (bsc#1227149). * iwlwifi: mvm: Populate trip table before registering thermal zone (bsc#1227149). * iwlwifi: mvm: Use for_each_thermal_trip() for walking trip points (bsc#1227149). * jffs2: Fix potential illegal address access in jffs2_free_inode (git-fixes). * jfs: Fix array-index-out-of-bounds in diFree (git-fixes). * jfs: xattr: fix buffer overflow for invalid xattr (bsc#1227383). * kABI fix of KVM: x86/pmu: Prioritize VMX interception over * kABI workaround for sof_ipc_pcm_ops (git-fixes). * kABI workaround for wireless updates (bsc#1227149). * kABI: bpf: verifier kABI workaround (bsc#1225903). * kabi/severities: Ignore io_uring internal symbols * kabi/severities: cleanup and update for WiFi driver entries (bsc#1227149) * kabi/severities: cover all ath/ _drivers (bsc#1227149) All symbols in ath/_ network drivers are local and can be ignored * kabi/severities: cover all mt76 modules (bsc#1227149) * kabi/severities: ignore amd pds internal symbols * kabi/severities: ignore kABI changes Realtek WiFi drivers (bsc#1227149) All those symbols are local and used for its own helpers * kabi: Use __iowriteXX_copy_inlined for in-kernel modules (bsc#1226502) * kbuild: Fix build target deb-pkg: ln: failed to create hard link (git- fixes). * kbuild: Install dtb files as 0644 in Makefile.dtbinst (git-fixes). * kbuild: avoid build error when single DTB is turned into composite DTB (git- fixes). * kbuild: doc: Update default INSTALL_MOD_DIR from extra to updates (git- fixes). * kconfig: doc: fix a typo in the note about 'imply' (git-fixes). * kconfig: fix comparison to constant symbols, 'm', 'n' (git-fixes). * kconfig: gconf: give a proper initial state to the Save button (stable- fixes). * kconfig: remove wrong expr_trans_bool() (stable-fixes). * kcov: do not lose track of remote references during softirqs (git-fixes). * kernel-binary: vdso: Own module_dir * kernel-doc: fix struct_group_tagged() parsing (git-fixes). * kheaders: explicitly define file modes for archived headers (stable-fixes). * knfsd: LOOKUP can return an illegal error value (git-fixes). * kobject_uevent: Fix OOB access within zap_modalias_env() (git-fixes). * kprobe/ftrace: bail out if ftrace was killed (git-fixes). * kprobe/ftrace: fix build error due to bad function definition (git-fixes). * kunit: Fix checksum tests on big endian CPUs (git-fixed). * leds: flash: leds-qcom-flash: Test the correct variable in init (git-fixes). * leds: mt6360: Fix memory leak in mt6360_init_isnk_properties() (git-fixes). * leds: ss4200: Convert PCIBIOS_* return codes to errnos (git-fixes). * leds: trigger: Unregister sysfs attributes before calling deactivate() (git- fixes). * leds: triggers: Flush pending brightness before activating trigger (git- fixes). * lib: objagg: Fix general protection fault (git-fixes). * lib: objagg: Fix spelling (git-fixes). * lib: test_objagg: Fix spelling (git-fixes). * libceph: fix race between delayed_work() and ceph_monc_stop() (bsc#1228192). * mISDN: Fix a use after free in hfcmulti_tx() (git-fixes). * mISDN: fix MISDN_TIME_STAMP handling (git-fixes). * mac802154: fix time calculation in ieee802154_configure_durations() (git- fixes). * mailbox: mtk-cmdq: Move devm_mbox_controller_register() after devm_pm_runtime_enable() (git-fixes). * media: dvb-frontends: tda10048: Fix integer overflow (stable-fixes). * media: dvb-frontends: tda18271c2dd: Remove casting during div (stable- fixes). * media: dvb-usb: Fix unexpected infinite loop in dvb_usb_read_remote_control() (git-fixes). * media: dvb-usb: dib0700_devices: Add missing release_firmware() (stable- fixes). * media: dvb: as102-fe: Fix as10x_register_addr packing (stable-fixes). * media: dvbdev: Initialize sbuf (stable-fixes). * media: dw2102: Do not translate i2c read into write (stable-fixes). * media: dw2102: fix a potential buffer overflow (git-fixes). * media: i2c: Fix imx412 exposure control (git-fixes). * media: imon: Fix race getting ictx->lock (git-fixes). * media: imx-jpeg: Drop initial source change event if capture has been setup (git-fixes). * media: imx-jpeg: Remove some redundant error logs (git-fixes). * media: imx-pxp: Fix ERR_PTR dereference in pxp_probe() (git-fixes). * media: lgdt3306a: Add a check against null-pointer-def (stable-fixes). * media: mxl5xx: Move xpt structures off stack (stable-fixes). * media: pci: ivtv: Add check for DMA map result (git-fixes). * media: radio-shark2: Avoid led_names truncations (git-fixes). * media: rcar-vin: Fix YUYV8_1X16 handling for CSI-2 (git-fixes). * media: renesas: vsp1: Fix _irqsave and _irq mix (git-fixes). * media: renesas: vsp1: Store RPF partition configuration per RPF instance (git-fixes). * media: s2255: Use refcount_t instead of atomic_t for num_channels (stable- fixes). * media: uvcvideo: Fix integer overflow calculating timestamp (git-fixes). * media: uvcvideo: Override default flags (git-fixes). * media: v4l2-core: hold videodev_lock until dev reg, finishes (stable-fixes). * media: v4l: async: Fix NULL pointer dereference in adding ancillary links (git-fixes). * media: v4l: subdev: Fix typo in documentation (git-fixes). * media: venus: fix use after free in vdec_close (git-fixes). * media: venus: flush all buffers in output plane streamoff (git-fixes). * mei: demote client disconnect warning on suspend to debug (stable-fixes). * mei: me: release irq in mei_me_pci_resume error path (git-fixes). * mfd: omap-usb-tll: Use struct_size to allocate tll (git-fixes). * mfd: pm8008: Fix regmap irq chip initialisation (git-fixes). * misc: fastrpc: Avoid updating PD type for capability request (git-fixes). * misc: fastrpc: Copy the complete capability structure to user (git-fixes). * misc: fastrpc: Fix DSP capabilities request (git-fixes). * misc: fastrpc: Fix memory leak in audio daemon attach operation (git-fixes). * misc: fastrpc: Fix ownership reassignment of remote heap (git-fixes). * misc: fastrpc: Restrict untrusted app to attach to privileged PD (git- fixes). * misc: microchip: pci1xxxx: Fix a memory leak in the error handling of gp_aux_bus_probe() (git-fixes). * misc: microchip: pci1xxxx: fix double free in the error handling of gp_aux_bus_probe() (git-fixes). * mmc: core: Add mmc_gpiod_set_cd_config() function (stable-fixes). * mmc: core: Do not force a retune before RPMB switch (stable-fixes). * mmc: sdhci-acpi: Add quirk to enable pull-up on the card-detect GPIO on Asus T100TA (git-fixes). * mmc: sdhci-acpi: Disable write protect detection on Toshiba WT10-A (stable- fixes). * mmc: sdhci-acpi: Fix Lenovo Yoga Tablet 2 Pro 1380 sdcard slot not working (stable-fixes). * mmc: sdhci-acpi: Sort DMI quirks alphabetically (stable-fixes). * mmc: sdhci-brcmstb: check R1_STATUS for erase/trim/discard (git-fixes). * mmc: sdhci-pci: Convert PCIBIOS_* return codes to errnos (git-fixes). * mmc: sdhci: Add support for "Tuning Error" interrupts (stable-fixes). * mmc: sdhci: Do not invert write-protect twice (git-fixes). * mmc: sdhci: Do not lock spinlock around mmc_gpio_get_ro() (git-fixes). * module: do not ignore sysfs_create_link() failures (git-fixes). * mt76: connac: move more mt7921/mt7915 mac shared code in connac lib (bsc#1227149). * mt76: mt7996: rely on mt76_sta_stats in mt76_wcid (bsc#1227149). * mtd: partitions: redboot: Added conversion of operands to a larger type (stable-fixes). * mtd: rawnand: Bypass a couple of sanity checks during NAND identification (git-fixes). * mtd: rawnand: Ensure ECC configuration is propagated to upper layers (git- fixes). * mtd: rawnand: Fix the nand_read_data_op() early check (git-fixes). * mtd: rawnand: rockchip: ensure NVDDR timings are rejected (git-fixes). * net/dcb: check for detached device before executing callbacks (bsc#1215587). * net/mlx5: Fix MTMP register capability offset in MCAM register (git-fixes). * net: can: j1939: Initialize unused data in j1939_send_one() (git-fixes). * net: can: j1939: enhanced error handling for tightly received RTS messages in xtp_rx_rts_session_new (git-fixes). * net: can: j1939: recover socket queue on CAN bus error during BAM transmission (git-fixes). * net: ena: Fix redundant device NUMA node override (jsc#PED-8688). * net: ethernet: mtk_wed: introduce mtk_wed_buf structure (bsc#1227149). * net: ethernet: mtk_wed: rename mtk_rxbm_desc in mtk_wed_bm_desc (bsc#1227149). * net: fill in MODULE_DESCRIPTION()s in kuba@'s modules (bsc#1227149). * net: hns3: Remove io_stop_wc() calls after __iowrite64_copy() (bsc#1226502) * net: lan743x: Support WOL at both the PHY and MAC appropriately (git-fixes). * net: lan743x: disable WOL upon resume to restore full data path operation (git-fixes). * net: mac802154: Fix racy device stats updates by DEV_STATS_INC() and DEV_STATS_ADD() (stable-fixes). * net: mana: Enable MANA driver on ARM64 with 4K page size (jsc#PED-8491). * net: mana: Fix possible double free in error handling path (git-fixes). * net: mana: Fix the extra HZ in mana_hwc_send_request (git-fixes). * net: phy: Micrel KSZ8061: fix errata solution not taking effect problem (git-fixes). * net: phy: micrel: add Microchip KSZ 9477 to the device table (git-fixes). * net: phy: micrel: fix KSZ9477 PHY issues after suspend/resume (git-fixes). * net: phy: microchip: lan87xx: reinit PHY after cable test (git-fixes). * net: phy: mxl-gpy: Remove interrupt mask clearing from config_init (git- fixes). * net: phy: phy_device: Fix PHY LED blinking code comment (git-fixes). * net: usb: ax88179_178a: improve link status logs (git-fixes). * net: usb: ax88179_178a: improve reset check (git-fixes). * net: usb: qmi_wwan: add Telit FN912 compositions (stable-fixes). * net: usb: qmi_wwan: add Telit FN920C04 compositions (git-fixes). * net: usb: rtl8150 fix unintiatilzed variables in rtl8150_get_link_ksettings (git-fixes). * nfc/nci: Add the inconsistency check between the input data length and count (stable-fixes). * nfs: Avoid flushing many pages with NFS_FILE_SYNC (bsc#1218442). * nfs: Block on write congestion (bsc#1218442). * nfs: Bump default write congestion size (bsc#1218442). * nfs: Drop pointless check from nfs_commit_release_pages() (bsc#1218442). * nfs: Fix up kabi after adding write_congestion_wait (bsc#1218442). * nfs: Handle error of rpc_proc_register() in nfs_net_init() (git-fixes). * nfs: Properly initialize server->writeback (bsc#1218442). * nfs: drop the incorrect assertion in nfs_swap_rw() (git-fixes). * nfs: fix undefined behavior in nfs_block_bits() (git-fixes). * nfs: keep server info for remounts (git-fixes). * nfsd: hold a lighter-weight client reference over CB_RECALL_ANY (git-fixes). * nfsd: optimise recalculate_deny_mode() for a common case (bsc#1217912). * nilfs2: add missing check for inode numbers on directory entries (stable- fixes). * nilfs2: avoid undefined behavior in nilfs_cnt32_ge macro (git-fixes). * nilfs2: convert persistent object allocator to use kmap_local (git-fixes). * nilfs2: fix incorrect inode allocation from reserved inodes (git-fixes). * nilfs2: fix inode number range checks (stable-fixes). * nilfs2: fix nilfs_empty_dir() misjudgment and long loop on I/O errors (git- fixes). * nilfs2: fix potential hang in nilfs_detach_log_writer() (git-fixes). * nilfs2: return the mapped address from nilfs_get_page() (stable-fixes). * nouveau: add an ioctl to report vram usage (stable-fixes). * nouveau: add an ioctl to return vram bar size (stable-fixes). * nouveau: report byte usage in VRAM usage (git-fixes). * nvme-fabrics: short-circuit reconnect retries (bsc#1186716). * nvme-tcp: Export the nvme_tcp_wq to sysfs (bsc#1224049). * nvme/tcp: Add wq_unbound modparam for nvme_tcp_wq (bsc#1224049). * nvme: cancel pending I/O if nvme controller is in terminal state (bsc#1226503). * nvme: do not retry authentication failures (bsc#1186716). * nvme: find numa distance only if controller has valid numa id (git-fixes). * nvme: fix nvme_pr_* status code parsing (git-fixes). * nvme: return kernel error codes for admin queue connect (bsc#1186716). * nvmet-auth: replace pr_debug() with pr_err() to report an error (git-fixes). * nvmet-auth: return the error code to the nvmet_auth_host_hash() callers (git-fixes). * nvmet-passthru: propagate status from id override functions (git-fixes). * nvmet-tcp: fix possible memory leak when tearing down a controller (git- fixes). * nvmet: fix nvme status code when namespace is disabled (git-fixes). * nvmet: lock config semaphore when accessing DH-HMAC-CHAP key (bsc#1186716). * nvmet: prevent sprintf() overflow in nvmet_subsys_nsid_exists() (git-fixes). * nvmet: return DHCHAP status codes from nvmet_setup_auth() (bsc#1186716). * ocfs2: adjust enabling place for la window (bsc#1219224). * ocfs2: fix DIO failure due to insufficient transaction credits (git-fixes). * ocfs2: fix races between hole punching and AIO+DIO (git-fixes). * ocfs2: fix sparse warnings (bsc#1219224). * ocfs2: improve write IO performance when fragmentation is high (bsc#1219224). * ocfs2: speed up chain-list searching (bsc#1219224). * ocfs2: use coarse time for new created files (git-fixes). * orangefs: fix out-of-bounds fsid access (git-fixes). * pNFS/filelayout: fixup pNfs allocation modes (git-fixes). * phy: cadence-torrent: Check return value on register read (git-fixes). * pinctrl: core: fix possible memory leak when pinctrl_enable() fails (git- fixes). * pinctrl: fix deadlock in create_pinctrl() when handling -EPROBE_DEFER (git- fixes). * pinctrl: freescale: mxs: Fix refcount of child (git-fixes). * pinctrl: qcom: spmi-gpio: drop broken pm8008 support (git-fixes). * pinctrl: renesas: r8a779g0: FIX PWM suffixes (git-fixes). * pinctrl: renesas: r8a779g0: Fix (H)SCIF1 suffixes (git-fixes). * pinctrl: renesas: r8a779g0: Fix (H)SCIF3 suffixes (git-fixes). * pinctrl: renesas: r8a779g0: Fix CANFD5 suffix (git-fixes). * pinctrl: renesas: r8a779g0: Fix FXR_TXEN[AB] suffixes (git-fixes). * pinctrl: renesas: r8a779g0: Fix IRQ suffixes (git-fixes). * pinctrl: renesas: r8a779g0: Fix TCLK suffixes (git-fixes). * pinctrl: renesas: r8a779g0: Fix TPU suffixes (git-fixes). * pinctrl: rockchip: fix pinmux bits for RK3328 GPIO2-B pins (git-fixes). * pinctrl: rockchip: fix pinmux bits for RK3328 GPIO3-B pins (git-fixes). * pinctrl: rockchip: fix pinmux reset in rockchip_pmx_set (git-fixes). * pinctrl: rockchip: update rk3308 iomux routes (git-fixes). * pinctrl: rockchip: use dedicated pinctrl type for RK3328 (git-fixes). * pinctrl: single: fix possible memory leak when pinctrl_enable() fails (git- fixes). * pinctrl: ti: ti-iodelay: fix possible memory leak when pinctrl_enable() fails (git-fixes). * platform/chrome: cros_ec_debugfs: fix wrong EC message version (git-fixes). * platform/x86/intel/tpmi: Handle error from tpmi_process_info() (stable- fixes). * platform/x86: ISST: Add Grand Ridge to HPM CPU list (stable-fixes). * platform/x86: dell-smbios: Fix wrong token data in sysfs (git-fixes). * platform/x86: lg-laptop: Change ACPI device id (stable-fixes). * platform/x86: lg-laptop: Remove LGEX0815 hotkey handling (stable-fixes). * platform/x86: lg-laptop: Use ACPI device handle when evaluating WMAB/WMBB (stable-fixes). * platform/x86: thinkpad_acpi: Take hotkey_mutex during hotkey_exit() (git- fixes). * platform/x86: toshiba_acpi: Add quirk for buttons on Z830 (stable-fixes). * platform/x86: toshiba_acpi: Fix array out-of-bounds access (git-fixes). * platform/x86: toshiba_acpi: Fix quickstart quirk handling (git-fixes). * platform/x86: touchscreen_dmi: Add info for GlobalSpace SolT IVW 11.6" tablet (stable-fixes). * platform/x86: touchscreen_dmi: Add info for the EZpad 6s Pro (stable-fixes). * platform/x86: wireless-hotkey: Add support for LG Airplane Button (stable- fixes). * power: supply: ab8500: Fix error handling when calling iio_read_channel_processed() (git-fixes). * power: supply: cros_usbpd: provide ID table for avoiding fallback match (stable-fixes). * power: supply: ingenic: Fix some error handling paths in ingenic_battery_get_property() (git-fixes). * powerpc/64s/radix/kfence: map __kfence_pool at page granularity (bsc#1223570 ltc#205770). * powerpc/prom: Add CPU info to hardware description string later (bsc#1215199). * powerpc/pseries: Fix scv instruction crash with kexec (bsc#1194869). * powerpc/rtas: Prevent Spectre v1 gadget construction in sys_rtas() (bsc#1227487). * pwm: sti: Prepare removing pwm_chip from driver data (stable-fixes). * pwm: sti: Simplify probe function using devm functions (git-fixes). * pwm: stm32: Always do lazy disabling (git-fixes). * regmap-i2c: Subtract reg size from max_write (stable-fixes). * regulator: bd71815: fix ramp values (git-fixes). * regulator: core: Fix modpost error "regulator_get_regmap" undefined (git- fixes). * regulator: irq_helpers: duplicate IRQ name (stable-fixes). * regulator: vqmmc-ipq4019: fix module autoloading (stable-fixes). * remoteproc: imx_rproc: Fix refcount mistake in imx_rproc_addr_init (git- fixes). * remoteproc: imx_rproc: Skip over memory region when node value is NULL (git- fixes). * remoteproc: k3-r5: Fix IPC-only mode detection (git-fixes). * remoteproc: stm32_rproc: Fix mailbox interrupts queuing (git-fixes). * rpcrdma: fix handling for RDMA_CM_EVENT_DEVICE_REMOVAL (git-fixes). * rtc: abx80x: Fix return value of nvmem callback on read (git-fixes). * rtc: cmos: Fix return value of nvmem callbacks (git-fixes). * rtc: interface: Add RTC offset to alarm after fix-up (git-fixes). * rtc: isl1208: Fix return value of nvmem callbacks (git-fixes). * s390/cpacf: Make use of invalid opcode produce a link error (git-fixes bsc#1227072). * s390: Implement __iowrite32_copy() (bsc#1226502) * s390: Stop using weak symbols for __iowrite64_copy() (bsc#1226502) * saa7134: Unchecked i2c_transfer function result fixed (git-fixes). * sched/core: Fix incorrect initialization of the 'burst' parameter in cpu_max_write() (bsc#1226791). * selftests/bpf: test case for callback_depth states pruning logic (bsc#1225903). * selftests/bpf: test if state loops are detected in a tricky case (bsc#1225903). * selftests/bpf: test widening for iterating callbacks (bsc#1225903). * selftests/bpf: tests for iterating callbacks (bsc#1225903). * selftests/bpf: tests with delayed read/precision makrs in loop body (bsc#1225903). * selftests/bpf: track string payload offset as scalar in strobemeta (bsc#1225903). * selftests/bpf: track tcp payload offset as scalar in xdp_synproxy (bsc#1225903). * selftests/mm: compaction_test: fix incorrect write of zero to nr_hugepages (git-fixes). * selftests/mm: fix build warnings on ppc64 (stable-fixes). * selftests/sigaltstack: Fix ppc64 GCC build (git-fixes). * selftests: fix OOM in msg_zerocopy selftest (git-fixes). * selftests: make order checking verbose in msg_zerocopy selftest (git-fixes). * selftests: mptcp: add ms units for tc-netem delay (stable-fixes). * selftests: sud_test: return correct emulated syscall value on RISC-V (stable-fixes). * serial: bcm63xx-uart: fix tx after conversion to uart_port_tx_limited() (git-fixes). * serial: core: introduce uart_port_tx_limited_flags() (git-fixes). * serial: exar: adding missing CTI and Exar PCI ids (stable-fixes). * serial: imx: Introduce timeout when waiting on transmitter empty (stable- fixes). * serial: imx: Raise TX trigger level to 8 (stable-fixes). * smb3: allow controlling length of time directory entries are cached with dir leases (git-fixes, bsc#1225172). * smb3: allow controlling maximum number of cached directories (git-fixes, bsc#1225172). * smb3: do not start laundromat thread when dir leases disabled (git-fixes, bsc#1225172). * smb: client: do not start laundromat thread on nohandlecache (git-fixes, bsc#1225172). * smb: client: make laundromat a delayed worker (git-fixes, bsc#1225172). * smb: client: prevent new fids from being removed by laundromat (git-fixes, bsc#1225172). * soc: qcom: pdr: fix parsing of domains lists (git-fixes). * soc: qcom: pdr: protect locator_addr with the main mutex (git-fixes). * soc: qcom: pmic_glink: Handle the return value of pmic_glink_init (git- fixes). * soc: qcom: rpmh-rsc: Ensure irqs are not disabled by rpmh_rsc_send_data() callers (git-fixes). * soc: ti: wkup_m3_ipc: Send NULL dummy message instead of pointer message (stable-fixes). * soc: xilinx: rename cpu_number1 to dummy_cpu_number (git-fixes). * soundwire: cadence: fix invalid PDI offset (stable-fixes). * spi: atmel-quadspi: Add missing check for clk_prepare (git-fixes). * spi: cadence: Ensure data lines set to low during dummy-cycle period (stable-fixes). * spi: imx: Do not expect DMA for i.MX{25,35,50,51,53} cspi devices (stable- fixes). * spi: microchip-core: defer asserting chip select until just before write to TX FIFO (git-fixes). * spi: microchip-core: ensure TX and RX FIFOs are empty at start of a transfer (git-fixes). * spi: microchip-core: fix the issues in the isr (git-fixes). * spi: microchip-core: only disable SPI controller when register value change requires it (git-fixes). * spi: mux: set ctlr->bits_per_word_mask (stable-fixes). * spi: spi-microchip-core: Fix the number of chip selects supported (git- fixes). * spi: spidev: add correct compatible for Rohm BH2228FV (git-fixes). * spi: stm32: qspi: Clamp stm32_qspi_get_mode() output to CCR_BUSWIDTH_4 (git- fixes). * spi: stm32: qspi: Fix dual flash mode sanity test in stm32_qspi_setup() (git-fixes). * ssb: Fix potential NULL pointer dereference in ssb_device_uevent() (stable- fixes). * struct acpi_ec kABI workaround (git-fixes). * sunrpc: fix NFSACL RPC retry on soft mount (git-fixes). * tcp: Dump bound-only sockets in inet_diag (bsc#1204562). * thermal/drivers/mediatek/lvts_thermal: Check NULL ptr on lvts_data (stable- fixes). * thermal/drivers/mediatek/lvts_thermal: Return error in case of invalid efuse data (git-fixes). * thunderbolt: debugfs: Fix margin debugfs node creation condition (git- fixes). * tools/memory-model: Fix bug in lock.cat (git-fixes). * tools/power turbostat: Remember global max_die_id (stable-fixes). * tools/power/cpupower: Fix Pstate frequency reporting on AMD Family 1Ah CPUs (stable-fixes). * tools: ynl: do not leak mcast_groups on init error (git-fixes). * tools: ynl: fix handling of multiple mcast groups (git-fixes). * tools: ynl: make sure we always pass yarg to mnl_cb_run (git-fixes). * tpm_tis: Do _not_ flush uninitialized work (git-fixes). * tracefs: Add missing lockdown check to tracefs_create_dir() (git-fixes). * tracing/net_sched: NULL pointer dereference in perf_trace_qdisc_reset() (git-fixes). * tracing: Build event generation tests only as modules (git-fixes). * tty: mcf: MCF54418 has 10 UARTS (git-fixes). * tty: n_tty: Fix buffer offsets when lookahead is used (git-fixes). * usb-storage: alauda: Check whether the media is initialized (git-fixes). * usb: atm: cxacru: fix endpoint checking in cxacru_bind() (git-fixes). * usb: dwc3: core: Add DWC31 version 2.00a controller (stable-fixes). * usb: dwc3: core: Workaround for CSR read timeout (stable-fixes). * usb: dwc3: core: remove lock of otg mode during gadget suspend/resume to avoid deadlock (git-fixes). * usb: dwc3: pci: Do not set "linux,phy_charger_detect" property on Lenovo Yoga Tab2 1380 (stable-fixes). * usb: dwc3: pci: add support for the Intel Panther Lake (stable-fixes). * usb: gadget: aspeed_udc: fix device address configuration (git-fixes). * usb: gadget: configfs: Prevent OOB read/write in usb_string_copy() (stable- fixes). * usb: gadget: function: Remove usage of the deprecated ida_simple_xx() API (stable-fixes). * usb: gadget: printer: SS+ support (stable-fixes). * usb: gadget: printer: fix races against disable (git-fixes). * usb: gadget: uvc: configfs: ensure guid to be valid before set (stable- fixes). * usb: misc: uss720: check for incompatible versions of the Belkin F5U002 (stable-fixes). * usb: musb: da8xx: fix a resource leak in probe() (git-fixes). * usb: typec: tcpm: Ignore received Hard Reset in TOGGLING state (git-fixes). * usb: typec: tcpm: fix use-after-free case in tcpm_register_source_caps (git- fixes). * usb: typec: ucsi: Ack also failed Get Error commands (git-fixes). * usb: typec: ucsi: Never send a lone connector change ack (stable-fixes). * usb: typec: ucsi: glink: fix child node release in probe function (git- fixes). * usb: typec: ucsi_glink: drop special handling for CCI_BUSY (stable-fixes). * usb: ucsi: stm32: fix command completion handling (git-fixes). * usb: xhci: prevent potential failure in handle_tx_event() for Transfer events without TRB (stable-fixes). * virtio_net: avoid data-races on dev->stats fields (git-fixes). * virtio_net: checksum offloading handling fix (git-fixes). * vmlinux.lds.h: catch .bss..L* sections into BSS") (git-fixes). * watchdog: rzg2l_wdt: Check return status of pm_runtime_put() (git-fixes). * watchdog: rzg2l_wdt: Use pm_runtime_resume_and_get() (git-fixes). * watchdog: rzn1: Convert comma to semicolon (git-fixes). * wifi: add HAS_IOPORT dependencies (bsc#1227149). * wifi: ar5523: Remove unnecessary (void*) conversions (bsc#1227149). * wifi: ath10/11/12k: Use alloc_ordered_workqueue() to create ordered workqueues (bsc#1227149). * wifi: ath10k: Annotate struct ath10k_ce_ring with __counted_by (bsc#1227149). * wifi: ath10k: Convert to platform remove callback returning void (bsc#1227149). * wifi: ath10k: Drop checks that are always false (bsc#1227149). * wifi: ath10k: Drop cleaning of driver data from probe error path and remove (bsc#1227149). * wifi: ath10k: Fix a few spelling errors (bsc#1227149). * wifi: ath10k: Fix enum ath10k_fw_crash_dump_type kernel-doc (bsc#1227149). * wifi: ath10k: Fix htt_data_tx_completion kernel-doc warning (bsc#1227149). * wifi: ath10k: Remove unnecessary (void*) conversions (bsc#1227149). * wifi: ath10k: Remove unused struct ath10k_htc_frame (bsc#1227149). * wifi: ath10k: Update Qualcomm Innovation Center, Inc. copyrights (bsc#1227149). * wifi: ath10k: Use DECLARE_FLEX_ARRAY() for ath10k_htc_record (bsc#1227149). * wifi: ath10k: Use list_count_nodes() (bsc#1227149). * wifi: ath10k: add missing wmi_10_4_feature_mask documentation (bsc#1227149). * wifi: ath10k: add support to allow broadcast action frame RX (bsc#1227149). * wifi: ath10k: consistently use kstrtoX_from_user() functions (bsc#1227149). * wifi: ath10k: correctly document enum wmi_tlv_tx_pause_id (bsc#1227149). * wifi: ath10k: drop HTT_DATA_TX_STATUS_DOWNLOAD_FAIL (bsc#1227149). * wifi: ath10k: fix QCOM_RPROC_COMMON dependency (git-fixes). * wifi: ath10k: fix Wvoid-pointer-to-enum-cast warning (bsc#1227149). * wifi: ath10k: fix htt_q_state_conf & htt_q_state kernel-doc (bsc#1227149). * wifi: ath10k: improve structure padding (bsc#1227149). * wifi: ath10k: indicate to mac80211 scan complete with aborted flag for ATH10K_SCAN_STARTING state (bsc#1227149). * wifi: ath10k: remove ath10k_htc_record::pauload[] (bsc#1227149). * wifi: ath10k: remove duplicate memset() in 10.4 TDLS peer update (bsc#1227149). * wifi: ath10k: remove struct wmi_pdev_chanlist_update_event (bsc#1227149). * wifi: ath10k: remove unused template structs (bsc#1227149). * wifi: ath10k: replace ENOTSUPP with EOPNOTSUPP (bsc#1227149). * wifi: ath10k: replace deprecated strncpy with memcpy (bsc#1227149). * wifi: ath10k: simplify __ath10k_htt_tx_txq_recalc() (bsc#1227149). * wifi: ath10k: simplify ath10k_peer_create() (bsc#1227149). * wifi: ath10k: use flexible array in struct wmi_host_mem_chunks (bsc#1227149). * wifi: ath10k: use flexible array in struct wmi_tdls_peer_capabilities (bsc#1227149). * wifi: ath10k: use flexible arrays for WMI start scan TLVs (bsc#1227149). * wifi: ath11k: Add HTT stats for PHY reset case (bsc#1227149). * wifi: ath11k: Add coldboot calibration support for QCN9074 (bsc#1227149). * wifi: ath11k: Allow ath11k to boot without caldata in ftm mode (bsc#1227149). * wifi: ath11k: Consistently use ath11k_vif_to_arvif() (bsc#1227149). * wifi: ath11k: Consolidate WMI peer flags (bsc#1227149). * wifi: ath11k: Convert to platform remove callback returning void (bsc#1227149). * wifi: ath11k: Do not directly use scan_flags in struct scan_req_params (bsc#1227149). * wifi: ath11k: EMA beacon support (bsc#1227149). * wifi: ath11k: Fix a few spelling errors (bsc#1227149). * wifi: ath11k: Fix ath11k_htc_record flexible record (bsc#1227149). * wifi: ath11k: Introduce and use ath11k_sta_to_arsta() (bsc#1227149). * wifi: ath11k: MBSSID beacon support (bsc#1227149). * wifi: ath11k: MBSSID configuration during vdev create/start (bsc#1227149). * wifi: ath11k: MBSSID parameter configuration in AP mode (bsc#1227149). * wifi: ath11k: Really consistently use ath11k_vif_to_arvif() (bsc#1227149). * wifi: ath11k: Relocate the func ath11k_mac_bitrate_mask_num_ht_rates() and change hweight16 to hweight8 (bsc#1227149). * wifi: ath11k: Remove ath11k_base::bd_api (bsc#1227149). * wifi: ath11k: Remove cal_done check during probe (bsc#1227149). * wifi: ath11k: Remove obsolete struct wmi_peer_flags_map *peer_flags (bsc#1227149). * wifi: ath11k: Remove scan_flags union from struct scan_req_params (bsc#1227149). * wifi: ath11k: Remove struct ath11k::ops (bsc#1227149). * wifi: ath11k: Remove unneeded semicolon (bsc#1227149). * wifi: ath11k: Remove unused declarations (bsc#1227149). * wifi: ath11k: Remove unused struct ath11k_htc_frame (bsc#1227149). * wifi: ath11k: Send HT fixed rate in WMI peer fixed param (bsc#1227149). * wifi: ath11k: Split coldboot calibration hw_param (bsc#1227149). * wifi: ath11k: Update Qualcomm Innovation Center, Inc. copyrights (bsc#1227149). * wifi: ath11k: Use device_get_match_data() (bsc#1227149). * wifi: ath11k: Use list_count_nodes() (bsc#1227149). * wifi: ath11k: add WMI event debug messages (bsc#1227149). * wifi: ath11k: add WMI_TLV_SERVICE_EXT_TPC_REG_SUPPORT service bit (bsc#1227149). * wifi: ath11k: add chip id board name while searching board-2.bin for WCN6855 (bsc#1227149). * wifi: ath11k: add firmware-2.bin support (bsc#1227149). * wifi: ath11k: add handler for WMI_VDEV_SET_TPC_POWER_CMDID (bsc#1227149). * wifi: ath11k: add parse of transmit power envelope element (bsc#1227149). * wifi: ath11k: add parsing of phy bitmap for reg rules (bsc#1227149). * wifi: ath11k: add support for QCA2066 (bsc#1227149). * wifi: ath11k: add support to select 6 GHz regulatory type (bsc#1227149). * wifi: ath11k: ath11k_debugfs_register(): fix format-truncation warning (bsc#1227149). * wifi: ath11k: avoid forward declaration of ath11k_mac_start_vdev_delay() (bsc#1227149). * wifi: ath11k: call ath11k_mac_fils_discovery() without condition (bsc#1227149). * wifi: ath11k: constify MHI channel and controller configs (bsc#1227149). * wifi: ath11k: debug: add ATH11K_DBG_CE (bsc#1227149). * wifi: ath11k: debug: remove unused ATH11K_DBG_ANY (bsc#1227149). * wifi: ath11k: debug: use all upper case in ATH11k_DBG_HAL (bsc#1227149). * wifi: ath11k: do not use %pK (bsc#1227149). * wifi: ath11k: document HAL_RX_BUF_RBM_SW4_BM (bsc#1227149). * wifi: ath11k: dp: cleanup debug message (bsc#1227149). * wifi: ath11k: driver settings for MBSSID and EMA (bsc#1227149). * wifi: ath11k: drop NULL pointer check in ath11k_update_per_peer_tx_stats() (bsc#1227149). * wifi: ath11k: drop redundant check in ath11k_dp_rx_mon_dest_process() (bsc#1227149). * wifi: ath11k: enable 36 bit mask for stream DMA (bsc#1227149). * wifi: ath11k: factory test mode support (bsc#1227149). * wifi: ath11k: fill parameters for vdev set tpc power WMI command (bsc#1227149). * wifi: ath11k: fix CAC running state during virtual interface start (bsc#1227149). * wifi: ath11k: fix IOMMU errors on buffer rings (bsc#1227149). * wifi: ath11k: fix RCU documentation in ath11k_mac_op_ipv6_changed() (git- fixes). * wifi: ath11k: fix WCN6750 firmware crash caused by 17 num_vdevs (bsc#1227149). * wifi: ath11k: fix Wvoid-pointer-to-enum-cast warning (bsc#1227149). * wifi: ath11k: fix a possible dead lock caused by ab->base_lock (bsc#1227149). * wifi: ath11k: fix ath11k_mac_op_remain_on_channel() stack usage (bsc#1227149). * wifi: ath11k: fix connection failure due to unexpected peer delete (bsc#1227149). * wifi: ath11k: fix tid bitmap is 0 in peer rx mu stats (bsc#1227149). * wifi: ath11k: fix wrong definition of CE ring's base address (git-fixes). * wifi: ath11k: fix wrong handling of CCMP256 and GCMP ciphers (git-fixes). * wifi: ath11k: hal: cleanup debug message (bsc#1227149). * wifi: ath11k: htc: cleanup debug messages (bsc#1227149). * wifi: ath11k: initialize eirp_power before use (bsc#1227149). * wifi: ath11k: mac: fix struct ieee80211_sband_iftype_data handling (bsc#1227149). * wifi: ath11k: mhi: add a warning message for MHI_CB_EE_RDDM crash (bsc#1227149). * wifi: ath11k: move pci.ops registration ahead (bsc#1227149). * wifi: ath11k: move power type check to ASSOC stage when connecting to 6 GHz AP (bsc#1227149). * wifi: ath11k: move references from rsvd2 to info fields (bsc#1227149). * wifi: ath11k: pci: cleanup debug logging (bsc#1227149). * wifi: ath11k: print debug level in debug messages (bsc#1227149). * wifi: ath11k: provide address list if chip supports 2 stations (bsc#1227149). * wifi: ath11k: qmi: refactor ath11k_qmi_m3_load() (bsc#1227149). * wifi: ath11k: refactor ath11k_wmi_tlv_parse_alloc() (bsc#1227149). * wifi: ath11k: refactor setting country code logic (stable-fixes). * wifi: ath11k: refactor vif parameter configurations (bsc#1227149). * wifi: ath11k: rely on mac80211 debugfs handling for vif (bsc#1227149). * wifi: ath11k: remove ath11k_htc_record::pauload[] (bsc#1227149). * wifi: ath11k: remove invalid peer create logic (bsc#1227149). * wifi: ath11k: remove manual mask names from debug messages (bsc#1227149). * wifi: ath11k: remove unnecessary (void*) conversions (bsc#1227149). * wifi: ath11k: remove unsupported event handlers (bsc#1227149). * wifi: ath11k: remove unused function ath11k_tm_event_wmi() (bsc#1227149). * wifi: ath11k: remove unused members of 'struct ath11k_base' (bsc#1227149). * wifi: ath11k: remove unused scan_events from struct scan_req_params (bsc#1227149). * wifi: ath11k: rename MBSSID fields in wmi_vdev_up_cmd (bsc#1227149). * wifi: ath11k: rename ath11k_start_vdev_delay() (bsc#1227149). * wifi: ath11k: rename the sc naming convention to ab (bsc#1227149). * wifi: ath11k: rename the wmi_sc naming convention to wmi_ab (bsc#1227149). * wifi: ath11k: replace ENOTSUPP with EOPNOTSUPP (bsc#1227149). * wifi: ath11k: restore country code during resume (git-fixes). * wifi: ath11k: save max transmit power in vdev start response event from firmware (bsc#1227149). * wifi: ath11k: save power spectral density(PSD) of regulatory rule (bsc#1227149). * wifi: ath11k: simplify ath11k_mac_validate_vht_he_fixed_rate_settings() (bsc#1227149). * wifi: ath11k: simplify the code with module_platform_driver (bsc#1227149). * wifi: ath11k: store cur_regulatory_info for each radio (bsc#1227149). * wifi: ath11k: support 2 station interfaces (bsc#1227149). * wifi: ath11k: update proper pdev/vdev id for testmode command (bsc#1227149). * wifi: ath11k: update regulatory rules when connect to AP on 6 GHz band for station (bsc#1227149). * wifi: ath11k: update regulatory rules when interface added (bsc#1227149). * wifi: ath11k: use RCU when accessing struct inet6_dev::ac_list (bsc#1227149). * wifi: ath11k: use WMI_VDEV_SET_TPC_POWER_CMDID when EXT_TPC_REG_SUPPORT for 6 GHz (bsc#1227149). * wifi: ath11k: use kstrtoul_from_user() where appropriate (bsc#1227149). * wifi: ath11k: use select for CRYPTO_MICHAEL_MIC (bsc#1227149). * wifi: ath11k: wmi: add unified command debug messages (bsc#1227149). * wifi: ath11k: wmi: cleanup error handling in ath11k_wmi_send_init_country_cmd() (bsc#1227149). * wifi: ath11k: wmi: use common error handling style (bsc#1227149). * wifi: ath11k: workaround too long expansion sparse warnings (bsc#1227149). * wifi: ath12k: Add logic to write QRTR node id to scratch (bsc#1227149). * wifi: ath12k: Add missing qmi_txn_cancel() calls (bsc#1227149). * wifi: ath12k: Add support to parse new WMI event for 6 GHz regulatory (bsc#1227149). * wifi: ath12k: Consistently use ath12k_vif_to_arvif() (bsc#1227149). * wifi: ath12k: Consolidate WMI peer flags (bsc#1227149). * wifi: ath12k: Correct 6 GHz frequency value in rx status (git-fixes). * wifi: ath12k: Do not drop tx_status in failure case (git-fixes). * wifi: ath12k: Do not use scan_flags from struct ath12k_wmi_scan_req_arg (bsc#1227149). * wifi: ath12k: Enable Mesh support for QCN9274 (bsc#1227149). * wifi: ath12k: Fix a few spelling errors (bsc#1227149). * wifi: ath12k: Fix tx completion ring (WBM2SW) setup failure (git-fixes). * wifi: ath12k: Fix uninitialized use of ret in ath12k_mac_allocate() (bsc#1227149). * wifi: ath12k: Introduce and use ath12k_sta_to_arsta() (bsc#1227149). * wifi: ath12k: Introduce the container for mac80211 hw (bsc#1227149). * wifi: ath12k: Make QMI message rules const (bsc#1227149). * wifi: ath12k: Optimize the mac80211 hw data access (bsc#1227149). * wifi: ath12k: Read board id to support split-PHY QCN9274 (bsc#1227149). * wifi: ath12k: Refactor the mac80211 hw access from link/radio (bsc#1227149). * wifi: ath12k: Remove ath12k_base::bd_api (bsc#1227149). * wifi: ath12k: Remove obsolete struct wmi_peer_flags_map *peer_flags (bsc#1227149). * wifi: ath12k: Remove some dead code (bsc#1227149). * wifi: ath12k: Remove struct ath12k::ops (bsc#1227149). * wifi: ath12k: Remove unnecessary (void*) conversions (bsc#1227149). * wifi: ath12k: Remove unnecessary struct qmi_txn initializers (bsc#1227149). * wifi: ath12k: Remove unused declarations (bsc#1227149). * wifi: ath12k: Remove unused scan_flags from struct ath12k_wmi_scan_req_arg (bsc#1227149). * wifi: ath12k: Set default beacon mode to burst mode (bsc#1227149). * wifi: ath12k: Use initializers for QMI message buffers (bsc#1227149). * wifi: ath12k: Use msdu_end to check MCBC (bsc#1227149). * wifi: ath12k: Use pdev_id rather than mac_id to get pdev (bsc#1227149). * wifi: ath12k: WMI support to process EHT capabilities (bsc#1227149). * wifi: ath12k: add 320 MHz bandwidth enums (bsc#1227149). * wifi: ath12k: add CE and ext IRQ flag to indicate irq_handler (bsc#1227149). * wifi: ath12k: add EHT PHY modes (bsc#1227149). * wifi: ath12k: add MAC id support in WBM error path (bsc#1227149). * wifi: ath12k: add MLO header in peer association (bsc#1227149). * wifi: ath12k: add P2P IE in beacon template (bsc#1227149). * wifi: ath12k: add QMI PHY capability learn support (bsc#1227149). * wifi: ath12k: add WMI support for EHT peer (bsc#1227149). * wifi: ath12k: add ath12k_qmi_free_resource() for recovery (bsc#1227149). * wifi: ath12k: add fallback board name without variant while searching board-2.bin (bsc#1227149). * wifi: ath12k: add firmware-2.bin support (bsc#1227149). * wifi: ath12k: add handler for scan event WMI_SCAN_EVENT_DEQUEUED (bsc#1227149). * wifi: ath12k: add keep backward compatibility of PHY mode to avoid firmware crash (bsc#1227149). * wifi: ath12k: add msdu_end structure for WCN7850 (bsc#1227149). * wifi: ath12k: add parsing of phy bitmap for reg rules (bsc#1227149). * wifi: ath12k: add processing for TWT disable event (bsc#1227149). * wifi: ath12k: add processing for TWT enable event (bsc#1227149). * wifi: ath12k: add qmi_cnss_feature_bitmap field to hardware parameters (bsc#1227149). * wifi: ath12k: add rcu lock for ath12k_wmi_p2p_noa_event() (bsc#1227149). * wifi: ath12k: add read variant from SMBIOS for download board data (bsc#1227149). * wifi: ath12k: add string type to search board data in board-2.bin for WCN7850 (bsc#1227149). * wifi: ath12k: add support for BA1024 (bsc#1227149). * wifi: ath12k: add support for collecting firmware log (bsc#1227149). * wifi: ath12k: add support for hardware rfkill for WCN7850 (bsc#1227149). * wifi: ath12k: add support for peer meta data version (bsc#1227149). * wifi: ath12k: add support one MSI vector (bsc#1227149). * wifi: ath12k: add support to search regdb data in board-2.bin for WCN7850 (bsc#1227149). * wifi: ath12k: add wait operation for tx management packets for flush from mac80211 (bsc#1227149). * wifi: ath12k: advertise P2P dev support for WCN7850 (bsc#1227149). * wifi: ath12k: allow specific mgmt frame tx while vdev is not up (bsc#1227149). * wifi: ath12k: ath12k_start_vdev_delay(): convert to use ar (bsc#1227149). * wifi: ath12k: avoid deadlock by change ieee80211_queue_work for regd_update_work (bsc#1227149). * wifi: ath12k: avoid duplicated vdev stop (git-fixes). * wifi: ath12k: avoid explicit HW conversion argument in Rxdma replenish (bsc#1227149). * wifi: ath12k: avoid explicit RBM id argument in Rxdma replenish (bsc#1227149). * wifi: ath12k: avoid explicit mac id argument in Rxdma replenish (bsc#1227149). * wifi: ath12k: avoid repeated hw access from ar (bsc#1227149). * wifi: ath12k: avoid repeated wiphy access from hw (bsc#1227149). * wifi: ath12k: call ath12k_mac_fils_discovery() without condition (bsc#1227149). * wifi: ath12k: change DMA direction while mapping reinjected packets (git- fixes). * wifi: ath12k: change MAC buffer ring size to 2048 (bsc#1227149). * wifi: ath12k: change WLAN_SCAN_PARAMS_MAX_IE_LEN from 256 to 512 (bsc#1227149). * wifi: ath12k: change interface combination for P2P mode (bsc#1227149). * wifi: ath12k: change to initialize recovery variables earlier in ath12k_core_reset() (bsc#1227149). * wifi: ath12k: change to treat alpha code na as world wide regdomain (bsc#1227149). * wifi: ath12k: change to use dynamic memory for channel list of scan (bsc#1227149). * wifi: ath12k: check M3 buffer size as well whey trying to reuse it (bsc#1227149). * wifi: ath12k: check hardware major version for WCN7850 (bsc#1227149). * wifi: ath12k: configure RDDM size to MHI for device recovery (bsc#1227149). * wifi: ath12k: configure puncturing bitmap (bsc#1227149). * wifi: ath12k: correct the data_type from QMI_OPT_FLAG to QMI_UNSIGNED_1_BYTE for mlo_capable (bsc#1227149). * wifi: ath12k: delete the timer rx_replenish_retry during rmmod (bsc#1227149). * wifi: ath12k: designating channel frequency for ROC scan (bsc#1227149). * wifi: ath12k: disable QMI PHY capability learn in split-phy QCN9274 (bsc#1227149). * wifi: ath12k: do not drop data frames from unassociated stations (bsc#1227149). * wifi: ath12k: do not restore ASPM in case of single MSI vector (bsc#1227149). * wifi: ath12k: drop NULL pointer check in ath12k_update_per_peer_tx_stats() (bsc#1227149). * wifi: ath12k: drop failed transmitted frames from metric calculation (git- fixes). * wifi: ath12k: enable 320 MHz bandwidth for 6 GHz band in EHT PHY capability for WCN7850 (bsc#1227149). * wifi: ath12k: enable 802.11 power save mode in station mode (bsc#1227149). * wifi: ath12k: enable IEEE80211_HW_SINGLE_SCAN_ON_ALL_BANDS for WCN7850 (bsc#1227149). * wifi: ath12k: fetch correct pdev id from WMI_SERVICE_READY_EXT_EVENTID (bsc#1227149). * wifi: ath12k: fix PCI read and write (bsc#1227149). * wifi: ath12k: fix WARN_ON during ath12k_mac_update_vif_chan (bsc#1227149). * wifi: ath12k: fix broken structure wmi_vdev_create_cmd (bsc#1227149). * wifi: ath12k: fix conf_mutex in ath12k_mac_op_unassign_vif_chanctx() (bsc#1227149). * wifi: ath12k: fix debug messages (bsc#1227149). * wifi: ath12k: fix fetching MCBC flag for QCN9274 (bsc#1227149). * wifi: ath12k: fix firmware assert during insmod in memory segment mode (bsc#1227149). * wifi: ath12k: fix firmware crash during reo reinject (git-fixes). * wifi: ath12k: fix invalid m3 buffer address (bsc#1227149). * wifi: ath12k: fix invalid memory access while processing fragmented packets (git-fixes). * wifi: ath12k: fix kernel crash during resume (bsc#1227149). * wifi: ath12k: fix license in p2p.c and p2p.h (bsc#1227149). * wifi: ath12k: fix peer metadata parsing (git-fixes). * wifi: ath12k: fix potential wmi_mgmt_tx_queue race condition (bsc#1227149). * wifi: ath12k: fix radar detection in 160 MHz (bsc#1227149). * wifi: ath12k: fix recovery fail while firmware crash when doing channel switch (bsc#1227149). * wifi: ath12k: fix the error handler of rfkill config (bsc#1227149). * wifi: ath12k: fix the issue that the multicast/broadcast indicator is not read correctly for WCN7850 (bsc#1227149). * wifi: ath12k: fix the problem that down grade phy mode operation (bsc#1227149). * wifi: ath12k: fix wrong definition of CE ring's base address (git-fixes). * wifi: ath12k: fix wrong definitions of hal_reo_update_rx_queue (bsc#1227149). * wifi: ath12k: get msi_data again after request_irq is called (bsc#1227149). * wifi: ath12k: implement handling of P2P NoA event (bsc#1227149). * wifi: ath12k: implement remain on channel for P2P mode (bsc#1227149). * wifi: ath12k: increase vdev setup timeout (bsc#1227149). * wifi: ath12k: indicate NON MBSSID vdev by default during vdev start (bsc#1227149). * wifi: ath12k: indicate scan complete for scan canceled when scan running (bsc#1227149). * wifi: ath12k: indicate to mac80211 scan complete with aborted flag for ATH12K_SCAN_STARTING state (bsc#1227149). * wifi: ath12k: move HE capabilities processing to a new function (bsc#1227149). * wifi: ath12k: move peer delete after vdev stop of station for WCN7850 (bsc#1227149). * wifi: ath12k: parse WMI service ready ext2 event (bsc#1227149). * wifi: ath12k: peer assoc for 320 MHz (bsc#1227149). * wifi: ath12k: prepare EHT peer assoc parameters (bsc#1227149). * wifi: ath12k: propagate EHT capabilities to userspace (bsc#1227149). * wifi: ath12k: refactor DP Rxdma ring structure (bsc#1227149). * wifi: ath12k: refactor QMI MLO host capability helper function (bsc#1227149). * wifi: ath12k: refactor ath12k_bss_assoc() (bsc#1227149). * wifi: ath12k: refactor ath12k_mac_allocate() and ath12k_mac_destroy() (bsc#1227149). * wifi: ath12k: refactor ath12k_mac_op_ampdu_action() (bsc#1227149). * wifi: ath12k: refactor ath12k_mac_op_conf_tx() (bsc#1227149). * wifi: ath12k: refactor ath12k_mac_op_config() (bsc#1227149). * wifi: ath12k: refactor ath12k_mac_op_configure_filter() (bsc#1227149). * wifi: ath12k: refactor ath12k_mac_op_flush() (bsc#1227149). * wifi: ath12k: refactor ath12k_mac_op_start() (bsc#1227149). * wifi: ath12k: refactor ath12k_mac_op_stop() (bsc#1227149). * wifi: ath12k: refactor ath12k_mac_op_update_vif_offload() (bsc#1227149). * wifi: ath12k: refactor ath12k_mac_register() and ath12k_mac_unregister() (bsc#1227149). * wifi: ath12k: refactor ath12k_mac_setup_channels_rates() (bsc#1227149). * wifi: ath12k: refactor ath12k_wmi_tlv_parse_alloc() (bsc#1227149). * wifi: ath12k: refactor multiple MSI vector implementation (bsc#1227149). * wifi: ath12k: refactor the rfkill worker (bsc#1227149). * wifi: ath12k: register EHT mesh capabilities (bsc#1227149). * wifi: ath12k: relax list iteration in ath12k_mac_vif_unref() (bsc#1227149). * wifi: ath12k: relocate ath12k_dp_pdev_pre_alloc() call (bsc#1227149). * wifi: ath12k: remove hal_desc_sz from hw params (bsc#1227149). * wifi: ath12k: remove redundant memset() in ath12k_hal_reo_qdesc_setup() (bsc#1227149). * wifi: ath12k: remove the unused scan_events from ath12k_wmi_scan_req_arg (bsc#1227149). * wifi: ath12k: remove unused ATH12K_BD_IE_BOARD_EXT (bsc#1227149). * wifi: ath12k: rename HE capabilities setup/copy functions (bsc#1227149). * wifi: ath12k: rename the sc naming convention to ab (bsc#1227149). * wifi: ath12k: rename the wmi_sc naming convention to wmi_ab (bsc#1227149). * wifi: ath12k: replace ENOTSUPP with EOPNOTSUPP (bsc#1227149). * wifi: ath12k: send WMI_PEER_REORDER_QUEUE_SETUP_CMDID when ADDBA session starts (bsc#1227149). * wifi: ath12k: set IRQ affinity to CPU0 in case of one MSI vector (bsc#1227149). * wifi: ath12k: set PERST pin no pull request for WCN7850 (bsc#1227149). * wifi: ath12k: split hal_ops to support RX TLVs word mask compaction (bsc#1227149). * wifi: ath12k: subscribe required word mask from rx tlv (bsc#1227149). * wifi: ath12k: support default regdb while searching board-2.bin for WCN7850 (bsc#1227149). * wifi: ath12k: trigger station disconnect on hardware restart (bsc#1227149). * wifi: ath12k: use ATH12K_PCI_IRQ_DP_OFFSET for DP IRQ (bsc#1227149). * wifi: ath12k: use correct flag field for 320 MHz channels (bsc#1227149). * wifi: ath12k: use select for CRYPTO_MICHAEL_MIC (bsc#1227149). * wifi: ath5k: Convert to platform remove callback returning void (bsc#1227149). * wifi: ath5k: Remove redundant dev_err() (bsc#1227149). * wifi: ath5k: ath5k_hw_get_median_noise_floor(): use swap() (bsc#1227149). * wifi: ath5k: remove phydir check from ath5k_debug_init_device() (bsc#1227149). * wifi: ath5k: remove unnecessary (void*) conversions (bsc#1227149). * wifi: ath5k: remove unused ath5k_eeprom_info::ee_antenna (bsc#1227149). * wifi: ath5k: replace deprecated strncpy with strscpy (bsc#1227149). * wifi: ath6kl: Remove error checking for debugfs_create_dir() (bsc#1227149). * wifi: ath6kl: remove unnecessary (void*) conversions (bsc#1227149). * wifi: ath6kl: replace deprecated strncpy with memcpy (bsc#1227149). * wifi: ath9k: Convert to platform remove callback returning void (bsc#1227149). * wifi: ath9k: Remove unnecessary (void*) conversions (bsc#1227149). * wifi: ath9k: Remove unnecessary ternary operators (bsc#1227149). * wifi: ath9k: Remove unused declarations (bsc#1227149). * wifi: ath9k: avoid using uninitialized array (bsc#1227149). * wifi: ath9k: clean up function ath9k_hif_usb_resume (bsc#1227149). * wifi: ath9k: consistently use kstrtoX_from_user() functions (bsc#1227149). * wifi: ath9k: delete some unused/duplicate macros (bsc#1227149). * wifi: ath9k: fix parameter check in ath9k_init_debug() (bsc#1227149). * wifi: ath9k: remove redundant assignment to variable ret (bsc#1227149). * wifi: ath9k: reset survey of current channel after a scan started (bsc#1227149). * wifi: ath9k: simplify ar9003_hw_process_ini() (bsc#1227149). * wifi: ath9k: use u32 for txgain indexes (bsc#1227149). * wifi: ath9k: work around memset overflow warning (bsc#1227149). * wifi: ath9k_htc: fix format-truncation warning (bsc#1227149). * wifi: ath: Use is_multicast_ether_addr() to check multicast Ether address (bsc#1227149). * wifi: ath: dfs_pattern_detector: Use flex array to simplify code (bsc#1227149). * wifi: ath: remove unused-but-set parameter (bsc#1227149). * wifi: ath: work around false-positive stringop-overread warning (bsc#1227149). * wifi: atk10k: Do not opencode ath10k_pci_priv() in ath10k_ahb_priv() (bsc#1227149). * wifi: atmel: remove unused ioctl function (bsc#1227149). * wifi: b43: silence sparse warnings (bsc#1227149). * wifi: brcm80211: replace deprecated strncpy with strscpy (bsc#1227149). * wifi: brcmfmac: Annotate struct brcmf_gscan_config with __counted_by (bsc#1227149). * wifi: brcmfmac: Detect corner error case earlier with log (bsc#1227149). * wifi: brcmfmac: add linefeed at end of file (bsc#1227149). * wifi: brcmfmac: allow per-vendor event handling (bsc#1227149). * wifi: brcmfmac: do not cast hidden SSID attribute value to boolean (bsc#1227149). * wifi: brcmfmac: do not pass hidden SSID attribute as value directly (bsc#1227149). * wifi: brcmfmac: export firmware interface functions (bsc#1227149). * wifi: brcmfmac: firmware: Annotate struct brcmf_fw_request with __counted_by (bsc#1227149). * wifi: brcmfmac: fix format-truncation warnings (bsc#1227149). * wifi: brcmfmac: fix gnu_printf warnings (bsc#1227149). * wifi: brcmfmac: fweh: Add __counted_by for struct brcmf_fweh_queue_item and use struct_size() (bsc#1227149). * wifi: brcmfmac: fweh: Fix boot crash on Raspberry Pi 4 (bsc#1227149). * wifi: brcmfmac: move feature overrides before feature_disable (bsc#1227149). * wifi: brcmsmac: LCN PHY code is used for BCM4313 2G-only device (git-fixes). * wifi: brcmsmac: cleanup SCB-related data types (bsc#1227149). * wifi: brcmsmac: fix gnu_printf warnings (bsc#1227149). * wifi: brcmsmac: phy: Remove unreachable code (bsc#1227149). * wifi: brcmsmac: remove more unused data types (bsc#1227149). * wifi: brcmsmac: remove unused data type (bsc#1227149). * wifi: brcmsmac: replace deprecated strncpy with memcpy (bsc#1227149). * wifi: brcmsmac: silence sparse warnings (bsc#1227149). * wifi: brcmutil: use helper function pktq_empty() instead of open code (bsc#1227149). * wifi: carl9170: Remove redundant assignment to pointer super (bsc#1227149). * wifi: carl9170: remove unnecessary (void*) conversions (bsc#1227149). * wifi: cfg80211: Add support for setting TID to link mapping (bsc#1227149). * wifi: cfg80211: Allow AP/P2PGO to indicate port authorization to peer STA/P2PClient (bsc#1227149). * wifi: cfg80211: Extend support for scanning while MLO connected (bsc#1227149). * wifi: cfg80211: Fix typo in documentation (bsc#1227149). * wifi: cfg80211: Handle specific BSSID in 6GHz scanning (bsc#1227149). * wifi: cfg80211: Include operating class 137 in 6GHz band (bsc#1227149). * wifi: cfg80211: Lock wiphy in cfg80211_get_station (git-fixes). * wifi: cfg80211: OWE DH IE handling offload (bsc#1227149). * wifi: cfg80211: Replace ENOTSUPP with EOPNOTSUPP (bsc#1227149). * wifi: cfg80211: Schedule regulatory check on BSS STA channel change (bsc#1227149). * wifi: cfg80211: Update the default DSCP-to-UP mapping (bsc#1227149). * wifi: cfg80211: add BSS usage reporting (bsc#1227149). * wifi: cfg80211: add RNR with reporting AP information (bsc#1227149). * wifi: cfg80211: add a flag to disable wireless extensions (bsc#1227149). * wifi: cfg80211: add local_state_change to deauth trace (bsc#1227149). * wifi: cfg80211: add locked debugfs wrappers (bsc#1227149). * wifi: cfg80211: add support for SPP A-MSDUs (bsc#1227149). * wifi: cfg80211: address several kerneldoc warnings (bsc#1227149). * wifi: cfg80211: allow reg update by driver even if wiphy->regd is set (bsc#1227149). * wifi: cfg80211: annotate iftype_data pointer with sparse (bsc#1227149). * wifi: cfg80211: avoid double free if updating BSS fails (bsc#1227149). * wifi: cfg80211: call reg_call_notifier on beacon hints (bsc#1227149). * wifi: cfg80211: check RTNL when iterating devices (bsc#1227149). * wifi: cfg80211: check wiphy mutex is held for wdev mutex (bsc#1227149). * wifi: cfg80211: consume both probe response and beacon IEs (bsc#1227149). * wifi: cfg80211: detect stuck ECSA element in probe resp (bsc#1227149). * wifi: cfg80211: ensure cfg80211_bss_update frees IEs on error (bsc#1227149). * wifi: cfg80211: export DFS CAC time and usable state helper functions (bsc#1227149). * wifi: cfg80211: expose nl80211_chan_width_to_mhz for wide sharing (bsc#1227149). * wifi: cfg80211: fix 6 GHz scan request building (stable-fixes). * wifi: cfg80211: fix CQM for non-range use (bsc#1227149). * wifi: cfg80211: fix header kernel-doc typos (bsc#1227149). * wifi: cfg80211: fix kernel-doc for wiphy_delayed_work_flush() (bsc#1227149). * wifi: cfg80211: fix spelling & punctutation (bsc#1227149). * wifi: cfg80211: fix the order of arguments for trace events of the tx_rx_evt class (stable-fixes). * wifi: cfg80211: fix typo in cfg80211_calculate_bitrate_he() (git-fixes). * wifi: cfg80211: fully move wiphy work to unbound workqueue (git-fixes). * wifi: cfg80211: generate an ML element for per-STA profiles (bsc#1227149). * wifi: cfg80211: handle 2x996 RU allocation in cfg80211_calculate_bitrate_he() (git-fixes). * wifi: cfg80211: handle UHB AP and STA power type (bsc#1227149). * wifi: cfg80211: hold wiphy lock in cfg80211_any_wiphy_oper_chan() (bsc#1227149). * wifi: cfg80211: hold wiphy mutex for send_interface (bsc#1227149). * wifi: cfg80211: improve documentation for flag fields (bsc#1227149). * wifi: cfg80211: introduce cfg80211_ssid_eq() (bsc#1227149). * wifi: cfg80211: make RX assoc data const (bsc#1227149). * wifi: cfg80211: make read-only array centers_80mhz static const (bsc#1227149). * wifi: cfg80211: modify prototype for change_beacon (bsc#1227149). * wifi: cfg80211: pmsr: use correct nla_get_uX functions (git-fixes). * wifi: cfg80211: reg: Support P2P operation on DFS channels (bsc#1227149). * wifi: cfg80211: reg: describe return values in kernel-doc (bsc#1227149). * wifi: cfg80211: reg: fix various kernel-doc issues (bsc#1227149). * wifi: cfg80211: reg: hold wiphy mutex for wdev iteration (bsc#1227149). * wifi: cfg80211: remove scan_width support (bsc#1227149). * wifi: cfg80211: remove wdev mutex (bsc#1227149). * wifi: cfg80211: rename UHB to 6 GHz (bsc#1227149). * wifi: cfg80211: report per-link errors during association (bsc#1227149). * wifi: cfg80211: report unprotected deauth/disassoc in wowlan (bsc#1227149). * wifi: cfg80211: restrict NL80211_ATTR_TXQ_QUANTUM values (git-fixes). * wifi: cfg80211: save power spectral density(psd) of regulatory rule (bsc#1227149). * wifi: cfg80211: set correct param change count in ML element (bsc#1227149). * wifi: cfg80211: sme: hold wiphy lock for wdev iteration (bsc#1227149). * wifi: cfg80211: sort certificates in build (bsc#1227149). * wifi: cfg80211: split struct cfg80211_ap_settings (bsc#1227149). * wifi: cfg80211: validate HE operation element parsing (bsc#1227149). * wifi: cfg80211: wext: add extra SIOCSIWSCAN data check (stable-fixes). * wifi: cfg80211: wext: convert return value to kernel-doc (bsc#1227149). * wifi: cfg80211: wext: set ssids=NULL for passive scans (git-fixes). * wifi: cw1200: Avoid processing an invalid TIM IE (bsc#1227149). * wifi: cw1200: Convert to GPIO descriptors (bsc#1227149). * wifi: cw1200: fix __le16 sparse warnings (bsc#1227149). * wifi: cw1200: restore endian swapping (bsc#1227149). * wifi: drivers: Explicitly include correct DT includes (bsc#1227149). * wifi: fill in MODULE_DESCRIPTION()s for Broadcom WLAN (bsc#1227149). * wifi: fill in MODULE_DESCRIPTION()s for ar5523 (bsc#1227149). * wifi: fill in MODULE_DESCRIPTION()s for mt76 drivers (bsc#1227149). * wifi: fill in MODULE_DESCRIPTION()s for p54spi (bsc#1227149). * wifi: fill in MODULE_DESCRIPTION()s for wcn36xx (bsc#1227149). * wifi: fill in MODULE_DESCRIPTION()s for wilc1000 (bsc#1227149). * wifi: fill in MODULE_DESCRIPTION()s for wl1251 and wl12xx (bsc#1227149). * wifi: fill in MODULE_DESCRIPTION()s for wl18xx (bsc#1227149). * wifi: fill in MODULE_DESCRIPTION()s for wlcore (bsc#1227149). * wifi: hostap: Add __counted_by for struct prism2_download_data and use struct_size() (bsc#1227149). * wifi: hostap: fix stringop-truncations GCC warning (bsc#1227149). * wifi: hostap: remove unused ioctl function (bsc#1227149). * wifi: ieee80211: add UL-bandwidth definition of trigger frame (bsc#1227149). * wifi: ieee80211: add definitions for negotiated TID to Link map (bsc#1227149). * wifi: ieee80211: check for NULL in ieee80211_mle_size_ok() (stable-fixes). * wifi: iwlmei: do not send SAP messages if AMT is disabled (bsc#1227149). * wifi: iwlmei: do not send nic info with invalid mac address (bsc#1227149). * wifi: iwlmei: send HOST_GOES_DOWN message even if wiamt is disabled (bsc#1227149). * wifi: iwlmei: send driver down SAP message only if wiamt is enabled (bsc#1227149). * wifi: iwlmvm: fw: Add new OEM vendor to tas approved list (bsc#1227149). * wifi: iwlwifi: Add rf_mapping of new wifi7 devices (bsc#1227149). * wifi: iwlwifi: Add support for PPAG cmd v5 and PPAG revision 3 (bsc#1227149). * wifi: iwlwifi: Add support for new 802.11be device (bsc#1227149). * wifi: iwlwifi: Do not mark DFS channels as NO-IR (bsc#1227149). * wifi: iwlwifi: Extract common prph mac/phy regions data dump logic (bsc#1227149). * wifi: iwlwifi: Fix spelling mistake "SESION" -> "SESSION" (bsc#1227149). * wifi: iwlwifi: Use request_module_nowait (bsc#1227149). * wifi: iwlwifi: abort scan when rfkill on but device enabled (bsc#1227149). * wifi: iwlwifi: add HONOR to PPAG approved list (bsc#1227149). * wifi: iwlwifi: add Razer to ppag approved list (bsc#1227149). * wifi: iwlwifi: add mapping of a periphery register crf for WH RF (bsc#1227149). * wifi: iwlwifi: add new RF support for wifi7 (bsc#1227149). * wifi: iwlwifi: add support for SNPS DPHYIP region type (bsc#1227149). * wifi: iwlwifi: add support for a wiphy_work rx handler (bsc#1227149). * wifi: iwlwifi: add support for activating UNII-1 in WW via BIOS (bsc#1227149). * wifi: iwlwifi: add support for new ini region types (bsc#1227149). * wifi: iwlwifi: adjust rx_phyinfo debugfs to MLO (bsc#1227149). * wifi: iwlwifi: always have 'uats_enabled' (bsc#1227149). * wifi: iwlwifi: api: clean up some kernel-doc/typos (bsc#1227149). * wifi: iwlwifi: api: dbg-tlv: fix up kernel-doc (bsc#1227149). * wifi: iwlwifi: api: fix a small upper/lower-case typo (bsc#1227149). * wifi: iwlwifi: api: fix center_freq label in PHY diagram (bsc#1227149). * wifi: iwlwifi: api: fix constant version to match FW (bsc#1227149). * wifi: iwlwifi: api: fix kernel-doc reference (bsc#1227149). * wifi: iwlwifi: bump FW API to 84 for AX/BZ/SC devices (bsc#1227149). * wifi: iwlwifi: bump FW API to 86 for AX/BZ/SC devices (bsc#1227149). * wifi: iwlwifi: bump FW API to 87 for AX/BZ/SC devices (bsc#1227149). * wifi: iwlwifi: bump FW API to 88 for AX/BZ/SC devices (bsc#1227149). * wifi: iwlwifi: cancel session protection only if there is one (bsc#1227149). * wifi: iwlwifi: change link id in time event to s8 (bsc#1227149). * wifi: iwlwifi: check for kmemdup() return value in iwl_parse_tlv_firmware() (bsc#1227149). * wifi: iwlwifi: cleanup BT Shared Single Antenna code (bsc#1227149). * wifi: iwlwifi: cleanup sending PER_CHAIN_LIMIT_OFFSET_CMD (bsc#1227149). * wifi: iwlwifi: cleanup uefi variables loading (bsc#1227149). * wifi: iwlwifi: clear link_id in time_event (bsc#1227149). * wifi: iwlwifi: dbg-tlv: avoid extra allocation/copy (bsc#1227149). * wifi: iwlwifi: dbg-tlv: use struct_size() for allocation (bsc#1227149). * wifi: iwlwifi: dbg_ini: move iwl_dbg_tlv_free outside of debugfs ifdef (git- fixes). * wifi: iwlwifi: disable 160 MHz based on subsystem device ID (bsc#1227149). * wifi: iwlwifi: disable eSR when BT is active (bsc#1227149). * wifi: iwlwifi: disable multi rx queue for 9000 (bsc#1227149). * wifi: iwlwifi: do not check TAS block list size twice (bsc#1227149). * wifi: iwlwifi: do not use TRUE/FALSE with bool (bsc#1227149). * wifi: iwlwifi: drop NULL pointer check in iwl_mvm_tzone_set_trip_temp() (bsc#1227149). * wifi: iwlwifi: dvm: remove kernel-doc warnings (bsc#1227149). * wifi: iwlwifi: error-dump: fix kernel-doc issues (bsc#1227149). * wifi: iwlwifi: fail NIC access fast on dead NIC (bsc#1227149). * wifi: iwlwifi: fix #ifdef CONFIG_ACPI check (bsc#1227149). * wifi: iwlwifi: fix iwl_mvm_get_valid_rx_ant() (git-fixes). * wifi: iwlwifi: fix opmode start/stop race (bsc#1227149). * wifi: iwlwifi: fix some kernel-doc issues (bsc#1227149). * wifi: iwlwifi: fix system commands group ordering (bsc#1227149). * wifi: iwlwifi: fix the rf step and flavor bits range (bsc#1227149). * wifi: iwlwifi: fw: Add support for UATS table in UHB (bsc#1227149). * wifi: iwlwifi: fw: Fix debugfs command sending (bsc#1227149). * wifi: iwlwifi: fw: allow vmalloc for PNVM image (bsc#1227149). * wifi: iwlwifi: fw: dbg: ensure correct config name sizes (bsc#1227149). * wifi: iwlwifi: fw: disable firmware debug asserts (bsc#1227149). * wifi: iwlwifi: fw: file: clean up kernel-doc (bsc#1227149). * wifi: iwlwifi: fw: file: do not use [0] for variable arrays (bsc#1227149). * wifi: iwlwifi: fw: fix compiler warning for NULL string print (bsc#1227149). * wifi: iwlwifi: fw: increase fw_version string size (bsc#1227149). * wifi: iwlwifi: fw: reconstruct the API/CAPA enum number (bsc#1227149). * wifi: iwlwifi: fw: replace deprecated strncpy with strscpy_pad (bsc#1227149). * wifi: iwlwifi: handle per-phy statistics from fw (bsc#1227149). * wifi: iwlwifi: implement GLAI ACPI table loading (bsc#1227149). * wifi: iwlwifi: implement can_activate_links callback (bsc#1227149). * wifi: iwlwifi: implement enable/disable for China 2022 regulatory (bsc#1227149). * wifi: iwlwifi: iwl-fh.h: fix kernel-doc issues (bsc#1227149). * wifi: iwlwifi: iwl-trans.h: clean up kernel-doc (bsc#1227149). * wifi: iwlwifi: iwlmvm: handle unprotected deauth/disassoc in d3 (bsc#1227149). * wifi: iwlwifi: load b0 version of ucode for HR1/HR2 (bsc#1227149). * wifi: iwlwifi: make TB reallocation a debug message (bsc#1227149). * wifi: iwlwifi: make time_events MLO aware (bsc#1227149). * wifi: iwlwifi: mei: return error from register when not built (bsc#1227149). * wifi: iwlwifi: mvm: Add basic link selection logic (bsc#1227149). * wifi: iwlwifi: mvm: Add support for removing responder TKs (bsc#1227149). * wifi: iwlwifi: mvm: Allow DFS concurrent operation (bsc#1227149). * wifi: iwlwifi: mvm: Configure the link mapping for non-MLD FW (bsc#1227149). * wifi: iwlwifi: mvm: Correctly report TSF data in scan complete (bsc#1227149). * wifi: iwlwifi: mvm: Declare support for secure LTF measurement (bsc#1227149). * wifi: iwlwifi: mvm: Do not warn if valid link pair was not found (bsc#1227149). * wifi: iwlwifi: mvm: Do not warn on invalid link on scan complete (bsc#1227149). * wifi: iwlwifi: mvm: Extend support for P2P service discovery (bsc#1227149). * wifi: iwlwifi: mvm: Fix FTM initiator flags (bsc#1227149). * wifi: iwlwifi: mvm: Fix scan abort handling with HW rfkill (stable-fixes). * wifi: iwlwifi: mvm: Fix unreachable code path (bsc#1227149). * wifi: iwlwifi: mvm: Handle BIGTK cipher in kek_kck cmd (stable-fixes). * wifi: iwlwifi: mvm: Keep connection in case of missed beacons during RX (bsc#1227149). * wifi: iwlwifi: mvm: Return success if link could not be removed (bsc#1227149). * wifi: iwlwifi: mvm: Use the link ID provided in scan request (bsc#1227149). * wifi: iwlwifi: mvm: add US/Canada MCC to API (bsc#1227149). * wifi: iwlwifi: mvm: add a debug print when we get a BAR (bsc#1227149). * wifi: iwlwifi: mvm: add a debugfs hook to clear the monitor data (bsc#1227149). * wifi: iwlwifi: mvm: add a per-link debugfs (bsc#1227149). * wifi: iwlwifi: mvm: add a print when sending RLC command (bsc#1227149). * wifi: iwlwifi: mvm: add start mac ctdp sum calculation debugfs handler (bsc#1227149). * wifi: iwlwifi: mvm: add support for TID to link mapping neg request (bsc#1227149). * wifi: iwlwifi: mvm: add support for new wowlan_info_notif (bsc#1227149). * wifi: iwlwifi: mvm: advertise MLO only if EHT is enabled (bsc#1227149). * wifi: iwlwifi: mvm: advertise support for SCS traffic description (bsc#1227149). * wifi: iwlwifi: mvm: advertise support for protected ranging negotiation (bsc#1227149). * wifi: iwlwifi: mvm: always update keys in D3 exit (bsc#1227149). * wifi: iwlwifi: mvm: avoid garbage iPN (bsc#1227149). * wifi: iwlwifi: mvm: calculate EMLSR mode after connection (bsc#1227149). * wifi: iwlwifi: mvm: check AP supports EMLSR (bsc#1227149). * wifi: iwlwifi: mvm: check for iwl_mvm_mld_update_sta() errors (bsc#1227149). * wifi: iwlwifi: mvm: check link more carefully (bsc#1227149). * wifi: iwlwifi: mvm: check n_ssids before accessing the ssids (git-fixes). * wifi: iwlwifi: mvm: check own capabilities for EMLSR (bsc#1227149). * wifi: iwlwifi: mvm: cleanup MLO and non-MLO unification code (bsc#1227149). * wifi: iwlwifi: mvm: combine condition/warning (bsc#1227149). * wifi: iwlwifi: mvm: consider having one active link (bsc#1227149). * wifi: iwlwifi: mvm: const-ify chandef pointers (bsc#1227149). * wifi: iwlwifi: mvm: cycle FW link on chanctx removal (bsc#1227149). * wifi: iwlwifi: mvm: d3: avoid intermediate/early mutex unlock (bsc#1227149). * wifi: iwlwifi: mvm: d3: disconnect on GTK rekey failure (bsc#1227149). * wifi: iwlwifi: mvm: d3: fix WoWLAN command version lookup (stable-fixes). * wifi: iwlwifi: mvm: d3: implement suspend with MLO (bsc#1227149). * wifi: iwlwifi: mvm: debugfs for fw system stats (bsc#1227149). * wifi: iwlwifi: mvm: define RX queue sync timeout as a macro (bsc#1227149). * wifi: iwlwifi: mvm: disable MLO for the time being (bsc#1227149). * wifi: iwlwifi: mvm: disallow puncturing in US/Canada (bsc#1227149). * wifi: iwlwifi: mvm: disconnect long CSA only w/o alternative (bsc#1227149). * wifi: iwlwifi: mvm: disconnect station vifs if recovery failed (bsc#1227149). * wifi: iwlwifi: mvm: do not abort queue sync in CT-kill (bsc#1227149). * wifi: iwlwifi: mvm: do not add dummy phy context (bsc#1227149). * wifi: iwlwifi: mvm: do not always disable EMLSR due to BT coex (bsc#1227149). * wifi: iwlwifi: mvm: do not do duplicate detection for nullfunc packets (bsc#1227149). * wifi: iwlwifi: mvm: do not initialize csa_work twice (git-fixes). * wifi: iwlwifi: mvm: do not limit VLP/AFC to UATS-enabled (git-fixes). * wifi: iwlwifi: mvm: do not read past the mfuart notifcation (git-fixes). * wifi: iwlwifi: mvm: do not send BT_COEX_CI command on new devices (bsc#1227149). * wifi: iwlwifi: mvm: do not send NDPs for new tx devices (bsc#1227149). * wifi: iwlwifi: mvm: do not send STA_DISABLE_TX_CMD for newer firmware (bsc#1227149). * wifi: iwlwifi: mvm: do not send the smart fifo command if not needed (bsc#1227149). * wifi: iwlwifi: mvm: do not set trigger frame padding in AP mode (bsc#1227149). * wifi: iwlwifi: mvm: do not support reduced tx power on ack for new devices (bsc#1227149). * wifi: iwlwifi: mvm: do not wake up rx_sync_waitq upon RFKILL (git-fixes). * wifi: iwlwifi: mvm: enable FILS DF Tx on non-PSC channel (bsc#1227149). * wifi: iwlwifi: mvm: enable HE TX/RX <242 tone RU on new RFs (bsc#1227149). * wifi: iwlwifi: mvm: expand queue sync warning messages (bsc#1227149). * wifi: iwlwifi: mvm: extend alive timeout to 2 seconds (bsc#1227149). * wifi: iwlwifi: mvm: fix ROC version check (bsc#1227149). * wifi: iwlwifi: mvm: fix SB CFG check (bsc#1227149). * wifi: iwlwifi: mvm: fix a battery life regression (bsc#1227149). * wifi: iwlwifi: mvm: fix a crash on 7265 (bsc#1227149). * wifi: iwlwifi: mvm: fix kernel-doc (bsc#1227149). * wifi: iwlwifi: mvm: fix link ID management (bsc#1227149). * wifi: iwlwifi: mvm: fix recovery flow in CSA (bsc#1227149). * wifi: iwlwifi: mvm: fix regdb initialization (bsc#1227149). * wifi: iwlwifi: mvm: fix the PHY context resolution for p2p device (bsc#1227149). * wifi: iwlwifi: mvm: fix the TXF mapping for BZ devices (bsc#1227149). * wifi: iwlwifi: mvm: fix the key PN index (bsc#1227149). * wifi: iwlwifi: mvm: fix thermal kernel-doc (bsc#1227149). * wifi: iwlwifi: mvm: fold the ref++ into iwl_mvm_phy_ctxt_add (bsc#1227149). * wifi: iwlwifi: mvm: handle BA session teardown in RF-kill (stable-fixes). * wifi: iwlwifi: mvm: handle debugfs names more carefully (bsc#1227149). * wifi: iwlwifi: mvm: handle link-STA allocation in restart (bsc#1227149). * wifi: iwlwifi: mvm: implement ROC version 3 (bsc#1227149). * wifi: iwlwifi: mvm: implement new firmware API for statistics (bsc#1227149). * wifi: iwlwifi: mvm: increase session protection after CSA (bsc#1227149). * wifi: iwlwifi: mvm: introduce PHY_CONTEXT_CMD_API_VER_5 (bsc#1227149). * wifi: iwlwifi: mvm: introduce esr_disable_reason (bsc#1227149). * wifi: iwlwifi: mvm: iterate active links for STA queues (bsc#1227149). * wifi: iwlwifi: mvm: limit EHT 320 MHz MCS for STEP URM (bsc#1227149). * wifi: iwlwifi: mvm: limit pseudo-D3 to 60 seconds (bsc#1227149). * wifi: iwlwifi: mvm: log dropped frames (bsc#1227149). * wifi: iwlwifi: mvm: log dropped packets due to MIC error (bsc#1227149). * wifi: iwlwifi: mvm: make "pldr_sync" mode effective (bsc#1227149). * wifi: iwlwifi: mvm: make functions public (bsc#1227149). * wifi: iwlwifi: mvm: make pldr_sync AX210 specific (bsc#1227149). * wifi: iwlwifi: mvm: move BA notif messages before action (bsc#1227149). * wifi: iwlwifi: mvm: move RU alloc B2 placement (bsc#1227149). * wifi: iwlwifi: mvm: move listen interval to constants (bsc#1227149). * wifi: iwlwifi: mvm: offload IGTK in AP if BIGTK is supported (bsc#1227149). * wifi: iwlwifi: mvm: partially support PHY context version 6 (bsc#1227149). * wifi: iwlwifi: mvm: pick the version of SESSION_PROTECTION_NOTIF (bsc#1227149). * wifi: iwlwifi: mvm: properly set 6 GHz channel direct probe option (stable- fixes). * wifi: iwlwifi: mvm: reduce maximum RX A-MPDU size (bsc#1227149). * wifi: iwlwifi: mvm: refactor TX rate handling (bsc#1227149). * wifi: iwlwifi: mvm: refactor duplicate chanctx condition (bsc#1227149). * wifi: iwlwifi: mvm: remove EHT code from mac80211.c (bsc#1227149). * wifi: iwlwifi: mvm: remove IWL_MVM_STATUS_NEED_FLUSH_P2P (bsc#1227149). * wifi: iwlwifi: mvm: remove flags for enable/disable beacon filter (bsc#1227149). * wifi: iwlwifi: mvm: remove one queue sync on BA session stop (bsc#1227149). * wifi: iwlwifi: mvm: remove set_tim callback for MLD ops (bsc#1227149). * wifi: iwlwifi: mvm: remove stale STA link data during restart (stable- fixes). * wifi: iwlwifi: mvm: revert gen2 TX A-MPDU size to 64 (git-fixes). * wifi: iwlwifi: mvm: rework debugfs handling (bsc#1227149). * wifi: iwlwifi: mvm: set properly mac header (git-fixes). * wifi: iwlwifi: mvm: show dump even for pldr_sync (bsc#1227149). * wifi: iwlwifi: mvm: show skb_mac_gso_segment() failure reason (bsc#1227149). * wifi: iwlwifi: mvm: simplify the reorder buffer (bsc#1227149). * wifi: iwlwifi: mvm: skip adding debugfs symlink for reconfig (bsc#1227149). * wifi: iwlwifi: mvm: support CSA with MLD (bsc#1227149). * wifi: iwlwifi: mvm: support SPP A-MSDUs (bsc#1227149). * wifi: iwlwifi: mvm: support flush on AP interfaces (bsc#1227149). * wifi: iwlwifi: mvm: support injection antenna control (bsc#1227149). * wifi: iwlwifi: mvm: support iwl_dev_tx_power_cmd_v8 (bsc#1227149). * wifi: iwlwifi: mvm: support set_antenna() (bsc#1227149). * wifi: iwlwifi: mvm: unlock mvm if there is no primary link (bsc#1227149). * wifi: iwlwifi: mvm: use fast balance scan in case of an active P2P GO (bsc#1227149). * wifi: iwlwifi: mvm: use the new command to clear the internal buffer (bsc#1227149). * wifi: iwlwifi: mvm: work around A-MSDU size problem (bsc#1227149). * wifi: iwlwifi: no power save during transition to D3 (bsc#1227149). * wifi: iwlwifi: nvm-parse: advertise common packet padding (bsc#1227149). * wifi: iwlwifi: nvm: parse the VLP/AFC bit from regulatory (bsc#1227149). * wifi: iwlwifi: pcie: (re-)assign BAR0 on driver bind (bsc#1227149). * wifi: iwlwifi: pcie: Add new PCI device id and CNVI (bsc#1227149). * wifi: iwlwifi: pcie: clean up WFPM control bits (bsc#1227149). * wifi: iwlwifi: pcie: clean up device removal work (bsc#1227149). * wifi: iwlwifi: pcie: clean up gen1/gen2 TFD unmap (bsc#1227149). * wifi: iwlwifi: pcie: do not allow hw-rfkill to stop device on gen2 (bsc#1227149). * wifi: iwlwifi: pcie: dump CSRs before removal (bsc#1227149). * wifi: iwlwifi: pcie: enable TOP fatal error interrupt (bsc#1227149). * wifi: iwlwifi: pcie: fix kernel-doc issues (bsc#1227149). * wifi: iwlwifi: pcie: get_crf_id() can be void (bsc#1227149). * wifi: iwlwifi: pcie: give up mem read if HW is dead (bsc#1227149). * wifi: iwlwifi: pcie: move gen1 TB handling to header (bsc#1227149). * wifi: iwlwifi: pcie: point invalid TFDs to invalid data (bsc#1227149). * wifi: iwlwifi: pcie: propagate iwl_pcie_gen2_apm_init() error (bsc#1227149). * wifi: iwlwifi: pcie: rescan bus if no parent (bsc#1227149). * wifi: iwlwifi: prepare for reading DSM from UEFI (bsc#1227149). * wifi: iwlwifi: prepare for reading PPAG table from UEFI (bsc#1227149). * wifi: iwlwifi: prepare for reading SAR tables from UEFI (bsc#1227149). * wifi: iwlwifi: prepare for reading SPLC from UEFI (bsc#1227149). * wifi: iwlwifi: prepare for reading TAS table from UEFI (bsc#1227149). * wifi: iwlwifi: properly check if link is active (bsc#1227149). * wifi: iwlwifi: properly set WIPHY_FLAG_SUPPORTS_EXT_KEK_KCK (stable-fixes). * wifi: iwlwifi: queue: fix kernel-doc (bsc#1227149). * wifi: iwlwifi: queue: improve warning for no skb in reclaim (bsc#1227149). * wifi: iwlwifi: queue: move iwl_txq_gen2_set_tb() up (bsc#1227149). * wifi: iwlwifi: read DSM func 2 for specific RF types (bsc#1227149). * wifi: iwlwifi: read DSM functions from UEFI (bsc#1227149). * wifi: iwlwifi: read ECKV table from UEFI (bsc#1227149). * wifi: iwlwifi: read PPAG table from UEFI (bsc#1227149). * wifi: iwlwifi: read SAR tables from UEFI (bsc#1227149). * wifi: iwlwifi: read SPLC from UEFI (bsc#1227149). * wifi: iwlwifi: read WRDD table from UEFI (bsc#1227149). * wifi: iwlwifi: read WTAS table from UEFI (bsc#1227149). * wifi: iwlwifi: read mac step from aux register (bsc#1227149). * wifi: iwlwifi: refactor RX tracing (bsc#1227149). * wifi: iwlwifi: remove 'def_rx_queue' struct member (bsc#1227149). * wifi: iwlwifi: remove Gl A-step remnants (bsc#1227149). * wifi: iwlwifi: remove WARN from read_mem32() (bsc#1227149). * wifi: iwlwifi: remove async command callback (bsc#1227149). * wifi: iwlwifi: remove dead-code (bsc#1227149). * wifi: iwlwifi: remove extra kernel-doc (bsc#1227149). * wifi: iwlwifi: remove memory check for LMAC error address (bsc#1227149). * wifi: iwlwifi: remove retry loops in start (bsc#1227149). * wifi: iwlwifi: remove unused function prototype (bsc#1227149). * wifi: iwlwifi: replace ENOTSUPP with EOPNOTSUPP (bsc#1227149). * wifi: iwlwifi: return negative -EINVAL instead of positive EINVAL (bsc#1227149). * wifi: iwlwifi: rfi: use a single DSM function for all RFI configurations (bsc#1227149). * wifi: iwlwifi: send EDT table to FW (bsc#1227149). * wifi: iwlwifi: separate TAS 'read-from-BIOS' and 'send-to-FW' flows (bsc#1227149). * wifi: iwlwifi: simplify getting DSM from ACPI (bsc#1227149). * wifi: iwlwifi: skip affinity setting on non-SMP (bsc#1227149). * wifi: iwlwifi: skip opmode start retries on dead transport (bsc#1227149). * wifi: iwlwifi: small cleanups in PPAG table flows (bsc#1227149). * wifi: iwlwifi: support link command version 2 (bsc#1227149). * wifi: iwlwifi: support link id in SESSION_PROTECTION_NOTIF (bsc#1227149). * wifi: iwlwifi: support link_id in SESSION_PROTECTION cmd (bsc#1227149). * wifi: iwlwifi: take SGOM and UATS code out of ACPI ifdef (bsc#1227149). * wifi: iwlwifi: take send-DSM-to-FW flows out of ACPI ifdef (bsc#1227149). * wifi: iwlwifi: trace full frames with TX status request (bsc#1227149). * wifi: iwlwifi: update context info structure definitions (bsc#1227149). * wifi: iwlwifi: use system_unbound_wq for debug dump (bsc#1227149). * wifi: iwlwifi: validate PPAG table when sent to FW (bsc#1227149). * wifi: lib80211: remove unused variables iv32 and iv16 (bsc#1227149). * wifi: libertas: Follow renaming of SPI "master" to "controller" (bsc#1227149). * wifi: libertas: add missing calls to cancel_work_sync() (bsc#1227149). * wifi: libertas: cleanup SDIO reset (bsc#1227149). * wifi: libertas: handle possible spu_write_u16() errors (bsc#1227149). * wifi: libertas: prefer kstrtoX() for simple integer conversions (bsc#1227149). * wifi: libertas: simplify list operations in free_if_spi_card() (bsc#1227149). * wifi: libertas: use convenient lists to manage SDIO packets (bsc#1227149). * wifi: mac80211: Add __counted_by for struct ieee802_11_elems and use struct_size() (bsc#1227149). * wifi: mac80211: Avoid address calculations via out of bounds array indexing (stable-fixes). * wifi: mac80211: Check if we had first beacon with relevant links (bsc#1227149). * wifi: mac80211: Do not force off-channel for management Tx with MLO (bsc#1227149). * wifi: mac80211: Do not include crypto/algapi.h (bsc#1227149). * wifi: mac80211: Extend support for scanning while MLO connected (bsc#1227149). * wifi: mac80211: Fix SMPS handling in the context of MLO (bsc#1227149). * wifi: mac80211: Fix deadlock in ieee80211_sta_ps_deliver_wakeup() (git- fixes). * wifi: mac80211: Notify the low level driver on change in MLO valid links (bsc#1227149). * wifi: mac80211: Print local link address during authentication (bsc#1227149). * wifi: mac80211: Recalc offload when monitor stop (git-fixes). * wifi: mac80211: Remove unused function declarations (bsc#1227149). * wifi: mac80211: Rename and update IEEE80211_VIF_DISABLE_SMPS_OVERRIDE (bsc#1227149). * wifi: mac80211: Replace ENOTSUPP with EOPNOTSUPP (bsc#1227149). * wifi: mac80211: Sanity check tx bitrate if not provided by driver (bsc#1227149). * wifi: mac80211: Schedule regulatory channels check on bandwith change (bsc#1227149). * wifi: mac80211: Skip association timeout update after comeback rejection (bsc#1227149). * wifi: mac80211: add a driver callback to add vif debugfs (bsc#1227149). * wifi: mac80211: add a driver callback to check active_links (bsc#1227149). * wifi: mac80211: add a flag to disallow puncturing (bsc#1227149). * wifi: mac80211: add back SPDX identifier (bsc#1227149). * wifi: mac80211: add ieee80211_tdls_sta_link_id() (stable-fixes). * wifi: mac80211: add link id to ieee80211_gtk_rekey_add() (bsc#1227149). * wifi: mac80211: add link id to mgd_prepare_tx() (bsc#1227149). * wifi: mac80211: add more ops assertions (bsc#1227149). * wifi: mac80211: add more warnings about inserting sta info (bsc#1227149). * wifi: mac80211: add support for SPP A-MSDUs (bsc#1227149). * wifi: mac80211: add support for mld in ieee80211_chswitch_done (bsc#1227149). * wifi: mac80211: add support for parsing TID to Link mapping element (bsc#1227149). * wifi: mac80211: add/remove driver debugfs entries as appropriate (bsc#1227149). * wifi: mac80211: additions to change_beacon() (bsc#1227149). * wifi: mac80211: address some kerneldoc warnings (bsc#1227149). * wifi: mac80211: allow 64-bit radiotap timestamps (bsc#1227149). * wifi: mac80211: allow for_each_sta_active_link() under RCU (bsc#1227149). * wifi: mac80211: apply mcast rate only if interface is up (stable-fixes). * wifi: mac80211: cancel multi-link reconf work on disconnect (git-fixes). * wifi: mac80211: chanctx emulation set CHANGE_CHANNEL when in_reconfig (git- fixes). * wifi: mac80211: check EHT/TTLM action frame length (bsc#1227149). * wifi: mac80211: check wiphy mutex in ops (bsc#1227149). * wifi: mac80211: cleanup airtime arithmetic with ieee80211_sta_keep_active() (bsc#1227149). * wifi: mac80211: cleanup auth_data only if association continues (bsc#1227149). * wifi: mac80211: convert A-MPDU work to wiphy work (bsc#1227149). * wifi: mac80211: correctly parse Spatial Reuse Parameter Set element (git- fixes). * wifi: mac80211: correctly set active links upon TTLM (bsc#1227149). * wifi: mac80211: correcty limit wider BW TDLS STAs (git-fixes). * wifi: mac80211: debugfs: lock wiphy instead of RTNL (bsc#1227149). * wifi: mac80211: describe return values in kernel-doc (bsc#1227149). * wifi: mac80211: disable softirqs for queued frame handling (git-fixes). * wifi: mac80211: do not connect to an AP while it's in a CSA process (bsc#1227149). * wifi: mac80211: do not re-add debugfs entries during resume (bsc#1227149). * wifi: mac80211: do not select link ID if not provided in scan request (bsc#1227149). * wifi: mac80211: do not set ESS capab bit in assoc request (bsc#1227149). * wifi: mac80211: do not use rate mask for scanning (stable-fixes). * wifi: mac80211: drop robust action frames before assoc (bsc#1227149). * wifi: mac80211: drop spurious WARN_ON() in ieee80211_ibss_csa_beacon() (bsc#1227149). * wifi: mac80211: ensure beacon is non-S1G prior to extracting the beacon timestamp field (stable-fixes). * wifi: mac80211: ethtool: always hold wiphy mutex (bsc#1227149). * wifi: mac80211: ethtool: hold wiphy mutex (bsc#1227149). * wifi: mac80211: expand __ieee80211_data_to_8023() status (bsc#1227149). * wifi: mac80211: extend wiphy lock in interface removal (bsc#1227149). * wifi: mac80211: fix BA session teardown race (bsc#1227149). * wifi: mac80211: fix BSS_CHANGED_UNSOL_BCAST_PROBE_RESP (bsc#1227149). * wifi: mac80211: fix SMPS status handling (bsc#1227149). * wifi: mac80211: fix TXQ error path and cleanup (bsc#1227149). * wifi: mac80211: fix UBSAN noise in ieee80211_prep_hw_scan() (stable-fixes). * wifi: mac80211: fix a expired vs. cancel race in roc (bsc#1227149). * wifi: mac80211: fix advertised TTLM scheduling (bsc#1227149). * wifi: mac80211: fix another key installation error path (bsc#1227149). * wifi: mac80211: fix change_address deadlock during unregister (bsc#1227149). * wifi: mac80211: fix channel switch link data (bsc#1227149). * wifi: mac80211: fix driver debugfs for vif type change (bsc#1227149). * wifi: mac80211: fix error path key leak (bsc#1227149). * wifi: mac80211: fix header kernel-doc typos (bsc#1227149). * wifi: mac80211: fix ieee80211_drop_unencrypted_mgmt return type/value (bsc#1227149). * wifi: mac80211: fix monitor channel with chanctx emulation (bsc#1227149). * wifi: mac80211: fix potential key leak (bsc#1227149). * wifi: mac80211: fix spelling typo in comment (bsc#1227149). * wifi: mac80211: fix unsolicited broadcast probe config (bsc#1227149). * wifi: mac80211: fix various kernel-doc issues (bsc#1227149). * wifi: mac80211: fixes in FILS discovery updates (bsc#1227149). * wifi: mac80211: flush STA queues on unauthorization (bsc#1227149). * wifi: mac80211: flush wiphy work where appropriate (bsc#1227149). * wifi: mac80211: handle debugfs when switching to/from MLO (bsc#1227149). * wifi: mac80211: handle tasklet frames before stopping (stable-fixes). * wifi: mac80211: hold wiphy lock in netdev/link debugfs (bsc#1227149). * wifi: mac80211: hold wiphy_lock around concurrency checks (bsc#1227149). * wifi: mac80211: improve CSA/ECSA connection refusal (bsc#1227149). * wifi: mac80211: initialize SMPS mode correctly (bsc#1227149). * wifi: mac80211: lock wiphy for aggregation debugfs (bsc#1227149). * wifi: mac80211: lock wiphy in IP address notifier (bsc#1227149). * wifi: mac80211: make mgd_protect_tdls_discover MLO-aware (bsc#1227149). * wifi: mac80211: mesh: Fix leak of mesh_preq_queue objects (git-fixes). * wifi: mac80211: mesh: Remove unused function declaration mesh_ids_set_default() (bsc#1227149). * wifi: mac80211: mesh: fix some kdoc warnings (bsc#1227149). * wifi: mac80211: mesh: init nonpeer_pm to active by default in mesh sdata (stable-fixes). * wifi: mac80211: move CSA finalize to wiphy work (bsc#1227149). * wifi: mac80211: move DFS CAC work to wiphy work (bsc#1227149). * wifi: mac80211: move TDLS work to wiphy work (bsc#1227149). * wifi: mac80211: move color change finalize to wiphy work (bsc#1227149). * wifi: mac80211: move dynamic PS to wiphy work (bsc#1227149). * wifi: mac80211: move filter reconfig to wiphy work (bsc#1227149). * wifi: mac80211: move key tailroom work to wiphy work (bsc#1227149). * wifi: mac80211: move link activation work to wiphy work (bsc#1227149). * wifi: mac80211: move monitor work to wiphy work (bsc#1227149). * wifi: mac80211: move tspec work to wiphy work (bsc#1227149). * wifi: mac80211: process and save negotiated TID to Link mapping request (bsc#1227149). * wifi: mac80211: purge TX queues in flush_queues flow (bsc#1227149). * wifi: mac80211: reduce iflist_mtx (bsc#1227149). * wifi: mac80211: reject MLO channel configuration if not supported (bsc#1227149). * wifi: mac80211: relax RCU check in for_each_vif_active_link() (bsc#1227149). * wifi: mac80211: remove RX_DROP_UNUSABLE (bsc#1227149). * wifi: mac80211: remove ampdu_mlme.mtx (bsc#1227149). * wifi: mac80211: remove chanctx_mtx (bsc#1227149). * wifi: mac80211: remove key_mtx (bsc#1227149). * wifi: mac80211: remove local->mtx (bsc#1227149). * wifi: mac80211: remove redundant ML element check (bsc#1227149). * wifi: mac80211: remove shifted rate support (bsc#1227149). * wifi: mac80211: remove sta_mtx (bsc#1227149). * wifi: mac80211: remove unnecessary struct forward declaration (bsc#1227149). * wifi: mac80211: rename ieee80211_tx_status() to ieee80211_tx_status_skb() (bsc#1227149). * wifi: mac80211: rename struct cfg80211_rx_assoc_resp to cfg80211_rx_assoc_resp_data (bsc#1227149). * wifi: mac80211: report per-link error during association (bsc#1227149). * wifi: mac80211: reset negotiated TTLM on disconnect (git-fixes). * wifi: mac80211: rework RX timestamp flags (bsc#1227149). * wifi: mac80211: rework ack_frame_id handling a bit (bsc#1227149). * wifi: mac80211: rx.c: fix sentence grammar (bsc#1227149). * wifi: mac80211: set wiphy for virtual monitors (bsc#1227149). * wifi: mac80211: simplify non-chanctx drivers (bsc#1227149). * wifi: mac80211: split ieee80211_drop_unencrypted_mgmt() return value (bsc#1227149). * wifi: mac80211: sta_info.c: fix sentence grammar (bsc#1227149). * wifi: mac80211: support antenna control in injection (bsc#1227149). * wifi: mac80211: support handling of advertised TID-to-link mapping (bsc#1227149). * wifi: mac80211: take MBSSID/EHT data also from probe resp (bsc#1227149). * wifi: mac80211: take wiphy lock for MAC addr change (bsc#1227149). * wifi: mac80211: tx: clarify conditions in if statement (bsc#1227149). * wifi: mac80211: update beacon counters per link basis (bsc#1227149). * wifi: mac80211: update some locking documentation (bsc#1227149). * wifi: mac80211: update the rx_chains after set_antenna() (bsc#1227149). * wifi: mac80211: use bandwidth indication element for CSA (bsc#1227149). * wifi: mac80211: use deflink and fix typo in link ID check (bsc#1227149). * wifi: mac80211: use wiphy locked debugfs for sdata/link (bsc#1227149). * wifi: mac80211: use wiphy locked debugfs helpers for agg_status (bsc#1227149). * wifi: mt7601u: delete dead code checking debugfs returns (bsc#1227149). * wifi: mt7601u: replace strlcpy() with strscpy() (bsc#1227149). * wifi: mt76: Annotate struct mt76_rx_tid with __counted_by (bsc#1227149). * wifi: mt76: Convert to platform remove callback returning void (bsc#1227149). * wifi: mt76: Remove redundant assignment to variable tidno (bsc#1227149). * wifi: mt76: Remove unnecessary (void*) conversions (bsc#1227149). * wifi: mt76: Replace strlcpy() with strscpy() (bsc#1227149). * wifi: mt76: Use PTR_ERR_OR_ZERO() to simplify code (bsc#1227149). * wifi: mt76: add DMA mapping error check in mt76_alloc_txwi() (bsc#1227149). * wifi: mt76: add ability to explicitly forbid LED registration with DT (bsc#1227149). * wifi: mt76: add support for providing eeprom in nvmem cells (bsc#1227149). * wifi: mt76: add tx_nss histogram to ethtool stats (bsc#1227149). * wifi: mt76: change txpower init to per-phy (bsc#1227149). * wifi: mt76: check sta rx control frame to multibss capability (bsc#1227149). * wifi: mt76: check txs format before getting skb by pid (bsc#1227149). * wifi: mt76: check vif type before reporting cca and csa (bsc#1227149). * wifi: mt76: connac: add MBSSID support for mt7996 (bsc#1227149). * wifi: mt76: connac: add beacon duplicate TX mode support for mt7996 (bsc#1227149). * wifi: mt76: connac: add beacon protection support for mt7996 (bsc#1227149). * wifi: mt76: connac: add connac3 mac library (bsc#1227149). * wifi: mt76: connac: add data field in struct tlv (bsc#1227149). * wifi: mt76: connac: add eht support for phy mode config (bsc#1227149). * wifi: mt76: connac: add eht support for tx power (bsc#1227149). * wifi: mt76: connac: add firmware support for mt7992 (bsc#1227149). * wifi: mt76: connac: add more unified command IDs (bsc#1227149). * wifi: mt76: connac: add more unified event IDs (bsc#1227149). * wifi: mt76: connac: add new definition of tx descriptor (bsc#1227149). * wifi: mt76: connac: add support for dsp firmware download (bsc#1227149). * wifi: mt76: connac: add support to set ifs time by mcu command (bsc#1227149). * wifi: mt76: connac: add thermal protection support for mt7996 (bsc#1227149). * wifi: mt76: connac: check for null before dereferencing (bsc#1227149). * wifi: mt76: connac: export functions for mt7925 (bsc#1227149). * wifi: mt76: connac: introduce helper for mt7925 chipset (bsc#1227149). * wifi: mt76: connac: set correct muar_idx for mt799x chipsets (bsc#1227149). * wifi: mt76: connac: set fixed_bw bit in TX descriptor for fixed rate frames (bsc#1227149). * wifi: mt76: connac: use muar idx 0xe for non-mt799x as well (bsc#1227149). * wifi: mt76: disable HW AMSDU when using fixed rate (bsc#1227149). * wifi: mt76: dma: introduce __mt76_dma_queue_reset utility routine (bsc#1227149). * wifi: mt76: enable UNII-4 channel 177 support (bsc#1227149). * wifi: mt76: fix race condition related to checking tx queue fill status (bsc#1227149). * wifi: mt76: fix the issue of missing txpwr settings from ch153 to ch177 (bsc#1227149). * wifi: mt76: fix typo in mt76_get_of_eeprom_from_nvmem function (bsc#1227149). * wifi: mt76: increase MT_QFLAG_WED_TYPE size (bsc#1227149). * wifi: mt76: introduce mt76_queue_is_wed_tx_free utility routine (bsc#1227149). * wifi: mt76: introduce wed pointer in mt76_queue (bsc#1227149). * wifi: mt76: limit support of precal loading for mt7915 to MTD only (bsc#1227149). * wifi: mt76: make mt76_get_of_eeprom static again (bsc#1227149). * wifi: mt76: mmio: move mt76_mmio_wed_{init,release}_rx_buf in common code (bsc#1227149). * wifi: mt76: move ampdu_state in mt76_wcid (bsc#1227149). * wifi: mt76: move mt76_mmio_wed_offload_{enable,disable} in common code (bsc#1227149). * wifi: mt76: move mt76_net_setup_tc in common code (bsc#1227149). * wifi: mt76: move rate info in mt76_vif (bsc#1227149). * wifi: mt76: move wed reset common code in mt76 module (bsc#1227149). * wifi: mt76: mt7603: add missing register initialization for MT7628 (bsc#1227149). * wifi: mt76: mt7603: disable A-MSDU tx support on MT7628 (bsc#1227149). * wifi: mt76: mt7603: fix beacon interval after disabling a single vif (bsc#1227149). * wifi: mt76: mt7603: fix tx filter/flush function (bsc#1227149). * wifi: mt76: mt7603: rely on shared poll_list field (bsc#1227149). * wifi: mt76: mt7603: rely on shared sta_poll_list and sta_poll_lock (bsc#1227149). * wifi: mt76: mt7615: add missing chanctx ops (bsc#1227149). * wifi: mt76: mt7615: enable BSS_CHANGED_MU_GROUPS support (bsc#1227149). * wifi: mt76: mt7615: rely on shared poll_list field (bsc#1227149). * wifi: mt76: mt7615: rely on shared sta_poll_list and sta_poll_lock (bsc#1227149). * wifi: mt76: mt76_connac3: move lmac queue enumeration in mt76_connac3_mac.h (bsc#1227149). * wifi: mt76: mt76x02: fix return value check in mt76x02_mac_process_rx (bsc#1227149). * wifi: mt76: mt76x2u: add netgear wdna3100v3 to device table (bsc#1227149). * wifi: mt76: mt7915 add tc offloading support (bsc#1227149). * wifi: mt76: mt7915: accumulate mu-mimo ofdma muru stats (bsc#1227149). * wifi: mt76: mt7915: add locking for accessing mapped registers (bsc#1227149). * wifi: mt76: mt7915: add missing chanctx ops (bsc#1227149). * wifi: mt76: mt7915: add support for MT7981 (bsc#1227149). * wifi: mt76: mt7915: also MT7981 is 3T3R but nss2 on 5 GHz band (bsc#1227149). * wifi: mt76: mt7915: disable WFDMA Tx/Rx during SER recovery (bsc#1227149). * wifi: mt76: mt7915: drop return in mt7915_sta_statistics (bsc#1227149). * wifi: mt76: mt7915: fix EEPROM offset of TSSI flag on MT7981 (bsc#1227149). * wifi: mt76: mt7915: fix error recovery with WED enabled (bsc#1227149). * wifi: mt76: mt7915: fix monitor mode issues (bsc#1227149). * wifi: mt76: mt7915: move mib_stats structure in mt76.h (bsc#1227149). * wifi: mt76: mt7915: move poll_list in mt76_wcid (bsc#1227149). * wifi: mt76: mt7915: move sta_poll_list and sta_poll_lock in mt76_dev (bsc#1227149). * wifi: mt76: mt7915: report tx retries/failed counts for non-WED path (bsc#1227149). * wifi: mt76: mt7915: update mpdu density capability (bsc#1227149). * wifi: mt76: mt7915: update mt798x_wmac_adie_patch_7976 (bsc#1227149). * wifi: mt76: mt7921: Support temp sensor (bsc#1227149). * wifi: mt76: mt7921: add 6GHz power type support for clc (bsc#1227149). * wifi: mt76: mt7921: convert acpisar and clc pointers to void (bsc#1227149). * wifi: mt76: mt7921: enable set txpower for UNII-4 (bsc#1227149). * wifi: mt76: mt7921: fix 6GHz disabled by the missing default CLC config (bsc#1227149). * wifi: mt76: mt7921: fix CLC command timeout when suspend/resume (bsc#1227149). * wifi: mt76: mt7921: fix a potential association failure upon resuming (bsc#1227149). * wifi: mt76: mt7921: fix kernel panic by accessing invalid 6GHz channel info (bsc#1227149). * wifi: mt76: mt7921: fix suspend issue on MediaTek COB platform (bsc#1227149). * wifi: mt76: mt7921: fix the unfinished command of regd_notifier before suspend (bsc#1227149). * wifi: mt76: mt7921: fix wrong 6Ghz power type (bsc#1227149). * wifi: mt76: mt7921: get regulatory information from the clc event (bsc#1227149). * wifi: mt76: mt7921: get rid of MT7921_RESET_TIMEOUT marco (bsc#1227149). * wifi: mt76: mt7921: make mt7921_mac_sta_poll static (bsc#1227149). * wifi: mt76: mt7921: move acpi_sar code in mt792x-lib module (bsc#1227149). * wifi: mt76: mt7921: move common register definition in mt792x_regs.h (bsc#1227149). * wifi: mt76: mt7921: move connac nic capability handling to mt7921 (bsc#1227149). * wifi: mt76: mt7921: move debugfs shared code in mt792x-lib module (bsc#1227149). * wifi: mt76: mt7921: move dma shared code in mt792x-lib module (bsc#1227149). * wifi: mt76: mt7921: move hif_ops macro in mt792x.h (bsc#1227149). * wifi: mt76: mt7921: move init shared code in mt792x-lib module (bsc#1227149). * wifi: mt76: mt7921: move mac shared code in mt792x-lib module (bsc#1227149). * wifi: mt76: mt7921: move mt7921_dma_init in pci.c (bsc#1227149). * wifi: mt76: mt7921: move mt7921u_disconnect mt792x-lib (bsc#1227149). * wifi: mt76: mt7921: move mt792x_hw_dev in mt792x.h (bsc#1227149). * wifi: mt76: mt7921: move mt792x_mutex_{acquire/release} in mt792x.h (bsc#1227149). * wifi: mt76: mt7921: move runtime-pm pci code in mt792x-lib (bsc#1227149). * wifi: mt76: mt7921: move shared runtime-pm code on mt792x-lib (bsc#1227149). * wifi: mt76: mt7921: reduce the size of MCU firmware download Rx queue (bsc#1227149). * wifi: mt76: mt7921: rely on mib_stats shared definition (bsc#1227149). * wifi: mt76: mt7921: rely on shared poll_list field (bsc#1227149). * wifi: mt76: mt7921: rely on shared sta_poll_list and sta_poll_lock (bsc#1227149). * wifi: mt76: mt7921: remove macro duplication in regs.h (bsc#1227149). * wifi: mt76: mt7921: rename mt7921_dev in mt792x_dev (bsc#1227149). * wifi: mt76: mt7921: rename mt7921_hif_ops in mt792x_hif_ops (bsc#1227149). * wifi: mt76: mt7921: rename mt7921_phy in mt792x_phy (bsc#1227149). * wifi: mt76: mt7921: rename mt7921_sta in mt792x_sta (bsc#1227149). * wifi: mt76: mt7921: rename mt7921_vif in mt792x_vif (bsc#1227149). * wifi: mt76: mt7921: support 5.9/6GHz channel config in acpi (bsc#1227149). * wifi: mt76: mt7921: update the channel usage when the regd domain changed (bsc#1227149). * wifi: mt76: mt7921e: report tx retries/failed counts in tx free event (bsc#1227149). * wifi: mt76: mt7921s: fix potential hung tasks during chip recovery (stable- fixes). * wifi: mt76: mt7925: add Mediatek Wi-Fi7 driver for mt7925 chips (bsc#1227149). * wifi: mt76: mt7925: add flow to avoid chip bt function fail (bsc#1227149). * wifi: mt76: mt7925: add support to set ifs time by mcu command (bsc#1227149). * wifi: mt76: mt7925: ensure 4-byte alignment for suspend & wow command (bsc#1227149). * wifi: mt76: mt7925: fix SAP no beacon issue in 5Ghz and 6Ghz band (bsc#1227149). * wifi: mt76: mt7925: fix WoW failed in encrypted mode (bsc#1227149). * wifi: mt76: mt7925: fix connect to 80211b mode fail in 2Ghz band (bsc#1227149). * wifi: mt76: mt7925: fix fw download fail (bsc#1227149). * wifi: mt76: mt7925: fix mcu query command fail (bsc#1227149). * wifi: mt76: mt7925: fix the wrong data type for scan command (bsc#1227149). * wifi: mt76: mt7925: fix the wrong header translation config (bsc#1227149). * wifi: mt76: mt7925: fix typo in mt7925_init_he_caps (bsc#1227149). * wifi: mt76: mt7925: fix wmm queue mapping (bsc#1227149). * wifi: mt76: mt7925: remove iftype from mt7925_init_eht_caps signature (bsc#1227149). * wifi: mt76: mt7925: support temperature sensor (bsc#1227149). * wifi: mt76: mt7925: update PCIe DMA settings (bsc#1227149). * wifi: mt76: mt7925e: fix use-after-free in free_irq() (bsc#1227149). * wifi: mt76: mt792x: add the illegal value check for mtcl table of acpi (bsc#1227149). * wifi: mt76: mt792x: fix ethtool warning (bsc#1227149). * wifi: mt76: mt792x: introduce mt792x-lib module (bsc#1227149). * wifi: mt76: mt792x: introduce mt792x-usb module (bsc#1227149). * wifi: mt76: mt792x: introduce mt792x_irq_map (bsc#1227149). * wifi: mt76: mt792x: move MT7921_PM_TIMEOUT and MT7921_HW_SCAN_TIMEOUT in common code (bsc#1227149). * wifi: mt76: mt792x: move more dma shared code in mt792x_dma (bsc#1227149). * wifi: mt76: mt792x: move mt7921_load_firmware in mt792x-lib module (bsc#1227149). * wifi: mt76: mt792x: move mt7921_skb_add_usb_sdio_hdr in mt792x module (bsc#1227149). * wifi: mt76: mt792x: move shared structure definition in mt792x.h (bsc#1227149). * wifi: mt76: mt792x: move some common usb code in mt792x module (bsc#1227149). * wifi: mt76: mt792x: support mt7925 chip init (bsc#1227149). * wifi: mt76: mt792x: update the country list of EU for ACPI SAR (bsc#1227149). * wifi: mt76: mt792xu: enable dmashdl support (bsc#1227149). * wifi: mt76: mt7996: Add mcu commands for getting sta tx statistic (bsc#1227149). * wifi: mt76: mt7996: Use DECLARE_FLEX_ARRAY() and fix -Warray-bounds warnings (bsc#1227149). * wifi: mt76: mt7996: add DMA support for mt7992 (bsc#1227149). * wifi: mt76: mt7996: add TX statistics for EHT mode in debugfs (bsc#1227149). * wifi: mt76: mt7996: add muru support (bsc#1227149). * wifi: mt76: mt7996: add sanity checks for background radar trigger (stable- fixes). * wifi: mt76: mt7996: add support for variants with auxiliary RX path (bsc#1227149). * wifi: mt76: mt7996: add thermal sensor device support (bsc#1227149). * wifi: mt76: mt7996: add txpower setting support (bsc#1227149). * wifi: mt76: mt7996: adjust WFDMA settings to improve performance (bsc#1227149). * wifi: mt76: mt7996: adjust interface num and wtbl size for mt7992 (bsc#1227149). * wifi: mt76: mt7996: align the format of fixed rate command (bsc#1227149). * wifi: mt76: mt7996: check txs format before getting skb by pid (bsc#1227149). * wifi: mt76: mt7996: disable WFDMA Tx/Rx during SER recovery (bsc#1227149). * wifi: mt76: mt7996: drop return in mt7996_sta_statistics (bsc#1227149). * wifi: mt76: mt7996: enable BSS_CHANGED_MU_GROUPS support (bsc#1227149). * wifi: mt76: mt7996: enable PPDU-TxS to host (bsc#1227149). * wifi: mt76: mt7996: enable VHT extended NSS BW feature (bsc#1227149). * wifi: mt76: mt7996: ensure 4-byte alignment for beacon commands (bsc#1227149). * wifi: mt76: mt7996: fix alignment of sta info event (bsc#1227149). * wifi: mt76: mt7996: fix fortify warning (bsc#1227149). * wifi: mt76: mt7996: fix fw loading timeout (bsc#1227149). * wifi: mt76: mt7996: fix mt7996_mcu_all_sta_info_event struct packing (bsc#1227149). * wifi: mt76: mt7996: fix potential memory leakage when reading chip temperature (bsc#1227149). * wifi: mt76: mt7996: fix size of txpower MCU command (bsc#1227149). * wifi: mt76: mt7996: fix uninitialized variable in mt7996_irq_tasklet() (bsc#1227149). * wifi: mt76: mt7996: fix uninitialized variable in parsing txfree (bsc#1227149). * wifi: mt76: mt7996: get tx_retries and tx_failed from txfree (bsc#1227149). * wifi: mt76: mt7996: handle IEEE80211_RC_SMPS_CHANGED (bsc#1227149). * wifi: mt76: mt7996: increase tx token size (bsc#1227149). * wifi: mt76: mt7996: introduce mt7996_band_valid() (bsc#1227149). * wifi: mt76: mt7996: mark GCMP IGTK unsupported (bsc#1227149). * wifi: mt76: mt7996: move radio ctrl commands to proper functions (bsc#1227149). * wifi: mt76: mt7996: only set vif teardown cmds at remove interface (bsc#1227149). * wifi: mt76: mt7996: rely on mib_stats shared definition (bsc#1227149). * wifi: mt76: mt7996: rely on shared poll_list field (bsc#1227149). * wifi: mt76: mt7996: rely on shared sta_poll_list and sta_poll_lock (bsc#1227149). * wifi: mt76: mt7996: remove TXS queue setting (bsc#1227149). * wifi: mt76: mt7996: remove periodic MPDU TXS request (bsc#1227149). * wifi: mt76: mt7996: rework ampdu params setting (bsc#1227149). * wifi: mt76: mt7996: rework register offsets for mt7992 (bsc#1227149). * wifi: mt76: mt7996: set DMA mask to 36 bits for boards with more than 4GB of RAM (bsc#1227149). * wifi: mt76: mt7996: support more options for mt7996_set_bitrate_mask() (bsc#1227149). * wifi: mt76: mt7996: support mt7992 eeprom loading (bsc#1227149). * wifi: mt76: mt7996: support per-band LED control (bsc#1227149). * wifi: mt76: mt7996: switch to mcu command for TX GI report (bsc#1227149). * wifi: mt76: mt7996: use u16 for val field in mt7996_mcu_set_rro signature (bsc#1227149). * wifi: mt76: permit to load precal from NVMEM cell for mt7915 (bsc#1227149). * wifi: mt76: permit to use alternative cell name to eeprom NVMEM load (bsc#1227149). * wifi: mt76: reduce spin_lock_bh held up in mt76_dma_rx_cleanup (bsc#1227149). * wifi: mt76: replace skb_put with skb_put_zero (stable-fixes). * wifi: mt76: report non-binding skb tx rate when WED is active (bsc#1227149). * wifi: mt76: set page_pool napi pointer for mmio devices (bsc#1227149). * wifi: mt76: split get_of_eeprom in subfunction (bsc#1227149). * wifi: mt76: usb: create a dedicated queue for psd traffic (bsc#1227149). * wifi: mt76: usb: store usb endpoint in mt76_queue (bsc#1227149). * wifi: mt76: use atomic iface iteration for pre-TBTT work (bsc#1227149). * wifi: mt76: use chainmask for power delta calculation (bsc#1227149). * wifi: mwifiex: Drop unused headers (bsc#1227149). * wifi: mwifiex: Fix interface type change (git-fixes). * wifi: mwifiex: Refactor 1-element array into flexible array in struct mwifiex_ie_types_chan_list_param_set (bsc#1227149). * wifi: mwifiex: Replace one-element array with flexible-array member in struct mwifiex_ie_types_rxba_sync (bsc#1227149). * wifi: mwifiex: Set WIPHY_FLAG_NETNS_OK flag (bsc#1227149). * wifi: mwifiex: Use default @max_active for workqueues (bsc#1227149). * wifi: mwifiex: Use helpers to check multicast addresses (bsc#1227149). * wifi: mwifiex: Use list_count_nodes() (bsc#1227149). * wifi: mwifiex: cleanup adapter data (bsc#1227149). * wifi: mwifiex: cleanup private data structures (bsc#1227149). * wifi: mwifiex: cleanup struct mwifiex_sdio_mpa_rx (bsc#1227149). * wifi: mwifiex: drop BUG_ON from TX paths (bsc#1227149). * wifi: mwifiex: fix comment typos in SDIO module (bsc#1227149). * wifi: mwifiex: followup PCIE and related cleanups (bsc#1227149). * wifi: mwifiex: handle possible mwifiex_write_reg() errors (bsc#1227149). * wifi: mwifiex: handle possible sscanf() errors (bsc#1227149). * wifi: mwifiex: mwifiex_process_sleep_confirm_resp(): remove unused priv variable (bsc#1227149). * wifi: mwifiex: prefer strscpy() over strlcpy() (bsc#1227149). * wifi: mwifiex: simplify PCIE write operations (bsc#1227149). * wifi: mwifiex: use MODULE_FIRMWARE to add firmware files metadata (bsc#1227149). * wifi: mwifiex: use cfg80211_ssid_eq() instead of mwifiex_ssid_cmp() (bsc#1227149). * wifi: mwifiex: use is_zero_ether_addr() instead of ether_addr_equal() (bsc#1227149). * wifi: mwifiex: use kstrtoX_from_user() in debugfs handlers (bsc#1227149). * wifi: nl80211: Avoid address calculations via out of bounds array indexing (git-fixes). * wifi: nl80211: Extend del pmksa support for SAE and OWE security (bsc#1227149). * wifi: nl80211: Remove unused declaration nl80211_pmsr_dump_results() (bsc#1227149). * wifi: nl80211: additions to NL80211_CMD_SET_BEACON (bsc#1227149). * wifi: nl80211: allow reporting wakeup for unprot deauth/disassoc (bsc#1227149). * wifi: nl80211: fixes to FILS discovery updates (bsc#1227149). * wifi: nl80211: refactor nl80211_send_mlme_event() arguments (bsc#1227149). * wifi: p54: Add missing MODULE_FIRMWARE macro (bsc#1227149). * wifi: p54: Annotate struct p54_cal_database with __counted_by (bsc#1227149). * wifi: p54: fix GCC format truncation warning with wiphy->fw_version (bsc#1227149). * wifi: plfxlc: Drop unused include (bsc#1227149). * wifi: radiotap: add bandwidth definition of EHT U-SIG (bsc#1227149). * wifi: remove unused argument of ieee80211_get_tdls_action() (bsc#1227149). * wifi: rsi: fix restricted __le32 degrades to integer sparse warnings (bsc#1227149). * wifi: rsi: rsi_91x_coex: Remove unnecessary (void*) conversions (bsc#1227149). * wifi: rsi: rsi_91x_debugfs: Remove unnecessary (void*) conversions (bsc#1227149). * wifi: rsi: rsi_91x_hal: Remove unnecessary conversions (bsc#1227149). * wifi: rsi: rsi_91x_mac80211: Remove unnecessary conversions (bsc#1227149). * wifi: rsi: rsi_91x_main: Remove unnecessary (void*) conversions (bsc#1227149). * wifi: rsi: rsi_91x_sdio: Remove unnecessary (void*) conversions (bsc#1227149). * wifi: rsi: rsi_91x_sdio_ops: Remove unnecessary (void*) conversions (bsc#1227149). * wifi: rsi: rsi_91x_usb: Remove unnecessary (void*) conversions (bsc#1227149). * wifi: rsi: rsi_91x_usb_ops: Remove unnecessary (void*) conversions (bsc#1227149). * wifi: rt2x00: Simplify bool conversion (bsc#1227149). * wifi: rt2x00: correct MAC_SYS_CTRL register RX mask in R-Calibration (bsc#1227149). * wifi: rt2x00: disable RTS threshold for rt2800 by default (bsc#1227149). * wifi: rt2x00: fix MT7620 low RSSI issue (bsc#1227149). * wifi: rt2x00: fix rt2800 watchdog function (bsc#1227149). * wifi: rt2x00: fix the typo in comments (bsc#1227149). * wifi: rt2x00: improve MT7620 register initialization (bsc#1227149). * wifi: rt2x00: introduce DMA busy check watchdog for rt2800 (bsc#1227149). * wifi: rt2x00: limit MT7620 TX power based on eeprom calibration (bsc#1227149). * wifi: rt2x00: make watchdog param per device (bsc#1227149). * wifi: rt2x00: remove redundant check if u8 array element is less than zero (bsc#1227149). * wifi: rt2x00: remove useless code in rt2x00queue_create_tx_descriptor() (bsc#1227149). * wifi: rt2x00: rework MT7620 PA/LNA RF calibration (bsc#1227149). * wifi: rt2x00: rework MT7620 channel config function (bsc#1227149). * wifi: rt2x00: silence sparse warnings (bsc#1227149). * wifi: rt2x00: simplify rt2x00crypto_rx_insert_iv() (bsc#1227149). * wifi: rtl8xxxu: 8188e: convert usage of priv->vif to priv->vifs[0] (bsc#1227149). * wifi: rtl8xxxu: 8188f: Limit TX power index (git-fixes). * wifi: rtl8xxxu: Actually use macid in rtl8xxxu_gen2_report_connect (bsc#1227149). * wifi: rtl8xxxu: Add TP-Link TL-WN823N V2 (bsc#1227149). * wifi: rtl8xxxu: Add a description about the device ID 0x7392:0xb722 (bsc#1227149). * wifi: rtl8xxxu: Add beacon functions (bsc#1227149). * wifi: rtl8xxxu: Add parameter force to rtl8xxxu_refresh_rate_mask (bsc#1227149). * wifi: rtl8xxxu: Add parameter macid to update_rate_mask (bsc#1227149). * wifi: rtl8xxxu: Add parameter role to report_connect (bsc#1227149). * wifi: rtl8xxxu: Add set_tim() callback (bsc#1227149). * wifi: rtl8xxxu: Add sta_add() and sta_remove() callbacks (bsc#1227149). * wifi: rtl8xxxu: Add start_ap() callback (bsc#1227149). * wifi: rtl8xxxu: Allow creating interface in AP mode (bsc#1227149). * wifi: rtl8xxxu: Allow setting rts threshold to -1 (bsc#1227149). * wifi: rtl8xxxu: Clean up filter configuration (bsc#1227149). * wifi: rtl8xxxu: Declare AP mode support for 8188f (bsc#1227149). * wifi: rtl8xxxu: Enable AP mode for RTL8192EU (bsc#1227149). * wifi: rtl8xxxu: Enable AP mode for RTL8192FU (bsc#1227149). * wifi: rtl8xxxu: Enable AP mode for RTL8710BU (RTL8188GU) (bsc#1227149). * wifi: rtl8xxxu: Enable AP mode for RTL8723BU (bsc#1227149). * wifi: rtl8xxxu: Enable hw seq for mgmt/non-QoS data frames (bsc#1227149). * wifi: rtl8xxxu: Fix LED control code of RTL8192FU (bsc#1227149). * wifi: rtl8xxxu: Fix off by one initial RTS rate (bsc#1227149). * wifi: rtl8xxxu: Fix the TX power of RTL8192CU, RTL8723AU (stable-fixes). * wifi: rtl8xxxu: Put the macid in txdesc (bsc#1227149). * wifi: rtl8xxxu: Remove usage of ieee80211_get_tx_rate() (bsc#1227149). * wifi: rtl8xxxu: Remove usage of tx_info->control.rates[0].flags (bsc#1227149). * wifi: rtl8xxxu: Rename some registers (bsc#1227149). * wifi: rtl8xxxu: Select correct queue for beacon frames (bsc#1227149). * wifi: rtl8xxxu: Set maximum number of supported stations (bsc#1227149). * wifi: rtl8xxxu: Support USB RX aggregation for the newer chips (bsc#1227149). * wifi: rtl8xxxu: Support new chip RTL8192FU (bsc#1227149). * wifi: rtl8xxxu: add hw crypto support for AP mode (bsc#1227149). * wifi: rtl8xxxu: add macids for STA mode (bsc#1227149). * wifi: rtl8xxxu: add missing number of sec cam entries for all variants (bsc#1227149). * wifi: rtl8xxxu: check vif before using in rtl8xxxu_tx() (bsc#1227149). * wifi: rtl8xxxu: convert EN_DESC_ID of TX descriptor to le32 type (bsc#1227149). * wifi: rtl8xxxu: declare concurrent mode support for 8188f (bsc#1227149). * wifi: rtl8xxxu: do not parse CFO, if both interfaces are connected in STA mode (bsc#1227149). * wifi: rtl8xxxu: enable MFP support with security flag of RX descriptor (bsc#1227149). * wifi: rtl8xxxu: enable channel switch support (bsc#1227149). * wifi: rtl8xxxu: extend check for matching bssid to both interfaces (bsc#1227149). * wifi: rtl8xxxu: extend wifi connected check to both interfaces (bsc#1227149). * wifi: rtl8xxxu: fix error messages (bsc#1227149). * wifi: rtl8xxxu: fix mixed declarations in rtl8xxxu_set_aifs() (bsc#1227149). * wifi: rtl8xxxu: make instances of iface limit and combination to be static const (bsc#1227149). * wifi: rtl8xxxu: make supporting AP mode only on port 0 transparent (bsc#1227149). * wifi: rtl8xxxu: mark TOTOLINK N150UA V5/N150UA-B as tested (bsc#1227149). * wifi: rtl8xxxu: prepare supporting two virtual interfaces (bsc#1227149). * wifi: rtl8xxxu: remove assignment of priv->vif in rtl8xxxu_bss_info_changed() (bsc#1227149). * wifi: rtl8xxxu: remove obsolete priv->vif (bsc#1227149). * wifi: rtl8xxxu: rtl8xxxu_rx_complete(): remove unnecessary return (bsc#1227149). * wifi: rtl8xxxu: support multiple interface in start_ap() (bsc#1227149). * wifi: rtl8xxxu: support multiple interfaces in bss_info_changed() (bsc#1227149). * wifi: rtl8xxxu: support multiple interfaces in configure_filter() (bsc#1227149). * wifi: rtl8xxxu: support multiple interfaces in set_aifs() (bsc#1227149). * wifi: rtl8xxxu: support multiple interfaces in update_beacon_work_callback() (bsc#1227149). * wifi: rtl8xxxu: support multiple interfaces in watchdog_callback() (bsc#1227149). * wifi: rtl8xxxu: support multiple interfaces in {add,remove}_interface() (bsc#1227149). * wifi: rtl8xxxu: support setting bssid register for multiple interfaces (bsc#1227149). * wifi: rtl8xxxu: support setting linktype for both interfaces (bsc#1227149). * wifi: rtl8xxxu: support setting mac address register for both interfaces (bsc#1227149). * wifi: rtl8xxxu: update rate mask per sta (bsc#1227149). * wifi: rtlwifi: Convert to use PCIe capability accessors (bsc#1227149). * wifi: rtlwifi: Ignore IEEE80211_CONF_CHANGE_RETRY_LIMITS (bsc#1227149). * wifi: rtlwifi: Remove bridge vendor/device ids (bsc#1227149). * wifi: rtlwifi: Remove rtl_intf_ops.read_efuse_byte (bsc#1227149). * wifi: rtlwifi: Remove unused PCI related defines and struct (bsc#1227149). * wifi: rtlwifi: Speed up firmware loading for USB (bsc#1227149). * wifi: rtlwifi: cleanup USB interface (bsc#1227149). * wifi: rtlwifi: cleanup few rtlxxx_tx_fill_desc() routines (bsc#1227149). * wifi: rtlwifi: cleanup few rtlxxxx_set_hw_reg() routines (bsc#1227149). * wifi: rtlwifi: cleanup struct rtl_hal (bsc#1227149). * wifi: rtlwifi: cleanup struct rtl_phy (bsc#1227149). * wifi: rtlwifi: cleanup struct rtl_ps_ctl (bsc#1227149). * wifi: rtlwifi: drop chk_switch_dmdp() from HAL interface (bsc#1227149). * wifi: rtlwifi: drop fill_fake_txdesc() from HAL interface (bsc#1227149). * wifi: rtlwifi: drop pre_fill_tx_bd_desc() from HAL interface (bsc#1227149). * wifi: rtlwifi: drop unused const_amdpci_aspm (bsc#1227149). * wifi: rtlwifi: remove misused flag from HAL data (bsc#1227149). * wifi: rtlwifi: remove unreachable code in rtl92d_dm_check_edca_turbo() (bsc#1227149). * wifi: rtlwifi: remove unused dualmac control leftovers (bsc#1227149). * wifi: rtlwifi: remove unused timer and related code (bsc#1227149). * wifi: rtlwifi: rtl8192cu: Fix 2T2R chip type detection (bsc#1227149). * wifi: rtlwifi: rtl8192cu: Fix TX aggregation (bsc#1227149). * wifi: rtlwifi: rtl8192de: Do not read register in _rtl92de_query_rxphystatus (bsc#1227149). * wifi: rtlwifi: rtl8192de: Fix 5 GHz TX power (stable-fixes). * wifi: rtlwifi: rtl8192de: Fix endianness issue in RX path (stable-fixes). * wifi: rtlwifi: rtl8192de: Fix low speed with WPA3-SAE (stable-fixes). * wifi: rtlwifi: rtl8723: Remove unused function rtl8723_cmd_send_packet() (bsc#1227149). * wifi: rtlwifi: rtl8821ae: Access full PMCS reg and use pci_regs.h (bsc#1227149). * wifi: rtlwifi: rtl8821ae: Add pdev into _rtl8821ae_clear_pci_pme_status() (bsc#1227149). * wifi: rtlwifi: rtl8821ae: Remove unnecessary PME_Status bit set (bsc#1227149). * wifi: rtlwifi: rtl8821ae: Reverse PM Capability exists check (bsc#1227149). * wifi: rtlwifi: rtl8821ae: Use pci_find_capability() (bsc#1227149). * wifi: rtlwifi: rtl8821ae: phy: remove some useless code (bsc#1227149). * wifi: rtlwifi: rtl8821ae: phy: using calculate_bit_shift() (bsc#1227149). * wifi: rtlwifi: rtl92ee_dm_dynamic_primary_cca_check(): fix typo in function name (bsc#1227149). * wifi: rtlwifi: rtl_usb: Store the endpoint addresses (bsc#1227149). * wifi: rtlwifi: rtl_usb: Use sync register writes (bsc#1227149). * wifi: rtlwifi: set initial values for unexpected cases of USB endpoint priority (bsc#1227149). * wifi: rtlwifi: simplify LED management (bsc#1227149). * wifi: rtlwifi: simplify TX command fill callbacks (bsc#1227149). * wifi: rtlwifi: simplify rtl_action_proc() and rtl_tx_agg_start() (bsc#1227149). * wifi: rtlwifi: use convenient list_count_nodes() (bsc#1227149). * wifi: rtlwifi: use eth_broadcast_addr() to assign broadcast address (bsc#1227149). * wifi: rtlwifi: use helper function rtl_get_hdr() (bsc#1227149). * wifi: rtlwifi: use unsigned long for bt_coexist_8723 timestamp (bsc#1227149). * wifi: rtlwifi: use unsigned long for rtl_bssid_entry timestamp (bsc#1227149). * wifi: rtw88: 8821c: tweak CCK TX filter setting for SRRC regulation (bsc#1227149). * wifi: rtw88: 8821c: update TX power limit to V67 (bsc#1227149). * wifi: rtw88: 8822c: update TX power limit to V70 (bsc#1227149). * wifi: rtw88: 8822ce: refine power parameters for RFE type 5 (bsc#1227149). * wifi: rtw88: Add support for the SDIO based RTL8723DS chipset (bsc#1227149). * wifi: rtw88: Fix AP mode incorrect DTIM behavior (bsc#1227149). * wifi: rtw88: Fix action frame transmission fail before association (bsc#1227149). * wifi: rtw88: Skip high queue in hci_flush (bsc#1227149). * wifi: rtw88: Stop high queue during scan (bsc#1227149). * wifi: rtw88: Use random MAC when efuse MAC invalid (bsc#1227149). * wifi: rtw88: add missing unwind goto for __rtw_download_firmware() (bsc#1227149). * wifi: rtw88: debug: add to check if debug mask is enabled (bsc#1227149). * wifi: rtw88: debug: remove wrapper of rtw_dbg() (bsc#1227149). * wifi: rtw88: dump firmware debug information in abnormal state (bsc#1227149). * wifi: rtw88: fix incorrect error codes in rtw_debugfs_copy_from_user (bsc#1227149). * wifi: rtw88: fix incorrect error codes in rtw_debugfs_set_* (bsc#1227149). * wifi: rtw88: fix not entering PS mode after AP stops (bsc#1227149). * wifi: rtw88: fix typo rtw8822cu_probe (bsc#1227149). * wifi: rtw88: process VO packets without workqueue to avoid PTK rekey failed (bsc#1227149). * wifi: rtw88: refine register based H2C command (bsc#1227149). * wifi: rtw88: regd: configure QATAR and UK (bsc#1227149). * wifi: rtw88: regd: update regulatory map to R64-R42 (bsc#1227149). * wifi: rtw88: remove unused USB bulkout size set (bsc#1227149). * wifi: rtw88: remove unused and set but unused leftovers (bsc#1227149). * wifi: rtw88: rtw8723d: Implement RTL8723DS (SDIO) efuse parsing (bsc#1227149). * wifi: rtw88: simplify __rtw_tx_work() (bsc#1227149). * wifi: rtw88: simplify vif iterators (bsc#1227149). * wifi: rtw88: use cfg80211_ssid_eq() instead of rtw_ssid_equal() (bsc#1227149). * wifi: rtw88: use kstrtoX_from_user() in debugfs handlers (bsc#1227149). * wifi: rtw88: use struct instead of macros to set TX desc (bsc#1227149). * wifi: rtw89: 52c: rfk: disable DPK during MCC (bsc#1227149). * wifi: rtw89: 52c: rfk: refine MCC channel info notification (bsc#1227149). * wifi: rtw89: 8851b: add 8851B basic chip_info (bsc#1227149). * wifi: rtw89: 8851b: add 8851be to Makefile and Kconfig (bsc#1227149). * wifi: rtw89: 8851b: add BT coexistence support function (bsc#1227149). * wifi: rtw89: 8851b: add DLE mem and HFC quota (bsc#1227149). * wifi: rtw89: 8851b: add MAC configurations to chip_info (bsc#1227149). * wifi: rtw89: 8851b: add NCTL post table (bsc#1227149). * wifi: rtw89: 8851b: add RF configurations (bsc#1227149). * wifi: rtw89: 8851b: add TX power related functions (bsc#1227149). * wifi: rtw89: 8851b: add basic power on function (bsc#1227149). * wifi: rtw89: 8851b: add set channel function (bsc#1227149). * wifi: rtw89: 8851b: add set_channel_rf() (bsc#1227149). * wifi: rtw89: 8851b: add support WoWLAN to 8851B (bsc#1227149). * wifi: rtw89: 8851b: add to parse efuse content (bsc#1227149). * wifi: rtw89: 8851b: add to read efuse version to recognize hardware version B (bsc#1227149). * wifi: rtw89: 8851b: configure CRASH_TRIGGER feature for 8851B (bsc#1227149). * wifi: rtw89: 8851b: configure GPIO according to RFE type (bsc#1227149). * wifi: rtw89: 8851b: configure to force 1 TX power value (bsc#1227149). * wifi: rtw89: 8851b: enable hw_scan support (bsc#1227149). * wifi: rtw89: 8851b: fill BB related capabilities to chip_info (bsc#1227149). * wifi: rtw89: 8851b: rfk: Fix spelling mistake KIP_RESOTRE -> KIP_RESTORE (bsc#1227149). * wifi: rtw89: 8851b: rfk: add AACK (bsc#1227149). * wifi: rtw89: 8851b: rfk: add DACK (bsc#1227149). * wifi: rtw89: 8851b: rfk: add DPK (bsc#1227149). * wifi: rtw89: 8851b: rfk: add IQK (bsc#1227149). * wifi: rtw89: 8851b: rfk: add LCK track (bsc#1227149). * wifi: rtw89: 8851b: rfk: add RCK (bsc#1227149). * wifi: rtw89: 8851b: rfk: add RX DCK (bsc#1227149). * wifi: rtw89: 8851b: rfk: add TSSI (bsc#1227149). * wifi: rtw89: 8851b: rfk: update IQK to version 0x8 (bsc#1227149). * wifi: rtw89: 8851b: update RF radio A parameters to R28 (bsc#1227149). * wifi: rtw89: 8851b: update TX power tables to R28 (bsc#1227149). * wifi: rtw89: 8851b: update TX power tables to R34 (bsc#1227149). * wifi: rtw89: 8851b: update TX power tables to R37 (bsc#1227149). * wifi: rtw89: 8851be: add 8851BE PCI entry and fill PCI capabilities (bsc#1227149). * wifi: rtw89: 8852b: fix definition of KIP register number (git-fixes). * wifi: rtw89: 8852b: update TX power tables to R35 (bsc#1227149). * wifi: rtw89: 8852b: update TX power tables to R36 (bsc#1227149). * wifi: rtw89: 8852c: Fix TSSI causes transmit power inaccuracy (bsc#1227149). * wifi: rtw89: 8852c: Update bandedge parameters for better performance (bsc#1227149). * wifi: rtw89: 8852c: add quirk to set PCI BER for certain platforms (bsc#1227149). * wifi: rtw89: 8852c: declare to support two chanctx (bsc#1227149). * wifi: rtw89: 8852c: read RX gain offset from efuse for 6GHz channels (bsc#1227149). * wifi: rtw89: 8852c: update RF radio A/B parameters to R63 (bsc#1227149). * wifi: rtw89: 8852c: update TX power tables to R63 with 6 GHz power type (1 of 3) (bsc#1227149). * wifi: rtw89: 8852c: update TX power tables to R63 with 6 GHz power type (2 of 3) (bsc#1227149). * wifi: rtw89: 8852c: update TX power tables to R63 with 6 GHz power type (3 of 3) (bsc#1227149). * wifi: rtw89: 8852c: update TX power tables to R67 (bsc#1227149). * wifi: rtw89: 8922a: add 8922A basic chip info (bsc#1227149). * wifi: rtw89: 8922a: add BTG functions to assist BT coexistence to control TX/RX (bsc#1227149). * wifi: rtw89: 8922a: add NCTL pre-settings for WiFi 7 chips (bsc#1227149). * wifi: rtw89: 8922a: add RF read/write v2 (bsc#1227149). * wifi: rtw89: 8922a: add SER IMR tables (bsc#1227149). * wifi: rtw89: 8922a: add TX power related ops (bsc#1227149). * wifi: rtw89: 8922a: add chip_ops related to BB init (bsc#1227149). * wifi: rtw89: 8922a: add chip_ops to get thermal value (bsc#1227149). * wifi: rtw89: 8922a: add chip_ops::bb_preinit to enable BB before downloading firmware (bsc#1227149). * wifi: rtw89: 8922a: add chip_ops::cfg_txrx_path (bsc#1227149). * wifi: rtw89: 8922a: add chip_ops::rfk_hw_init (bsc#1227149). * wifi: rtw89: 8922a: add chip_ops::rfk_init_late to do initial RF calibrations later (bsc#1227149). * wifi: rtw89: 8922a: add chip_ops::{enable,disable}_bb_rf (bsc#1227149). * wifi: rtw89: 8922a: add coexistence helpers of SW grant (bsc#1227149). * wifi: rtw89: 8922a: add helper of set_channel (bsc#1227149). * wifi: rtw89: 8922a: add ieee80211_ops::hw_scan (bsc#1227149). * wifi: rtw89: 8922a: add more fields to beacon H2C command to support multi- links (bsc#1227149). * wifi: rtw89: 8922a: add power on/off functions (bsc#1227149). * wifi: rtw89: 8922a: add register definitions of H2C, C2H, page, RRSR and EDCCA (bsc#1227149). * wifi: rtw89: 8922a: add set_channel BB part (bsc#1227149). * wifi: rtw89: 8922a: add set_channel MAC part (bsc#1227149). * wifi: rtw89: 8922a: add set_channel RF part (bsc#1227149). * wifi: rtw89: 8922a: configure CRASH_TRIGGER FW feature (bsc#1227149). * wifi: rtw89: 8922a: correct register definition and merge IO for ctrl_nbtg_bt_tx() (bsc#1227149). * wifi: rtw89: 8922a: declare to support two chanctx (bsc#1227149). * wifi: rtw89: 8922a: dump MAC registers when SER occurs (bsc#1227149). * wifi: rtw89: 8922a: extend and add quota number (bsc#1227149). * wifi: rtw89: 8922a: hook handlers of TX/RX descriptors to chip_ops (bsc#1227149). * wifi: rtw89: 8922a: implement AP mode related reg for BE generation (bsc#1227149). * wifi: rtw89: 8922a: implement {stop,resume}_sch_tx and cfg_ppdu (bsc#1227149). * wifi: rtw89: 8922a: read efuse content from physical map (bsc#1227149). * wifi: rtw89: 8922a: read efuse content via efuse map struct from logic map (bsc#1227149). * wifi: rtw89: 8922a: rfk: implement chip_ops to call RF calibrations (bsc#1227149). * wifi: rtw89: 8922a: set RX gain along with set_channel operation (bsc#1227149). * wifi: rtw89: 8922a: set chip_ops FEM and GPIO to NULL (bsc#1227149). * wifi: rtw89: 8922a: set memory heap address for secure firmware (bsc#1227149). * wifi: rtw89: 8922a: update BA CAM number to 24 (bsc#1227149). * wifi: rtw89: 8922a: update the register used in DIG and the DIG flow (bsc#1227149). * wifi: rtw89: 8922ae: add 8922AE PCI entry and basic info (bsc#1227149). * wifi: rtw89: 8922ae: add v2 interrupt handlers for 8922AE (bsc#1227149). * wifi: rtw89: Add EHT rate mask as parameters of RA H2C command (bsc#1227149). * wifi: rtw89: Fix array index mistake in rtw89_sta_info_get_iter() (git- fixes). * wifi: rtw89: Fix clang -Wimplicit-fallthrough in rtw89_query_sar() (bsc#1227149). * wifi: rtw89: Introduce Time Averaged SAR (TAS) feature (bsc#1227149). * wifi: rtw89: Refine active scan behavior in 6 GHz (bsc#1227149). * wifi: rtw89: Set default CQM config if not present (bsc#1227149). * wifi: rtw89: TX power stuffs replace confusing naming of _max with _num (bsc#1227149). * wifi: rtw89: Update EHT PHY beamforming capability (bsc#1227149). * wifi: rtw89: acpi: process 6 GHz band policy from DSM (bsc#1227149). * wifi: rtw89: add C2H RA event V1 to support WiFi 7 chips (bsc#1227149). * wifi: rtw89: add C2H event handlers of RFK log and report (bsc#1227149). * wifi: rtw89: add CFO XTAL registers field to support 8851B (bsc#1227149). * wifi: rtw89: add DBCC H2C to notify firmware the status (bsc#1227149). * wifi: rtw89: add EHT capabilities for WiFi 7 chips (bsc#1227149). * wifi: rtw89: add EHT radiotap in monitor mode (bsc#1227149). * wifi: rtw89: add EVM and SNR statistics to debugfs (bsc#1227149). * wifi: rtw89: add EVM for antenna diversity (bsc#1227149). * wifi: rtw89: add H2C RA command V1 to support WiFi 7 chips (bsc#1227149). * wifi: rtw89: add H2C command to download beacon frame for WiFi 7 chips (bsc#1227149). * wifi: rtw89: add RSSI based antenna diversity (bsc#1227149). * wifi: rtw89: add RSSI statistics for the case of antenna diversity to debugfs (bsc#1227149). * wifi: rtw89: add XTAL SI for WiFi 7 chips (bsc#1227149). * wifi: rtw89: add chip_info::chip_gen to determine chip generation (bsc#1227149). * wifi: rtw89: add chip_info::txwd_info size to generalize TX WD submit (bsc#1227149). * wifi: rtw89: add chip_ops::h2c_ba_cam() to configure BA CAM (bsc#1227149). * wifi: rtw89: add chip_ops::query_rxdesc() and rxd_len as helpers to support newer chips (bsc#1227149). * wifi: rtw89: add chip_ops::update_beacon to abstract update beacon operation (bsc#1227149). * wifi: rtw89: add firmware H2C command of BA CAM V1 (bsc#1227149). * wifi: rtw89: add firmware parser for v1 format (bsc#1227149). * wifi: rtw89: add firmware suit for BB MCU 0/1 (bsc#1227149). * wifi: rtw89: add function prototype for coex request duration (bsc#1227149). * wifi: rtw89: add mac_gen pointer to access mac port registers (bsc#1227149). * wifi: rtw89: add mlo_dbcc_mode for WiFi 7 chips (bsc#1227149). * wifi: rtw89: add new H2C command to pause/sleep transmitting by MAC ID (bsc#1227149). * wifi: rtw89: add new H2C for PS mode in 802.11be chip (bsc#1227149). * wifi: rtw89: add reserved size as factor of DLE used size (bsc#1227149). * wifi: rtw89: add subband index of primary channel to struct rtw89_chan (bsc#1227149). * wifi: rtw89: add to display hardware rates v1 histogram in debugfs (bsc#1227149). * wifi: rtw89: add to fill TX descriptor for firmware command v2 (bsc#1227149). * wifi: rtw89: add to fill TX descriptor v2 (bsc#1227149). * wifi: rtw89: add to parse firmware elements of BB and RF tables (bsc#1227149). * wifi: rtw89: add to query RX descriptor format v2 (bsc#1227149). * wifi: rtw89: add tx_wake notify for 8851B (bsc#1227149). * wifi: rtw89: add wait/completion for abort scan (bsc#1227149). * wifi: rtw89: adjust init_he_cap() to add EHT cap into iftype_data (bsc#1227149). * wifi: rtw89: advertise missing extended scan feature (bsc#1227149). * wifi: rtw89: avoid stringop-overflow warning (bsc#1227149). * wifi: rtw89: call rtw89_chan_get() by vif chanctx if aware of vif (bsc#1227149). * wifi: rtw89: chan: MCC take reconfig into account (bsc#1227149). * wifi: rtw89: chan: add sub-entity swap function to cover replacing (bsc#1227149). * wifi: rtw89: chan: move handling from add/remove to assign/unassign for MLO (bsc#1227149). * wifi: rtw89: chan: support MCC on Wi-Fi 7 chips (bsc#1227149). * wifi: rtw89: chan: tweak bitmap recalc ahead before MLO (bsc#1227149). * wifi: rtw89: chan: tweak weight recalc ahead before MLO (bsc#1227149). * wifi: rtw89: change naming of BA CAM from V1 to V0_EXT (bsc#1227149). * wifi: rtw89: change qutoa to DBCC by default for WiFi 7 chips (bsc#1227149). * wifi: rtw89: change supported bandwidths of chip_info to bit mask (bsc#1227149). * wifi: rtw89: cleanup firmware elements parsing (bsc#1227149). * wifi: rtw89: cleanup private data structures (bsc#1227149). * wifi: rtw89: cleanup rtw89_iqk_info and related code (bsc#1227149). * wifi: rtw89: coex: Add Bluetooth RSSI level information (bsc#1227149). * wifi: rtw89: coex: Add Pre-AGC control to enhance Wi-Fi RX performance (bsc#1227149). * wifi: rtw89: coex: Add coexistence policy to decrease WiFi packet CRC-ERR (bsc#1227149). * wifi: rtw89: coex: Fix wrong Wi-Fi role info and FDDT parameter members (bsc#1227149). * wifi: rtw89: coex: Record down Wi-Fi initial mode information (bsc#1227149). * wifi: rtw89: coex: Reorder H2C command index to align with firmware (bsc#1227149). * wifi: rtw89: coex: Set Bluetooth scan low-priority when Wi-Fi link/scan (bsc#1227149). * wifi: rtw89: coex: Still show hardware grant signal info even Wi-Fi is PS (bsc#1227149). * wifi: rtw89: coex: To improve Wi-Fi performance while BT is idle (bsc#1227149). * wifi: rtw89: coex: Translate antenna configuration from ID to string (bsc#1227149). * wifi: rtw89: coex: Update BTG control related logic (bsc#1227149). * wifi: rtw89: coex: Update RF parameter control setting logic (bsc#1227149). * wifi: rtw89: coex: Update coexistence policy for Wi-Fi LPS (bsc#1227149). * wifi: rtw89: coex: When Bluetooth not available do not set power/gain (bsc#1227149). * wifi: rtw89: coex: add BTC ctrl_info version 7 and related logic (bsc#1227149). * wifi: rtw89: coex: add annotation __counted_by() for struct rtw89_btc_btf_set_slot_table (bsc#1227149). * wifi: rtw89: coex: add annotation __counted_by() to struct rtw89_btc_btf_set_mon_reg (bsc#1227149). * wifi: rtw89: coex: add init_info H2C command format version 7 (bsc#1227149). * wifi: rtw89: coex: add return value to ensure H2C command is success or not (bsc#1227149). * wifi: rtw89: coex: fix configuration for shared antenna for 8922A (bsc#1227149). * wifi: rtw89: coex: use struct assignment to replace memcpy() to append TDMA content (bsc#1227149). * wifi: rtw89: configure PPDU max user by chip (bsc#1227149). * wifi: rtw89: consider RX info for WiFi 7 chips (bsc#1227149). * wifi: rtw89: consolidate registers of mac port to struct (bsc#1227149). * wifi: rtw89: correct PHY register offset for PHY-1 (bsc#1227149). * wifi: rtw89: correct aSIFSTime for 6GHz band (stable-fixes). * wifi: rtw89: correct the DCFO tracking flow to improve CFO compensation (bsc#1227149). * wifi: rtw89: debug: add FW log component for scan (bsc#1227149). * wifi: rtw89: debug: add debugfs entry to disable dynamic mechanism (bsc#1227149). * wifi: rtw89: debug: add to check if debug mask is enabled (bsc#1227149). * wifi: rtw89: debug: remove wrapper of rtw89_debug() (bsc#1227149). * wifi: rtw89: debug: show txpwr table according to chip gen (bsc#1227149). * wifi: rtw89: debug: txpwr table access only valid page according to chip (bsc#1227149). * wifi: rtw89: debug: txpwr table supports Wi-Fi 7 chips (bsc#1227149). * wifi: rtw89: declare EXT NSS BW of VHT capability (bsc#1227149). * wifi: rtw89: declare MCC in interface combination (bsc#1227149). * wifi: rtw89: define hardware rate v1 for WiFi 7 chips (bsc#1227149). * wifi: rtw89: differentiate narrow_bw_ru_dis setting according to chip gen (bsc#1227149). * wifi: rtw89: disable RTS when broadcast/multicast (bsc#1227149). * wifi: rtw89: download firmware with five times retry (bsc#1227149). * wifi: rtw89: drop TIMING_BEACON_ONLY and sync beacon TSF by self (bsc#1227149). * wifi: rtw89: enlarge supported length of read_reg debugfs entry (bsc#1227149). * wifi: rtw89: extend PHY status parser to support WiFi 7 chips (bsc#1227149). * wifi: rtw89: fix HW scan not aborting properly (git-fixes). * wifi: rtw89: fix HW scan timeout due to TSF sync issue (bsc#1227149). * wifi: rtw89: fix a width vs precision bug (bsc#1227149). * wifi: rtw89: fix disabling concurrent mode TX hang issue (bsc#1227149). * wifi: rtw89: fix misbehavior of TX beacon in concurrent mode (bsc#1227149). * wifi: rtw89: fix not entering PS mode after AP stops (bsc#1227149). * wifi: rtw89: fix spelling typo of IQK debug messages (bsc#1227149). * wifi: rtw89: fix typo of rtw89_fw_h2c_mcc_macid_bitmap() (bsc#1227149). * wifi: rtw89: fw: add H2C command to reset CMAC table for WiFi 7 (bsc#1227149). * wifi: rtw89: fw: add H2C command to reset DMAC table for WiFi 7 (bsc#1227149). * wifi: rtw89: fw: add H2C command to update security CAM v2 (bsc#1227149). * wifi: rtw89: fw: add checking type for variant type of firmware (bsc#1227149). * wifi: rtw89: fw: add chip_ops to update CMAC table to associated station (bsc#1227149). * wifi: rtw89: fw: add definition of H2C command and C2H event for MRC series (bsc#1227149). * wifi: rtw89: fw: add version field to BB MCU firmware element (bsc#1227149). * wifi: rtw89: fw: consider checksum length of security data (bsc#1227149). * wifi: rtw89: fw: download firmware with key data for secure boot (bsc#1227149). * wifi: rtw89: fw: extend JOIN H2C command to support WiFi 7 chips (bsc#1227149). * wifi: rtw89: fw: extend program counter dump for Wi-Fi 7 chip (bsc#1227149). * wifi: rtw89: fw: fill CMAC table to associated station for WiFi 7 chips (bsc#1227149). * wifi: rtw89: fw: generalize download firmware flow by mac_gen pointers (bsc#1227149). * wifi: rtw89: fw: implement MRC H2C command functions (bsc#1227149). * wifi: rtw89: fw: implement supported functions of download firmware for WiFi 7 chips (bsc#1227149). * wifi: rtw89: fw: load TX power track tables from fw_element (bsc#1227149). * wifi: rtw89: fw: move polling function of firmware path ready to an individual function (bsc#1227149). * wifi: rtw89: fw: parse secure section from firmware file (bsc#1227149). * wifi: rtw89: fw: propagate an argument include_bb for BB MCU firmware (bsc#1227149). * wifi: rtw89: fw: read firmware secure information from efuse (bsc#1227149). * wifi: rtw89: fw: refine download flow to support variant firmware suits (bsc#1227149). * wifi: rtw89: fw: scan offload prohibit all 6 GHz channel if no 6 GHz sband (bsc#1227149). * wifi: rtw89: fw: update TX AMPDU parameter to CMAC table (bsc#1227149). * wifi: rtw89: fw: use struct to fill BA CAM H2C commands (bsc#1227149). * wifi: rtw89: fw: use struct to fill JOIN H2C command (bsc#1227149). * wifi: rtw89: get data rate mode/NSS/MCS v1 from RX descriptor (bsc#1227149). * wifi: rtw89: indicate TX power by rate table inside RFE parameter (bsc#1227149). * wifi: rtw89: indicate TX shape table inside RFE parameter (bsc#1227149). * wifi: rtw89: initialize antenna for antenna diversity (bsc#1227149). * wifi: rtw89: initialize multi-channel handling (bsc#1227149). * wifi: rtw89: introduce infrastructure of firmware elements (bsc#1227149). * wifi: rtw89: introduce realtek ACPI DSM method (bsc#1227149). * wifi: rtw89: introduce v1 format of firmware header (bsc#1227149). * wifi: rtw89: load BB parameters to PHY-1 (bsc#1227149). * wifi: rtw89: load RFK log format string from firmware file (bsc#1227149). * wifi: rtw89: load TX power by rate when RFE parms setup (bsc#1227149). * wifi: rtw89: load TX power related tables from FW elements (bsc#1227149). * wifi: rtw89: mac: Fix spelling mistakes "notfify" -> "notify" (bsc#1227149). * wifi: rtw89: mac: add coexistence helpers {cfg/get}_plt (bsc#1227149). * wifi: rtw89: mac: add feature_init to initialize BA CAM V1 (bsc#1227149). * wifi: rtw89: mac: add flags to check if CMAC and DMAC are enabled (bsc#1227149). * wifi: rtw89: mac: add mac_gen_def::band1_offset to map MAC band1 register address (bsc#1227149). * wifi: rtw89: mac: add registers of MU-EDCA parameters for WiFi 7 chips (bsc#1227149). * wifi: rtw89: mac: add suffix _ax to MAC functions (bsc#1227149). * wifi: rtw89: mac: add sys_init and filter option for WiFi 7 chips (bsc#1227149). * wifi: rtw89: mac: add to access efuse for WiFi 7 chips (bsc#1227149). * wifi: rtw89: mac: add to get DLE reserved quota (bsc#1227149). * wifi: rtw89: mac: check queue empty according to chip gen (bsc#1227149). * wifi: rtw89: mac: correct MUEDCA setting for MAC-1 (bsc#1227149). * wifi: rtw89: mac: define internal memory address for WiFi 7 chip (bsc#1227149). * wifi: rtw89: mac: define register address of rx_filter to generalize code (bsc#1227149). * wifi: rtw89: mac: do bf_monitor only if WiFi 6 chips (bsc#1227149). * wifi: rtw89: mac: functions to configure hardware engine and quota for WiFi 7 chips (bsc#1227149). * wifi: rtw89: mac: generalize code to indirectly access WiFi internal memory (bsc#1227149). * wifi: rtw89: mac: generalize register of MU-EDCA switch according to chip gen (bsc#1227149). * wifi: rtw89: mac: get TX power control register according to chip gen (bsc#1227149). * wifi: rtw89: mac: handle C2H receive/done ACK in interrupt context (bsc#1227149). * wifi: rtw89: mac: implement MRC C2H event handling (bsc#1227149). * wifi: rtw89: mac: implement to configure TX/RX engines for WiFi 7 chips (bsc#1227149). * wifi: rtw89: mac: move code related to hardware engine to individual functions (bsc#1227149). * wifi: rtw89: mac: refine SER setting during WiFi CPU power on (bsc#1227149). * wifi: rtw89: mac: reset PHY-1 hardware when going to enable/disable (bsc#1227149). * wifi: rtw89: mac: return held quota of DLE when changing MAC-1 (bsc#1227149). * wifi: rtw89: mac: set bf_assoc capabilities according to chip gen (bsc#1227149). * wifi: rtw89: mac: set bfee_ctrl() according to chip gen (bsc#1227149). * wifi: rtw89: mac: update RTS threshold according to chip gen (bsc#1227149). * wifi: rtw89: mac: use mac_gen pointer to access about efuse (bsc#1227149). * wifi: rtw89: mac: use pointer to access functions of hardware engine and quota (bsc#1227149). * wifi: rtw89: mcc: consider and determine BT duration (bsc#1227149). * wifi: rtw89: mcc: deal with BT slot change (bsc#1227149). * wifi: rtw89: mcc: deal with P2P PS change (bsc#1227149). * wifi: rtw89: mcc: deal with beacon NoA if GO exists (bsc#1227149). * wifi: rtw89: mcc: decide pattern and calculate parameters (bsc#1227149). * wifi: rtw89: mcc: fill fundamental configurations (bsc#1227149). * wifi: rtw89: mcc: fix NoA start time when GO is auxiliary (bsc#1227149). * wifi: rtw89: mcc: initialize start flow (bsc#1227149). * wifi: rtw89: mcc: track beacon offset and update when needed (bsc#1227149). * wifi: rtw89: mcc: trigger FW to start/stop MCC (bsc#1227149). * wifi: rtw89: mcc: update role bitmap when changed (bsc#1227149). * wifi: rtw89: modify the register setting and the flow of CFO tracking (bsc#1227149). * wifi: rtw89: move software DCFO compensation setting to proper position (bsc#1227149). * wifi: rtw89: only reset BB/RF for existing WiFi 6 chips while starting up (bsc#1227149). * wifi: rtw89: packet offload wait for FW response (bsc#1227149). * wifi: rtw89: parse EHT information from RX descriptor and PPDU status packet (bsc#1227149). * wifi: rtw89: parse TX EHT rate selected by firmware from RA C2H report (bsc#1227149). * wifi: rtw89: parse and print out RFK log from C2H events (bsc#1227149). * wifi: rtw89: pause/proceed MCC for ROC and HW scan (bsc#1227149). * wifi: rtw89: pci: add LTR v2 for WiFi 7 chip (bsc#1227149). * wifi: rtw89: pci: add PCI generation information to pci_info for each chip (bsc#1227149). * wifi: rtw89: pci: add new RX ring design to determine full RX ring efficiently (bsc#1227149). * wifi: rtw89: pci: add pre_deinit to be called after probe complete (bsc#1227149). * wifi: rtw89: pci: correct interrupt mitigation register for 8852CE (bsc#1227149). * wifi: rtw89: pci: define PCI ring address for WiFi 7 chips (bsc#1227149). * wifi: rtw89: pci: fix interrupt enable mask for HALT C2H of RTL8851B (bsc#1227149). * wifi: rtw89: pci: generalize code of PCI control DMA IO for WiFi 7 (bsc#1227149). * wifi: rtw89: pci: generalize interrupt status bits of interrupt handlers (bsc#1227149). * wifi: rtw89: pci: implement PCI CLK/ASPM/L1SS for WiFi 7 chips (bsc#1227149). * wifi: rtw89: pci: implement PCI mac_post_init for WiFi 7 chips (bsc#1227149). * wifi: rtw89: pci: implement PCI mac_pre_init for WiFi 7 chips (bsc#1227149). * wifi: rtw89: pci: interrupt v2 refine IMR for SER (bsc#1227149). * wifi: rtw89: pci: reset BDRAM according to chip gen (bsc#1227149). * wifi: rtw89: pci: stop/start DMA for level 1 recovery according to chip gen (bsc#1227149). * wifi: rtw89: pci: update SER timer unit and timeout time (bsc#1227149). * wifi: rtw89: pci: update interrupt mitigation register for 8922AE (bsc#1227149). * wifi: rtw89: pci: use DBI function for 8852AE/8852BE/8851BE (bsc#1227149). * wifi: rtw89: pci: use gen_def pointer to configure mac_{pre,post}_init and clear PCI ring index (bsc#1227149). * wifi: rtw89: pci: validate RX tag for RXQ and RPQ (bsc#1227149). * wifi: rtw89: phy: add BB wrapper of TX power for WiFi 7 chips (bsc#1227149). * wifi: rtw89: phy: add parser to support RX gain dynamic setting flow (bsc#1227149). * wifi: rtw89: phy: add phy_gen_def::cr_base to support WiFi 7 chips (bsc#1227149). * wifi: rtw89: phy: change naming related BT coexistence functions (bsc#1227149). * wifi: rtw89: phy: dynamically adjust EDCCA threshold (bsc#1227149). * wifi: rtw89: phy: extend TX power common stuffs for Wi-Fi 7 chips (bsc#1227149). * wifi: rtw89: phy: generalize valid bit of BSS color (bsc#1227149). * wifi: rtw89: phy: ignore special data from BB parameter file (bsc#1227149). * wifi: rtw89: phy: modify register setting of ENV_MNTR, PHYSTS and DIG (bsc#1227149). * wifi: rtw89: phy: move bb_gain_info used by WiFi 6 chips to union (bsc#1227149). * wifi: rtw89: phy: print out RFK log with formatted string (bsc#1227149). * wifi: rtw89: phy: rate pattern handles HW rate by chip gen (bsc#1227149). * wifi: rtw89: phy: refine helpers used for raw TX power (bsc#1227149). * wifi: rtw89: phy: set TX power RU limit according to chip gen (bsc#1227149). * wifi: rtw89: phy: set TX power by rate according to chip gen (bsc#1227149). * wifi: rtw89: phy: set TX power limit according to chip gen (bsc#1227149). * wifi: rtw89: phy: set TX power offset according to chip gen (bsc#1227149). * wifi: rtw89: phy: set channel_info for WiFi 7 chips (bsc#1227149). * wifi: rtw89: prepare scan leaf functions for wifi 7 ICs (bsc#1227149). * wifi: rtw89: process regulatory for 6 GHz power type (bsc#1227149). * wifi: rtw89: provide functions to configure NoA for beacon update (bsc#1227149). * wifi: rtw89: recognize log format from firmware file (bsc#1227149). * wifi: rtw89: reference quota mode when setting Tx power (bsc#1227149). * wifi: rtw89: refine H2C command that pause transmitting by MAC ID (bsc#1227149). * wifi: rtw89: refine add_chan H2C command to encode_bits (bsc#1227149). * wifi: rtw89: refine bandwidth 160MHz uplink OFDMA performance (bsc#1227149). * wifi: rtw89: refine clearing supported bands to check 2/5 GHz first (bsc#1227149). * wifi: rtw89: refine element naming used by queue empty check (bsc#1227149). * wifi: rtw89: refine hardware scan C2H events (bsc#1227149). * wifi: rtw89: refine packet offload delete flow of 6 GHz probe (bsc#1227149). * wifi: rtw89: refine packet offload handling under SER (bsc#1227149). * wifi: rtw89: refine remain on channel flow to improve P2P connection (bsc#1227149). * wifi: rtw89: refine rtw89_correct_cck_chan() by rtw89_hw_to_nl80211_band() (bsc#1227149). * wifi: rtw89: refine uplink trigger based control mechanism (bsc#1227149). * wifi: rtw89: regd: configure Thailand in regulation type (bsc#1227149). * wifi: rtw89: regd: handle policy of 6 GHz according to BIOS (bsc#1227149). * wifi: rtw89: regd: judge 6 GHz according to chip and BIOS (bsc#1227149). * wifi: rtw89: regd: judge UNII-4 according to BIOS and chip (bsc#1227149). * wifi: rtw89: regd: update regulatory map to R64-R40 (bsc#1227149). * wifi: rtw89: regd: update regulatory map to R64-R43 (bsc#1227149). * wifi: rtw89: regd: update regulatory map to R65-R44 (bsc#1227149). * wifi: rtw89: release bit in rtw89_fw_h2c_del_pkt_offload() (bsc#1227149). * wifi: rtw89: return failure if needed firmware elements are not recognized (bsc#1227149). * wifi: rtw89: rfk: add H2C command to trigger DACK (bsc#1227149). * wifi: rtw89: rfk: add H2C command to trigger DPK (bsc#1227149). * wifi: rtw89: rfk: add H2C command to trigger IQK (bsc#1227149). * wifi: rtw89: rfk: add H2C command to trigger RX DCK (bsc#1227149). * wifi: rtw89: rfk: add H2C command to trigger TSSI (bsc#1227149). * wifi: rtw89: rfk: add H2C command to trigger TXGAPK (bsc#1227149). * wifi: rtw89: rfk: add a completion to wait RF calibration report from C2H event (bsc#1227149). * wifi: rtw89: rfk: disable driver tracking during MCC (bsc#1227149). * wifi: rtw89: rfk: send channel information to firmware for RF calibrations (bsc#1227149). * wifi: rtw89: sar: let caller decide the center frequency to query (bsc#1227149). * wifi: rtw89: scan offload wait for FW done ACK (bsc#1227149). * wifi: rtw89: ser: L1 add pre-M0 and post-M0 states (bsc#1227149). * wifi: rtw89: ser: reset total_sta_assoc and tdls_peer when L2 (bsc#1227149). * wifi: rtw89: set TX power without precondition during setting channel (bsc#1227149). * wifi: rtw89: set capability of TX antenna diversity (bsc#1227149). * wifi: rtw89: set entry size of address CAM to H2C field by chip (bsc#1227149). * wifi: rtw89: show EHT rate in debugfs (bsc#1227149). * wifi: rtw89: support U-NII-4 channels on 5GHz band (bsc#1227149). * wifi: rtw89: support firmware log with formatted text (bsc#1227149). * wifi: rtw89: suppress the log for specific SER called CMDPSR_FRZTO (bsc#1227149). * wifi: rtw89: tweak H2C TX waiting function for SER (bsc#1227149). * wifi: rtw89: update DMA function with different generation (bsc#1227149). * wifi: rtw89: update ps_state register for chips with different generation (bsc#1227149). * wifi: rtw89: update scan C2H messages for wifi 7 IC (bsc#1227149). * wifi: rtw89: update suspend/resume for different generation (bsc#1227149). * wifi: rtw89: use PLCP information to match BSS_COLOR and AID (bsc#1227149). * wifi: rtw89: use chip_info::small_fifo_size to choose debug_mask (bsc#1227149). * wifi: rtw89: use flexible array member in rtw89_btc_btf_tlv (bsc#1227149). * wifi: rtw89: use struct and le32_get_bits to access RX info (bsc#1227149). * wifi: rtw89: use struct and le32_get_bits() to access RX descriptor (bsc#1227149). * wifi: rtw89: use struct and le32_get_bits() to access received PHY status IEs (bsc#1227149). * wifi: rtw89: use struct rtw89_phy_sts_ie0 instead of macro to access PHY IE0 status (bsc#1227149). * wifi: rtw89: use struct to access RA report (bsc#1227149). * wifi: rtw89: use struct to access firmware C2H event header (bsc#1227149). * wifi: rtw89: use struct to access register-based H2C/C2H (bsc#1227149). * wifi: rtw89: use struct to fill H2C command to download beacon frame (bsc#1227149). * wifi: rtw89: use struct to parse firmware header (bsc#1227149). * wifi: rtw89: use struct to set RA H2C command (bsc#1227149). * wifi: rtw89: wow: move release offload packet earlier for WoWLAN mode (bsc#1227149). * wifi: rtw89: wow: refine WoWLAN flows of HCI interrupts and low power mode (bsc#1227149). * wifi: rtw89: wow: set security engine options for 802.11ax chips only (bsc#1227149). * wifi: rtw89: wow: update WoWLAN reason register for different chips (bsc#1227149). * wifi: rtw89: wow: update WoWLAN status register for different generation (bsc#1227149). * wifi: rtw89: wow: update config mac function with different generation (bsc#1227149). * wifi: ti: wlcore: sdio: Drop unused include (bsc#1227149). * wifi: virt_wifi: avoid reporting connection success with wrong SSID (git- fixes). * wifi: virt_wifi: do not use strlen() in const context (git-fixes). * wifi: wcn36xx: Annotate struct wcn36xx_hal_ind_msg with __counted_by (bsc#1227149). * wifi: wcn36xx: Convert to platform remove callback returning void (bsc#1227149). * wifi: wcn36xx: remove unnecessary (void*) conversions (bsc#1227149). * wifi: wext: avoid extra calls to strlen() in ieee80211_bss() (bsc#1227149). * wifi: wfx: Use devm_kmemdup to replace devm_kmalloc + memcpy (bsc#1227149). * wifi: wfx: allow to send frames during ROC (bsc#1227149). * wifi: wfx: fix power_save setting when AP is stopped (bsc#1227149). * wifi: wfx: implement wfx_remain_on_channel() (bsc#1227149). * wifi: wfx: introduce hif_scan_uniq() (bsc#1227149). * wifi: wfx: move wfx_skb_*() out of the header file (bsc#1227149). * wifi: wfx: relocate wfx_rate_mask_to_hw() (bsc#1227149). * wifi: wfx: scan_lock is global to the device (bsc#1227149). * wifi: wfx: simplify exclusion between scan and Rx filters (bsc#1227149). * wifi: wil6210: fw: Replace zero-length arrays with DECLARE_FLEX_ARRAY() helper (bsc#1227149). * wifi: wil6210: wmi: Replace zero-length array with DECLARE_FLEX_ARRAY() helper (bsc#1227149). * wifi: wilc1000: Increase ASSOC response buffer (bsc#1227149). * wifi: wilc1000: Remove unused declarations (bsc#1227149). * wifi: wilc1000: add SPI commands retry mechanism (bsc#1227149). * wifi: wilc1000: add back-off algorithm to balance tx queue packets (bsc#1227149). * wifi: wilc1000: add missing read critical sections around vif list traversal (bsc#1227149). * wifi: wilc1000: always release SDIO host in wilc_sdio_cmd53() (bsc#1227149). * wifi: wilc1000: cleanup struct wilc_conn_info (bsc#1227149). * wifi: wilc1000: correct CRC7 calculation (bsc#1227149). * wifi: wilc1000: fix declarations ordering (bsc#1227149). * wifi: wilc1000: fix driver_handler when committing initial configuration (bsc#1227149). * wifi: wilc1000: fix ies_len type in connect path (git-fixes). * wifi: wilc1000: fix incorrect power down sequence (bsc#1227149). * wifi: wilc1000: remove AKM suite be32 conversion for external auth request (bsc#1227149). * wifi: wilc1000: remove setting msg.spi (bsc#1227149). * wifi: wilc1000: remove use of has_thrpt_enh3 flag (bsc#1227149). * wifi: wilc1000: set preamble size to auto as default in wilc_init_fw_config() (bsc#1227149). * wifi: wilc1000: simplify remain on channel support (bsc#1227149). * wifi: wilc1000: simplify wilc_scan() (bsc#1227149). * wifi: wilc1000: split deeply nested RCU list traversal in dedicated helper (bsc#1227149). * wifi: wilc1000: use SRCU instead of RCU for vif list traversal (bsc#1227149). * wifi: wilc1000: validate chip id during bus probe (bsc#1227149). * wifi: wl1251: replace deprecated strncpy with strscpy (bsc#1227149). * wifi: wl18xx: replace deprecated strncpy with strscpy (bsc#1227149). * wifi: wlcore: boot: replace deprecated strncpy with strscpy (bsc#1227149). * wifi: wlcore: main: replace deprecated strncpy with strscpy (bsc#1227149). * wifi: wlcore: sdio: Rate limit wl12xx_sdio_raw_{read,write}() failures warns (bsc#1227149). * wifi: wlcore: sdio: Use module_sdio_driver macro to simplify the code (bsc#1227149). * wifi: zd1211rw: fix typo "tranmits" (bsc#1227149). * wifi: zd1211rw: remove __nocast from zd_addr_t (bsc#1227149). * wifi: zd1211rw: silence sparse warnings (bsc#1227149). * wlcore: spi: Remove redundant of_match_ptr() (bsc#1227149). * work around gcc bugs with 'asm goto' with outputs (git-fixes). * x86/amd_nb: Check for invalid SMN reads (git-fixes). * x86/apic: Force native_apic_mem_read() to use the MOV instruction (git- fixes). * x86/asm: Fix build of UML with KASAN (git-fixes). * x86/asm: Remove the __iomem annotation of movdir64b()'s dst argument (git- fixes). * x86/bhi: Avoid warning in #DB handler due to BHI mitigation :(git-fixes). * x86/boot: Ignore NMIs during very early boot (git-fixes). * x86/cpu: Provide default cache line size if not enumerated (git-fixes). * x86/csum: Fix clang -Wuninitialized in csum_partial() (git-fixes). * x86/csum: Improve performance of `csum_partial` (git-fixes). * x86/csum: Remove unnecessary odd handling (git-fixes). * x86/csum: clean up `csum_partial' further (git-fixes). * x86/fpu: Fix AMD X86_BUG_FXSAVE_LEAK fixup (git-fixes). * x86/head/64: Move the __head definition to <asm/init.h> (git-fixes). * x86/insn: Add VEX versions of VPDPBUSD, VPDPBUSDS, VPDPWSSD and VPDPWSSDS (git-fixes). * x86/insn: Fix PUSH instruction in x86 instruction decoder opcode map (git- fixes). * x86/kconfig: Add as-instr64 macro to properly evaluate AS_WRUSS (git-fixes). * x86/kexec: Fix bug with call depth tracking (git-fixes). * x86/mce: Dynamically size space for machine check records (bsc#1222241). * x86/mce: Mark fatal MCE's page as poison to avoid panic in the kdump kernel (git-fixes). * x86/nmi: Drop unused declaration of proc_nmi_enabled() (git-fixes). * x86/resctrl: Read supported bandwidth sources from CPUID (git-fixes). * x86/resctrl: Remove redundant variable in mbm_config_write_domain() (git- fixes). * x86/sev: Fix position dependent variable references in startup code (git- fixes). * x86/shstk: Make return uprobe work with shadow stack (git-fixes). * x86/speculation, objtool: Use absolute relocations for annotations (git- fixes). * x86/tdx: Preserve shared bit on mprotect() (git-fixes). * x86/tsc: Trust initial offset in architectural TSC-adjust MSRs (bsc#1222015 bsc#1226962). * x86/uaccess: Fix missed zeroing of ia32 u64 get_user() range checking (git- fixes). * x86: Stop using weak symbols for __iowrite32_copy() (bsc#1226502) * xen/x86: add extra pages to unpopulated-alloc if available (git-fixes). * xfs: Add cond_resched to block unmap range and reflink remap path (bsc#1228211). * xfs: use roundup_pow_of_two instead of ffs during xlog_find_tail (git- fixes). * xhci: Apply broken streams quirk to Etron EJ188 xHCI host (stable-fixes). * xhci: Apply reset resume quirk to Etron EJ188 xHCI host (stable-fixes). * xhci: Handle TD clearing for multiple streams case (git-fixes). * xhci: Set correct transferred length for cancelled bulk transfers (stable- fixes). * xhci: always resume roothubs if xHC was reset during resume (stable-fixes). ## Special Instructions and Notes: * Please reboot the system after installing this update. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch SUSE-2024-2896=1 openSUSE-SLE-15.6-2024-2896=1 * Public Cloud Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Public-Cloud-15-SP6-2024-2896=1 ## Package List: * openSUSE Leap 15.6 (aarch64 x86_64) * kernel-syms-azure-6.4.0-150600.8.8.1 * kselftests-kmp-azure-debuginfo-6.4.0-150600.8.8.2 * kselftests-kmp-azure-6.4.0-150600.8.8.2 * gfs2-kmp-azure-6.4.0-150600.8.8.2 * kernel-azure-debuginfo-6.4.0-150600.8.8.2 * kernel-azure-optional-debuginfo-6.4.0-150600.8.8.2 * kernel-azure-debugsource-6.4.0-150600.8.8.2 * ocfs2-kmp-azure-debuginfo-6.4.0-150600.8.8.2 * cluster-md-kmp-azure-debuginfo-6.4.0-150600.8.8.2 * reiserfs-kmp-azure-6.4.0-150600.8.8.2 * ocfs2-kmp-azure-6.4.0-150600.8.8.2 * kernel-azure-extra-debuginfo-6.4.0-150600.8.8.2 * kernel-azure-extra-6.4.0-150600.8.8.2 * reiserfs-kmp-azure-debuginfo-6.4.0-150600.8.8.2 * kernel-azure-optional-6.4.0-150600.8.8.2 * gfs2-kmp-azure-debuginfo-6.4.0-150600.8.8.2 * kernel-azure-devel-6.4.0-150600.8.8.2 * cluster-md-kmp-azure-6.4.0-150600.8.8.2 * kernel-azure-livepatch-devel-6.4.0-150600.8.8.2 * dlm-kmp-azure-6.4.0-150600.8.8.2 * kernel-azure-devel-debuginfo-6.4.0-150600.8.8.2 * dlm-kmp-azure-debuginfo-6.4.0-150600.8.8.2 * openSUSE Leap 15.6 (aarch64 nosrc x86_64) * kernel-azure-6.4.0-150600.8.8.2 * openSUSE Leap 15.6 (x86_64) * kernel-azure-vdso-6.4.0-150600.8.8.2 * kernel-azure-vdso-debuginfo-6.4.0-150600.8.8.2 * openSUSE Leap 15.6 (noarch) * kernel-devel-azure-6.4.0-150600.8.8.2 * kernel-source-azure-6.4.0-150600.8.8.2 * Public Cloud Module 15-SP6 (aarch64 nosrc x86_64) * kernel-azure-6.4.0-150600.8.8.2 * Public Cloud Module 15-SP6 (aarch64 x86_64) * kernel-syms-azure-6.4.0-150600.8.8.1 * kernel-azure-debuginfo-6.4.0-150600.8.8.2 * kernel-azure-devel-6.4.0-150600.8.8.2 * kernel-azure-debugsource-6.4.0-150600.8.8.2 * kernel-azure-devel-debuginfo-6.4.0-150600.8.8.2 * Public Cloud Module 15-SP6 (noarch) * kernel-devel-azure-6.4.0-150600.8.8.2 * kernel-source-azure-6.4.0-150600.8.8.2 ## References: * https://www.suse.com/security/cve/CVE-2021-47432.html * https://www.suse.com/security/cve/CVE-2022-48772.html * https://www.suse.com/security/cve/CVE-2023-38417.html * https://www.suse.com/security/cve/CVE-2023-47210.html * https://www.suse.com/security/cve/CVE-2023-51780.html * https://www.suse.com/security/cve/CVE-2023-52435.html * https://www.suse.com/security/cve/CVE-2023-52472.html * https://www.suse.com/security/cve/CVE-2023-52622.html * https://www.suse.com/security/cve/CVE-2023-52656.html * https://www.suse.com/security/cve/CVE-2023-52672.html * https://www.suse.com/security/cve/CVE-2023-52699.html * https://www.suse.com/security/cve/CVE-2023-52735.html * https://www.suse.com/security/cve/CVE-2023-52749.html * https://www.suse.com/security/cve/CVE-2023-52750.html * https://www.suse.com/security/cve/CVE-2023-52751.html * https://www.suse.com/security/cve/CVE-2023-52753.html * https://www.suse.com/security/cve/CVE-2023-52754.html * https://www.suse.com/security/cve/CVE-2023-52757.html * https://www.suse.com/security/cve/CVE-2023-52759.html * https://www.suse.com/security/cve/CVE-2023-52762.html * https://www.suse.com/security/cve/CVE-2023-52763.html * https://www.suse.com/security/cve/CVE-2023-52764.html * https://www.suse.com/security/cve/CVE-2023-52765.html * https://www.suse.com/security/cve/CVE-2023-52766.html * https://www.suse.com/security/cve/CVE-2023-52767.html * https://www.suse.com/security/cve/CVE-2023-52768.html * https://www.suse.com/security/cve/CVE-2023-52769.html * https://www.suse.com/security/cve/CVE-2023-52773.html * https://www.suse.com/security/cve/CVE-2023-52774.html * https://www.suse.com/security/cve/CVE-2023-52775.html * https://www.suse.com/security/cve/CVE-2023-52776.html * https://www.suse.com/security/cve/CVE-2023-52777.html * https://www.suse.com/security/cve/CVE-2023-52780.html * https://www.suse.com/security/cve/CVE-2023-52781.html * https://www.suse.com/security/cve/CVE-2023-52782.html * https://www.suse.com/security/cve/CVE-2023-52783.html * https://www.suse.com/security/cve/CVE-2023-52784.html * https://www.suse.com/security/cve/CVE-2023-52786.html * https://www.suse.com/security/cve/CVE-2023-52787.html * https://www.suse.com/security/cve/CVE-2023-52788.html * https://www.suse.com/security/cve/CVE-2023-52789.html * https://www.suse.com/security/cve/CVE-2023-52791.html * https://www.suse.com/security/cve/CVE-2023-52792.html * https://www.suse.com/security/cve/CVE-2023-52794.html * https://www.suse.com/security/cve/CVE-2023-52795.html * https://www.suse.com/security/cve/CVE-2023-52796.html * https://www.suse.com/security/cve/CVE-2023-52798.html * https://www.suse.com/security/cve/CVE-2023-52799.html * https://www.suse.com/security/cve/CVE-2023-52800.html * https://www.suse.com/security/cve/CVE-2023-52801.html * https://www.suse.com/security/cve/CVE-2023-52803.html * https://www.suse.com/security/cve/CVE-2023-52804.html * https://www.suse.com/security/cve/CVE-2023-52805.html * https://www.suse.com/security/cve/CVE-2023-52806.html * https://www.suse.com/security/cve/CVE-2023-52807.html * https://www.suse.com/security/cve/CVE-2023-52808.html * https://www.suse.com/security/cve/CVE-2023-52809.html * https://www.suse.com/security/cve/CVE-2023-52810.html * https://www.suse.com/security/cve/CVE-2023-52811.html * https://www.suse.com/security/cve/CVE-2023-52812.html * https://www.suse.com/security/cve/CVE-2023-52813.html * https://www.suse.com/security/cve/CVE-2023-52814.html * https://www.suse.com/security/cve/CVE-2023-52815.html * https://www.suse.com/security/cve/CVE-2023-52816.html * https://www.suse.com/security/cve/CVE-2023-52817.html * https://www.suse.com/security/cve/CVE-2023-52818.html * https://www.suse.com/security/cve/CVE-2023-52819.html * https://www.suse.com/security/cve/CVE-2023-52821.html * https://www.suse.com/security/cve/CVE-2023-52825.html * https://www.suse.com/security/cve/CVE-2023-52826.html * https://www.suse.com/security/cve/CVE-2023-52827.html * https://www.suse.com/security/cve/CVE-2023-52829.html * https://www.suse.com/security/cve/CVE-2023-52832.html * https://www.suse.com/security/cve/CVE-2023-52833.html * https://www.suse.com/security/cve/CVE-2023-52834.html * https://www.suse.com/security/cve/CVE-2023-52835.html * https://www.suse.com/security/cve/CVE-2023-52836.html * https://www.suse.com/security/cve/CVE-2023-52837.html * https://www.suse.com/security/cve/CVE-2023-52838.html * https://www.suse.com/security/cve/CVE-2023-52840.html * https://www.suse.com/security/cve/CVE-2023-52841.html * https://www.suse.com/security/cve/CVE-2023-52842.html * https://www.suse.com/security/cve/CVE-2023-52843.html * https://www.suse.com/security/cve/CVE-2023-52844.html * https://www.suse.com/security/cve/CVE-2023-52845.html * https://www.suse.com/security/cve/CVE-2023-52846.html * https://www.suse.com/security/cve/CVE-2023-52847.html * https://www.suse.com/security/cve/CVE-2023-52849.html * https://www.suse.com/security/cve/CVE-2023-52850.html * https://www.suse.com/security/cve/CVE-2023-52851.html * https://www.suse.com/security/cve/CVE-2023-52853.html * https://www.suse.com/security/cve/CVE-2023-52854.html * https://www.suse.com/security/cve/CVE-2023-52855.html * https://www.suse.com/security/cve/CVE-2023-52856.html * https://www.suse.com/security/cve/CVE-2023-52857.html * https://www.suse.com/security/cve/CVE-2023-52858.html * https://www.suse.com/security/cve/CVE-2023-52861.html * https://www.suse.com/security/cve/CVE-2023-52862.html * https://www.suse.com/security/cve/CVE-2023-52863.html * https://www.suse.com/security/cve/CVE-2023-52864.html * https://www.suse.com/security/cve/CVE-2023-52865.html * https://www.suse.com/security/cve/CVE-2023-52866.html * https://www.suse.com/security/cve/CVE-2023-52867.html * https://www.suse.com/security/cve/CVE-2023-52868.html * https://www.suse.com/security/cve/CVE-2023-52869.html * https://www.suse.com/security/cve/CVE-2023-52870.html * https://www.suse.com/security/cve/CVE-2023-52871.html * https://www.suse.com/security/cve/CVE-2023-52872.html * https://www.suse.com/security/cve/CVE-2023-52873.html * https://www.suse.com/security/cve/CVE-2023-52874.html * https://www.suse.com/security/cve/CVE-2023-52875.html * https://www.suse.com/security/cve/CVE-2023-52876.html * https://www.suse.com/security/cve/CVE-2023-52877.html * https://www.suse.com/security/cve/CVE-2023-52878.html * https://www.suse.com/security/cve/CVE-2023-52879.html * https://www.suse.com/security/cve/CVE-2023-52880.html * https://www.suse.com/security/cve/CVE-2023-52881.html * https://www.suse.com/security/cve/CVE-2023-52883.html * https://www.suse.com/security/cve/CVE-2023-52884.html * https://www.suse.com/security/cve/CVE-2024-25741.html * https://www.suse.com/security/cve/CVE-2024-26615.html * https://www.suse.com/security/cve/CVE-2024-26623.html * https://www.suse.com/security/cve/CVE-2024-26625.html * https://www.suse.com/security/cve/CVE-2024-26633.html * https://www.suse.com/security/cve/CVE-2024-26635.html * https://www.suse.com/security/cve/CVE-2024-26636.html * https://www.suse.com/security/cve/CVE-2024-26641.html * https://www.suse.com/security/cve/CVE-2024-26663.html * https://www.suse.com/security/cve/CVE-2024-26665.html * https://www.suse.com/security/cve/CVE-2024-26676.html * https://www.suse.com/security/cve/CVE-2024-26691.html * https://www.suse.com/security/cve/CVE-2024-26734.html * https://www.suse.com/security/cve/CVE-2024-26750.html * https://www.suse.com/security/cve/CVE-2024-26758.html * https://www.suse.com/security/cve/CVE-2024-26767.html * https://www.suse.com/security/cve/CVE-2024-26780.html * https://www.suse.com/security/cve/CVE-2024-26785.html * https://www.suse.com/security/cve/CVE-2024-26813.html * https://www.suse.com/security/cve/CVE-2024-26814.html * https://www.suse.com/security/cve/CVE-2024-26826.html * https://www.suse.com/security/cve/CVE-2024-26845.html * https://www.suse.com/security/cve/CVE-2024-26863.html * https://www.suse.com/security/cve/CVE-2024-26889.html * https://www.suse.com/security/cve/CVE-2024-26920.html * https://www.suse.com/security/cve/CVE-2024-26944.html * https://www.suse.com/security/cve/CVE-2024-27012.html * https://www.suse.com/security/cve/CVE-2024-27015.html * https://www.suse.com/security/cve/CVE-2024-27016.html * https://www.suse.com/security/cve/CVE-2024-27019.html * https://www.suse.com/security/cve/CVE-2024-27020.html * https://www.suse.com/security/cve/CVE-2024-27025.html * https://www.suse.com/security/cve/CVE-2024-27064.html * https://www.suse.com/security/cve/CVE-2024-27065.html * https://www.suse.com/security/cve/CVE-2024-27402.html * https://www.suse.com/security/cve/CVE-2024-27404.html * https://www.suse.com/security/cve/CVE-2024-27414.html * https://www.suse.com/security/cve/CVE-2024-27419.html * https://www.suse.com/security/cve/CVE-2024-33619.html * https://www.suse.com/security/cve/CVE-2024-34777.html * https://www.suse.com/security/cve/CVE-2024-35247.html * https://www.suse.com/security/cve/CVE-2024-35805.html * https://www.suse.com/security/cve/CVE-2024-35807.html * https://www.suse.com/security/cve/CVE-2024-35827.html * https://www.suse.com/security/cve/CVE-2024-35831.html * https://www.suse.com/security/cve/CVE-2024-35843.html * https://www.suse.com/security/cve/CVE-2024-35848.html * https://www.suse.com/security/cve/CVE-2024-35853.html * https://www.suse.com/security/cve/CVE-2024-35854.html * https://www.suse.com/security/cve/CVE-2024-35857.html * https://www.suse.com/security/cve/CVE-2024-35880.html * https://www.suse.com/security/cve/CVE-2024-35884.html * https://www.suse.com/security/cve/CVE-2024-35886.html * https://www.suse.com/security/cve/CVE-2024-35890.html * https://www.suse.com/security/cve/CVE-2024-35892.html * https://www.suse.com/security/cve/CVE-2024-35893.html * https://www.suse.com/security/cve/CVE-2024-35896.html * https://www.suse.com/security/cve/CVE-2024-35898.html * https://www.suse.com/security/cve/CVE-2024-35899.html * https://www.suse.com/security/cve/CVE-2024-35900.html * https://www.suse.com/security/cve/CVE-2024-35908.html * https://www.suse.com/security/cve/CVE-2024-35925.html * https://www.suse.com/security/cve/CVE-2024-35926.html * https://www.suse.com/security/cve/CVE-2024-35934.html * https://www.suse.com/security/cve/CVE-2024-35942.html * https://www.suse.com/security/cve/CVE-2024-35957.html * https://www.suse.com/security/cve/CVE-2024-35962.html * https://www.suse.com/security/cve/CVE-2024-35970.html * https://www.suse.com/security/cve/CVE-2024-35976.html * https://www.suse.com/security/cve/CVE-2024-35979.html * https://www.suse.com/security/cve/CVE-2024-35998.html * https://www.suse.com/security/cve/CVE-2024-36003.html * https://www.suse.com/security/cve/CVE-2024-36004.html * https://www.suse.com/security/cve/CVE-2024-36005.html * https://www.suse.com/security/cve/CVE-2024-36008.html * https://www.suse.com/security/cve/CVE-2024-36010.html * https://www.suse.com/security/cve/CVE-2024-36017.html * https://www.suse.com/security/cve/CVE-2024-36024.html * https://www.suse.com/security/cve/CVE-2024-36281.html * https://www.suse.com/security/cve/CVE-2024-36477.html * https://www.suse.com/security/cve/CVE-2024-36478.html * https://www.suse.com/security/cve/CVE-2024-36479.html * https://www.suse.com/security/cve/CVE-2024-36882.html * https://www.suse.com/security/cve/CVE-2024-36887.html * https://www.suse.com/security/cve/CVE-2024-36889.html * https://www.suse.com/security/cve/CVE-2024-36899.html * https://www.suse.com/security/cve/CVE-2024-36900.html * https://www.suse.com/security/cve/CVE-2024-36901.html * https://www.suse.com/security/cve/CVE-2024-36902.html * https://www.suse.com/security/cve/CVE-2024-36903.html * https://www.suse.com/security/cve/CVE-2024-36904.html * https://www.suse.com/security/cve/CVE-2024-36909.html * https://www.suse.com/security/cve/CVE-2024-36910.html * https://www.suse.com/security/cve/CVE-2024-36911.html * https://www.suse.com/security/cve/CVE-2024-36912.html * https://www.suse.com/security/cve/CVE-2024-36913.html * https://www.suse.com/security/cve/CVE-2024-36914.html * https://www.suse.com/security/cve/CVE-2024-36915.html * https://www.suse.com/security/cve/CVE-2024-36916.html * https://www.suse.com/security/cve/CVE-2024-36917.html * https://www.suse.com/security/cve/CVE-2024-36919.html * https://www.suse.com/security/cve/CVE-2024-36922.html * https://www.suse.com/security/cve/CVE-2024-36923.html * https://www.suse.com/security/cve/CVE-2024-36924.html * https://www.suse.com/security/cve/CVE-2024-36926.html * https://www.suse.com/security/cve/CVE-2024-36930.html * https://www.suse.com/security/cve/CVE-2024-36934.html * https://www.suse.com/security/cve/CVE-2024-36935.html * https://www.suse.com/security/cve/CVE-2024-36937.html * https://www.suse.com/security/cve/CVE-2024-36938.html * https://www.suse.com/security/cve/CVE-2024-36940.html * https://www.suse.com/security/cve/CVE-2024-36941.html * https://www.suse.com/security/cve/CVE-2024-36942.html * https://www.suse.com/security/cve/CVE-2024-36944.html * https://www.suse.com/security/cve/CVE-2024-36945.html * https://www.suse.com/security/cve/CVE-2024-36946.html * https://www.suse.com/security/cve/CVE-2024-36947.html * https://www.suse.com/security/cve/CVE-2024-36949.html * https://www.suse.com/security/cve/CVE-2024-36950.html * https://www.suse.com/security/cve/CVE-2024-36951.html * https://www.suse.com/security/cve/CVE-2024-36952.html * https://www.suse.com/security/cve/CVE-2024-36955.html * https://www.suse.com/security/cve/CVE-2024-36957.html * https://www.suse.com/security/cve/CVE-2024-36959.html * https://www.suse.com/security/cve/CVE-2024-36960.html * https://www.suse.com/security/cve/CVE-2024-36962.html * https://www.suse.com/security/cve/CVE-2024-36964.html * https://www.suse.com/security/cve/CVE-2024-36965.html * https://www.suse.com/security/cve/CVE-2024-36967.html * https://www.suse.com/security/cve/CVE-2024-36969.html * https://www.suse.com/security/cve/CVE-2024-36971.html * https://www.suse.com/security/cve/CVE-2024-36972.html * https://www.suse.com/security/cve/CVE-2024-36973.html * https://www.suse.com/security/cve/CVE-2024-36974.html * https://www.suse.com/security/cve/CVE-2024-36975.html * https://www.suse.com/security/cve/CVE-2024-36977.html * https://www.suse.com/security/cve/CVE-2024-36978.html * https://www.suse.com/security/cve/CVE-2024-37021.html * https://www.suse.com/security/cve/CVE-2024-37078.html * https://www.suse.com/security/cve/CVE-2024-37353.html * https://www.suse.com/security/cve/CVE-2024-37354.html * https://www.suse.com/security/cve/CVE-2024-38381.html * https://www.suse.com/security/cve/CVE-2024-38384.html * https://www.suse.com/security/cve/CVE-2024-38385.html * https://www.suse.com/security/cve/CVE-2024-38388.html * https://www.suse.com/security/cve/CVE-2024-38390.html * https://www.suse.com/security/cve/CVE-2024-38391.html * https://www.suse.com/security/cve/CVE-2024-38539.html * https://www.suse.com/security/cve/CVE-2024-38540.html * https://www.suse.com/security/cve/CVE-2024-38541.html * https://www.suse.com/security/cve/CVE-2024-38543.html * https://www.suse.com/security/cve/CVE-2024-38544.html * https://www.suse.com/security/cve/CVE-2024-38545.html * https://www.suse.com/security/cve/CVE-2024-38546.html * https://www.suse.com/security/cve/CVE-2024-38547.html * https://www.suse.com/security/cve/CVE-2024-38548.html * https://www.suse.com/security/cve/CVE-2024-38549.html * https://www.suse.com/security/cve/CVE-2024-38550.html * https://www.suse.com/security/cve/CVE-2024-38551.html * https://www.suse.com/security/cve/CVE-2024-38552.html * https://www.suse.com/security/cve/CVE-2024-38553.html * https://www.suse.com/security/cve/CVE-2024-38554.html * https://www.suse.com/security/cve/CVE-2024-38555.html * https://www.suse.com/security/cve/CVE-2024-38556.html * https://www.suse.com/security/cve/CVE-2024-38557.html * https://www.suse.com/security/cve/CVE-2024-38558.html * https://www.suse.com/security/cve/CVE-2024-38559.html * https://www.suse.com/security/cve/CVE-2024-38560.html * https://www.suse.com/security/cve/CVE-2024-38562.html * https://www.suse.com/security/cve/CVE-2024-38564.html * https://www.suse.com/security/cve/CVE-2024-38565.html * https://www.suse.com/security/cve/CVE-2024-38566.html * https://www.suse.com/security/cve/CVE-2024-38567.html * https://www.suse.com/security/cve/CVE-2024-38568.html * https://www.suse.com/security/cve/CVE-2024-38569.html * https://www.suse.com/security/cve/CVE-2024-38570.html * https://www.suse.com/security/cve/CVE-2024-38571.html * https://www.suse.com/security/cve/CVE-2024-38572.html * https://www.suse.com/security/cve/CVE-2024-38573.html * https://www.suse.com/security/cve/CVE-2024-38575.html * https://www.suse.com/security/cve/CVE-2024-38578.html * https://www.suse.com/security/cve/CVE-2024-38579.html * https://www.suse.com/security/cve/CVE-2024-38580.html * https://www.suse.com/security/cve/CVE-2024-38581.html * https://www.suse.com/security/cve/CVE-2024-38582.html * https://www.suse.com/security/cve/CVE-2024-38583.html * https://www.suse.com/security/cve/CVE-2024-38586.html * https://www.suse.com/security/cve/CVE-2024-38587.html * https://www.suse.com/security/cve/CVE-2024-38588.html * https://www.suse.com/security/cve/CVE-2024-38590.html * https://www.suse.com/security/cve/CVE-2024-38591.html * https://www.suse.com/security/cve/CVE-2024-38592.html * https://www.suse.com/security/cve/CVE-2024-38594.html * https://www.suse.com/security/cve/CVE-2024-38595.html * https://www.suse.com/security/cve/CVE-2024-38597.html * https://www.suse.com/security/cve/CVE-2024-38598.html * https://www.suse.com/security/cve/CVE-2024-38599.html * https://www.suse.com/security/cve/CVE-2024-38600.html * https://www.suse.com/security/cve/CVE-2024-38601.html * https://www.suse.com/security/cve/CVE-2024-38602.html * https://www.suse.com/security/cve/CVE-2024-38603.html * https://www.suse.com/security/cve/CVE-2024-38604.html * https://www.suse.com/security/cve/CVE-2024-38605.html * https://www.suse.com/security/cve/CVE-2024-38608.html * https://www.suse.com/security/cve/CVE-2024-38610.html * https://www.suse.com/security/cve/CVE-2024-38611.html * https://www.suse.com/security/cve/CVE-2024-38615.html * https://www.suse.com/security/cve/CVE-2024-38616.html * https://www.suse.com/security/cve/CVE-2024-38617.html * https://www.suse.com/security/cve/CVE-2024-38618.html * https://www.suse.com/security/cve/CVE-2024-38619.html * https://www.suse.com/security/cve/CVE-2024-38621.html * https://www.suse.com/security/cve/CVE-2024-38622.html * https://www.suse.com/security/cve/CVE-2024-38627.html * https://www.suse.com/security/cve/CVE-2024-38628.html * https://www.suse.com/security/cve/CVE-2024-38629.html * https://www.suse.com/security/cve/CVE-2024-38630.html * https://www.suse.com/security/cve/CVE-2024-38633.html * https://www.suse.com/security/cve/CVE-2024-38634.html * https://www.suse.com/security/cve/CVE-2024-38635.html * https://www.suse.com/security/cve/CVE-2024-38636.html * https://www.suse.com/security/cve/CVE-2024-38659.html * https://www.suse.com/security/cve/CVE-2024-38661.html * https://www.suse.com/security/cve/CVE-2024-38663.html * https://www.suse.com/security/cve/CVE-2024-38664.html * https://www.suse.com/security/cve/CVE-2024-38780.html * https://www.suse.com/security/cve/CVE-2024-39276.html * https://www.suse.com/security/cve/CVE-2024-39277.html * https://www.suse.com/security/cve/CVE-2024-39291.html * https://www.suse.com/security/cve/CVE-2024-39296.html * https://www.suse.com/security/cve/CVE-2024-39301.html * https://www.suse.com/security/cve/CVE-2024-39362.html * https://www.suse.com/security/cve/CVE-2024-39371.html * https://www.suse.com/security/cve/CVE-2024-39463.html * https://www.suse.com/security/cve/CVE-2024-39466.html * https://www.suse.com/security/cve/CVE-2024-39468.html * https://www.suse.com/security/cve/CVE-2024-39469.html * https://www.suse.com/security/cve/CVE-2024-39471.html * https://www.suse.com/security/cve/CVE-2024-39472.html * https://www.suse.com/security/cve/CVE-2024-39473.html * https://www.suse.com/security/cve/CVE-2024-39474.html * https://www.suse.com/security/cve/CVE-2024-39475.html * https://www.suse.com/security/cve/CVE-2024-39479.html * https://www.suse.com/security/cve/CVE-2024-39481.html * https://www.suse.com/security/cve/CVE-2024-39482.html * https://www.suse.com/security/cve/CVE-2024-39487.html * https://www.suse.com/security/cve/CVE-2024-39490.html * https://www.suse.com/security/cve/CVE-2024-39494.html * https://www.suse.com/security/cve/CVE-2024-39496.html * https://www.suse.com/security/cve/CVE-2024-39498.html * https://www.suse.com/security/cve/CVE-2024-39502.html * https://www.suse.com/security/cve/CVE-2024-39504.html * https://www.suse.com/security/cve/CVE-2024-39507.html * https://www.suse.com/security/cve/CVE-2024-40901.html * https://www.suse.com/security/cve/CVE-2024-40906.html * https://www.suse.com/security/cve/CVE-2024-40908.html * https://www.suse.com/security/cve/CVE-2024-40919.html * https://www.suse.com/security/cve/CVE-2024-40923.html * https://www.suse.com/security/cve/CVE-2024-40925.html * https://www.suse.com/security/cve/CVE-2024-40928.html * https://www.suse.com/security/cve/CVE-2024-40931.html * https://www.suse.com/security/cve/CVE-2024-40935.html * https://www.suse.com/security/cve/CVE-2024-40937.html * https://www.suse.com/security/cve/CVE-2024-40940.html * https://www.suse.com/security/cve/CVE-2024-40947.html * https://www.suse.com/security/cve/CVE-2024-40948.html * https://www.suse.com/security/cve/CVE-2024-40953.html * https://www.suse.com/security/cve/CVE-2024-40960.html * https://www.suse.com/security/cve/CVE-2024-40961.html * https://www.suse.com/security/cve/CVE-2024-40966.html * https://www.suse.com/security/cve/CVE-2024-40970.html * https://www.suse.com/security/cve/CVE-2024-40972.html * https://www.suse.com/security/cve/CVE-2024-40975.html * https://www.suse.com/security/cve/CVE-2024-40979.html * https://www.suse.com/security/cve/CVE-2024-40998.html * https://www.suse.com/security/cve/CVE-2024-40999.html * https://www.suse.com/security/cve/CVE-2024-41006.html * https://www.suse.com/security/cve/CVE-2024-41011.html * https://www.suse.com/security/cve/CVE-2024-41013.html * https://www.suse.com/security/cve/CVE-2024-41014.html * https://www.suse.com/security/cve/CVE-2024-41017.html * https://www.suse.com/security/cve/CVE-2024-41090.html * https://www.suse.com/security/cve/CVE-2024-41091.html * https://bugzilla.suse.com/show_bug.cgi?id=1186716 * https://bugzilla.suse.com/show_bug.cgi?id=1194869 * https://bugzilla.suse.com/show_bug.cgi?id=1195775 * https://bugzilla.suse.com/show_bug.cgi?id=1204562 * https://bugzilla.suse.com/show_bug.cgi?id=1209834 * https://bugzilla.suse.com/show_bug.cgi?id=1215199 * https://bugzilla.suse.com/show_bug.cgi?id=1215587 * https://bugzilla.suse.com/show_bug.cgi?id=1217481 * https://bugzilla.suse.com/show_bug.cgi?id=1217912 * https://bugzilla.suse.com/show_bug.cgi?id=1218442 * https://bugzilla.suse.com/show_bug.cgi?id=1218730 * https://bugzilla.suse.com/show_bug.cgi?id=1218820 * https://bugzilla.suse.com/show_bug.cgi?id=1219224 * https://bugzilla.suse.com/show_bug.cgi?id=1219478 * https://bugzilla.suse.com/show_bug.cgi?id=1219596 * https://bugzilla.suse.com/show_bug.cgi?id=1219633 * https://bugzilla.suse.com/show_bug.cgi?id=1219832 * https://bugzilla.suse.com/show_bug.cgi?id=1219847 * https://bugzilla.suse.com/show_bug.cgi?id=1219953 * https://bugzilla.suse.com/show_bug.cgi?id=1220138 * https://bugzilla.suse.com/show_bug.cgi?id=1220427 * https://bugzilla.suse.com/show_bug.cgi?id=1220430 * https://bugzilla.suse.com/show_bug.cgi?id=1220942 * https://bugzilla.suse.com/show_bug.cgi?id=1221057 * https://bugzilla.suse.com/show_bug.cgi?id=1221086 * https://bugzilla.suse.com/show_bug.cgi?id=1221647 * https://bugzilla.suse.com/show_bug.cgi?id=1221654 * https://bugzilla.suse.com/show_bug.cgi?id=1221656 * https://bugzilla.suse.com/show_bug.cgi?id=1221659 * https://bugzilla.suse.com/show_bug.cgi?id=1221777 * https://bugzilla.suse.com/show_bug.cgi?id=1221958 * https://bugzilla.suse.com/show_bug.cgi?id=1222011 * https://bugzilla.suse.com/show_bug.cgi?id=1222015 * https://bugzilla.suse.com/show_bug.cgi?id=1222080 * https://bugzilla.suse.com/show_bug.cgi?id=1222241 * https://bugzilla.suse.com/show_bug.cgi?id=1222326 * https://bugzilla.suse.com/show_bug.cgi?id=1222328 * https://bugzilla.suse.com/show_bug.cgi?id=1222380 * https://bugzilla.suse.com/show_bug.cgi?id=1222438 * https://bugzilla.suse.com/show_bug.cgi?id=1222463 * https://bugzilla.suse.com/show_bug.cgi?id=1222588 * https://bugzilla.suse.com/show_bug.cgi?id=1222617 * https://bugzilla.suse.com/show_bug.cgi?id=1222619 * https://bugzilla.suse.com/show_bug.cgi?id=1222768 * https://bugzilla.suse.com/show_bug.cgi?id=1222775 * https://bugzilla.suse.com/show_bug.cgi?id=1222779 * https://bugzilla.suse.com/show_bug.cgi?id=1222809 * https://bugzilla.suse.com/show_bug.cgi?id=1222810 * https://bugzilla.suse.com/show_bug.cgi?id=1222893 * https://bugzilla.suse.com/show_bug.cgi?id=1223010 * https://bugzilla.suse.com/show_bug.cgi?id=1223018 * https://bugzilla.suse.com/show_bug.cgi?id=1223021 * https://bugzilla.suse.com/show_bug.cgi?id=1223265 * https://bugzilla.suse.com/show_bug.cgi?id=1223570 * https://bugzilla.suse.com/show_bug.cgi?id=1223731 * https://bugzilla.suse.com/show_bug.cgi?id=1223740 * https://bugzilla.suse.com/show_bug.cgi?id=1223778 * https://bugzilla.suse.com/show_bug.cgi?id=1223804 * https://bugzilla.suse.com/show_bug.cgi?id=1223806 * https://bugzilla.suse.com/show_bug.cgi?id=1223807 * https://bugzilla.suse.com/show_bug.cgi?id=1223813 * https://bugzilla.suse.com/show_bug.cgi?id=1223815 * https://bugzilla.suse.com/show_bug.cgi?id=1223836 * https://bugzilla.suse.com/show_bug.cgi?id=1223863 * https://bugzilla.suse.com/show_bug.cgi?id=1224049 * https://bugzilla.suse.com/show_bug.cgi?id=1224187 * https://bugzilla.suse.com/show_bug.cgi?id=1224414 * https://bugzilla.suse.com/show_bug.cgi?id=1224422 * https://bugzilla.suse.com/show_bug.cgi?id=1224439 * https://bugzilla.suse.com/show_bug.cgi?id=1224490 * https://bugzilla.suse.com/show_bug.cgi?id=1224497 * https://bugzilla.suse.com/show_bug.cgi?id=1224498 * https://bugzilla.suse.com/show_bug.cgi?id=1224499 * https://bugzilla.suse.com/show_bug.cgi?id=1224512 * https://bugzilla.suse.com/show_bug.cgi?id=1224515 * https://bugzilla.suse.com/show_bug.cgi?id=1224516 * https://bugzilla.suse.com/show_bug.cgi?id=1224520 * https://bugzilla.suse.com/show_bug.cgi?id=1224523 * https://bugzilla.suse.com/show_bug.cgi?id=1224539 * https://bugzilla.suse.com/show_bug.cgi?id=1224540 * https://bugzilla.suse.com/show_bug.cgi?id=1224544 * https://bugzilla.suse.com/show_bug.cgi?id=1224545 * https://bugzilla.suse.com/show_bug.cgi?id=1224549 * https://bugzilla.suse.com/show_bug.cgi?id=1224572 * https://bugzilla.suse.com/show_bug.cgi?id=1224575 * https://bugzilla.suse.com/show_bug.cgi?id=1224583 * https://bugzilla.suse.com/show_bug.cgi?id=1224584 * https://bugzilla.suse.com/show_bug.cgi?id=1224589 * https://bugzilla.suse.com/show_bug.cgi?id=1224604 * https://bugzilla.suse.com/show_bug.cgi?id=1224606 * https://bugzilla.suse.com/show_bug.cgi?id=1224612 * https://bugzilla.suse.com/show_bug.cgi?id=1224614 * https://bugzilla.suse.com/show_bug.cgi?id=1224619 * https://bugzilla.suse.com/show_bug.cgi?id=1224636 * https://bugzilla.suse.com/show_bug.cgi?id=1224641 * https://bugzilla.suse.com/show_bug.cgi?id=1224655 * https://bugzilla.suse.com/show_bug.cgi?id=1224659 * https://bugzilla.suse.com/show_bug.cgi?id=1224661 * https://bugzilla.suse.com/show_bug.cgi?id=1224662 * https://bugzilla.suse.com/show_bug.cgi?id=1224670 * https://bugzilla.suse.com/show_bug.cgi?id=1224673 * https://bugzilla.suse.com/show_bug.cgi?id=1224698 * https://bugzilla.suse.com/show_bug.cgi?id=1224735 * https://bugzilla.suse.com/show_bug.cgi?id=1224743 * https://bugzilla.suse.com/show_bug.cgi?id=1224751 * https://bugzilla.suse.com/show_bug.cgi?id=1224759 * https://bugzilla.suse.com/show_bug.cgi?id=1224767 * https://bugzilla.suse.com/show_bug.cgi?id=1224928 * https://bugzilla.suse.com/show_bug.cgi?id=1224930 * https://bugzilla.suse.com/show_bug.cgi?id=1224932 * https://bugzilla.suse.com/show_bug.cgi?id=1224933 * https://bugzilla.suse.com/show_bug.cgi?id=1224935 * https://bugzilla.suse.com/show_bug.cgi?id=1224937 * https://bugzilla.suse.com/show_bug.cgi?id=1224939 * https://bugzilla.suse.com/show_bug.cgi?id=1224941 * https://bugzilla.suse.com/show_bug.cgi?id=1224944 * https://bugzilla.suse.com/show_bug.cgi?id=1224946 * https://bugzilla.suse.com/show_bug.cgi?id=1224947 * https://bugzilla.suse.com/show_bug.cgi?id=1224949 * https://bugzilla.suse.com/show_bug.cgi?id=1224951 * https://bugzilla.suse.com/show_bug.cgi?id=1224988 * https://bugzilla.suse.com/show_bug.cgi?id=1224992 * https://bugzilla.suse.com/show_bug.cgi?id=1224998 * https://bugzilla.suse.com/show_bug.cgi?id=1225000 * https://bugzilla.suse.com/show_bug.cgi?id=1225001 * https://bugzilla.suse.com/show_bug.cgi?id=1225004 * https://bugzilla.suse.com/show_bug.cgi?id=1225006 * https://bugzilla.suse.com/show_bug.cgi?id=1225008 * https://bugzilla.suse.com/show_bug.cgi?id=1225009 * https://bugzilla.suse.com/show_bug.cgi?id=1225014 * https://bugzilla.suse.com/show_bug.cgi?id=1225015 * https://bugzilla.suse.com/show_bug.cgi?id=1225022 * https://bugzilla.suse.com/show_bug.cgi?id=1225025 * https://bugzilla.suse.com/show_bug.cgi?id=1225028 * https://bugzilla.suse.com/show_bug.cgi?id=1225029 * https://bugzilla.suse.com/show_bug.cgi?id=1225031 * https://bugzilla.suse.com/show_bug.cgi?id=1225036 * https://bugzilla.suse.com/show_bug.cgi?id=1225041 * https://bugzilla.suse.com/show_bug.cgi?id=1225044 * https://bugzilla.suse.com/show_bug.cgi?id=1225049 * https://bugzilla.suse.com/show_bug.cgi?id=1225050 * https://bugzilla.suse.com/show_bug.cgi?id=1225076 * https://bugzilla.suse.com/show_bug.cgi?id=1225077 * https://bugzilla.suse.com/show_bug.cgi?id=1225078 * https://bugzilla.suse.com/show_bug.cgi?id=1225081 * https://bugzilla.suse.com/show_bug.cgi?id=1225085 * https://bugzilla.suse.com/show_bug.cgi?id=1225086 * https://bugzilla.suse.com/show_bug.cgi?id=1225088 * https://bugzilla.suse.com/show_bug.cgi?id=1225090 * https://bugzilla.suse.com/show_bug.cgi?id=1225092 * https://bugzilla.suse.com/show_bug.cgi?id=1225096 * https://bugzilla.suse.com/show_bug.cgi?id=1225097 * https://bugzilla.suse.com/show_bug.cgi?id=1225098 * https://bugzilla.suse.com/show_bug.cgi?id=1225101 * https://bugzilla.suse.com/show_bug.cgi?id=1225103 * https://bugzilla.suse.com/show_bug.cgi?id=1225104 * https://bugzilla.suse.com/show_bug.cgi?id=1225105 * https://bugzilla.suse.com/show_bug.cgi?id=1225106 * https://bugzilla.suse.com/show_bug.cgi?id=1225108 * https://bugzilla.suse.com/show_bug.cgi?id=1225120 * https://bugzilla.suse.com/show_bug.cgi?id=1225132 * https://bugzilla.suse.com/show_bug.cgi?id=1225172 * https://bugzilla.suse.com/show_bug.cgi?id=1225180 * https://bugzilla.suse.com/show_bug.cgi?id=1225272 * https://bugzilla.suse.com/show_bug.cgi?id=1225300 * https://bugzilla.suse.com/show_bug.cgi?id=1225391 * https://bugzilla.suse.com/show_bug.cgi?id=1225472 * https://bugzilla.suse.com/show_bug.cgi?id=1225475 * https://bugzilla.suse.com/show_bug.cgi?id=1225476 * https://bugzilla.suse.com/show_bug.cgi?id=1225477 * https://bugzilla.suse.com/show_bug.cgi?id=1225478 * https://bugzilla.suse.com/show_bug.cgi?id=1225485 * https://bugzilla.suse.com/show_bug.cgi?id=1225489 * https://bugzilla.suse.com/show_bug.cgi?id=1225490 * https://bugzilla.suse.com/show_bug.cgi?id=1225527 * https://bugzilla.suse.com/show_bug.cgi?id=1225529 * https://bugzilla.suse.com/show_bug.cgi?id=1225530 * https://bugzilla.suse.com/show_bug.cgi?id=1225532 * https://bugzilla.suse.com/show_bug.cgi?id=1225534 * https://bugzilla.suse.com/show_bug.cgi?id=1225548 * https://bugzilla.suse.com/show_bug.cgi?id=1225550 * https://bugzilla.suse.com/show_bug.cgi?id=1225553 * https://bugzilla.suse.com/show_bug.cgi?id=1225554 * https://bugzilla.suse.com/show_bug.cgi?id=1225555 * https://bugzilla.suse.com/show_bug.cgi?id=1225556 * https://bugzilla.suse.com/show_bug.cgi?id=1225557 * https://bugzilla.suse.com/show_bug.cgi?id=1225559 * https://bugzilla.suse.com/show_bug.cgi?id=1225560 * https://bugzilla.suse.com/show_bug.cgi?id=1225564 * https://bugzilla.suse.com/show_bug.cgi?id=1225565 * https://bugzilla.suse.com/show_bug.cgi?id=1225566 * https://bugzilla.suse.com/show_bug.cgi?id=1225568 * https://bugzilla.suse.com/show_bug.cgi?id=1225569 * https://bugzilla.suse.com/show_bug.cgi?id=1225570 * https://bugzilla.suse.com/show_bug.cgi?id=1225571 * https://bugzilla.suse.com/show_bug.cgi?id=1225572 * https://bugzilla.suse.com/show_bug.cgi?id=1225573 * https://bugzilla.suse.com/show_bug.cgi?id=1225577 * https://bugzilla.suse.com/show_bug.cgi?id=1225581 * https://bugzilla.suse.com/show_bug.cgi?id=1225583 * https://bugzilla.suse.com/show_bug.cgi?id=1225584 * https://bugzilla.suse.com/show_bug.cgi?id=1225585 * https://bugzilla.suse.com/show_bug.cgi?id=1225586 * https://bugzilla.suse.com/show_bug.cgi?id=1225587 * https://bugzilla.suse.com/show_bug.cgi?id=1225588 * https://bugzilla.suse.com/show_bug.cgi?id=1225589 * https://bugzilla.suse.com/show_bug.cgi?id=1225590 * https://bugzilla.suse.com/show_bug.cgi?id=1225591 * https://bugzilla.suse.com/show_bug.cgi?id=1225592 * https://bugzilla.suse.com/show_bug.cgi?id=1225594 * https://bugzilla.suse.com/show_bug.cgi?id=1225595 * https://bugzilla.suse.com/show_bug.cgi?id=1225599 * https://bugzilla.suse.com/show_bug.cgi?id=1225600 * https://bugzilla.suse.com/show_bug.cgi?id=1225601 * https://bugzilla.suse.com/show_bug.cgi?id=1225602 * https://bugzilla.suse.com/show_bug.cgi?id=1225605 * https://bugzilla.suse.com/show_bug.cgi?id=1225609 * https://bugzilla.suse.com/show_bug.cgi?id=1225611 * https://bugzilla.suse.com/show_bug.cgi?id=1225681 * https://bugzilla.suse.com/show_bug.cgi?id=1225702 * https://bugzilla.suse.com/show_bug.cgi?id=1225711 * https://bugzilla.suse.com/show_bug.cgi?id=1225717 * https://bugzilla.suse.com/show_bug.cgi?id=1225719 * https://bugzilla.suse.com/show_bug.cgi?id=1225723 * https://bugzilla.suse.com/show_bug.cgi?id=1225726 * https://bugzilla.suse.com/show_bug.cgi?id=1225731 * https://bugzilla.suse.com/show_bug.cgi?id=1225732 * https://bugzilla.suse.com/show_bug.cgi?id=1225737 * https://bugzilla.suse.com/show_bug.cgi?id=1225741 * https://bugzilla.suse.com/show_bug.cgi?id=1225744 * https://bugzilla.suse.com/show_bug.cgi?id=1225745 * https://bugzilla.suse.com/show_bug.cgi?id=1225746 * https://bugzilla.suse.com/show_bug.cgi?id=1225752 * https://bugzilla.suse.com/show_bug.cgi?id=1225753 * https://bugzilla.suse.com/show_bug.cgi?id=1225757 * https://bugzilla.suse.com/show_bug.cgi?id=1225758 * https://bugzilla.suse.com/show_bug.cgi?id=1225759 * https://bugzilla.suse.com/show_bug.cgi?id=1225760 * https://bugzilla.suse.com/show_bug.cgi?id=1225761 * https://bugzilla.suse.com/show_bug.cgi?id=1225762 * https://bugzilla.suse.com/show_bug.cgi?id=1225763 * https://bugzilla.suse.com/show_bug.cgi?id=1225767 * https://bugzilla.suse.com/show_bug.cgi?id=1225770 * https://bugzilla.suse.com/show_bug.cgi?id=1225805 * https://bugzilla.suse.com/show_bug.cgi?id=1225810 * https://bugzilla.suse.com/show_bug.cgi?id=1225815 * https://bugzilla.suse.com/show_bug.cgi?id=1225820 * https://bugzilla.suse.com/show_bug.cgi?id=1225823 * https://bugzilla.suse.com/show_bug.cgi?id=1225827 * https://bugzilla.suse.com/show_bug.cgi?id=1225829 * https://bugzilla.suse.com/show_bug.cgi?id=1225830 * https://bugzilla.suse.com/show_bug.cgi?id=1225834 * https://bugzilla.suse.com/show_bug.cgi?id=1225835 * https://bugzilla.suse.com/show_bug.cgi?id=1225839 * https://bugzilla.suse.com/show_bug.cgi?id=1225840 * https://bugzilla.suse.com/show_bug.cgi?id=1225843 * https://bugzilla.suse.com/show_bug.cgi?id=1225847 * https://bugzilla.suse.com/show_bug.cgi?id=1225851 * https://bugzilla.suse.com/show_bug.cgi?id=1225856 * https://bugzilla.suse.com/show_bug.cgi?id=1225866 * https://bugzilla.suse.com/show_bug.cgi?id=1225872 * https://bugzilla.suse.com/show_bug.cgi?id=1225894 * https://bugzilla.suse.com/show_bug.cgi?id=1225895 * https://bugzilla.suse.com/show_bug.cgi?id=1225896 * https://bugzilla.suse.com/show_bug.cgi?id=1225898 * https://bugzilla.suse.com/show_bug.cgi?id=1225903 * https://bugzilla.suse.com/show_bug.cgi?id=1226022 * https://bugzilla.suse.com/show_bug.cgi?id=1226131 * https://bugzilla.suse.com/show_bug.cgi?id=1226145 * https://bugzilla.suse.com/show_bug.cgi?id=1226149 * https://bugzilla.suse.com/show_bug.cgi?id=1226155 * https://bugzilla.suse.com/show_bug.cgi?id=1226158 * https://bugzilla.suse.com/show_bug.cgi?id=1226163 * https://bugzilla.suse.com/show_bug.cgi?id=1226202 * https://bugzilla.suse.com/show_bug.cgi?id=1226211 * https://bugzilla.suse.com/show_bug.cgi?id=1226212 * https://bugzilla.suse.com/show_bug.cgi?id=1226213 * https://bugzilla.suse.com/show_bug.cgi?id=1226226 * https://bugzilla.suse.com/show_bug.cgi?id=1226457 * https://bugzilla.suse.com/show_bug.cgi?id=1226502 * https://bugzilla.suse.com/show_bug.cgi?id=1226503 * https://bugzilla.suse.com/show_bug.cgi?id=1226513 * https://bugzilla.suse.com/show_bug.cgi?id=1226514 * https://bugzilla.suse.com/show_bug.cgi?id=1226519 * https://bugzilla.suse.com/show_bug.cgi?id=1226520 * https://bugzilla.suse.com/show_bug.cgi?id=1226582 * https://bugzilla.suse.com/show_bug.cgi?id=1226587 * https://bugzilla.suse.com/show_bug.cgi?id=1226588 * https://bugzilla.suse.com/show_bug.cgi?id=1226592 * https://bugzilla.suse.com/show_bug.cgi?id=1226593 * https://bugzilla.suse.com/show_bug.cgi?id=1226594 * https://bugzilla.suse.com/show_bug.cgi?id=1226595 * https://bugzilla.suse.com/show_bug.cgi?id=1226597 * https://bugzilla.suse.com/show_bug.cgi?id=1226607 * https://bugzilla.suse.com/show_bug.cgi?id=1226608 * https://bugzilla.suse.com/show_bug.cgi?id=1226610 * https://bugzilla.suse.com/show_bug.cgi?id=1226612 * https://bugzilla.suse.com/show_bug.cgi?id=1226613 * https://bugzilla.suse.com/show_bug.cgi?id=1226630 * https://bugzilla.suse.com/show_bug.cgi?id=1226632 * https://bugzilla.suse.com/show_bug.cgi?id=1226633 * https://bugzilla.suse.com/show_bug.cgi?id=1226634 * https://bugzilla.suse.com/show_bug.cgi?id=1226637 * https://bugzilla.suse.com/show_bug.cgi?id=1226657 * https://bugzilla.suse.com/show_bug.cgi?id=1226658 * https://bugzilla.suse.com/show_bug.cgi?id=1226734 * https://bugzilla.suse.com/show_bug.cgi?id=1226735 * https://bugzilla.suse.com/show_bug.cgi?id=1226737 * https://bugzilla.suse.com/show_bug.cgi?id=1226738 * https://bugzilla.suse.com/show_bug.cgi?id=1226739 * https://bugzilla.suse.com/show_bug.cgi?id=1226740 * https://bugzilla.suse.com/show_bug.cgi?id=1226741 * https://bugzilla.suse.com/show_bug.cgi?id=1226742 * https://bugzilla.suse.com/show_bug.cgi?id=1226744 * https://bugzilla.suse.com/show_bug.cgi?id=1226746 * https://bugzilla.suse.com/show_bug.cgi?id=1226747 * https://bugzilla.suse.com/show_bug.cgi?id=1226749 * https://bugzilla.suse.com/show_bug.cgi?id=1226750 * https://bugzilla.suse.com/show_bug.cgi?id=1226754 * https://bugzilla.suse.com/show_bug.cgi?id=1226757 * https://bugzilla.suse.com/show_bug.cgi?id=1226758 * https://bugzilla.suse.com/show_bug.cgi?id=1226760 * https://bugzilla.suse.com/show_bug.cgi?id=1226761 * https://bugzilla.suse.com/show_bug.cgi?id=1226764 * https://bugzilla.suse.com/show_bug.cgi?id=1226767 * https://bugzilla.suse.com/show_bug.cgi?id=1226768 * https://bugzilla.suse.com/show_bug.cgi?id=1226769 * https://bugzilla.suse.com/show_bug.cgi?id=1226771 * https://bugzilla.suse.com/show_bug.cgi?id=1226772 * https://bugzilla.suse.com/show_bug.cgi?id=1226774 * https://bugzilla.suse.com/show_bug.cgi?id=1226775 * https://bugzilla.suse.com/show_bug.cgi?id=1226776 * https://bugzilla.suse.com/show_bug.cgi?id=1226777 * https://bugzilla.suse.com/show_bug.cgi?id=1226780 * https://bugzilla.suse.com/show_bug.cgi?id=1226781 * https://bugzilla.suse.com/show_bug.cgi?id=1226783 * https://bugzilla.suse.com/show_bug.cgi?id=1226785 * https://bugzilla.suse.com/show_bug.cgi?id=1226786 * https://bugzilla.suse.com/show_bug.cgi?id=1226788 * https://bugzilla.suse.com/show_bug.cgi?id=1226789 * https://bugzilla.suse.com/show_bug.cgi?id=1226790 * https://bugzilla.suse.com/show_bug.cgi?id=1226791 * https://bugzilla.suse.com/show_bug.cgi?id=1226796 * https://bugzilla.suse.com/show_bug.cgi?id=1226799 * https://bugzilla.suse.com/show_bug.cgi?id=1226837 * https://bugzilla.suse.com/show_bug.cgi?id=1226839 * https://bugzilla.suse.com/show_bug.cgi?id=1226840 * https://bugzilla.suse.com/show_bug.cgi?id=1226841 * https://bugzilla.suse.com/show_bug.cgi?id=1226842 * https://bugzilla.suse.com/show_bug.cgi?id=1226844 * https://bugzilla.suse.com/show_bug.cgi?id=1226848 * https://bugzilla.suse.com/show_bug.cgi?id=1226852 * https://bugzilla.suse.com/show_bug.cgi?id=1226856 * https://bugzilla.suse.com/show_bug.cgi?id=1226857 * https://bugzilla.suse.com/show_bug.cgi?id=1226859 * https://bugzilla.suse.com/show_bug.cgi?id=1226861 * https://bugzilla.suse.com/show_bug.cgi?id=1226863 * https://bugzilla.suse.com/show_bug.cgi?id=1226864 * https://bugzilla.suse.com/show_bug.cgi?id=1226866 * https://bugzilla.suse.com/show_bug.cgi?id=1226867 * https://bugzilla.suse.com/show_bug.cgi?id=1226868 * https://bugzilla.suse.com/show_bug.cgi?id=1226875 * https://bugzilla.suse.com/show_bug.cgi?id=1226876 * https://bugzilla.suse.com/show_bug.cgi?id=1226878 * https://bugzilla.suse.com/show_bug.cgi?id=1226879 * https://bugzilla.suse.com/show_bug.cgi?id=1226883 * https://bugzilla.suse.com/show_bug.cgi?id=1226886 * https://bugzilla.suse.com/show_bug.cgi?id=1226890 * https://bugzilla.suse.com/show_bug.cgi?id=1226891 * https://bugzilla.suse.com/show_bug.cgi?id=1226894 * https://bugzilla.suse.com/show_bug.cgi?id=1226895 * https://bugzilla.suse.com/show_bug.cgi?id=1226905 * https://bugzilla.suse.com/show_bug.cgi?id=1226908 * https://bugzilla.suse.com/show_bug.cgi?id=1226909 * https://bugzilla.suse.com/show_bug.cgi?id=1226911 * https://bugzilla.suse.com/show_bug.cgi?id=1226915 * https://bugzilla.suse.com/show_bug.cgi?id=1226928 * https://bugzilla.suse.com/show_bug.cgi?id=1226934 * https://bugzilla.suse.com/show_bug.cgi?id=1226938 * https://bugzilla.suse.com/show_bug.cgi?id=1226939 * https://bugzilla.suse.com/show_bug.cgi?id=1226941 * https://bugzilla.suse.com/show_bug.cgi?id=1226948 * https://bugzilla.suse.com/show_bug.cgi?id=1226949 * https://bugzilla.suse.com/show_bug.cgi?id=1226950 * https://bugzilla.suse.com/show_bug.cgi?id=1226962 * https://bugzilla.suse.com/show_bug.cgi?id=1226976 * https://bugzilla.suse.com/show_bug.cgi?id=1226989 * https://bugzilla.suse.com/show_bug.cgi?id=1226990 * https://bugzilla.suse.com/show_bug.cgi?id=1226992 * https://bugzilla.suse.com/show_bug.cgi?id=1226993 * https://bugzilla.suse.com/show_bug.cgi?id=1226994 * https://bugzilla.suse.com/show_bug.cgi?id=1226995 * https://bugzilla.suse.com/show_bug.cgi?id=1226996 * https://bugzilla.suse.com/show_bug.cgi?id=1227066 * https://bugzilla.suse.com/show_bug.cgi?id=1227072 * https://bugzilla.suse.com/show_bug.cgi?id=1227085 * https://bugzilla.suse.com/show_bug.cgi?id=1227089 * https://bugzilla.suse.com/show_bug.cgi?id=1227090 * https://bugzilla.suse.com/show_bug.cgi?id=1227096 * https://bugzilla.suse.com/show_bug.cgi?id=1227101 * https://bugzilla.suse.com/show_bug.cgi?id=1227103 * https://bugzilla.suse.com/show_bug.cgi?id=1227149 * https://bugzilla.suse.com/show_bug.cgi?id=1227190 * https://bugzilla.suse.com/show_bug.cgi?id=1227282 * https://bugzilla.suse.com/show_bug.cgi?id=1227362 * https://bugzilla.suse.com/show_bug.cgi?id=1227363 * https://bugzilla.suse.com/show_bug.cgi?id=1227383 * https://bugzilla.suse.com/show_bug.cgi?id=1227432 * https://bugzilla.suse.com/show_bug.cgi?id=1227433 * https://bugzilla.suse.com/show_bug.cgi?id=1227434 * https://bugzilla.suse.com/show_bug.cgi?id=1227435 * https://bugzilla.suse.com/show_bug.cgi?id=1227443 * https://bugzilla.suse.com/show_bug.cgi?id=1227446 * https://bugzilla.suse.com/show_bug.cgi?id=1227447 * https://bugzilla.suse.com/show_bug.cgi?id=1227487 * https://bugzilla.suse.com/show_bug.cgi?id=1227573 * https://bugzilla.suse.com/show_bug.cgi?id=1227626 * https://bugzilla.suse.com/show_bug.cgi?id=1227716 * https://bugzilla.suse.com/show_bug.cgi?id=1227719 * https://bugzilla.suse.com/show_bug.cgi?id=1227723 * https://bugzilla.suse.com/show_bug.cgi?id=1227730 * https://bugzilla.suse.com/show_bug.cgi?id=1227736 * https://bugzilla.suse.com/show_bug.cgi?id=1227755 * https://bugzilla.suse.com/show_bug.cgi?id=1227757 * https://bugzilla.suse.com/show_bug.cgi?id=1227762 * https://bugzilla.suse.com/show_bug.cgi?id=1227763 * https://bugzilla.suse.com/show_bug.cgi?id=1227779 * https://bugzilla.suse.com/show_bug.cgi?id=1227780 * https://bugzilla.suse.com/show_bug.cgi?id=1227783 * https://bugzilla.suse.com/show_bug.cgi?id=1227786 * https://bugzilla.suse.com/show_bug.cgi?id=1227788 * https://bugzilla.suse.com/show_bug.cgi?id=1227789 * https://bugzilla.suse.com/show_bug.cgi?id=1227797 * https://bugzilla.suse.com/show_bug.cgi?id=1227800 * https://bugzilla.suse.com/show_bug.cgi?id=1227801 * https://bugzilla.suse.com/show_bug.cgi?id=1227803 * https://bugzilla.suse.com/show_bug.cgi?id=1227806 * https://bugzilla.suse.com/show_bug.cgi?id=1227813 * https://bugzilla.suse.com/show_bug.cgi?id=1227814 * https://bugzilla.suse.com/show_bug.cgi?id=1227836 * https://bugzilla.suse.com/show_bug.cgi?id=1227855 * https://bugzilla.suse.com/show_bug.cgi?id=1227862 * https://bugzilla.suse.com/show_bug.cgi?id=1227866 * https://bugzilla.suse.com/show_bug.cgi?id=1227886 * https://bugzilla.suse.com/show_bug.cgi?id=1227899 * https://bugzilla.suse.com/show_bug.cgi?id=1227910 * https://bugzilla.suse.com/show_bug.cgi?id=1227913 * https://bugzilla.suse.com/show_bug.cgi?id=1227926 * https://bugzilla.suse.com/show_bug.cgi?id=1228090 * https://bugzilla.suse.com/show_bug.cgi?id=1228192 * https://bugzilla.suse.com/show_bug.cgi?id=1228193 * https://bugzilla.suse.com/show_bug.cgi?id=1228211 * https://bugzilla.suse.com/show_bug.cgi?id=1228269 * https://bugzilla.suse.com/show_bug.cgi?id=1228289 * https://bugzilla.suse.com/show_bug.cgi?id=1228327 * https://bugzilla.suse.com/show_bug.cgi?id=1228328 * https://bugzilla.suse.com/show_bug.cgi?id=1228403 * https://bugzilla.suse.com/show_bug.cgi?id=1228405 * https://bugzilla.suse.com/show_bug.cgi?id=1228408 * https://bugzilla.suse.com/show_bug.cgi?id=1228417 * https://jira.suse.com/browse/PED-8491 * https://jira.suse.com/browse/PED-8570 * https://jira.suse.com/browse/PED-8644 * https://jira.suse.com/browse/PED-8688 * https://jira.suse.com/browse/PED-8701 * https://jira.suse.com/browse/PED-8954 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Aug 13 16:40:10 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Tue, 13 Aug 2024 16:40:10 -0000 Subject: SUSE-SU-2024:2895-1: important: Security update for the Linux Kernel Message-ID: <172356721051.12336.8432923798527400218@smelt2.prg2.suse.org> # Security update for the Linux Kernel Announcement ID: SUSE-SU-2024:2895-1 Rating: important References: * bsc#1191958 * bsc#1197439 * bsc#1222824 * bsc#1223384 * bsc#1225431 * bsc#1225487 * bsc#1225611 * bsc#1225866 * bsc#1226550 * bsc#1226575 * bsc#1226670 * bsc#1226848 * bsc#1227154 * bsc#1228743 Cross-References: * CVE-2016-20022 * CVE-2021-43389 * CVE-2021-4439 * CVE-2021-47219 * CVE-2021-47520 * CVE-2021-47580 * CVE-2021-47600 * CVE-2023-52752 * CVE-2023-52881 * CVE-2024-26923 * CVE-2024-36964 * CVE-2024-38599 * CVE-2024-42145 CVSS scores: * CVE-2016-20022 ( SUSE ): 4.3 CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-43389 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-43389 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-4439 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L * CVE-2021-47219 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2021-47520 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2021-47520 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2021-47580 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:L * CVE-2021-47600 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-52752 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-52752 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-52881 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:L * CVE-2024-26923 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-36964 ( SUSE ): 7.2 CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2024-38599 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2024-42145 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2024-42145 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * SUSE Linux Enterprise Server 11 SP4 * SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE 11-SP4 An update that solves 13 vulnerabilities and has one security fix can now be installed. ## Description: The SUSE Linux Enterprise 11 SP4 kernel was updated to receive various security bugfixes. The following security bugs were fixed: * CVE-2024-42145: IB/core: Implement a limit on UMAD receive List (bsc#1228743) * CVE-2021-47580: scsi: scsi_debug: Fix type in min_t to avoid stack OOB (bsc#1226550). * CVE-2021-47219: scsi: scsi_debug: Fix out-of-bound read in resp_report_tgtpgs() (bsc#1222824). * CVE-2021-47520: can: pch_can: pch_can_rx_normal: fix use after free (bsc#1225431). * CVE-2021-47600: dm btree remove: fix use after free in rebalance_children() (bsc#1226575). * CVE-2023-52881: tcp: do not accept ACK of bytes we never sent (bsc#1225611). * CVE-2024-38599: jffs2: prevent xattr node from overflowing the eraseblock (bsc#1226848). * CVE-2023-52752: smb: client: fix use-after-free bug in cifs_debug_data_proc_show() (bsc#1225487). * CVE-2024-36964: fs/9p: only translate RWX permissions for plain 9P2000 (bsc#1225866). * CVE-2024-26923: Fixed false-positive lockdep splat for spin_lock() in __unix_gc() (bsc#1223384). The following non-security bugs were fixed: * af_unix: Do not use atomic ops for unix_sk(sk)->inflight (bsc#1223384). * af_unix: Replace BUG_ON() with WARN_ON_ONCE() (bsc#1223384). * af_unix: annote lockless accesses to unix_tot_inflight & gc_in_progress (bsc#1223384). * kvm: prevent kvm_clock time-warps (bsc#1197439). * net: unix: properly re-increment inflight counter of GC discarded candidates (bsc#1223384). ## Special Instructions and Notes: * Please reboot the system after installing this update. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE 11-SP4 zypper in -t patch SUSE-SLE-SERVER-11-SP4-LTSS-EXTREME-CORE-2024-2895=1 * SUSE Linux Enterprise Server 11 SP4 zypper in -t patch SUSE-SLE-SERVER-11-SP4-LTSS-EXTREME-CORE-2024-2895=1 ## Package List: * SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE 11-SP4 (nosrc x86_64) * kernel-ec2-3.0.101-108.159.1 * kernel-trace-3.0.101-108.159.1 * kernel-default-3.0.101-108.159.1 * kernel-xen-3.0.101-108.159.1 * SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE 11-SP4 (x86_64) * kernel-ec2-devel-3.0.101-108.159.1 * kernel-source-3.0.101-108.159.1 * kernel-xen-devel-3.0.101-108.159.1 * kernel-default-devel-3.0.101-108.159.1 * kernel-trace-devel-3.0.101-108.159.1 * kernel-trace-base-3.0.101-108.159.1 * kernel-xen-base-3.0.101-108.159.1 * kernel-syms-3.0.101-108.159.1 * kernel-default-base-3.0.101-108.159.1 * kernel-ec2-base-3.0.101-108.159.1 * SUSE Linux Enterprise Server 11 SP4 (nosrc x86_64) * kernel-ec2-3.0.101-108.159.1 * kernel-trace-3.0.101-108.159.1 * kernel-default-3.0.101-108.159.1 * kernel-xen-3.0.101-108.159.1 * SUSE Linux Enterprise Server 11 SP4 (x86_64) * kernel-ec2-devel-3.0.101-108.159.1 * kernel-source-3.0.101-108.159.1 * kernel-xen-devel-3.0.101-108.159.1 * kernel-default-devel-3.0.101-108.159.1 * kernel-trace-devel-3.0.101-108.159.1 * kernel-trace-base-3.0.101-108.159.1 * kernel-xen-base-3.0.101-108.159.1 * kernel-syms-3.0.101-108.159.1 * kernel-default-base-3.0.101-108.159.1 * kernel-ec2-base-3.0.101-108.159.1 ## References: * https://www.suse.com/security/cve/CVE-2016-20022.html * https://www.suse.com/security/cve/CVE-2021-43389.html * https://www.suse.com/security/cve/CVE-2021-4439.html * https://www.suse.com/security/cve/CVE-2021-47219.html * https://www.suse.com/security/cve/CVE-2021-47520.html * https://www.suse.com/security/cve/CVE-2021-47580.html * https://www.suse.com/security/cve/CVE-2021-47600.html * https://www.suse.com/security/cve/CVE-2023-52752.html * https://www.suse.com/security/cve/CVE-2023-52881.html * https://www.suse.com/security/cve/CVE-2024-26923.html * https://www.suse.com/security/cve/CVE-2024-36964.html * https://www.suse.com/security/cve/CVE-2024-38599.html * https://www.suse.com/security/cve/CVE-2024-42145.html * https://bugzilla.suse.com/show_bug.cgi?id=1191958 * https://bugzilla.suse.com/show_bug.cgi?id=1197439 * https://bugzilla.suse.com/show_bug.cgi?id=1222824 * https://bugzilla.suse.com/show_bug.cgi?id=1223384 * https://bugzilla.suse.com/show_bug.cgi?id=1225431 * https://bugzilla.suse.com/show_bug.cgi?id=1225487 * https://bugzilla.suse.com/show_bug.cgi?id=1225611 * https://bugzilla.suse.com/show_bug.cgi?id=1225866 * https://bugzilla.suse.com/show_bug.cgi?id=1226550 * https://bugzilla.suse.com/show_bug.cgi?id=1226575 * https://bugzilla.suse.com/show_bug.cgi?id=1226670 * https://bugzilla.suse.com/show_bug.cgi?id=1226848 * https://bugzilla.suse.com/show_bug.cgi?id=1227154 * https://bugzilla.suse.com/show_bug.cgi?id=1228743 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Aug 13 16:40:32 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Tue, 13 Aug 2024 16:40:32 -0000 Subject: SUSE-SU-2024:2893-1: important: Security update for the Linux Kernel Message-ID: <172356723286.12336.6417754950983233959@smelt2.prg2.suse.org> # Security update for the Linux Kernel Announcement ID: SUSE-SU-2024:2893-1 Rating: important References: * bsc#1216834 * bsc#1218820 * bsc#1220185 * bsc#1220186 * bsc#1221539 * bsc#1222728 * bsc#1222824 * bsc#1223863 * bsc#1224918 * bsc#1225431 * bsc#1226519 * bsc#1226550 * bsc#1226574 * bsc#1226662 * bsc#1226666 * bsc#1227213 * bsc#1227362 * bsc#1227487 * bsc#1227716 * bsc#1227750 * bsc#1227810 * bsc#1227836 * bsc#1227976 * bsc#1228013 * bsc#1228040 * bsc#1228114 * bsc#1228328 * bsc#1228561 * bsc#1228644 * bsc#1228743 Cross-References: * CVE-2021-47126 * CVE-2021-47219 * CVE-2021-47291 * CVE-2021-47520 * CVE-2021-47580 * CVE-2021-47598 * CVE-2022-48792 * CVE-2022-48821 * CVE-2022-48822 * CVE-2023-52885 * CVE-2024-26583 * CVE-2024-26584 * CVE-2024-26800 * CVE-2024-36974 * CVE-2024-39494 * CVE-2024-40937 * CVE-2024-40956 * CVE-2024-41011 * CVE-2024-41059 * CVE-2024-41069 * CVE-2024-41090 * CVE-2024-42145 CVSS scores: * CVE-2021-47126 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47219 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2021-47291 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2021-47520 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2021-47520 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2021-47580 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:L * CVE-2021-47598 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48792 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48792 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48821 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48822 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48822 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-52885 ( SUSE ): 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26583 ( SUSE ): 5.1 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26583 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26584 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26584 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26800 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36974 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-39494 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-39494 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-40937 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-40956 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-41011 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-41059 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2024-41059 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-41069 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2024-41069 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-41090 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H * CVE-2024-42145 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2024-42145 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * SUSE Linux Enterprise Micro 5.1 * SUSE Linux Enterprise Micro 5.2 * SUSE Linux Enterprise Micro for Rancher 5.2 An update that solves 22 vulnerabilities and has eight security fixes can now be installed. ## Description: The SUSE Linux Enterprise 15 SP3 RT kernel was updated to receive various security bugfixes. The following security bugs were fixed: * CVE-2024-39494: ima: Fix use-after-free on a dentry's dname.name (bsc#1227716). * CVE-2024-41069: ASoC: topology: Fix route memory corruption (bsc#1228644). * CVE-2024-42145: IB/core: Implement a limit on UMAD receive List (bsc#1228743). * CVE-2024-41059: hfsplus: fix uninit-value in copy_name (bsc#1228561). * CVE-2024-40956: dmaengine: idxd: Fix possible Use-After-Free in irq_process_work_list (bsc#1227810). * CVE-2023-52885: SUNRPC: Fix UAF in svc_tcp_listen_data_ready() (bsc#1227750). * CVE-2022-48792: scsi: pm8001: Fix use-after-free for aborted SSP/STP sas_task (bsc#1228013). * CVE-2024-41090: tap: add missing verification for short frame (bsc#1228328). * CVE-2021-47291: ipv6: fix another slab-out-of-bounds in fib6_nh_flush_exceptions (bsc#1224918). * CVE-2021-47126: ipv6: Fix KASAN: slab-out-of-bounds Read in fib6_nh_flush_exceptions (bsc#1221539). * CVE-2024-41011: drm/amdkfd: do not allow mapping the MMIO HDP page with large pages (bsc#1228114). * CVE-2021-47598: sch_cake: do not call cake_destroy() from cake_init() (bsc#1226574). * CVE-2021-47580: scsi: scsi_debug: Fix type in min_t to avoid stack OOB (bsc#1226550). * CVE-2021-47219: scsi: scsi_debug: Fix out-of-bound read in resp_report_tgtpgs() (bsc#1222824). * CVE-2024-40937: gve: Clear napi->skb before dev_kfree_skb_any() (bsc#1227836). * CVE-2022-48821: misc: fastrpc: avoid double fput() on failed usercopy (bsc#1227976). * CVE-2021-47520: can: pch_can: pch_can_rx_normal: fix use after free (bsc#1225431). * CVE-2024-36974: net/sched: taprio: always validate TCA_TAPRIO_ATTR_PRIOMAP (bsc#1226519). The following non-security bugs were fixed: * Fix spurious WARNING caused by a qxl driver patch (bsc#1227213) * NFS: Clean up directory array handling (bsc#1226662). * NFS: Clean up nfs_readdir_page_filler() (bsc#1226662). * NFS: Clean up readdir struct nfs_cache_array (bsc#1226662). * NFS: Do not discard readdir results (bsc#1226662). * NFS: Do not overfill uncached readdir pages (bsc#1226662). * NFS: Do not re-read the entire page cache to find the next cookie (bsc#1226662). * NFS: Ensure contents of struct nfs_open_dir_context are consistent (bsc#1226662). * NFS: Fix up directory verifier races (bsc#1226662). * NFS: Further optimisations for 'ls -l' (bsc#1226662). * NFS: More readdir cleanups (bsc#1226662). * NFS: Reduce number of RPC calls when doing uncached readdir (bsc#1226662). * NFS: Reduce use of uncached readdir (bsc#1226662). * NFS: Support larger readdir buffers (bsc#1226662). * NFS: Use the 64-bit server readdir cookies when possible (bsc#1226662). * NFSv4.x: by default serialize open/close operations (bsc#1223863 bsc#1227362) * X.509: Fix the parser of extended key usage for length (bsc#1218820 bsc#1226666). * nfs: optimise readdir cache page invalidation (bsc#1226662). * ocfs2: fix DIO failure due to insufficient transaction credits (bsc#1216834). * powerpc/rtas: Prevent Spectre v1 gadget construction in sys_rtas() (bsc#1227487). * powerpc/rtas: clean up includes (bsc#1227487). ## Special Instructions and Notes: * Please reboot the system after installing this update. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Micro 5.1 zypper in -t patch SUSE-SUSE-MicroOS-5.1-2024-2893=1 * SUSE Linux Enterprise Micro 5.2 zypper in -t patch SUSE-SUSE-MicroOS-5.2-2024-2893=1 * SUSE Linux Enterprise Micro for Rancher 5.2 zypper in -t patch SUSE-SUSE-MicroOS-5.2-2024-2893=1 ## Package List: * SUSE Linux Enterprise Micro 5.1 (nosrc x86_64) * kernel-rt-5.3.18-150300.178.1 * SUSE Linux Enterprise Micro 5.1 (x86_64) * kernel-rt-debugsource-5.3.18-150300.178.1 * kernel-rt-debuginfo-5.3.18-150300.178.1 * SUSE Linux Enterprise Micro 5.1 (noarch) * kernel-source-rt-5.3.18-150300.178.1 * SUSE Linux Enterprise Micro 5.2 (nosrc x86_64) * kernel-rt-5.3.18-150300.178.1 * SUSE Linux Enterprise Micro 5.2 (x86_64) * kernel-rt-debugsource-5.3.18-150300.178.1 * kernel-rt-debuginfo-5.3.18-150300.178.1 * SUSE Linux Enterprise Micro 5.2 (noarch) * kernel-source-rt-5.3.18-150300.178.1 * SUSE Linux Enterprise Micro for Rancher 5.2 (nosrc x86_64) * kernel-rt-5.3.18-150300.178.1 * SUSE Linux Enterprise Micro for Rancher 5.2 (x86_64) * kernel-rt-debugsource-5.3.18-150300.178.1 * kernel-rt-debuginfo-5.3.18-150300.178.1 * SUSE Linux Enterprise Micro for Rancher 5.2 (noarch) * kernel-source-rt-5.3.18-150300.178.1 ## References: * https://www.suse.com/security/cve/CVE-2021-47126.html * https://www.suse.com/security/cve/CVE-2021-47219.html * https://www.suse.com/security/cve/CVE-2021-47291.html * https://www.suse.com/security/cve/CVE-2021-47520.html * https://www.suse.com/security/cve/CVE-2021-47580.html * https://www.suse.com/security/cve/CVE-2021-47598.html * https://www.suse.com/security/cve/CVE-2022-48792.html * https://www.suse.com/security/cve/CVE-2022-48821.html * https://www.suse.com/security/cve/CVE-2022-48822.html * https://www.suse.com/security/cve/CVE-2023-52885.html * https://www.suse.com/security/cve/CVE-2024-26583.html * https://www.suse.com/security/cve/CVE-2024-26584.html * https://www.suse.com/security/cve/CVE-2024-26800.html * https://www.suse.com/security/cve/CVE-2024-36974.html * https://www.suse.com/security/cve/CVE-2024-39494.html * https://www.suse.com/security/cve/CVE-2024-40937.html * https://www.suse.com/security/cve/CVE-2024-40956.html * https://www.suse.com/security/cve/CVE-2024-41011.html * https://www.suse.com/security/cve/CVE-2024-41059.html * https://www.suse.com/security/cve/CVE-2024-41069.html * https://www.suse.com/security/cve/CVE-2024-41090.html * https://www.suse.com/security/cve/CVE-2024-42145.html * https://bugzilla.suse.com/show_bug.cgi?id=1216834 * https://bugzilla.suse.com/show_bug.cgi?id=1218820 * https://bugzilla.suse.com/show_bug.cgi?id=1220185 * https://bugzilla.suse.com/show_bug.cgi?id=1220186 * https://bugzilla.suse.com/show_bug.cgi?id=1221539 * https://bugzilla.suse.com/show_bug.cgi?id=1222728 * https://bugzilla.suse.com/show_bug.cgi?id=1222824 * https://bugzilla.suse.com/show_bug.cgi?id=1223863 * https://bugzilla.suse.com/show_bug.cgi?id=1224918 * https://bugzilla.suse.com/show_bug.cgi?id=1225431 * https://bugzilla.suse.com/show_bug.cgi?id=1226519 * https://bugzilla.suse.com/show_bug.cgi?id=1226550 * https://bugzilla.suse.com/show_bug.cgi?id=1226574 * https://bugzilla.suse.com/show_bug.cgi?id=1226662 * https://bugzilla.suse.com/show_bug.cgi?id=1226666 * https://bugzilla.suse.com/show_bug.cgi?id=1227213 * https://bugzilla.suse.com/show_bug.cgi?id=1227362 * https://bugzilla.suse.com/show_bug.cgi?id=1227487 * https://bugzilla.suse.com/show_bug.cgi?id=1227716 * https://bugzilla.suse.com/show_bug.cgi?id=1227750 * https://bugzilla.suse.com/show_bug.cgi?id=1227810 * https://bugzilla.suse.com/show_bug.cgi?id=1227836 * https://bugzilla.suse.com/show_bug.cgi?id=1227976 * https://bugzilla.suse.com/show_bug.cgi?id=1228013 * https://bugzilla.suse.com/show_bug.cgi?id=1228040 * https://bugzilla.suse.com/show_bug.cgi?id=1228114 * https://bugzilla.suse.com/show_bug.cgi?id=1228328 * https://bugzilla.suse.com/show_bug.cgi?id=1228561 * https://bugzilla.suse.com/show_bug.cgi?id=1228644 * https://bugzilla.suse.com/show_bug.cgi?id=1228743 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Aug 13 16:42:16 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Tue, 13 Aug 2024 16:42:16 -0000 Subject: SUSE-SU-2024:2892-1: important: Security update for the Linux Kernel Message-ID: <172356733635.12336.7737689036005073737@smelt2.prg2.suse.org> # Security update for the Linux Kernel Announcement ID: SUSE-SU-2024:2892-1 Rating: important References: * bsc#1065729 * bsc#1088701 * bsc#1149446 * bsc#1196018 * bsc#1202346 * bsc#1216834 * bsc#1220138 * bsc#1220942 * bsc#1221045 * bsc#1221614 * bsc#1221616 * bsc#1221618 * bsc#1222060 * bsc#1222317 * bsc#1222326 * bsc#1222372 * bsc#1222625 * bsc#1222776 * bsc#1222824 * bsc#1222829 * bsc#1223012 * bsc#1223778 * bsc#1223813 * bsc#1223815 * bsc#1224500 * bsc#1224512 * bsc#1224545 * bsc#1224557 * bsc#1224571 * bsc#1224576 * bsc#1224587 * bsc#1224637 * bsc#1224641 * bsc#1224683 * bsc#1224699 * bsc#1224700 * bsc#1224975 * bsc#1225003 * bsc#1225214 * bsc#1225224 * bsc#1225229 * bsc#1225238 * bsc#1225241 * bsc#1225326 * bsc#1225328 * bsc#1225346 * bsc#1225361 * bsc#1225396 * bsc#1225427 * bsc#1225455 * bsc#1225711 * bsc#1225719 * bsc#1225820 * bsc#1225838 * bsc#1226550 * bsc#1226553 * bsc#1226555 * bsc#1226559 * bsc#1226568 * bsc#1226571 * bsc#1226645 * bsc#1226783 * bsc#1226786 * bsc#1226834 * bsc#1226908 * bsc#1227191 * bsc#1227213 * bsc#1227573 * bsc#1227618 * bsc#1227626 * bsc#1227716 * bsc#1227725 * bsc#1227729 * bsc#1227730 * bsc#1227733 * bsc#1227750 * bsc#1227754 * bsc#1227762 * bsc#1227770 * bsc#1227771 * bsc#1227772 * bsc#1227774 * bsc#1227786 * bsc#1227790 * bsc#1227806 * bsc#1227824 * bsc#1227828 * bsc#1227830 * bsc#1227836 * bsc#1227849 * bsc#1227865 * bsc#1227866 * bsc#1227884 * bsc#1227886 * bsc#1227891 * bsc#1227913 * bsc#1227924 * bsc#1227928 * bsc#1227929 * bsc#1227936 * bsc#1227957 * bsc#1227968 * bsc#1227969 * bsc#1227975 * bsc#1227985 * bsc#1227989 * bsc#1228003 * bsc#1228005 * bsc#1228008 * bsc#1228013 * bsc#1228025 * bsc#1228030 * bsc#1228037 * bsc#1228045 * bsc#1228054 * bsc#1228055 * bsc#1228063 * bsc#1228071 * bsc#1228235 * bsc#1228237 * bsc#1228327 * bsc#1228328 * bsc#1228408 * bsc#1228409 * bsc#1228410 * bsc#1228470 * bsc#1228530 * bsc#1228561 * bsc#1228565 * bsc#1228567 * bsc#1228580 * bsc#1228581 * bsc#1228584 * bsc#1228588 * bsc#1228599 * bsc#1228617 * bsc#1228625 * bsc#1228626 * bsc#1228633 * bsc#1228640 * bsc#1228649 * bsc#1228655 * bsc#1228658 * bsc#1228662 * bsc#1228680 * bsc#1228705 * bsc#1228723 * bsc#1228726 * bsc#1228743 * bsc#1228850 Cross-References: * CVE-2021-47194 * CVE-2021-47197 * CVE-2021-47219 * CVE-2021-47295 * CVE-2021-47388 * CVE-2021-47395 * CVE-2021-47399 * CVE-2021-47403 * CVE-2021-47405 * CVE-2021-47441 * CVE-2021-47468 * CVE-2021-47501 * CVE-2021-47516 * CVE-2021-47542 * CVE-2021-47559 * CVE-2021-47580 * CVE-2021-47582 * CVE-2021-47588 * CVE-2021-47597 * CVE-2021-47599 * CVE-2021-47606 * CVE-2021-47619 * CVE-2022-48775 * CVE-2022-48792 * CVE-2022-48794 * CVE-2022-48804 * CVE-2022-48805 * CVE-2022-48810 * CVE-2022-48811 * CVE-2022-48823 * CVE-2022-48826 * CVE-2022-48827 * CVE-2022-48828 * CVE-2022-48829 * CVE-2022-48836 * CVE-2022-48839 * CVE-2022-48850 * CVE-2022-48855 * CVE-2022-48857 * CVE-2022-48860 * CVE-2022-48863 * CVE-2023-52435 * CVE-2023-52594 * CVE-2023-52612 * CVE-2023-52615 * CVE-2023-52619 * CVE-2023-52623 * CVE-2023-52669 * CVE-2023-52743 * CVE-2023-52885 * CVE-2024-26615 * CVE-2024-26659 * CVE-2024-26663 * CVE-2024-26735 * CVE-2024-26830 * CVE-2024-26920 * CVE-2024-26924 * CVE-2024-27019 * CVE-2024-27020 * CVE-2024-27025 * CVE-2024-27437 * CVE-2024-35806 * CVE-2024-35837 * CVE-2024-35893 * CVE-2024-35934 * CVE-2024-35949 * CVE-2024-35966 * CVE-2024-35967 * CVE-2024-35978 * CVE-2024-35995 * CVE-2024-36004 * CVE-2024-36288 * CVE-2024-36901 * CVE-2024-36902 * CVE-2024-36924 * CVE-2024-36939 * CVE-2024-38558 * CVE-2024-38560 * CVE-2024-38630 * CVE-2024-39487 * CVE-2024-39488 * CVE-2024-39490 * CVE-2024-39494 * CVE-2024-39499 * CVE-2024-39501 * CVE-2024-39506 * CVE-2024-39507 * CVE-2024-39509 * CVE-2024-40901 * CVE-2024-40904 * CVE-2024-40912 * CVE-2024-40923 * CVE-2024-40929 * CVE-2024-40932 * CVE-2024-40937 * CVE-2024-40941 * CVE-2024-40942 * CVE-2024-40943 * CVE-2024-40953 * CVE-2024-40959 * CVE-2024-40966 * CVE-2024-40967 * CVE-2024-40978 * CVE-2024-40982 * CVE-2024-40987 * CVE-2024-40988 * CVE-2024-40990 * CVE-2024-40995 * CVE-2024-40998 * CVE-2024-40999 * CVE-2024-41014 * CVE-2024-41015 * CVE-2024-41016 * CVE-2024-41044 * CVE-2024-41048 * CVE-2024-41059 * CVE-2024-41060 * CVE-2024-41063 * CVE-2024-41064 * CVE-2024-41066 * CVE-2024-41070 * CVE-2024-41071 * CVE-2024-41072 * CVE-2024-41076 * CVE-2024-41078 * CVE-2024-41081 * CVE-2024-41089 * CVE-2024-41090 * CVE-2024-41091 * CVE-2024-41095 * CVE-2024-42070 * CVE-2024-42093 * CVE-2024-42096 * CVE-2024-42119 * CVE-2024-42120 * CVE-2024-42124 * CVE-2024-42145 * CVE-2024-42223 * CVE-2024-42224 CVSS scores: * CVE-2021-47194 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47194 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2021-47197 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47219 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2021-47295 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47388 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2021-47395 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47399 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47403 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47405 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47441 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47468 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47501 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47516 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2021-47516 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47542 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47542 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47559 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47559 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47580 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:L * CVE-2021-47582 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47588 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47597 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2021-47599 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47606 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47619 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48775 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2022-48792 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48792 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48794 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2022-48804 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2022-48805 ( SUSE ): 6.6 CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48810 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48811 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48823 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2022-48826 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48827 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48828 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N * CVE-2022-48829 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N * CVE-2022-48836 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48836 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48839 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48839 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48850 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48850 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48855 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48855 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2022-48857 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48857 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48860 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48860 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48863 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L * CVE-2022-48863 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52435 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52435 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52594 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52612 ( SUSE ): 6.0 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:H * CVE-2023-52615 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52619 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52623 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52669 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52743 ( SUSE ): 4.0 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2023-52885 ( SUSE ): 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26615 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26659 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26663 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26735 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26830 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26920 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26924 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27019 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27019 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2024-27020 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27020 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-27025 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2024-27437 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35806 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35837 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35893 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35934 ( SUSE ): 2.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-35949 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35966 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35967 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35978 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35978 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35995 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2024-36004 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36288 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36288 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36901 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36901 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36902 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36902 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36924 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36939 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38558 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L * CVE-2024-38560 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38630 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2024-39487 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2024-39488 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39490 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-39494 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-39494 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-39499 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2024-39501 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39506 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39507 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39509 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40901 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L * CVE-2024-40904 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40912 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40923 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40929 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40932 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L * CVE-2024-40937 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-40941 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40942 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40943 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40953 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40959 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40966 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40967 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40978 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40982 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40987 ( SUSE ): 5.0 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H * CVE-2024-40988 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40990 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40995 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40998 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40999 ( SUSE ): 3.6 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L * CVE-2024-41014 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-41015 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N * CVE-2024-41016 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N * CVE-2024-41044 ( SUSE ): 6.3 CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:L * CVE-2024-41048 ( SUSE ): 6.5 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-41059 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2024-41059 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-41060 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2024-41060 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-41063 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2024-41063 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-41064 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2024-41064 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-41066 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2024-41066 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2024-41070 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2024-41071 ( SUSE ): 4.3 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N * CVE-2024-41072 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N * CVE-2024-41076 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-41078 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-41081 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-41089 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-41089 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-41090 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H * CVE-2024-41091 ( SUSE ): 6.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H * CVE-2024-41095 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-41095 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-42070 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2024-42070 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-42093 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L * CVE-2024-42119 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-42120 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-42124 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-42145 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2024-42145 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-42223 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-42223 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-42224 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-42224 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise Real Time 12 SP5 * SUSE Linux Enterprise Server 12 SP5 An update that solves 139 vulnerabilities and has 11 security fixes can now be installed. ## Description: The SUSE Linux Enterprise 12 SP5 RT kernel was updated to receive various security bugfixes. The following security bugs were fixed: * CVE-2024-39494: ima: Fix use-after-free on a dentry's dname.name (bsc#1227716). * CVE-2024-42096: x86: stop playing stack games in profile_pc() (bsc#1228633). * CVE-2024-39506: liquidio: adjust a NULL pointer handling path in lio_vf_rep_copy_packet (bsc#1227729). * CVE-2021-47619: i40e: Fix queues reservation for XDP (bsc#1226645). * CVE-2024-42145: IB/core: Implement a limit on UMAD receive List (bsc#1228743). * CVE-2024-42124: scsi: qedf: Make qedf_execute_tmf() non-preemptible (bsc#1228705). * CVE-2024-42223: media: dvb-frontends: tda10048: Fix integer overflow (bsc#1228726) * CVE-2024-42119: drm/amd/display: Skip finding free audio for unknown engine_id (bsc#1228584) * CVE-2024-42120: drm/amd/display: Check pipe offset before setting vblank (bsc#1228588) * CVE-2024-41095: drm/nouveau/dispnv04: fix null pointer dereference in nv17_tv_get_ld_modes (bsc#1228662) * CVE-2024-42224: net: dsa: mv88e6xxx: Correct check for empty list (bsc#1228723). * CVE-2024-41072: wifi: cfg80211: wext: add extra SIOCSIWSCAN data check (bsc#1228626). * CVE-2024-41048: skmsg: Skip zero length skb in sk_msg_recvmsg (bsc#1228565). * CVE-2024-40995: net/sched: act_api: fix possible infinite loop in tcf_idr_check_alloc() (bsc#1227830). * CVE-2024-41044: ppp: reject claimed-as-LCP but actually malformed packets (bsc#1228530). * CVE-2024-41066: ibmvnic: add tx check to prevent skb leak (bsc#1228640). * CVE-2024-42093: net/dpaa2: Avoid explicit cpumask var allocation on stack (bsc#1228680). * CVE-2024-41089: drm/nouveau/dispnv04: fix null pointer dereference in (bsc#1228658) * CVE-2024-41060: drm/radeon: check bo_va->bo is non-NULL before using it (bsc#1228567) * CVE-2022-48829: NFSD: Fix NFSv3 SETATTR/CREATE's handling of large file sizes (bsc#1228055). * CVE-2022-48828: NFSD: Fix ia_size underflow (bsc#1228054). * CVE-2022-48827: NFSD: Fix the behavior of READ near OFFSET_MAX (bsc#1228037). * CVE-2024-41078: btrfs: qgroup: fix quota root leak after quota disable failure (bsc#1228655). * CVE-2024-41071: wifi: mac80211: Avoid address calculations via out of bounds array indexing (bsc#1228625). * CVE-2024-41064: powerpc/eeh: avoid possible crash when edev->pdev changes (bsc#1228599). * CVE-2024-35949: btrfs: make sure that WRITTEN is set on all metadata blocks (bsc#1224700). * CVE-2024-41081: ila: block BH in ila_output() (bsc#1228617). * CVE-2024-40978: scsi: qedi: Fix crash while reading debugfs attribute (bsc#1227929). * CVE-2022-48792: scsi: pm8001: Fix use-after-free for aborted SSP/STP sas_task (bsc#1228013). * CVE-2022-48823: scsi: qedf: Fix refcount issue when LOGO is received during TMF (bsc#1228045). * CVE-2024-41076: NFSv4: Fix memory leak in nfs4_set_security_label (bsc#1228649). * CVE-2024-40998: ext4: fix uninitialized ratelimit_state->lock access in __ext4_fill_super() (bsc#1227866). * CVE-2024-41059: hfsplus: fix uninit-value in copy_name (bsc#1228561). * CVE-2024-40987: drm/amdgpu: fix UBSAN warning in kv_dpm.c (bsc#1228235) * CVE-2022-48826: drm/vc4: Fix deadlock on DSI device attach error (bsc#1227975) * CVE-2024-27437: vfio/pci: Disable auto-enable of exclusive INTx IRQ (bsc#1222625). * CVE-2024-41015: ocfs2: add bounds checking to ocfs2_check_dir_entry() (bsc#1228409). * CVE-2024-41016: ocfs2: strict bound check before memcmp in ocfs2_xattr_find_entry() (bsc#1228410). * CVE-2024-41063: bluetooth: hci_core: cancel all works upon hci_unregister_dev() (bsc#1228580). * CVE-2024-42070: netfilter: nf_tables: fully validate NFT_DATA_VALUE on store to data registers (bsc#1228470). * CVE-2024-41070: KVM: PPC: Book3S HV: Prevent UAF in kvm_spapr_tce_attach_iommu_group() (bsc#1228581). * CVE-2021-47405: HID: usbhid: free raw_report buffers in usbhid_stop (bsc#1225238). * CVE-2024-40988: drm/radeon: fix UBSAN warning in kv_dpm.c (bsc#1227957) * CVE-2024-40932: drm/exynos/vidi: fix memory leak in .get_modes() (bsc#1227828) * CVE-2021-47403: ipack: ipoctal: fix module reference leak (bsc#1225241). * CVE-2021-47388: mac80211: fix use-after-free in CCMP/GCMP RX (bsc#1225214). * CVE-2024-41014: xfs: add bounds checking to xlog_recover_process_data (bsc#1228408). * CVE-2024-41091: tun: add missing verification for short frame (bsc#1228327). * CVE-2024-41090: tap: add missing verification for short frame (bsc#1228328). * CVE-2024-40999: net: ena: Add validation for completion descriptors consistency (bsc#1227913). * CVE-2024-35837: net: mvpp2: clear BM pool before initialization (bsc#1224500). * CVE-2021-47588: sit: do not call ipip6_dev_free() from sit_init_net() (bsc#1226568). * CVE-2022-48804: vt_ioctl: fix array_index_nospec in vt_setactivate (bsc#1227968). * CVE-2024-40967: serial: imx: Introduce timeout when waiting on transmitter empty (bsc#1227891). * CVE-2024-40966: kABI: tty: add the option to have a tty reject a new ldisc (bsc#1227886). * CVE-2022-48850: net-sysfs: add check for netdevice being present to speed_show (bsc#1228071). * CVE-2021-47582: usb: core: Do not hold the device lock while sleeping in do_proc_control() (bsc#1226559). * CVE-2024-40982: ssb: fix potential NULL pointer dereference in ssb_device_uevent() (bsc#1227865). * CVE-2021-47468: isdn: mISDN: Fix sleeping function called from invalid context (bsc#1225346). * CVE-2021-47395: mac80211: limit injected vht mcs/nss in ieee80211_parse_tx_radiotap (bsc#1225326). * CVE-2022-48810: ipmr,ip6mr: acquire RTNL before calling ip[6]mr_free_table() on failure path (bsc#1227936). * CVE-2023-52594: Fixed potential array-index-out-of-bounds read in ath9k_htc_txstatus() (bsc#1221045). * CVE-2022-48855: sctp: fix kernel-infoleak for SCTP sockets (bsc#1228003). * CVE-2021-47580: scsi: scsi_debug: Fix type in min_t to avoid stack OOB (bsc#1226550). * CVE-2024-26735: ipv6: sr: fix possible use-after-free and null-ptr-deref (bsc#1222372). * CVE-2024-38560: scsi: bfa: Ensure the copied buf is NUL terminated (bsc#1226786). * CVE-2022-48811: ibmvnic: do not release napi in __ibmvnic_open() (bsc#1227928). * CVE-2024-40937: gve: Clear napi->skb before dev_kfree_skb_any() (bsc#1227836). * CVE-2024-39507: net: hns3: fix kernel crash problem in concurrent scenario (bsc#1227730). * CVE-2024-40923: vmxnet3: disable rx data ring on dma allocation failure (bsc#1227786). * CVE-2024-40941: wifi: iwlwifi: mvm: do not read past the mfuart notifcation (bsc#1227771). * CVE-2022-48860: ethernet: Fix error handling in xemaclite_of_probe (bsc#1228008) * CVE-2022-48863: mISDN: Fix memory leak in dsp_pipeline_build() (bsc#1228063). * CVE-2024-40953: KVM: Fix a data race on last_boosted_vcpu in kvm_vcpu_on_spin() (bsc#1227806). * CVE-2024-39499: vmci: prevent speculation leaks by sanitizing event in event_deliver() (bsc#1227725) * CVE-2024-39509: HID: core: remove unnecessary WARN_ON() in implement() (bsc#1227733) * CVE-2024-39487: bonding: Fix out-of-bounds read in bond_option_arp_ip_targets_set() (bsc#1227573) * CVE-2024-35934: net/smc: reduce rtnl pressure in smc_pnet_create_pnetids_list() (bsc#1224641) * CVE-2024-40959: xfrm6: check ip6_dst_idev() return value in xfrm6_get_saddr() (bsc#1227884). * CVE-2024-35893: net/sched: act_skbmod: prevent kernel-infoleak (bsc#1224512) * CVE-2021-47441: mlxsw: thermal: Fix out-of-bounds memory accesses (bsc#1225224) * CVE-2021-47194: cfg80211: call cfg80211_stop_ap when switch from P2P_GO type (bsc#1222829) * CVE-2024-27020: netfilter: nf_tables: Fix potential data-race in __nft_expr_type_get() (bsc#1223815) * CVE-2022-48775: Drivers: hv: vmbus: Fix memory leak in vmbus_add_channel_kobj (bsc#1227924). * CVE-2024-27019: netfilter: nf_tables: Fix potential data-race in __nft_obj_type_get() (bsc#1223813) * CVE-2024-40929: wifi: iwlwifi: mvm: check n_ssids before accessing the ssids (bsc#1227774). * CVE-2024-40912: wifi: mac80211: Fix deadlock in ieee80211_sta_ps_deliver_wakeup() (bsc#1227790). * CVE-2024-40942: wifi: mac80211: mesh: Fix leak of mesh_preq_queue objects (bsc#1227770). * CVE-2022-48857: NFC: port100: fix use-after-free in port100_send_complete (bsc#1228005). * CVE-2024-36902: ipv6: fib6_rules: avoid possible NULL dereference in fib6_rule_action() (bsc#1225719). * CVE-2021-47606: net: netlink: af_netlink: Prevent empty skb by adding a check on len. (bsc#1226555). * CVE-2024-40901: scsi: mpt3sas: Avoid test/set_bit() operating in non- allocated memory (bsc#1227762). * CVE-2024-26924: scsi: lpfc: Release hbalock before calling lpfc_worker_wake_up() (bsc#1225820). * CVE-2024-26830: Fixed i40e to not allow untrusted VF to remove administratively set MAC (bsc#1223012). * CVE-2021-47516: nfp: Fix memory leak in nfp_cpp_area_cache_add() (bsc#1225427). * CVE-2021-47501: i40e: Fix NULL pointer dereference in i40e_dbg_dump_desc (bsc#1225361). * CVE-2024-39501: drivers: core: synchronize really_probe() and dev_uevent() (bsc#1227754). * CVE-2023-52743: ice: Do not use WQ_MEM_RECLAIM flag for workqueue (bsc#1225003) * CVE-2021-47542: net: qlogic: qlcnic: Fix a NULL pointer dereference in qlcnic_83xx_add_rings() (bsc#1225455) * CVE-2024-36901: ipv6: prevent NULL dereference in ip6_output() (bsc#1225711) * CVE-2024-36004: i40e: Do not use WQ_MEM_RECLAIM flag for workqueue (bsc#1224545) * CVE-2024-27025: nbd: null check for nla_nest_start (bsc#1223778) * CVE-2021-47599: btrfs: use latest_dev in btrfs_show_devname (bsc#1226571). * CVE-2023-52435: net: prevent mss overflow in skb_segment() (bsc#1220138). * CVE-2024-26663: tipc: Check the bearer type before calling tipc_udp_nl_bearer_add() (bsc#1222326). * CVE-2021-47597: inet_diag: fix kernel-infoleak for UDP sockets (bsc#1226553). * CVE-2024-39490: ipv6: sr: fix missing sk_buff release in seg6_input_core (bsc#1227626). * CVE-2024-38558: net: openvswitch: fix overwriting ct original tuple for ICMPv6 (bsc#1226783). * CVE-2024-26615: net/smc: fix illegal rmb_desc access in SMC-D connection dump (bsc#1220942). * CVE-2023-52619: Fixed possible crash when setting number of cpus to an odd number in pstore/ram (bsc#1221618). * CVE-2024-26659: Fixed wrong handling of isoc Babble and Buffer Overrun events in xhci (bsc#1222317). * CVE-2024-35978: Bluetooth: Fix memory leak in hci_req_sync_complete() (bsc#1224571). * CVE-2023-52669: crypto: s390/aes - Fix buffer overread in CTR mode (bsc#1224637). * CVE-2023-52615: Fixed page fault dead lock on mmap-ed hwrng (bsc#1221614). * CVE-2023-52612: Fixed req->dst buffer overflow in crypto/scomp (bsc#1221616). * CVE-2024-35995: ACPI: CPPC: Use access_width over bit_width for system memory accesses (bsc#1224557). * CVE-2023-52623: Fixed suspicious RCU usage in SUNRPC (bsc#1222060). * CVE-2021-47295: net: sched: fix memory leak in tcindex_partial_destroy_work (bsc#1224975) * CVE-2024-38630: watchdog: cpu5wdt.c: Fix use-after-free bug caused by cpu5wdt_trigger (bsc#1226908). * CVE-2021-47559: net/smc: Fix NULL pointer dereferencing in smc_vlan_by_tcpsk() (bsc#1225396). The following non-security bugs were fixed: * Fix spurious WARNING caused by a qxl driver patch (bsc#1227213,bsc#1227191) * Btrfs: incremental send, fix emission of invalid clone operations (bsc#1228030). * Btrfs: send, improve clone range (bsc#1228030). * KVM: PPC: Book3S HV: Do not take kvm->lock around kvm_for_each_vcpu (bsc#1065729). * KVM: PPC: Book3S HV: remove extraneous asterisk from rm_host_ipi_action() comment (bsc#1065729). * KVM: PPC: Book3S PR: Exiting split hack mode needs to fixup both PC and LR (bsc#1065729). * KVM: PPC: Book3S: Fix some RCU-list locks (git-fixes). * KVM: PPC: Book3S: Only report KVM_CAP_SPAPR_TCE_VFIO on powernv machines (bsc#1065729). * KVM: PPC: Book3S: Use new mutex to synchronize access to rtas token list (bsc#1065729). * KVM: PPC: Inform the userspace about TCE update failures (bsc#1065729). * KVM: PPC: Move and undef TRACE_INCLUDE_PATH/FILE (bsc#1065729). * PCI: Fix resource double counting on remove & rescan (git-fixes). * PCI: hv: Return zero, not garbage, when reading PCI_INTERRUPT_PIN (git- fixes). * Tools: hv: kvp: eliminate 'may be used uninitialized' warning (git-fixes). * USB: class: cdc-wdm: Fix CPU lockup caused by excessive log messages (git- fixes). * btrfs: fix 64bit compat send ioctl arguments not initializing version member (bsc#1228030). * btrfs: fix send ioctl on 32bit with 64bit kernel (bsc#1228030). * btrfs: remove unused members dir_path from recorded_ref (bsc#1228030). * btrfs: send: add new command FILEATTR for file attributes (bsc#1228030). * btrfs: send: add stream v2 definitions (bsc#1228030). * btrfs: send: always use the rbtree based inode ref management infrastructure (bsc#1228030). * btrfs: send: avoid copying file data (bsc#1228030). * btrfs: send: explicitly number commands and attributes (bsc#1228030). * btrfs: send: fix failures when processing inodes with no links (bsc#1228030). * btrfs: send: fix send failure of a subcase of orphan inodes (bsc#1228030). * btrfs: send: fix sending link commands for existing file paths (bsc#1228030). * btrfs: send: get rid of i_size logic in send_write() (bsc#1228030). * btrfs: send: introduce recorded_ref_alloc and recorded_ref_free (bsc#1228030). * btrfs: send: prepare for v2 protocol (bsc#1228030). * btrfs: send: refactor arguments of get_inode_info() (bsc#1228030). * btrfs: send: remove stale code when checking for shared extents (bsc#1228030). * btrfs: send: remove unused found_type parameter to lookup_dir_item_inode() (bsc#1228030). * btrfs: send: remove unused send_ctx::{total,cmd}_send_size (bsc#1228030). * btrfs: send: use boolean types for current inode status (bsc#1228030). * btrfs: silence maybe-uninitialized warning in clone_range (bsc#1228030). * drm/vc4: dsi: Only register our component once a DSI device is (bsc#1227975) * hv_netvsc: rndis_filter needs to select NLS (git-fixes). * ipv6: sr: fix incorrect unregister order (git-fixes). * net: mana: Fix the extra HZ in mana_hwc_send_request (git-fixes). * net: mana: select PAGE_POOL (git-fixes). * net_sched: add a temporary refcnt for struct tcindex_data (bsc#1224975). * net_sched: fix a memory leak in cls_tcindex (bsc#1224975). * net_sched: fix a missing refcnt in tcindex_init() (bsc#1224975). * net_sched: hold rtnl lock in tcindex_partial_destroy_work() (bsc#1224975) * nvme: fixup comment for nvme RDMA Provider Type (git-fixes). * ocfs2: fix DIO failure due to insufficient transaction credits (bsc#1216834). * ocfs2: remove redundant assignment to variable free_space (bsc#1228409). * ocfs2: strict bound check before memcmp in ocfs2_xattr_find_entry() (bsc#1228410). * scsi: qla2xxx: Avoid possible run-time warning with long model_num (bsc#1228850). * scsi: qla2xxx: Complete command early within lock (bsc#1228850). * scsi: qla2xxx: Convert comma to semicolon (bsc#1228850). * scsi: qla2xxx: Drop driver owner assignment (bsc#1228850). * scsi: qla2xxx: During vport delete send async logout explicitly (bsc#1228850). * scsi: qla2xxx: Fix debugfs output for fw_resource_count (bsc#1228850). * scsi: qla2xxx: Fix flash read failure (bsc#1228850). * scsi: qla2xxx: Fix for possible memory corruption (bsc#1228850). * scsi: qla2xxx: Fix optrom version displayed in FDMI (bsc#1228850). * scsi: qla2xxx: Reduce fabric scan duplicate code (bsc#1228850). * scsi: qla2xxx: Remove unused struct 'scsi_dif_tuple' (bsc#1228850). * scsi: qla2xxx: Return ENOBUFS if sg_cnt is more than one for ELS cmds (bsc#1228850). * scsi: qla2xxx: Unable to act on RSCN for port online (bsc#1228850). * scsi: qla2xxx: Update version to 10.02.09.300-k (bsc#1228850). * scsi: qla2xxx: Use QP lock to search for bsg (bsc#1228850). * scsi: qla2xxx: validate nvme_local_port correctly (bsc#1228850). * signal: Introduce clear_siginfo (git-fixes). * string.h: Introduce memtostr() and memtostr_pad() (bsc#1228850). * tools lib: Fix builds when glibc contains strlcpy() (git-fixes). * tools: hv: fix KVP and VSS daemons exit code (git-fixes). * usb: add a hcd_uses_dma helper (git-fixes). * usb: atm: cxacru: fix endpoint checking in cxacru_bind() (git-fixes). * usb: musb: da8xx: fix a resource leak in probe() (git-fixes). * x86/bhi: Avoid warning in #DB handler due to BHI mitigation (git-fixes). * x86/bugs: Remove CONFIG_BHI_MITIGATION_AUTO and spectre_bhi=auto (git- fixes). * x86/bugs: Replace CONFIG_SPECTRE_BHI_{ON,OFF} with CONFIG_MITIGATION_SPECTRE_BHI (git-fixes). * xfs: check that dir block entries do not off the end of the buffer (git- fixes). * xfs: refactor xfs_verifier_error and xfs_buf_ioerror (git-fixes). * xfs: remove XFS_WANT_CORRUPTED_RETURN from dir3 data verifiers (git-fixes). * xhci: Poll for U0 after disabling USB2 LPM (git-fixes). ## Special Instructions and Notes: * Please reboot the system after installing this update. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Real Time 12 SP5 zypper in -t patch SUSE-SLE-RT-12-SP5-2024-2892=1 ## Package List: * SUSE Linux Enterprise Real Time 12 SP5 (x86_64) * kernel-rt-devel-debuginfo-4.12.14-10.197.1 * gfs2-kmp-rt-debuginfo-4.12.14-10.197.1 * kernel-rt-devel-4.12.14-10.197.1 * kernel-rt_debug-devel-debuginfo-4.12.14-10.197.1 * kernel-rt-debugsource-4.12.14-10.197.1 * ocfs2-kmp-rt-debuginfo-4.12.14-10.197.1 * kernel-rt_debug-devel-4.12.14-10.197.1 * dlm-kmp-rt-debuginfo-4.12.14-10.197.1 * dlm-kmp-rt-4.12.14-10.197.1 * kernel-rt_debug-debugsource-4.12.14-10.197.1 * cluster-md-kmp-rt-4.12.14-10.197.1 * kernel-rt-base-4.12.14-10.197.1 * kernel-rt-base-debuginfo-4.12.14-10.197.1 * cluster-md-kmp-rt-debuginfo-4.12.14-10.197.1 * kernel-rt-debuginfo-4.12.14-10.197.1 * kernel-rt_debug-debuginfo-4.12.14-10.197.1 * gfs2-kmp-rt-4.12.14-10.197.1 * kernel-syms-rt-4.12.14-10.197.1 * ocfs2-kmp-rt-4.12.14-10.197.1 * SUSE Linux Enterprise Real Time 12 SP5 (noarch) * kernel-source-rt-4.12.14-10.197.1 * kernel-devel-rt-4.12.14-10.197.1 * SUSE Linux Enterprise Real Time 12 SP5 (nosrc x86_64) * kernel-rt-4.12.14-10.197.1 * kernel-rt_debug-4.12.14-10.197.1 ## References: * https://www.suse.com/security/cve/CVE-2021-47194.html * https://www.suse.com/security/cve/CVE-2021-47197.html * https://www.suse.com/security/cve/CVE-2021-47219.html * https://www.suse.com/security/cve/CVE-2021-47295.html * https://www.suse.com/security/cve/CVE-2021-47388.html * https://www.suse.com/security/cve/CVE-2021-47395.html * https://www.suse.com/security/cve/CVE-2021-47399.html * https://www.suse.com/security/cve/CVE-2021-47403.html * https://www.suse.com/security/cve/CVE-2021-47405.html * https://www.suse.com/security/cve/CVE-2021-47441.html * https://www.suse.com/security/cve/CVE-2021-47468.html * https://www.suse.com/security/cve/CVE-2021-47501.html * https://www.suse.com/security/cve/CVE-2021-47516.html * https://www.suse.com/security/cve/CVE-2021-47542.html * https://www.suse.com/security/cve/CVE-2021-47559.html * https://www.suse.com/security/cve/CVE-2021-47580.html * https://www.suse.com/security/cve/CVE-2021-47582.html * https://www.suse.com/security/cve/CVE-2021-47588.html * https://www.suse.com/security/cve/CVE-2021-47597.html * https://www.suse.com/security/cve/CVE-2021-47599.html * https://www.suse.com/security/cve/CVE-2021-47606.html * https://www.suse.com/security/cve/CVE-2021-47619.html * https://www.suse.com/security/cve/CVE-2022-48775.html * https://www.suse.com/security/cve/CVE-2022-48792.html * https://www.suse.com/security/cve/CVE-2022-48794.html * https://www.suse.com/security/cve/CVE-2022-48804.html * https://www.suse.com/security/cve/CVE-2022-48805.html * https://www.suse.com/security/cve/CVE-2022-48810.html * https://www.suse.com/security/cve/CVE-2022-48811.html * https://www.suse.com/security/cve/CVE-2022-48823.html * https://www.suse.com/security/cve/CVE-2022-48826.html * https://www.suse.com/security/cve/CVE-2022-48827.html * https://www.suse.com/security/cve/CVE-2022-48828.html * https://www.suse.com/security/cve/CVE-2022-48829.html * https://www.suse.com/security/cve/CVE-2022-48836.html * https://www.suse.com/security/cve/CVE-2022-48839.html * https://www.suse.com/security/cve/CVE-2022-48850.html * https://www.suse.com/security/cve/CVE-2022-48855.html * https://www.suse.com/security/cve/CVE-2022-48857.html * https://www.suse.com/security/cve/CVE-2022-48860.html * https://www.suse.com/security/cve/CVE-2022-48863.html * https://www.suse.com/security/cve/CVE-2023-52435.html * https://www.suse.com/security/cve/CVE-2023-52594.html * https://www.suse.com/security/cve/CVE-2023-52612.html * https://www.suse.com/security/cve/CVE-2023-52615.html * https://www.suse.com/security/cve/CVE-2023-52619.html * https://www.suse.com/security/cve/CVE-2023-52623.html * https://www.suse.com/security/cve/CVE-2023-52669.html * https://www.suse.com/security/cve/CVE-2023-52743.html * https://www.suse.com/security/cve/CVE-2023-52885.html * https://www.suse.com/security/cve/CVE-2024-26615.html * https://www.suse.com/security/cve/CVE-2024-26659.html * https://www.suse.com/security/cve/CVE-2024-26663.html * https://www.suse.com/security/cve/CVE-2024-26735.html * https://www.suse.com/security/cve/CVE-2024-26830.html * https://www.suse.com/security/cve/CVE-2024-26920.html * https://www.suse.com/security/cve/CVE-2024-26924.html * https://www.suse.com/security/cve/CVE-2024-27019.html * https://www.suse.com/security/cve/CVE-2024-27020.html * https://www.suse.com/security/cve/CVE-2024-27025.html * https://www.suse.com/security/cve/CVE-2024-27437.html * https://www.suse.com/security/cve/CVE-2024-35806.html * https://www.suse.com/security/cve/CVE-2024-35837.html * https://www.suse.com/security/cve/CVE-2024-35893.html * https://www.suse.com/security/cve/CVE-2024-35934.html * https://www.suse.com/security/cve/CVE-2024-35949.html * https://www.suse.com/security/cve/CVE-2024-35966.html * https://www.suse.com/security/cve/CVE-2024-35967.html * https://www.suse.com/security/cve/CVE-2024-35978.html * https://www.suse.com/security/cve/CVE-2024-35995.html * https://www.suse.com/security/cve/CVE-2024-36004.html * https://www.suse.com/security/cve/CVE-2024-36288.html * https://www.suse.com/security/cve/CVE-2024-36901.html * https://www.suse.com/security/cve/CVE-2024-36902.html * https://www.suse.com/security/cve/CVE-2024-36924.html * https://www.suse.com/security/cve/CVE-2024-36939.html * https://www.suse.com/security/cve/CVE-2024-38558.html * https://www.suse.com/security/cve/CVE-2024-38560.html * https://www.suse.com/security/cve/CVE-2024-38630.html * https://www.suse.com/security/cve/CVE-2024-39487.html * https://www.suse.com/security/cve/CVE-2024-39488.html * https://www.suse.com/security/cve/CVE-2024-39490.html * https://www.suse.com/security/cve/CVE-2024-39494.html * https://www.suse.com/security/cve/CVE-2024-39499.html * https://www.suse.com/security/cve/CVE-2024-39501.html * https://www.suse.com/security/cve/CVE-2024-39506.html * https://www.suse.com/security/cve/CVE-2024-39507.html * https://www.suse.com/security/cve/CVE-2024-39509.html * https://www.suse.com/security/cve/CVE-2024-40901.html * https://www.suse.com/security/cve/CVE-2024-40904.html * https://www.suse.com/security/cve/CVE-2024-40912.html * https://www.suse.com/security/cve/CVE-2024-40923.html * https://www.suse.com/security/cve/CVE-2024-40929.html * https://www.suse.com/security/cve/CVE-2024-40932.html * https://www.suse.com/security/cve/CVE-2024-40937.html * https://www.suse.com/security/cve/CVE-2024-40941.html * https://www.suse.com/security/cve/CVE-2024-40942.html * https://www.suse.com/security/cve/CVE-2024-40943.html * https://www.suse.com/security/cve/CVE-2024-40953.html * https://www.suse.com/security/cve/CVE-2024-40959.html * https://www.suse.com/security/cve/CVE-2024-40966.html * https://www.suse.com/security/cve/CVE-2024-40967.html * https://www.suse.com/security/cve/CVE-2024-40978.html * https://www.suse.com/security/cve/CVE-2024-40982.html * https://www.suse.com/security/cve/CVE-2024-40987.html * https://www.suse.com/security/cve/CVE-2024-40988.html * https://www.suse.com/security/cve/CVE-2024-40990.html * https://www.suse.com/security/cve/CVE-2024-40995.html * https://www.suse.com/security/cve/CVE-2024-40998.html * https://www.suse.com/security/cve/CVE-2024-40999.html * https://www.suse.com/security/cve/CVE-2024-41014.html * https://www.suse.com/security/cve/CVE-2024-41015.html * https://www.suse.com/security/cve/CVE-2024-41016.html * https://www.suse.com/security/cve/CVE-2024-41044.html * https://www.suse.com/security/cve/CVE-2024-41048.html * https://www.suse.com/security/cve/CVE-2024-41059.html * https://www.suse.com/security/cve/CVE-2024-41060.html * https://www.suse.com/security/cve/CVE-2024-41063.html * https://www.suse.com/security/cve/CVE-2024-41064.html * https://www.suse.com/security/cve/CVE-2024-41066.html * https://www.suse.com/security/cve/CVE-2024-41070.html * https://www.suse.com/security/cve/CVE-2024-41071.html * https://www.suse.com/security/cve/CVE-2024-41072.html * https://www.suse.com/security/cve/CVE-2024-41076.html * https://www.suse.com/security/cve/CVE-2024-41078.html * https://www.suse.com/security/cve/CVE-2024-41081.html * https://www.suse.com/security/cve/CVE-2024-41089.html * https://www.suse.com/security/cve/CVE-2024-41090.html * https://www.suse.com/security/cve/CVE-2024-41091.html * https://www.suse.com/security/cve/CVE-2024-41095.html * https://www.suse.com/security/cve/CVE-2024-42070.html * https://www.suse.com/security/cve/CVE-2024-42093.html * https://www.suse.com/security/cve/CVE-2024-42096.html * https://www.suse.com/security/cve/CVE-2024-42119.html * https://www.suse.com/security/cve/CVE-2024-42120.html * https://www.suse.com/security/cve/CVE-2024-42124.html * https://www.suse.com/security/cve/CVE-2024-42145.html * https://www.suse.com/security/cve/CVE-2024-42223.html * https://www.suse.com/security/cve/CVE-2024-42224.html * https://bugzilla.suse.com/show_bug.cgi?id=1065729 * https://bugzilla.suse.com/show_bug.cgi?id=1088701 * https://bugzilla.suse.com/show_bug.cgi?id=1149446 * https://bugzilla.suse.com/show_bug.cgi?id=1196018 * https://bugzilla.suse.com/show_bug.cgi?id=1202346 * https://bugzilla.suse.com/show_bug.cgi?id=1216834 * https://bugzilla.suse.com/show_bug.cgi?id=1220138 * https://bugzilla.suse.com/show_bug.cgi?id=1220942 * https://bugzilla.suse.com/show_bug.cgi?id=1221045 * https://bugzilla.suse.com/show_bug.cgi?id=1221614 * https://bugzilla.suse.com/show_bug.cgi?id=1221616 * https://bugzilla.suse.com/show_bug.cgi?id=1221618 * https://bugzilla.suse.com/show_bug.cgi?id=1222060 * https://bugzilla.suse.com/show_bug.cgi?id=1222317 * https://bugzilla.suse.com/show_bug.cgi?id=1222326 * https://bugzilla.suse.com/show_bug.cgi?id=1222372 * https://bugzilla.suse.com/show_bug.cgi?id=1222625 * https://bugzilla.suse.com/show_bug.cgi?id=1222776 * https://bugzilla.suse.com/show_bug.cgi?id=1222824 * https://bugzilla.suse.com/show_bug.cgi?id=1222829 * https://bugzilla.suse.com/show_bug.cgi?id=1223012 * https://bugzilla.suse.com/show_bug.cgi?id=1223778 * https://bugzilla.suse.com/show_bug.cgi?id=1223813 * https://bugzilla.suse.com/show_bug.cgi?id=1223815 * https://bugzilla.suse.com/show_bug.cgi?id=1224500 * https://bugzilla.suse.com/show_bug.cgi?id=1224512 * https://bugzilla.suse.com/show_bug.cgi?id=1224545 * https://bugzilla.suse.com/show_bug.cgi?id=1224557 * https://bugzilla.suse.com/show_bug.cgi?id=1224571 * https://bugzilla.suse.com/show_bug.cgi?id=1224576 * https://bugzilla.suse.com/show_bug.cgi?id=1224587 * https://bugzilla.suse.com/show_bug.cgi?id=1224637 * https://bugzilla.suse.com/show_bug.cgi?id=1224641 * https://bugzilla.suse.com/show_bug.cgi?id=1224683 * https://bugzilla.suse.com/show_bug.cgi?id=1224699 * https://bugzilla.suse.com/show_bug.cgi?id=1224700 * https://bugzilla.suse.com/show_bug.cgi?id=1224975 * https://bugzilla.suse.com/show_bug.cgi?id=1225003 * https://bugzilla.suse.com/show_bug.cgi?id=1225214 * https://bugzilla.suse.com/show_bug.cgi?id=1225224 * https://bugzilla.suse.com/show_bug.cgi?id=1225229 * https://bugzilla.suse.com/show_bug.cgi?id=1225238 * https://bugzilla.suse.com/show_bug.cgi?id=1225241 * https://bugzilla.suse.com/show_bug.cgi?id=1225326 * https://bugzilla.suse.com/show_bug.cgi?id=1225328 * https://bugzilla.suse.com/show_bug.cgi?id=1225346 * https://bugzilla.suse.com/show_bug.cgi?id=1225361 * https://bugzilla.suse.com/show_bug.cgi?id=1225396 * https://bugzilla.suse.com/show_bug.cgi?id=1225427 * https://bugzilla.suse.com/show_bug.cgi?id=1225455 * https://bugzilla.suse.com/show_bug.cgi?id=1225711 * https://bugzilla.suse.com/show_bug.cgi?id=1225719 * https://bugzilla.suse.com/show_bug.cgi?id=1225820 * https://bugzilla.suse.com/show_bug.cgi?id=1225838 * https://bugzilla.suse.com/show_bug.cgi?id=1226550 * https://bugzilla.suse.com/show_bug.cgi?id=1226553 * https://bugzilla.suse.com/show_bug.cgi?id=1226555 * https://bugzilla.suse.com/show_bug.cgi?id=1226559 * https://bugzilla.suse.com/show_bug.cgi?id=1226568 * https://bugzilla.suse.com/show_bug.cgi?id=1226571 * https://bugzilla.suse.com/show_bug.cgi?id=1226645 * https://bugzilla.suse.com/show_bug.cgi?id=1226783 * https://bugzilla.suse.com/show_bug.cgi?id=1226786 * https://bugzilla.suse.com/show_bug.cgi?id=1226834 * https://bugzilla.suse.com/show_bug.cgi?id=1226908 * https://bugzilla.suse.com/show_bug.cgi?id=1227191 * https://bugzilla.suse.com/show_bug.cgi?id=1227213 * https://bugzilla.suse.com/show_bug.cgi?id=1227573 * https://bugzilla.suse.com/show_bug.cgi?id=1227618 * https://bugzilla.suse.com/show_bug.cgi?id=1227626 * https://bugzilla.suse.com/show_bug.cgi?id=1227716 * https://bugzilla.suse.com/show_bug.cgi?id=1227725 * https://bugzilla.suse.com/show_bug.cgi?id=1227729 * https://bugzilla.suse.com/show_bug.cgi?id=1227730 * https://bugzilla.suse.com/show_bug.cgi?id=1227733 * https://bugzilla.suse.com/show_bug.cgi?id=1227750 * https://bugzilla.suse.com/show_bug.cgi?id=1227754 * https://bugzilla.suse.com/show_bug.cgi?id=1227762 * https://bugzilla.suse.com/show_bug.cgi?id=1227770 * https://bugzilla.suse.com/show_bug.cgi?id=1227771 * https://bugzilla.suse.com/show_bug.cgi?id=1227772 * https://bugzilla.suse.com/show_bug.cgi?id=1227774 * https://bugzilla.suse.com/show_bug.cgi?id=1227786 * https://bugzilla.suse.com/show_bug.cgi?id=1227790 * https://bugzilla.suse.com/show_bug.cgi?id=1227806 * https://bugzilla.suse.com/show_bug.cgi?id=1227824 * https://bugzilla.suse.com/show_bug.cgi?id=1227828 * https://bugzilla.suse.com/show_bug.cgi?id=1227830 * https://bugzilla.suse.com/show_bug.cgi?id=1227836 * https://bugzilla.suse.com/show_bug.cgi?id=1227849 * https://bugzilla.suse.com/show_bug.cgi?id=1227865 * https://bugzilla.suse.com/show_bug.cgi?id=1227866 * https://bugzilla.suse.com/show_bug.cgi?id=1227884 * https://bugzilla.suse.com/show_bug.cgi?id=1227886 * https://bugzilla.suse.com/show_bug.cgi?id=1227891 * https://bugzilla.suse.com/show_bug.cgi?id=1227913 * https://bugzilla.suse.com/show_bug.cgi?id=1227924 * https://bugzilla.suse.com/show_bug.cgi?id=1227928 * https://bugzilla.suse.com/show_bug.cgi?id=1227929 * https://bugzilla.suse.com/show_bug.cgi?id=1227936 * https://bugzilla.suse.com/show_bug.cgi?id=1227957 * https://bugzilla.suse.com/show_bug.cgi?id=1227968 * https://bugzilla.suse.com/show_bug.cgi?id=1227969 * https://bugzilla.suse.com/show_bug.cgi?id=1227975 * https://bugzilla.suse.com/show_bug.cgi?id=1227985 * https://bugzilla.suse.com/show_bug.cgi?id=1227989 * https://bugzilla.suse.com/show_bug.cgi?id=1228003 * https://bugzilla.suse.com/show_bug.cgi?id=1228005 * https://bugzilla.suse.com/show_bug.cgi?id=1228008 * https://bugzilla.suse.com/show_bug.cgi?id=1228013 * https://bugzilla.suse.com/show_bug.cgi?id=1228025 * https://bugzilla.suse.com/show_bug.cgi?id=1228030 * https://bugzilla.suse.com/show_bug.cgi?id=1228037 * https://bugzilla.suse.com/show_bug.cgi?id=1228045 * https://bugzilla.suse.com/show_bug.cgi?id=1228054 * https://bugzilla.suse.com/show_bug.cgi?id=1228055 * https://bugzilla.suse.com/show_bug.cgi?id=1228063 * https://bugzilla.suse.com/show_bug.cgi?id=1228071 * https://bugzilla.suse.com/show_bug.cgi?id=1228235 * https://bugzilla.suse.com/show_bug.cgi?id=1228237 * https://bugzilla.suse.com/show_bug.cgi?id=1228327 * https://bugzilla.suse.com/show_bug.cgi?id=1228328 * https://bugzilla.suse.com/show_bug.cgi?id=1228408 * https://bugzilla.suse.com/show_bug.cgi?id=1228409 * https://bugzilla.suse.com/show_bug.cgi?id=1228410 * https://bugzilla.suse.com/show_bug.cgi?id=1228470 * https://bugzilla.suse.com/show_bug.cgi?id=1228530 * https://bugzilla.suse.com/show_bug.cgi?id=1228561 * https://bugzilla.suse.com/show_bug.cgi?id=1228565 * https://bugzilla.suse.com/show_bug.cgi?id=1228567 * https://bugzilla.suse.com/show_bug.cgi?id=1228580 * https://bugzilla.suse.com/show_bug.cgi?id=1228581 * https://bugzilla.suse.com/show_bug.cgi?id=1228584 * https://bugzilla.suse.com/show_bug.cgi?id=1228588 * https://bugzilla.suse.com/show_bug.cgi?id=1228599 * https://bugzilla.suse.com/show_bug.cgi?id=1228617 * https://bugzilla.suse.com/show_bug.cgi?id=1228625 * https://bugzilla.suse.com/show_bug.cgi?id=1228626 * https://bugzilla.suse.com/show_bug.cgi?id=1228633 * https://bugzilla.suse.com/show_bug.cgi?id=1228640 * https://bugzilla.suse.com/show_bug.cgi?id=1228649 * https://bugzilla.suse.com/show_bug.cgi?id=1228655 * https://bugzilla.suse.com/show_bug.cgi?id=1228658 * https://bugzilla.suse.com/show_bug.cgi?id=1228662 * https://bugzilla.suse.com/show_bug.cgi?id=1228680 * https://bugzilla.suse.com/show_bug.cgi?id=1228705 * https://bugzilla.suse.com/show_bug.cgi?id=1228723 * https://bugzilla.suse.com/show_bug.cgi?id=1228726 * https://bugzilla.suse.com/show_bug.cgi?id=1228743 * https://bugzilla.suse.com/show_bug.cgi?id=1228850 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Wed Aug 14 12:30:04 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Wed, 14 Aug 2024 12:30:04 -0000 Subject: SUSE-SU-2024:2907-1: important: Security update for python310-setuptools Message-ID: <172363860454.24208.10489795472361084372@smelt2.prg2.suse.org> # Security update for python310-setuptools Announcement ID: SUSE-SU-2024:2907-1 Rating: important References: * bsc#1228105 Cross-References: * CVE-2024-6345 CVSS scores: * CVE-2024-6345 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.4 * openSUSE Leap 15.5 * openSUSE Leap 15.6 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 An update that solves one vulnerability can now be installed. ## Description: This update for python310-setuptools fixes the following issues: * CVE-2024-6345: Fixed code execution via download functions in the package_index module (bsc#1228105) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2024-2907=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2024-2907=1 * openSUSE Leap 15.4 zypper in -t patch SUSE-2024-2907=1 * openSUSE Leap 15.5 zypper in -t patch openSUSE-SLE-15.5-2024-2907=1 * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2024-2907=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2024-2907=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2024-2907=1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 zypper in -t patch SUSE-SLE-Product-SLED-15-SP4-LTSS-2024-2907=1 ## Package List: * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (noarch) * python310-setuptools-67.6.1-150400.4.9.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (noarch) * python310-setuptools-67.6.1-150400.4.9.1 * openSUSE Leap 15.4 (noarch) * python310-setuptools-67.6.1-150400.4.9.1 * openSUSE Leap 15.5 (noarch) * python310-setuptools-67.6.1-150400.4.9.1 * openSUSE Leap 15.6 (noarch) * python310-setuptools-67.6.1-150400.4.9.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (noarch) * python310-setuptools-67.6.1-150400.4.9.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (noarch) * python310-setuptools-67.6.1-150400.4.9.1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (noarch) * python310-setuptools-67.6.1-150400.4.9.1 ## References: * https://www.suse.com/security/cve/CVE-2024-6345.html * https://bugzilla.suse.com/show_bug.cgi?id=1228105 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Wed Aug 14 12:30:08 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Wed, 14 Aug 2024 12:30:08 -0000 Subject: SUSE-SU-2024:2906-1: important: Security update for python39-setuptools Message-ID: <172363860804.24208.1748075098474775530@smelt2.prg2.suse.org> # Security update for python39-setuptools Announcement ID: SUSE-SU-2024:2906-1 Rating: important References: * bsc#1228105 Cross-References: * CVE-2024-6345 CVSS scores: * CVE-2024-6345 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.3 * openSUSE Leap 15.5 * openSUSE Leap 15.6 * SUSE Enterprise Storage 7.1 * SUSE Linux Enterprise High Performance Computing 15 SP3 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 * SUSE Linux Enterprise Server 15 SP3 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 An update that solves one vulnerability can now be installed. ## Description: This update for python39-setuptools fixes the following issues: * CVE-2024-6345: Fixed code execution via download functions in the package_index module (bsc#1228105) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.3 zypper in -t patch SUSE-2024-2906=1 * openSUSE Leap 15.5 zypper in -t patch openSUSE-SLE-15.5-2024-2906=1 * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2024-2906=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 zypper in -t patch SUSE-SLE-Product-HPC-15-SP3-LTSS-2024-2906=1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 zypper in -t patch SUSE-SLE-Product-SLES-15-SP3-LTSS-2024-2906=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP3-2024-2906=1 * SUSE Enterprise Storage 7.1 zypper in -t patch SUSE-Storage-7.1-2024-2906=1 ## Package List: * openSUSE Leap 15.3 (noarch) * python39-setuptools-44.1.1-150300.7.9.1 * openSUSE Leap 15.5 (noarch) * python39-setuptools-44.1.1-150300.7.9.1 * openSUSE Leap 15.6 (noarch) * python39-setuptools-44.1.1-150300.7.9.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (noarch) * python39-setuptools-44.1.1-150300.7.9.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (noarch) * python39-setuptools-44.1.1-150300.7.9.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (noarch) * python39-setuptools-44.1.1-150300.7.9.1 * SUSE Enterprise Storage 7.1 (noarch) * python39-setuptools-44.1.1-150300.7.9.1 ## References: * https://www.suse.com/security/cve/CVE-2024-6345.html * https://bugzilla.suse.com/show_bug.cgi?id=1228105 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Wed Aug 14 12:30:12 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Wed, 14 Aug 2024 12:30:12 -0000 Subject: SUSE-SU-2024:2905-1: important: Security update for webkit2gtk3 Message-ID: <172363861268.24208.9425051650650247709@smelt2.prg2.suse.org> # Security update for webkit2gtk3 Announcement ID: SUSE-SU-2024:2905-1 Rating: important References: * bsc#1228613 * bsc#1228693 * bsc#1228694 * bsc#1228695 Cross-References: * CVE-2024-40776 * CVE-2024-40779 * CVE-2024-40780 * CVE-2024-40782 CVSS scores: * CVE-2024-40776 ( SUSE ): 8.9 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:H * CVE-2024-40776 ( SUSE ): 8.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H * CVE-2024-40779 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2024-40780 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2024-40782 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H Affected Products: * Basesystem Module 15-SP6 * Desktop Applications Module 15-SP6 * Development Tools Module 15-SP6 * openSUSE Leap 15.6 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 An update that solves four vulnerabilities can now be installed. ## Description: This update for webkit2gtk3 fixes the following issues: * CVE-2024-40776: Fixed a use-after-free issue with improved memory management (bsc#1228613). * CVE-2024-40779: Fixed a out-of-bounds read with improved bounds checking (bsc#1228693). * CVE-2024-40780: Fixed another out-of-bounds read with improved bounds checking (bsc#1228694). * CVE-2024-40782: Fixed a second use-after-free issue with improved memory management (bsc#1228695). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch SUSE-2024-2905=1 openSUSE-SLE-15.6-2024-2905=1 * Basesystem Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP6-2024-2905=1 * Desktop Applications Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Desktop-Applications-15-SP6-2024-2905=1 * Development Tools Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Development-Tools-15-SP6-2024-2905=1 ## Package List: * openSUSE Leap 15.6 (noarch) * WebKitGTK-4.0-lang-2.44.2-150600.12.6.1 * WebKitGTK-6.0-lang-2.44.2-150600.12.6.1 * WebKitGTK-4.1-lang-2.44.2-150600.12.6.1 * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64 i586) * webkit2gtk3-soup2-minibrowser-2.44.2-150600.12.6.1 * libjavascriptcoregtk-6_0-1-debuginfo-2.44.2-150600.12.6.1 * typelib-1_0-JavaScriptCore-4_1-2.44.2-150600.12.6.1 * webkit2gtk-4_0-injected-bundles-2.44.2-150600.12.6.1 * webkit2gtk3-soup2-minibrowser-debuginfo-2.44.2-150600.12.6.1 * webkit2gtk3-minibrowser-2.44.2-150600.12.6.1 * webkitgtk-6_0-injected-bundles-2.44.2-150600.12.6.1 * webkit2gtk-4_0-injected-bundles-debuginfo-2.44.2-150600.12.6.1 * libwebkit2gtk-4_1-0-2.44.2-150600.12.6.1 * typelib-1_0-WebKit-6_0-2.44.2-150600.12.6.1 * webkit2gtk4-devel-2.44.2-150600.12.6.1 * webkit2gtk3-soup2-devel-2.44.2-150600.12.6.1 * libjavascriptcoregtk-4_1-0-2.44.2-150600.12.6.1 * webkit-jsc-4-debuginfo-2.44.2-150600.12.6.1 * libjavascriptcoregtk-6_0-1-2.44.2-150600.12.6.1 * libjavascriptcoregtk-4_0-18-2.44.2-150600.12.6.1 * libwebkitgtk-6_0-4-2.44.2-150600.12.6.1 * libwebkit2gtk-4_1-0-debuginfo-2.44.2-150600.12.6.1 * libjavascriptcoregtk-4_0-18-debuginfo-2.44.2-150600.12.6.1 * webkit2gtk4-minibrowser-2.44.2-150600.12.6.1 * typelib-1_0-JavaScriptCore-4_0-2.44.2-150600.12.6.1 * webkit2gtk4-debugsource-2.44.2-150600.12.6.1 * webkit2gtk-4_1-injected-bundles-2.44.2-150600.12.6.1 * webkit2gtk3-debugsource-2.44.2-150600.12.6.1 * libwebkit2gtk-4_0-37-2.44.2-150600.12.6.1 * webkit2gtk3-minibrowser-debuginfo-2.44.2-150600.12.6.1 * libwebkit2gtk-4_0-37-debuginfo-2.44.2-150600.12.6.1 * webkit2gtk4-minibrowser-debuginfo-2.44.2-150600.12.6.1 * typelib-1_0-WebKit2-4_0-2.44.2-150600.12.6.1 * webkit2gtk-4_1-injected-bundles-debuginfo-2.44.2-150600.12.6.1 * webkit-jsc-4.1-2.44.2-150600.12.6.1 * typelib-1_0-WebKitWebProcessExtension-6_0-2.44.2-150600.12.6.1 * typelib-1_0-JavaScriptCore-6_0-2.44.2-150600.12.6.1 * webkit2gtk3-soup2-debugsource-2.44.2-150600.12.6.1 * typelib-1_0-WebKit2WebExtension-4_0-2.44.2-150600.12.6.1 * webkit-jsc-4.1-debuginfo-2.44.2-150600.12.6.1 * webkit-jsc-6.0-2.44.2-150600.12.6.1 * webkit-jsc-6.0-debuginfo-2.44.2-150600.12.6.1 * libjavascriptcoregtk-4_1-0-debuginfo-2.44.2-150600.12.6.1 * webkitgtk-6_0-injected-bundles-debuginfo-2.44.2-150600.12.6.1 * webkit-jsc-4-2.44.2-150600.12.6.1 * typelib-1_0-WebKit2WebExtension-4_1-2.44.2-150600.12.6.1 * libwebkitgtk-6_0-4-debuginfo-2.44.2-150600.12.6.1 * typelib-1_0-WebKit2-4_1-2.44.2-150600.12.6.1 * webkit2gtk3-devel-2.44.2-150600.12.6.1 * openSUSE Leap 15.6 (x86_64) * libjavascriptcoregtk-4_0-18-32bit-debuginfo-2.44.2-150600.12.6.1 * libwebkit2gtk-4_0-37-32bit-debuginfo-2.44.2-150600.12.6.1 * libwebkit2gtk-4_1-0-32bit-debuginfo-2.44.2-150600.12.6.1 * libwebkit2gtk-4_1-0-32bit-2.44.2-150600.12.6.1 * libwebkit2gtk-4_0-37-32bit-2.44.2-150600.12.6.1 * libjavascriptcoregtk-4_1-0-32bit-2.44.2-150600.12.6.1 * libjavascriptcoregtk-4_1-0-32bit-debuginfo-2.44.2-150600.12.6.1 * libjavascriptcoregtk-4_0-18-32bit-2.44.2-150600.12.6.1 * openSUSE Leap 15.6 (aarch64_ilp32) * libjavascriptcoregtk-4_0-18-64bit-debuginfo-2.44.2-150600.12.6.1 * libwebkit2gtk-4_1-0-64bit-2.44.2-150600.12.6.1 * libjavascriptcoregtk-4_1-0-64bit-2.44.2-150600.12.6.1 * libwebkit2gtk-4_1-0-64bit-debuginfo-2.44.2-150600.12.6.1 * libwebkit2gtk-4_0-37-64bit-2.44.2-150600.12.6.1 * libjavascriptcoregtk-4_1-0-64bit-debuginfo-2.44.2-150600.12.6.1 * libjavascriptcoregtk-4_0-18-64bit-2.44.2-150600.12.6.1 * libwebkit2gtk-4_0-37-64bit-debuginfo-2.44.2-150600.12.6.1 * Basesystem Module 15-SP6 (noarch) * WebKitGTK-4.0-lang-2.44.2-150600.12.6.1 * WebKitGTK-6.0-lang-2.44.2-150600.12.6.1 * Basesystem Module 15-SP6 (aarch64 ppc64le s390x x86_64) * libjavascriptcoregtk-6_0-1-debuginfo-2.44.2-150600.12.6.1 * libjavascriptcoregtk-4_0-18-debuginfo-2.44.2-150600.12.6.1 * typelib-1_0-WebKit2WebExtension-4_0-2.44.2-150600.12.6.1 * typelib-1_0-JavaScriptCore-4_0-2.44.2-150600.12.6.1 * webkit2gtk3-soup2-devel-2.44.2-150600.12.6.1 * webkit2gtk4-debugsource-2.44.2-150600.12.6.1 * libjavascriptcoregtk-6_0-1-2.44.2-150600.12.6.1 * webkitgtk-6_0-injected-bundles-debuginfo-2.44.2-150600.12.6.1 * libwebkit2gtk-4_0-37-2.44.2-150600.12.6.1 * libwebkitgtk-6_0-4-debuginfo-2.44.2-150600.12.6.1 * webkit2gtk-4_0-injected-bundles-2.44.2-150600.12.6.1 * libjavascriptcoregtk-4_0-18-2.44.2-150600.12.6.1 * libwebkitgtk-6_0-4-2.44.2-150600.12.6.1 * webkitgtk-6_0-injected-bundles-2.44.2-150600.12.6.1 * libwebkit2gtk-4_0-37-debuginfo-2.44.2-150600.12.6.1 * webkit2gtk-4_0-injected-bundles-debuginfo-2.44.2-150600.12.6.1 * typelib-1_0-WebKit2-4_0-2.44.2-150600.12.6.1 * webkit2gtk3-soup2-debugsource-2.44.2-150600.12.6.1 * Desktop Applications Module 15-SP6 (noarch) * WebKitGTK-4.1-lang-2.44.2-150600.12.6.1 * Desktop Applications Module 15-SP6 (aarch64 ppc64le s390x x86_64) * libwebkit2gtk-4_1-0-2.44.2-150600.12.6.1 * typelib-1_0-JavaScriptCore-4_1-2.44.2-150600.12.6.1 * libjavascriptcoregtk-4_1-0-2.44.2-150600.12.6.1 * libjavascriptcoregtk-4_1-0-debuginfo-2.44.2-150600.12.6.1 * webkit2gtk-4_1-injected-bundles-2.44.2-150600.12.6.1 * webkit2gtk3-debugsource-2.44.2-150600.12.6.1 * typelib-1_0-WebKit2WebExtension-4_1-2.44.2-150600.12.6.1 * webkit2gtk-4_1-injected-bundles-debuginfo-2.44.2-150600.12.6.1 * libwebkit2gtk-4_1-0-debuginfo-2.44.2-150600.12.6.1 * typelib-1_0-WebKit2-4_1-2.44.2-150600.12.6.1 * webkit2gtk3-devel-2.44.2-150600.12.6.1 * Development Tools Module 15-SP6 (aarch64 ppc64le s390x x86_64) * typelib-1_0-WebKit-6_0-2.44.2-150600.12.6.1 * typelib-1_0-JavaScriptCore-6_0-2.44.2-150600.12.6.1 * webkit2gtk4-devel-2.44.2-150600.12.6.1 * webkit2gtk4-debugsource-2.44.2-150600.12.6.1 * typelib-1_0-WebKitWebProcessExtension-6_0-2.44.2-150600.12.6.1 ## References: * https://www.suse.com/security/cve/CVE-2024-40776.html * https://www.suse.com/security/cve/CVE-2024-40779.html * https://www.suse.com/security/cve/CVE-2024-40780.html * https://www.suse.com/security/cve/CVE-2024-40782.html * https://bugzilla.suse.com/show_bug.cgi?id=1228613 * https://bugzilla.suse.com/show_bug.cgi?id=1228693 * https://bugzilla.suse.com/show_bug.cgi?id=1228694 * https://bugzilla.suse.com/show_bug.cgi?id=1228695 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Wed Aug 14 12:30:16 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Wed, 14 Aug 2024 12:30:16 -0000 Subject: SUSE-SU-2024:2904-1: important: Security update for python312-setuptools Message-ID: <172363861690.24208.1830568563672551951@smelt2.prg2.suse.org> # Security update for python312-setuptools Announcement ID: SUSE-SU-2024:2904-1 Rating: important References: * bsc#1228105 Cross-References: * CVE-2024-6345 CVSS scores: * CVE-2024-6345 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.6 * Python 3 Module 15-SP6 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 An update that solves one vulnerability can now be installed. ## Description: This update for python312-setuptools fixes the following issues: * CVE-2024-6345: Fixed code execution via download functions in the package_index module (bsc#1228105) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch SUSE-2024-2904=1 openSUSE-SLE-15.6-2024-2904=1 * Python 3 Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Python3-15-SP6-2024-2904=1 ## Package List: * openSUSE Leap 15.6 (noarch) * python312-setuptools-68.1.2-150600.3.3.1 * Python 3 Module 15-SP6 (noarch) * python312-setuptools-68.1.2-150600.3.3.1 ## References: * https://www.suse.com/security/cve/CVE-2024-6345.html * https://bugzilla.suse.com/show_bug.cgi?id=1228105 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Wed Aug 14 12:32:52 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Wed, 14 Aug 2024 12:32:52 -0000 Subject: SUSE-SU-2024:2902-1: important: Security update for the Linux Kernel Message-ID: <172363877277.24208.12954955431228631862@smelt2.prg2.suse.org> # Security update for the Linux Kernel Announcement ID: SUSE-SU-2024:2902-1 Rating: important References: * bsc#1156395 * bsc#1190336 * bsc#1191958 * bsc#1193454 * bsc#1193554 * bsc#1193787 * bsc#1193883 * bsc#1194324 * bsc#1194826 * bsc#1194869 * bsc#1195065 * bsc#1195254 * bsc#1195341 * bsc#1195349 * bsc#1195357 * bsc#1195668 * bsc#1195927 * bsc#1195957 * bsc#1196018 * bsc#1196746 * bsc#1196823 * bsc#1197146 * bsc#1197246 * bsc#1197762 * bsc#1197915 * bsc#1198014 * bsc#1199295 * bsc#1202346 * bsc#1202686 * bsc#1202767 * bsc#1202780 * bsc#1209636 * bsc#1213123 * bsc#1215587 * bsc#1216834 * bsc#1218820 * bsc#1220185 * bsc#1220186 * bsc#1222728 * bsc#1222809 * bsc#1222810 * bsc#1223635 * bsc#1223863 * bsc#1224495 * bsc#1224671 * bsc#1225573 * bsc#1226168 * bsc#1226226 * bsc#1226519 * bsc#1226537 * bsc#1226539 * bsc#1226550 * bsc#1226553 * bsc#1226554 * bsc#1226556 * bsc#1226557 * bsc#1226558 * bsc#1226559 * bsc#1226561 * bsc#1226562 * bsc#1226563 * bsc#1226564 * bsc#1226567 * bsc#1226569 * bsc#1226572 * bsc#1226574 * bsc#1226575 * bsc#1226576 * bsc#1226577 * bsc#1226580 * bsc#1226583 * bsc#1226585 * bsc#1226587 * bsc#1226601 * bsc#1226602 * bsc#1226603 * bsc#1226607 * bsc#1226614 * bsc#1226617 * bsc#1226618 * bsc#1226619 * bsc#1226621 * bsc#1226624 * bsc#1226626 * bsc#1226628 * bsc#1226629 * bsc#1226643 * bsc#1226644 * bsc#1226645 * bsc#1226650 * bsc#1226653 * bsc#1226662 * bsc#1226669 * bsc#1226670 * bsc#1226672 * bsc#1226673 * bsc#1226674 * bsc#1226675 * bsc#1226679 * bsc#1226683 * bsc#1226685 * bsc#1226686 * bsc#1226690 * bsc#1226691 * bsc#1226692 * bsc#1226696 * bsc#1226697 * bsc#1226698 * bsc#1226699 * bsc#1226701 * bsc#1226702 * bsc#1226703 * bsc#1226705 * bsc#1226708 * bsc#1226709 * bsc#1226710 * bsc#1226711 * bsc#1226712 * bsc#1226713 * bsc#1226715 * bsc#1226716 * bsc#1226719 * bsc#1226720 * bsc#1226721 * bsc#1226732 * bsc#1226762 * bsc#1227090 * bsc#1227383 * bsc#1227487 * bsc#1227549 * bsc#1227716 * bsc#1227750 * bsc#1227764 * bsc#1227808 * bsc#1227810 * bsc#1227823 * bsc#1227829 * bsc#1227836 * bsc#1227917 * bsc#1227920 * bsc#1227921 * bsc#1227922 * bsc#1227923 * bsc#1227924 * bsc#1227925 * bsc#1227928 * bsc#1227931 * bsc#1227932 * bsc#1227933 * bsc#1227935 * bsc#1227938 * bsc#1227941 * bsc#1227942 * bsc#1227944 * bsc#1227945 * bsc#1227948 * bsc#1227949 * bsc#1227952 * bsc#1227953 * bsc#1227954 * bsc#1227956 * bsc#1227963 * bsc#1227964 * bsc#1227965 * bsc#1227968 * bsc#1227969 * bsc#1227970 * bsc#1227971 * bsc#1227972 * bsc#1227975 * bsc#1227976 * bsc#1227981 * bsc#1227982 * bsc#1227985 * bsc#1227986 * bsc#1227987 * bsc#1227988 * bsc#1227989 * bsc#1227990 * bsc#1227991 * bsc#1227993 * bsc#1227995 * bsc#1227996 * bsc#1227997 * bsc#1228000 * bsc#1228002 * bsc#1228004 * bsc#1228005 * bsc#1228006 * bsc#1228007 * bsc#1228008 * bsc#1228009 * bsc#1228010 * bsc#1228013 * bsc#1228014 * bsc#1228015 * bsc#1228019 * bsc#1228025 * bsc#1228028 * bsc#1228035 * bsc#1228037 * bsc#1228038 * bsc#1228039 * bsc#1228040 * bsc#1228045 * bsc#1228054 * bsc#1228055 * bsc#1228056 * bsc#1228060 * bsc#1228061 * bsc#1228062 * bsc#1228063 * bsc#1228064 * bsc#1228066 * bsc#1228114 * bsc#1228247 * bsc#1228328 * bsc#1228561 * bsc#1228644 * bsc#1228680 * bsc#1228743 * bsc#1228801 Cross-References: * CVE-2021-4439 * CVE-2021-47534 * CVE-2021-47576 * CVE-2021-47578 * CVE-2021-47580 * CVE-2021-47582 * CVE-2021-47583 * CVE-2021-47584 * CVE-2021-47585 * CVE-2021-47586 * CVE-2021-47587 * CVE-2021-47589 * CVE-2021-47592 * CVE-2021-47596 * CVE-2021-47597 * CVE-2021-47598 * CVE-2021-47600 * CVE-2021-47601 * CVE-2021-47602 * CVE-2021-47603 * CVE-2021-47607 * CVE-2021-47608 * CVE-2021-47609 * CVE-2021-47611 * CVE-2021-47612 * CVE-2021-47614 * CVE-2021-47615 * CVE-2021-47616 * CVE-2021-47617 * CVE-2021-47618 * CVE-2021-47619 * CVE-2021-47620 * CVE-2021-47622 * CVE-2021-47624 * CVE-2022-48711 * CVE-2022-48712 * CVE-2022-48713 * CVE-2022-48715 * CVE-2022-48717 * CVE-2022-48720 * CVE-2022-48721 * CVE-2022-48722 * CVE-2022-48723 * CVE-2022-48724 * CVE-2022-48725 * CVE-2022-48726 * CVE-2022-48727 * CVE-2022-48728 * CVE-2022-48729 * CVE-2022-48730 * CVE-2022-48732 * CVE-2022-48734 * CVE-2022-48735 * CVE-2022-48736 * CVE-2022-48737 * CVE-2022-48738 * CVE-2022-48739 * CVE-2022-48740 * CVE-2022-48743 * CVE-2022-48744 * CVE-2022-48745 * CVE-2022-48746 * CVE-2022-48747 * CVE-2022-48749 * CVE-2022-48751 * CVE-2022-48752 * CVE-2022-48754 * CVE-2022-48756 * CVE-2022-48758 * CVE-2022-48759 * CVE-2022-48760 * CVE-2022-48761 * CVE-2022-48763 * CVE-2022-48765 * CVE-2022-48767 * CVE-2022-48768 * CVE-2022-48769 * CVE-2022-48771 * CVE-2022-48773 * CVE-2022-48774 * CVE-2022-48775 * CVE-2022-48776 * CVE-2022-48777 * CVE-2022-48778 * CVE-2022-48780 * CVE-2022-48783 * CVE-2022-48784 * CVE-2022-48786 * CVE-2022-48787 * CVE-2022-48788 * CVE-2022-48789 * CVE-2022-48790 * CVE-2022-48791 * CVE-2022-48792 * CVE-2022-48793 * CVE-2022-48794 * CVE-2022-48796 * CVE-2022-48797 * CVE-2022-48798 * CVE-2022-48799 * CVE-2022-48800 * CVE-2022-48801 * CVE-2022-48802 * CVE-2022-48803 * CVE-2022-48804 * CVE-2022-48805 * CVE-2022-48806 * CVE-2022-48807 * CVE-2022-48811 * CVE-2022-48812 * CVE-2022-48813 * CVE-2022-48814 * CVE-2022-48815 * CVE-2022-48816 * CVE-2022-48817 * CVE-2022-48818 * CVE-2022-48820 * CVE-2022-48821 * CVE-2022-48822 * CVE-2022-48823 * CVE-2022-48824 * CVE-2022-48825 * CVE-2022-48826 * CVE-2022-48827 * CVE-2022-48828 * CVE-2022-48829 * CVE-2022-48830 * CVE-2022-48831 * CVE-2022-48834 * CVE-2022-48835 * CVE-2022-48836 * CVE-2022-48837 * CVE-2022-48838 * CVE-2022-48839 * CVE-2022-48840 * CVE-2022-48841 * CVE-2022-48842 * CVE-2022-48843 * CVE-2022-48847 * CVE-2022-48849 * CVE-2022-48851 * CVE-2022-48853 * CVE-2022-48856 * CVE-2022-48857 * CVE-2022-48858 * CVE-2022-48859 * CVE-2022-48860 * CVE-2022-48861 * CVE-2022-48862 * CVE-2022-48863 * CVE-2022-48866 * CVE-2023-52762 * CVE-2023-52766 * CVE-2023-52800 * CVE-2023-52885 * CVE-2023-52886 * CVE-2024-26583 * CVE-2024-26584 * CVE-2024-26800 * CVE-2024-26813 * CVE-2024-26814 * CVE-2024-26976 * CVE-2024-35878 * CVE-2024-35901 * CVE-2024-36974 * CVE-2024-38555 * CVE-2024-39463 * CVE-2024-39494 * CVE-2024-40902 * CVE-2024-40937 * CVE-2024-40954 * CVE-2024-40956 * CVE-2024-40989 * CVE-2024-40994 * CVE-2024-41011 * CVE-2024-41012 * CVE-2024-41059 * CVE-2024-41069 * CVE-2024-41090 * CVE-2024-42093 * CVE-2024-42145 * CVE-2024-42230 CVSS scores: * CVE-2021-4439 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L * CVE-2021-47534 ( SUSE ): 4.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47576 ( SUSE ): 3.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:L * CVE-2021-47578 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47580 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:L * CVE-2021-47582 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47583 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47584 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47585 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47586 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47587 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47589 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47592 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47596 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47597 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2021-47598 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2021-47600 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2021-47601 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47602 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47603 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47607 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2021-47608 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47609 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47611 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47612 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47614 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2021-47615 ( SUSE ): 3.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:L * CVE-2021-47616 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2021-47617 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47618 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47619 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47620 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2021-47622 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47624 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2022-48711 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48712 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L * CVE-2022-48713 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48715 ( SUSE ): 3.6 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L * CVE-2022-48717 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2022-48720 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2022-48721 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48722 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48723 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48724 ( SUSE ): 4.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48725 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48726 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48727 ( SUSE ): 4.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2022-48728 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48729 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48730 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2022-48732 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48734 ( SUSE ): 4.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48735 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48736 ( SUSE ): 0.0 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N * CVE-2022-48737 ( SUSE ): 0.0 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N * CVE-2022-48738 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48739 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2022-48740 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48743 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48744 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48745 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48746 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48747 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2022-48749 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48751 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48752 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48754 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48756 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48758 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48759 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48760 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48761 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48763 ( SUSE ): 4.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48765 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48767 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48768 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48769 ( SUSE ): 4.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48771 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48773 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48774 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2022-48775 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2022-48776 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2022-48777 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48778 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2022-48780 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48783 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48784 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48786 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2022-48787 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48787 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48788 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2022-48788 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48789 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48789 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48790 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48790 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48791 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48791 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48792 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48792 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48793 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48793 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48794 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2022-48796 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48796 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48797 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N * CVE-2022-48798 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48799 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48800 ( SUSE ): 2.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2022-48801 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48802 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48803 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2022-48804 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2022-48805 ( SUSE ): 6.6 CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48806 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N * CVE-2022-48807 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48811 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48812 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48813 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48814 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48815 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48816 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48817 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48818 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48820 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48821 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48822 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48822 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48823 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2022-48824 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48824 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48825 ( SUSE ): 0.0 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N * CVE-2022-48826 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48827 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48828 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N * CVE-2022-48829 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N * CVE-2022-48830 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48831 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48834 ( SUSE ): 0.0 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N * CVE-2022-48834 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48835 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48835 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48836 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48836 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48837 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48837 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48838 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48838 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48839 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48839 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48840 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48840 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48841 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48841 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48842 ( SUSE ): 4.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48842 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48843 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48843 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48847 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48847 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48849 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48849 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N * CVE-2022-48851 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48851 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48853 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48853 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2022-48856 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48856 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48857 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48857 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48858 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48858 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48859 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48859 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48860 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48860 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48861 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48861 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48862 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48862 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48863 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L * CVE-2022-48863 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48866 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2022-48866 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2023-52762 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52766 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2023-52800 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2023-52885 ( SUSE ): 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2023-52886 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26583 ( SUSE ): 5.1 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26583 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26584 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26584 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26800 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26813 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26814 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26976 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35878 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35901 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36974 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-38555 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39463 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-39494 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-39494 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-40902 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2024-40902 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-40937 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-40954 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-40956 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-40989 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-40994 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-41011 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-41012 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2024-41059 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2024-41059 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-41069 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2024-41069 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-41090 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H * CVE-2024-42093 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L * CVE-2024-42145 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2024-42145 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-42230 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2024-42230 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-42230 ( NVD ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H Affected Products: * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Micro for Rancher 5.3 * SUSE Linux Enterprise Micro for Rancher 5.4 An update that solves 182 vulnerabilities and has 40 security fixes can now be installed. ## Description: The SUSE Linux Enterprise 15 SP4 RT kernel was updated to receive various security bugfixes. The following security bugs were fixed: * CVE-2024-39494: ima: Fix use-after-free on a dentry's dname.name (bsc#1227716). * CVE-2024-41069: ASoC: topology: Fix route memory corruption (bsc#1228644). * CVE-2024-40954: net: do not leave a dangling sk pointer, when socket creation fails (bsc#1227808) * CVE-2024-42145: IB/core: Implement a limit on UMAD receive List (bsc#1228743). * CVE-2024-40994: ptp: fix integer overflow in max_vclocks_store (bsc#1227829). * CVE-2024-41012: filelock: Remove locks reliably when fcntl/close race is detected (bsc#1228247). * CVE-2024-42093: net/dpaa2: Avoid explicit cpumask var allocation on stack (bsc#1228680). * CVE-2024-40989: KVM: arm64: Disassociate vcpus from redistributor region on teardown (bsc#1227823). * CVE-2024-41059: hfsplus: fix uninit-value in copy_name (bsc#1228561). * CVE-2024-40956: dmaengine: idxd: Fix possible Use-After-Free in irq_process_work_list (bsc#1227810). * CVE-2024-41090: tap: add missing verification for short frame (bsc#1228328). * CVE-2024-41011: drm/amdkfd: do not allow mapping the MMIO HDP page with large pages (bsc#1228114). * CVE-2024-39463: 9p: add missing locking around taking dentry fid list (bsc#1227090). * CVE-2021-47598: sch_cake: do not call cake_destroy() from cake_init() (bsc#1226574). * CVE-2024-40937: gve: Clear napi->skb before dev_kfree_skb_any() (bsc#1227836). * CVE-2024-35901: net: mana: Fix Rx DMA datasize and skb_over_panic (bsc#1224495). * CVE-2024-42230: powerpc/pseries: Fix scv instruction crash with kexec (bsc#1194869). * CVE-2024-36974: net/sched: taprio: always validate TCA_TAPRIO_ATTR_PRIOMAP (bsc#1226519). * CVE-2024-38555: net/mlx5: Discard command completions in internal error (bsc#1226607). The following non-security bugs were fixed: * NFS: Do not re-read the entire page cache to find the next cookie (bsc#1226662). * NFS: Reduce use of uncached readdir (bsc#1226662). * NFSv4.x: by default serialize open/close operations (bsc#1226226 bsc#1223863). * X.509: Fix the parser of extended key usage for length (bsc#1218820). * btrfs: sysfs: update fs features directory asynchronously (bsc#1226168). * cgroup/cpuset: Prevent UAF in proc_cpuset_show() (bsc#1228801). * jfs: xattr: fix buffer overflow for invalid xattr (bsc#1227383). * kABI: rtas: Workaround false positive due to lost definition (bsc#1227487). * kernel-binary: vdso: Own module_dir * net/dcb: check for detached device before executing callbacks (bsc#1215587). * ocfs2: fix DIO failure due to insufficient transaction credits (bsc#1216834). * powerpc/rtas: Prevent Spectre v1 gadget construction in sys_rtas() (bsc#1227487). * powerpc/rtas: clean up includes (bsc#1227487). * workqueue: Improve scalability of workqueue watchdog touch (bsc#1193454). * workqueue: wq_watchdog_touch is always called with valid CPU (bsc#1193454). ## Special Instructions and Notes: * Please reboot the system after installing this update. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Micro for Rancher 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2024-2902=1 * SUSE Linux Enterprise Micro 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2024-2902=1 * SUSE Linux Enterprise Micro for Rancher 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2024-2902=1 * SUSE Linux Enterprise Micro 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2024-2902=1 ## Package List: * SUSE Linux Enterprise Micro for Rancher 5.3 (nosrc x86_64) * kernel-rt-5.14.21-150400.15.88.1 * SUSE Linux Enterprise Micro for Rancher 5.3 (x86_64) * kernel-rt-debuginfo-5.14.21-150400.15.88.1 * kernel-rt-debugsource-5.14.21-150400.15.88.1 * SUSE Linux Enterprise Micro for Rancher 5.3 (noarch) * kernel-source-rt-5.14.21-150400.15.88.1 * SUSE Linux Enterprise Micro 5.3 (nosrc x86_64) * kernel-rt-5.14.21-150400.15.88.1 * SUSE Linux Enterprise Micro 5.3 (x86_64) * kernel-rt-debuginfo-5.14.21-150400.15.88.1 * kernel-rt-debugsource-5.14.21-150400.15.88.1 * SUSE Linux Enterprise Micro 5.3 (noarch) * kernel-source-rt-5.14.21-150400.15.88.1 * SUSE Linux Enterprise Micro for Rancher 5.4 (nosrc x86_64) * kernel-rt-5.14.21-150400.15.88.1 * SUSE Linux Enterprise Micro for Rancher 5.4 (x86_64) * kernel-rt-debuginfo-5.14.21-150400.15.88.1 * kernel-rt-debugsource-5.14.21-150400.15.88.1 * SUSE Linux Enterprise Micro for Rancher 5.4 (noarch) * kernel-source-rt-5.14.21-150400.15.88.1 * SUSE Linux Enterprise Micro 5.4 (nosrc x86_64) * kernel-rt-5.14.21-150400.15.88.1 * SUSE Linux Enterprise Micro 5.4 (x86_64) * kernel-rt-debuginfo-5.14.21-150400.15.88.1 * kernel-rt-debugsource-5.14.21-150400.15.88.1 * SUSE Linux Enterprise Micro 5.4 (noarch) * kernel-source-rt-5.14.21-150400.15.88.1 ## References: * https://www.suse.com/security/cve/CVE-2021-4439.html * https://www.suse.com/security/cve/CVE-2021-47534.html * https://www.suse.com/security/cve/CVE-2021-47576.html * https://www.suse.com/security/cve/CVE-2021-47578.html * https://www.suse.com/security/cve/CVE-2021-47580.html * https://www.suse.com/security/cve/CVE-2021-47582.html * https://www.suse.com/security/cve/CVE-2021-47583.html * https://www.suse.com/security/cve/CVE-2021-47584.html * https://www.suse.com/security/cve/CVE-2021-47585.html * https://www.suse.com/security/cve/CVE-2021-47586.html * https://www.suse.com/security/cve/CVE-2021-47587.html * https://www.suse.com/security/cve/CVE-2021-47589.html * https://www.suse.com/security/cve/CVE-2021-47592.html * https://www.suse.com/security/cve/CVE-2021-47596.html * https://www.suse.com/security/cve/CVE-2021-47597.html * https://www.suse.com/security/cve/CVE-2021-47598.html * https://www.suse.com/security/cve/CVE-2021-47600.html * https://www.suse.com/security/cve/CVE-2021-47601.html * https://www.suse.com/security/cve/CVE-2021-47602.html * https://www.suse.com/security/cve/CVE-2021-47603.html * https://www.suse.com/security/cve/CVE-2021-47607.html * https://www.suse.com/security/cve/CVE-2021-47608.html * https://www.suse.com/security/cve/CVE-2021-47609.html * https://www.suse.com/security/cve/CVE-2021-47611.html * https://www.suse.com/security/cve/CVE-2021-47612.html * https://www.suse.com/security/cve/CVE-2021-47614.html * https://www.suse.com/security/cve/CVE-2021-47615.html * https://www.suse.com/security/cve/CVE-2021-47616.html * https://www.suse.com/security/cve/CVE-2021-47617.html * https://www.suse.com/security/cve/CVE-2021-47618.html * https://www.suse.com/security/cve/CVE-2021-47619.html * https://www.suse.com/security/cve/CVE-2021-47620.html * https://www.suse.com/security/cve/CVE-2021-47622.html * https://www.suse.com/security/cve/CVE-2021-47624.html * https://www.suse.com/security/cve/CVE-2022-48711.html * https://www.suse.com/security/cve/CVE-2022-48712.html * https://www.suse.com/security/cve/CVE-2022-48713.html * https://www.suse.com/security/cve/CVE-2022-48715.html * https://www.suse.com/security/cve/CVE-2022-48717.html * https://www.suse.com/security/cve/CVE-2022-48720.html * https://www.suse.com/security/cve/CVE-2022-48721.html * https://www.suse.com/security/cve/CVE-2022-48722.html * https://www.suse.com/security/cve/CVE-2022-48723.html * https://www.suse.com/security/cve/CVE-2022-48724.html * https://www.suse.com/security/cve/CVE-2022-48725.html * https://www.suse.com/security/cve/CVE-2022-48726.html * https://www.suse.com/security/cve/CVE-2022-48727.html * https://www.suse.com/security/cve/CVE-2022-48728.html * https://www.suse.com/security/cve/CVE-2022-48729.html * https://www.suse.com/security/cve/CVE-2022-48730.html * https://www.suse.com/security/cve/CVE-2022-48732.html * https://www.suse.com/security/cve/CVE-2022-48734.html * https://www.suse.com/security/cve/CVE-2022-48735.html * https://www.suse.com/security/cve/CVE-2022-48736.html * https://www.suse.com/security/cve/CVE-2022-48737.html * https://www.suse.com/security/cve/CVE-2022-48738.html * https://www.suse.com/security/cve/CVE-2022-48739.html * https://www.suse.com/security/cve/CVE-2022-48740.html * https://www.suse.com/security/cve/CVE-2022-48743.html * https://www.suse.com/security/cve/CVE-2022-48744.html * https://www.suse.com/security/cve/CVE-2022-48745.html * https://www.suse.com/security/cve/CVE-2022-48746.html * https://www.suse.com/security/cve/CVE-2022-48747.html * https://www.suse.com/security/cve/CVE-2022-48749.html * https://www.suse.com/security/cve/CVE-2022-48751.html * https://www.suse.com/security/cve/CVE-2022-48752.html * https://www.suse.com/security/cve/CVE-2022-48754.html * https://www.suse.com/security/cve/CVE-2022-48756.html * https://www.suse.com/security/cve/CVE-2022-48758.html * https://www.suse.com/security/cve/CVE-2022-48759.html * https://www.suse.com/security/cve/CVE-2022-48760.html * https://www.suse.com/security/cve/CVE-2022-48761.html * https://www.suse.com/security/cve/CVE-2022-48763.html * https://www.suse.com/security/cve/CVE-2022-48765.html * https://www.suse.com/security/cve/CVE-2022-48767.html * https://www.suse.com/security/cve/CVE-2022-48768.html * https://www.suse.com/security/cve/CVE-2022-48769.html * https://www.suse.com/security/cve/CVE-2022-48771.html * https://www.suse.com/security/cve/CVE-2022-48773.html * https://www.suse.com/security/cve/CVE-2022-48774.html * https://www.suse.com/security/cve/CVE-2022-48775.html * https://www.suse.com/security/cve/CVE-2022-48776.html * https://www.suse.com/security/cve/CVE-2022-48777.html * https://www.suse.com/security/cve/CVE-2022-48778.html * https://www.suse.com/security/cve/CVE-2022-48780.html * https://www.suse.com/security/cve/CVE-2022-48783.html * https://www.suse.com/security/cve/CVE-2022-48784.html * https://www.suse.com/security/cve/CVE-2022-48786.html * https://www.suse.com/security/cve/CVE-2022-48787.html * https://www.suse.com/security/cve/CVE-2022-48788.html * https://www.suse.com/security/cve/CVE-2022-48789.html * https://www.suse.com/security/cve/CVE-2022-48790.html * https://www.suse.com/security/cve/CVE-2022-48791.html * https://www.suse.com/security/cve/CVE-2022-48792.html * https://www.suse.com/security/cve/CVE-2022-48793.html * https://www.suse.com/security/cve/CVE-2022-48794.html * https://www.suse.com/security/cve/CVE-2022-48796.html * https://www.suse.com/security/cve/CVE-2022-48797.html * https://www.suse.com/security/cve/CVE-2022-48798.html * https://www.suse.com/security/cve/CVE-2022-48799.html * https://www.suse.com/security/cve/CVE-2022-48800.html * https://www.suse.com/security/cve/CVE-2022-48801.html * https://www.suse.com/security/cve/CVE-2022-48802.html * https://www.suse.com/security/cve/CVE-2022-48803.html * https://www.suse.com/security/cve/CVE-2022-48804.html * https://www.suse.com/security/cve/CVE-2022-48805.html * https://www.suse.com/security/cve/CVE-2022-48806.html * https://www.suse.com/security/cve/CVE-2022-48807.html * https://www.suse.com/security/cve/CVE-2022-48811.html * https://www.suse.com/security/cve/CVE-2022-48812.html * https://www.suse.com/security/cve/CVE-2022-48813.html * https://www.suse.com/security/cve/CVE-2022-48814.html * https://www.suse.com/security/cve/CVE-2022-48815.html * https://www.suse.com/security/cve/CVE-2022-48816.html * https://www.suse.com/security/cve/CVE-2022-48817.html * https://www.suse.com/security/cve/CVE-2022-48818.html * https://www.suse.com/security/cve/CVE-2022-48820.html * https://www.suse.com/security/cve/CVE-2022-48821.html * https://www.suse.com/security/cve/CVE-2022-48822.html * https://www.suse.com/security/cve/CVE-2022-48823.html * https://www.suse.com/security/cve/CVE-2022-48824.html * https://www.suse.com/security/cve/CVE-2022-48825.html * https://www.suse.com/security/cve/CVE-2022-48826.html * https://www.suse.com/security/cve/CVE-2022-48827.html * https://www.suse.com/security/cve/CVE-2022-48828.html * https://www.suse.com/security/cve/CVE-2022-48829.html * https://www.suse.com/security/cve/CVE-2022-48830.html * https://www.suse.com/security/cve/CVE-2022-48831.html * https://www.suse.com/security/cve/CVE-2022-48834.html * https://www.suse.com/security/cve/CVE-2022-48835.html * https://www.suse.com/security/cve/CVE-2022-48836.html * https://www.suse.com/security/cve/CVE-2022-48837.html * https://www.suse.com/security/cve/CVE-2022-48838.html * https://www.suse.com/security/cve/CVE-2022-48839.html * https://www.suse.com/security/cve/CVE-2022-48840.html * https://www.suse.com/security/cve/CVE-2022-48841.html * https://www.suse.com/security/cve/CVE-2022-48842.html * https://www.suse.com/security/cve/CVE-2022-48843.html * https://www.suse.com/security/cve/CVE-2022-48847.html * https://www.suse.com/security/cve/CVE-2022-48849.html * https://www.suse.com/security/cve/CVE-2022-48851.html * https://www.suse.com/security/cve/CVE-2022-48853.html * https://www.suse.com/security/cve/CVE-2022-48856.html * https://www.suse.com/security/cve/CVE-2022-48857.html * https://www.suse.com/security/cve/CVE-2022-48858.html * https://www.suse.com/security/cve/CVE-2022-48859.html * https://www.suse.com/security/cve/CVE-2022-48860.html * https://www.suse.com/security/cve/CVE-2022-48861.html * https://www.suse.com/security/cve/CVE-2022-48862.html * https://www.suse.com/security/cve/CVE-2022-48863.html * https://www.suse.com/security/cve/CVE-2022-48866.html * https://www.suse.com/security/cve/CVE-2023-52762.html * https://www.suse.com/security/cve/CVE-2023-52766.html * https://www.suse.com/security/cve/CVE-2023-52800.html * https://www.suse.com/security/cve/CVE-2023-52885.html * https://www.suse.com/security/cve/CVE-2023-52886.html * https://www.suse.com/security/cve/CVE-2024-26583.html * https://www.suse.com/security/cve/CVE-2024-26584.html * https://www.suse.com/security/cve/CVE-2024-26800.html * https://www.suse.com/security/cve/CVE-2024-26813.html * https://www.suse.com/security/cve/CVE-2024-26814.html * https://www.suse.com/security/cve/CVE-2024-26976.html * https://www.suse.com/security/cve/CVE-2024-35878.html * https://www.suse.com/security/cve/CVE-2024-35901.html * https://www.suse.com/security/cve/CVE-2024-36974.html * https://www.suse.com/security/cve/CVE-2024-38555.html * https://www.suse.com/security/cve/CVE-2024-39463.html * https://www.suse.com/security/cve/CVE-2024-39494.html * https://www.suse.com/security/cve/CVE-2024-40902.html * https://www.suse.com/security/cve/CVE-2024-40937.html * https://www.suse.com/security/cve/CVE-2024-40954.html * https://www.suse.com/security/cve/CVE-2024-40956.html * https://www.suse.com/security/cve/CVE-2024-40989.html * https://www.suse.com/security/cve/CVE-2024-40994.html * https://www.suse.com/security/cve/CVE-2024-41011.html * https://www.suse.com/security/cve/CVE-2024-41012.html * https://www.suse.com/security/cve/CVE-2024-41059.html * https://www.suse.com/security/cve/CVE-2024-41069.html * https://www.suse.com/security/cve/CVE-2024-41090.html * https://www.suse.com/security/cve/CVE-2024-42093.html * https://www.suse.com/security/cve/CVE-2024-42145.html * https://www.suse.com/security/cve/CVE-2024-42230.html * https://bugzilla.suse.com/show_bug.cgi?id=1156395 * https://bugzilla.suse.com/show_bug.cgi?id=1190336 * https://bugzilla.suse.com/show_bug.cgi?id=1191958 * https://bugzilla.suse.com/show_bug.cgi?id=1193454 * https://bugzilla.suse.com/show_bug.cgi?id=1193554 * https://bugzilla.suse.com/show_bug.cgi?id=1193787 * https://bugzilla.suse.com/show_bug.cgi?id=1193883 * https://bugzilla.suse.com/show_bug.cgi?id=1194324 * https://bugzilla.suse.com/show_bug.cgi?id=1194826 * https://bugzilla.suse.com/show_bug.cgi?id=1194869 * https://bugzilla.suse.com/show_bug.cgi?id=1195065 * https://bugzilla.suse.com/show_bug.cgi?id=1195254 * https://bugzilla.suse.com/show_bug.cgi?id=1195341 * https://bugzilla.suse.com/show_bug.cgi?id=1195349 * https://bugzilla.suse.com/show_bug.cgi?id=1195357 * https://bugzilla.suse.com/show_bug.cgi?id=1195668 * https://bugzilla.suse.com/show_bug.cgi?id=1195927 * https://bugzilla.suse.com/show_bug.cgi?id=1195957 * https://bugzilla.suse.com/show_bug.cgi?id=1196018 * https://bugzilla.suse.com/show_bug.cgi?id=1196746 * https://bugzilla.suse.com/show_bug.cgi?id=1196823 * https://bugzilla.suse.com/show_bug.cgi?id=1197146 * https://bugzilla.suse.com/show_bug.cgi?id=1197246 * https://bugzilla.suse.com/show_bug.cgi?id=1197762 * https://bugzilla.suse.com/show_bug.cgi?id=1197915 * https://bugzilla.suse.com/show_bug.cgi?id=1198014 * https://bugzilla.suse.com/show_bug.cgi?id=1199295 * https://bugzilla.suse.com/show_bug.cgi?id=1202346 * https://bugzilla.suse.com/show_bug.cgi?id=1202686 * https://bugzilla.suse.com/show_bug.cgi?id=1202767 * https://bugzilla.suse.com/show_bug.cgi?id=1202780 * https://bugzilla.suse.com/show_bug.cgi?id=1209636 * https://bugzilla.suse.com/show_bug.cgi?id=1213123 * https://bugzilla.suse.com/show_bug.cgi?id=1215587 * https://bugzilla.suse.com/show_bug.cgi?id=1216834 * https://bugzilla.suse.com/show_bug.cgi?id=1218820 * https://bugzilla.suse.com/show_bug.cgi?id=1220185 * https://bugzilla.suse.com/show_bug.cgi?id=1220186 * https://bugzilla.suse.com/show_bug.cgi?id=1222728 * https://bugzilla.suse.com/show_bug.cgi?id=1222809 * https://bugzilla.suse.com/show_bug.cgi?id=1222810 * https://bugzilla.suse.com/show_bug.cgi?id=1223635 * https://bugzilla.suse.com/show_bug.cgi?id=1223863 * https://bugzilla.suse.com/show_bug.cgi?id=1224495 * https://bugzilla.suse.com/show_bug.cgi?id=1224671 * https://bugzilla.suse.com/show_bug.cgi?id=1225573 * https://bugzilla.suse.com/show_bug.cgi?id=1226168 * https://bugzilla.suse.com/show_bug.cgi?id=1226226 * https://bugzilla.suse.com/show_bug.cgi?id=1226519 * https://bugzilla.suse.com/show_bug.cgi?id=1226537 * https://bugzilla.suse.com/show_bug.cgi?id=1226539 * https://bugzilla.suse.com/show_bug.cgi?id=1226550 * https://bugzilla.suse.com/show_bug.cgi?id=1226553 * https://bugzilla.suse.com/show_bug.cgi?id=1226554 * https://bugzilla.suse.com/show_bug.cgi?id=1226556 * https://bugzilla.suse.com/show_bug.cgi?id=1226557 * https://bugzilla.suse.com/show_bug.cgi?id=1226558 * https://bugzilla.suse.com/show_bug.cgi?id=1226559 * https://bugzilla.suse.com/show_bug.cgi?id=1226561 * https://bugzilla.suse.com/show_bug.cgi?id=1226562 * https://bugzilla.suse.com/show_bug.cgi?id=1226563 * https://bugzilla.suse.com/show_bug.cgi?id=1226564 * https://bugzilla.suse.com/show_bug.cgi?id=1226567 * https://bugzilla.suse.com/show_bug.cgi?id=1226569 * https://bugzilla.suse.com/show_bug.cgi?id=1226572 * https://bugzilla.suse.com/show_bug.cgi?id=1226574 * https://bugzilla.suse.com/show_bug.cgi?id=1226575 * https://bugzilla.suse.com/show_bug.cgi?id=1226576 * https://bugzilla.suse.com/show_bug.cgi?id=1226577 * https://bugzilla.suse.com/show_bug.cgi?id=1226580 * https://bugzilla.suse.com/show_bug.cgi?id=1226583 * https://bugzilla.suse.com/show_bug.cgi?id=1226585 * https://bugzilla.suse.com/show_bug.cgi?id=1226587 * https://bugzilla.suse.com/show_bug.cgi?id=1226601 * https://bugzilla.suse.com/show_bug.cgi?id=1226602 * https://bugzilla.suse.com/show_bug.cgi?id=1226603 * https://bugzilla.suse.com/show_bug.cgi?id=1226607 * https://bugzilla.suse.com/show_bug.cgi?id=1226614 * https://bugzilla.suse.com/show_bug.cgi?id=1226617 * https://bugzilla.suse.com/show_bug.cgi?id=1226618 * https://bugzilla.suse.com/show_bug.cgi?id=1226619 * https://bugzilla.suse.com/show_bug.cgi?id=1226621 * https://bugzilla.suse.com/show_bug.cgi?id=1226624 * https://bugzilla.suse.com/show_bug.cgi?id=1226626 * https://bugzilla.suse.com/show_bug.cgi?id=1226628 * https://bugzilla.suse.com/show_bug.cgi?id=1226629 * https://bugzilla.suse.com/show_bug.cgi?id=1226643 * https://bugzilla.suse.com/show_bug.cgi?id=1226644 * https://bugzilla.suse.com/show_bug.cgi?id=1226645 * https://bugzilla.suse.com/show_bug.cgi?id=1226650 * https://bugzilla.suse.com/show_bug.cgi?id=1226653 * https://bugzilla.suse.com/show_bug.cgi?id=1226662 * https://bugzilla.suse.com/show_bug.cgi?id=1226669 * https://bugzilla.suse.com/show_bug.cgi?id=1226670 * https://bugzilla.suse.com/show_bug.cgi?id=1226672 * https://bugzilla.suse.com/show_bug.cgi?id=1226673 * https://bugzilla.suse.com/show_bug.cgi?id=1226674 * https://bugzilla.suse.com/show_bug.cgi?id=1226675 * https://bugzilla.suse.com/show_bug.cgi?id=1226679 * https://bugzilla.suse.com/show_bug.cgi?id=1226683 * https://bugzilla.suse.com/show_bug.cgi?id=1226685 * https://bugzilla.suse.com/show_bug.cgi?id=1226686 * https://bugzilla.suse.com/show_bug.cgi?id=1226690 * https://bugzilla.suse.com/show_bug.cgi?id=1226691 * https://bugzilla.suse.com/show_bug.cgi?id=1226692 * https://bugzilla.suse.com/show_bug.cgi?id=1226696 * https://bugzilla.suse.com/show_bug.cgi?id=1226697 * https://bugzilla.suse.com/show_bug.cgi?id=1226698 * https://bugzilla.suse.com/show_bug.cgi?id=1226699 * https://bugzilla.suse.com/show_bug.cgi?id=1226701 * https://bugzilla.suse.com/show_bug.cgi?id=1226702 * https://bugzilla.suse.com/show_bug.cgi?id=1226703 * https://bugzilla.suse.com/show_bug.cgi?id=1226705 * https://bugzilla.suse.com/show_bug.cgi?id=1226708 * https://bugzilla.suse.com/show_bug.cgi?id=1226709 * https://bugzilla.suse.com/show_bug.cgi?id=1226710 * https://bugzilla.suse.com/show_bug.cgi?id=1226711 * https://bugzilla.suse.com/show_bug.cgi?id=1226712 * https://bugzilla.suse.com/show_bug.cgi?id=1226713 * https://bugzilla.suse.com/show_bug.cgi?id=1226715 * https://bugzilla.suse.com/show_bug.cgi?id=1226716 * https://bugzilla.suse.com/show_bug.cgi?id=1226719 * https://bugzilla.suse.com/show_bug.cgi?id=1226720 * https://bugzilla.suse.com/show_bug.cgi?id=1226721 * https://bugzilla.suse.com/show_bug.cgi?id=1226732 * https://bugzilla.suse.com/show_bug.cgi?id=1226762 * https://bugzilla.suse.com/show_bug.cgi?id=1227090 * https://bugzilla.suse.com/show_bug.cgi?id=1227383 * https://bugzilla.suse.com/show_bug.cgi?id=1227487 * https://bugzilla.suse.com/show_bug.cgi?id=1227549 * https://bugzilla.suse.com/show_bug.cgi?id=1227716 * https://bugzilla.suse.com/show_bug.cgi?id=1227750 * https://bugzilla.suse.com/show_bug.cgi?id=1227764 * https://bugzilla.suse.com/show_bug.cgi?id=1227808 * https://bugzilla.suse.com/show_bug.cgi?id=1227810 * https://bugzilla.suse.com/show_bug.cgi?id=1227823 * https://bugzilla.suse.com/show_bug.cgi?id=1227829 * https://bugzilla.suse.com/show_bug.cgi?id=1227836 * https://bugzilla.suse.com/show_bug.cgi?id=1227917 * https://bugzilla.suse.com/show_bug.cgi?id=1227920 * https://bugzilla.suse.com/show_bug.cgi?id=1227921 * https://bugzilla.suse.com/show_bug.cgi?id=1227922 * https://bugzilla.suse.com/show_bug.cgi?id=1227923 * https://bugzilla.suse.com/show_bug.cgi?id=1227924 * https://bugzilla.suse.com/show_bug.cgi?id=1227925 * https://bugzilla.suse.com/show_bug.cgi?id=1227928 * https://bugzilla.suse.com/show_bug.cgi?id=1227931 * https://bugzilla.suse.com/show_bug.cgi?id=1227932 * https://bugzilla.suse.com/show_bug.cgi?id=1227933 * https://bugzilla.suse.com/show_bug.cgi?id=1227935 * https://bugzilla.suse.com/show_bug.cgi?id=1227938 * https://bugzilla.suse.com/show_bug.cgi?id=1227941 * https://bugzilla.suse.com/show_bug.cgi?id=1227942 * https://bugzilla.suse.com/show_bug.cgi?id=1227944 * https://bugzilla.suse.com/show_bug.cgi?id=1227945 * https://bugzilla.suse.com/show_bug.cgi?id=1227948 * https://bugzilla.suse.com/show_bug.cgi?id=1227949 * https://bugzilla.suse.com/show_bug.cgi?id=1227952 * https://bugzilla.suse.com/show_bug.cgi?id=1227953 * https://bugzilla.suse.com/show_bug.cgi?id=1227954 * https://bugzilla.suse.com/show_bug.cgi?id=1227956 * https://bugzilla.suse.com/show_bug.cgi?id=1227963 * https://bugzilla.suse.com/show_bug.cgi?id=1227964 * https://bugzilla.suse.com/show_bug.cgi?id=1227965 * https://bugzilla.suse.com/show_bug.cgi?id=1227968 * https://bugzilla.suse.com/show_bug.cgi?id=1227969 * https://bugzilla.suse.com/show_bug.cgi?id=1227970 * https://bugzilla.suse.com/show_bug.cgi?id=1227971 * https://bugzilla.suse.com/show_bug.cgi?id=1227972 * https://bugzilla.suse.com/show_bug.cgi?id=1227975 * https://bugzilla.suse.com/show_bug.cgi?id=1227976 * https://bugzilla.suse.com/show_bug.cgi?id=1227981 * https://bugzilla.suse.com/show_bug.cgi?id=1227982 * https://bugzilla.suse.com/show_bug.cgi?id=1227985 * https://bugzilla.suse.com/show_bug.cgi?id=1227986 * https://bugzilla.suse.com/show_bug.cgi?id=1227987 * https://bugzilla.suse.com/show_bug.cgi?id=1227988 * https://bugzilla.suse.com/show_bug.cgi?id=1227989 * https://bugzilla.suse.com/show_bug.cgi?id=1227990 * https://bugzilla.suse.com/show_bug.cgi?id=1227991 * https://bugzilla.suse.com/show_bug.cgi?id=1227993 * https://bugzilla.suse.com/show_bug.cgi?id=1227995 * https://bugzilla.suse.com/show_bug.cgi?id=1227996 * https://bugzilla.suse.com/show_bug.cgi?id=1227997 * https://bugzilla.suse.com/show_bug.cgi?id=1228000 * https://bugzilla.suse.com/show_bug.cgi?id=1228002 * https://bugzilla.suse.com/show_bug.cgi?id=1228004 * https://bugzilla.suse.com/show_bug.cgi?id=1228005 * https://bugzilla.suse.com/show_bug.cgi?id=1228006 * https://bugzilla.suse.com/show_bug.cgi?id=1228007 * https://bugzilla.suse.com/show_bug.cgi?id=1228008 * https://bugzilla.suse.com/show_bug.cgi?id=1228009 * https://bugzilla.suse.com/show_bug.cgi?id=1228010 * https://bugzilla.suse.com/show_bug.cgi?id=1228013 * https://bugzilla.suse.com/show_bug.cgi?id=1228014 * https://bugzilla.suse.com/show_bug.cgi?id=1228015 * https://bugzilla.suse.com/show_bug.cgi?id=1228019 * https://bugzilla.suse.com/show_bug.cgi?id=1228025 * https://bugzilla.suse.com/show_bug.cgi?id=1228028 * https://bugzilla.suse.com/show_bug.cgi?id=1228035 * https://bugzilla.suse.com/show_bug.cgi?id=1228037 * https://bugzilla.suse.com/show_bug.cgi?id=1228038 * https://bugzilla.suse.com/show_bug.cgi?id=1228039 * https://bugzilla.suse.com/show_bug.cgi?id=1228040 * https://bugzilla.suse.com/show_bug.cgi?id=1228045 * https://bugzilla.suse.com/show_bug.cgi?id=1228054 * https://bugzilla.suse.com/show_bug.cgi?id=1228055 * https://bugzilla.suse.com/show_bug.cgi?id=1228056 * https://bugzilla.suse.com/show_bug.cgi?id=1228060 * https://bugzilla.suse.com/show_bug.cgi?id=1228061 * https://bugzilla.suse.com/show_bug.cgi?id=1228062 * https://bugzilla.suse.com/show_bug.cgi?id=1228063 * https://bugzilla.suse.com/show_bug.cgi?id=1228064 * https://bugzilla.suse.com/show_bug.cgi?id=1228066 * https://bugzilla.suse.com/show_bug.cgi?id=1228114 * https://bugzilla.suse.com/show_bug.cgi?id=1228247 * https://bugzilla.suse.com/show_bug.cgi?id=1228328 * https://bugzilla.suse.com/show_bug.cgi?id=1228561 * https://bugzilla.suse.com/show_bug.cgi?id=1228644 * https://bugzilla.suse.com/show_bug.cgi?id=1228680 * https://bugzilla.suse.com/show_bug.cgi?id=1228743 * https://bugzilla.suse.com/show_bug.cgi?id=1228801 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Wed Aug 14 12:35:00 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Wed, 14 Aug 2024 12:35:00 -0000 Subject: SUSE-SU-2024:2901-1: important: Security update for the Linux Kernel Message-ID: <172363890090.24208.1397205456478081237@smelt2.prg2.suse.org> # Security update for the Linux Kernel Announcement ID: SUSE-SU-2024:2901-1 Rating: important References: * bsc#1065729 * bsc#1088701 * bsc#1149446 * bsc#1179610 * bsc#1186463 * bsc#1196018 * bsc#1202346 * bsc#1215420 * bsc#1216834 * bsc#1220138 * bsc#1220833 * bsc#1220942 * bsc#1221045 * bsc#1221614 * bsc#1221616 * bsc#1221618 * bsc#1221656 * bsc#1221659 * bsc#1222005 * bsc#1222060 * bsc#1222317 * bsc#1222326 * bsc#1222372 * bsc#1222625 * bsc#1222776 * bsc#1222792 * bsc#1222824 * bsc#1222829 * bsc#1222866 * bsc#1223012 * bsc#1223021 * bsc#1223188 * bsc#1223778 * bsc#1223813 * bsc#1223815 * bsc#1224500 * bsc#1224512 * bsc#1224545 * bsc#1224557 * bsc#1224571 * bsc#1224576 * bsc#1224587 * bsc#1224622 * bsc#1224627 * bsc#1224637 * bsc#1224641 * bsc#1224647 * bsc#1224663 * bsc#1224683 * bsc#1224686 * bsc#1224699 * bsc#1224700 * bsc#1224743 * bsc#1224965 * bsc#1224975 * bsc#1225003 * bsc#1225214 * bsc#1225224 * bsc#1225229 * bsc#1225238 * bsc#1225241 * bsc#1225326 * bsc#1225328 * bsc#1225346 * bsc#1225357 * bsc#1225361 * bsc#1225396 * bsc#1225427 * bsc#1225431 * bsc#1225455 * bsc#1225478 * bsc#1225505 * bsc#1225530 * bsc#1225532 * bsc#1225569 * bsc#1225593 * bsc#1225711 * bsc#1225719 * bsc#1225767 * bsc#1225820 * bsc#1225835 * bsc#1225838 * bsc#1225898 * bsc#1226550 * bsc#1226553 * bsc#1226555 * bsc#1226559 * bsc#1226568 * bsc#1226571 * bsc#1226645 * bsc#1226757 * bsc#1226783 * bsc#1226786 * bsc#1226834 * bsc#1226861 * bsc#1226908 * bsc#1226994 * bsc#1227191 * bsc#1227213 * bsc#1227407 * bsc#1227435 * bsc#1227487 * bsc#1227573 * bsc#1227618 * bsc#1227626 * bsc#1227716 * bsc#1227725 * bsc#1227729 * bsc#1227730 * bsc#1227733 * bsc#1227750 * bsc#1227754 * bsc#1227762 * bsc#1227770 * bsc#1227771 * bsc#1227772 * bsc#1227774 * bsc#1227786 * bsc#1227790 * bsc#1227806 * bsc#1227824 * bsc#1227828 * bsc#1227830 * bsc#1227836 * bsc#1227849 * bsc#1227865 * bsc#1227866 * bsc#1227884 * bsc#1227886 * bsc#1227891 * bsc#1227913 * bsc#1227924 * bsc#1227928 * bsc#1227929 * bsc#1227936 * bsc#1227957 * bsc#1227968 * bsc#1227969 * bsc#1227975 * bsc#1227985 * bsc#1227989 * bsc#1228003 * bsc#1228005 * bsc#1228008 * bsc#1228013 * bsc#1228025 * bsc#1228030 * bsc#1228037 * bsc#1228045 * bsc#1228054 * bsc#1228055 * bsc#1228063 * bsc#1228071 * bsc#1228235 * bsc#1228237 * bsc#1228327 * bsc#1228328 * bsc#1228408 * bsc#1228409 * bsc#1228410 * bsc#1228470 * bsc#1228530 * bsc#1228561 * bsc#1228565 * bsc#1228567 * bsc#1228580 * bsc#1228581 * bsc#1228584 * bsc#1228588 * bsc#1228599 * bsc#1228617 * bsc#1228625 * bsc#1228626 * bsc#1228633 * bsc#1228640 * bsc#1228649 * bsc#1228655 * bsc#1228658 * bsc#1228662 * bsc#1228680 * bsc#1228705 * bsc#1228723 * bsc#1228726 * bsc#1228743 * bsc#1228850 Cross-References: * CVE-2020-26558 * CVE-2021-0129 * CVE-2021-47145 * CVE-2021-47191 * CVE-2021-47194 * CVE-2021-47197 * CVE-2021-47201 * CVE-2021-47219 * CVE-2021-47275 * CVE-2021-47295 * CVE-2021-47388 * CVE-2021-47395 * CVE-2021-47399 * CVE-2021-47403 * CVE-2021-47405 * CVE-2021-47438 * CVE-2021-47441 * CVE-2021-47468 * CVE-2021-47498 * CVE-2021-47501 * CVE-2021-47516 * CVE-2021-47520 * CVE-2021-47542 * CVE-2021-47547 * CVE-2021-47559 * CVE-2021-47580 * CVE-2021-47582 * CVE-2021-47588 * CVE-2021-47597 * CVE-2021-47599 * CVE-2021-47606 * CVE-2021-47619 * CVE-2022-20368 * CVE-2022-28748 * CVE-2022-2964 * CVE-2022-48775 * CVE-2022-48792 * CVE-2022-48794 * CVE-2022-48804 * CVE-2022-48805 * CVE-2022-48810 * CVE-2022-48811 * CVE-2022-48823 * CVE-2022-48826 * CVE-2022-48827 * CVE-2022-48828 * CVE-2022-48829 * CVE-2022-48836 * CVE-2022-48839 * CVE-2022-48850 * CVE-2022-48855 * CVE-2022-48857 * CVE-2022-48860 * CVE-2022-48863 * CVE-2023-4244 * CVE-2023-52435 * CVE-2023-52507 * CVE-2023-52594 * CVE-2023-52612 * CVE-2023-52615 * CVE-2023-52619 * CVE-2023-52623 * CVE-2023-52669 * CVE-2023-52683 * CVE-2023-52693 * CVE-2023-52743 * CVE-2023-52753 * CVE-2023-52817 * CVE-2023-52818 * CVE-2023-52819 * CVE-2023-52885 * CVE-2024-26615 * CVE-2024-26635 * CVE-2024-26636 * CVE-2024-26659 * CVE-2024-26663 * CVE-2024-26735 * CVE-2024-26830 * CVE-2024-26863 * CVE-2024-26880 * CVE-2024-26920 * CVE-2024-26924 * CVE-2024-27019 * CVE-2024-27020 * CVE-2024-27025 * CVE-2024-27437 * CVE-2024-35805 * CVE-2024-35806 * CVE-2024-35819 * CVE-2024-35828 * CVE-2024-35837 * CVE-2024-35887 * CVE-2024-35893 * CVE-2024-35934 * CVE-2024-35947 * CVE-2024-35949 * CVE-2024-35966 * CVE-2024-35967 * CVE-2024-35978 * CVE-2024-35995 * CVE-2024-36004 * CVE-2024-36014 * CVE-2024-36288 * CVE-2024-36592 * CVE-2024-36901 * CVE-2024-36902 * CVE-2024-36919 * CVE-2024-36924 * CVE-2024-36939 * CVE-2024-36941 * CVE-2024-36952 * CVE-2024-38558 * CVE-2024-38560 * CVE-2024-38598 * CVE-2024-38619 * CVE-2024-38630 * CVE-2024-39301 * CVE-2024-39475 * CVE-2024-39487 * CVE-2024-39488 * CVE-2024-39490 * CVE-2024-39494 * CVE-2024-39499 * CVE-2024-39501 * CVE-2024-39506 * CVE-2024-39507 * CVE-2024-39509 * CVE-2024-40901 * CVE-2024-40904 * CVE-2024-40912 * CVE-2024-40923 * CVE-2024-40929 * CVE-2024-40932 * CVE-2024-40937 * CVE-2024-40941 * CVE-2024-40942 * CVE-2024-40943 * CVE-2024-40953 * CVE-2024-40959 * CVE-2024-40966 * CVE-2024-40967 * CVE-2024-40978 * CVE-2024-40982 * CVE-2024-40987 * CVE-2024-40988 * CVE-2024-40990 * CVE-2024-40995 * CVE-2024-40998 * CVE-2024-40999 * CVE-2024-41014 * CVE-2024-41015 * CVE-2024-41016 * CVE-2024-41044 * CVE-2024-41048 * CVE-2024-41059 * CVE-2024-41060 * CVE-2024-41063 * CVE-2024-41064 * CVE-2024-41066 * CVE-2024-41070 * CVE-2024-41071 * CVE-2024-41072 * CVE-2024-41076 * CVE-2024-41078 * CVE-2024-41081 * CVE-2024-41089 * CVE-2024-41090 * CVE-2024-41091 * CVE-2024-41095 * CVE-2024-42070 * CVE-2024-42093 * CVE-2024-42096 * CVE-2024-42119 * CVE-2024-42120 * CVE-2024-42124 * CVE-2024-42145 * CVE-2024-42223 * CVE-2024-42224 CVSS scores: * CVE-2020-26558 ( SUSE ): 4.2 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N * CVE-2020-26558 ( NVD ): 4.2 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N * CVE-2021-0129 ( SUSE ): 6.4 CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2021-0129 ( NVD ): 5.7 CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2021-47145 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47191 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47194 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47194 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2021-47197 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47201 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47219 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2021-47275 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47295 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47388 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2021-47395 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47399 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47403 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47405 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47438 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47441 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47468 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47498 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47501 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47516 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2021-47516 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47520 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2021-47520 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2021-47542 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47542 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47547 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L * CVE-2021-47559 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47559 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47580 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:L * CVE-2021-47582 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47588 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47597 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2021-47599 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47606 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47619 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-20368 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-20368 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-28748 ( SUSE ): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N * CVE-2022-2964 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-2964 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48775 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2022-48792 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48792 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48794 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2022-48804 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2022-48805 ( SUSE ): 6.6 CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48810 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48811 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48823 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2022-48826 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48827 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48828 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N * CVE-2022-48829 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N * CVE-2022-48836 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48836 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48839 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48839 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48850 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48850 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48855 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48855 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2022-48857 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48857 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48860 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48860 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48863 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L * CVE-2022-48863 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-4244 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-4244 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-52435 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52435 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52507 ( SUSE ): 5.7 CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2023-52594 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52612 ( SUSE ): 6.0 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:H * CVE-2023-52615 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52619 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52623 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52669 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52683 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52693 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52743 ( SUSE ): 4.0 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2023-52753 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52753 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52817 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52817 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52818 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2023-52819 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2023-52885 ( SUSE ): 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26615 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26635 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2024-26636 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26659 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26663 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26735 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26830 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26863 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26880 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-26920 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26924 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27019 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27019 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2024-27020 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27020 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-27025 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2024-27437 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35805 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35806 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35819 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35828 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35837 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35887 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35893 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35934 ( SUSE ): 2.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-35947 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35949 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35966 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35967 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35978 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35978 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35995 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2024-36004 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36014 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36288 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36288 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36901 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36901 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36902 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36902 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36919 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36924 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36939 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36941 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36952 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38558 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L * CVE-2024-38560 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38598 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38619 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38630 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2024-39301 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39475 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39475 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39487 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2024-39488 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39490 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-39494 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-39494 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-39499 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2024-39501 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39506 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39507 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39509 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40901 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L * CVE-2024-40904 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40912 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40923 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40929 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40932 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L * CVE-2024-40937 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-40941 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40942 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40943 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40953 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40959 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40966 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40967 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40978 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40982 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40987 ( SUSE ): 5.0 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H * CVE-2024-40988 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40990 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40995 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40998 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40999 ( SUSE ): 3.6 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L * CVE-2024-41014 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-41015 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N * CVE-2024-41016 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N * CVE-2024-41044 ( SUSE ): 6.3 CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:L * CVE-2024-41048 ( SUSE ): 6.5 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-41059 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2024-41059 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-41060 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2024-41060 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-41063 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2024-41063 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-41064 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2024-41064 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-41066 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2024-41066 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2024-41070 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2024-41071 ( SUSE ): 4.3 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N * CVE-2024-41072 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N * CVE-2024-41076 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-41078 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-41081 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-41089 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-41089 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-41090 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H * CVE-2024-41091 ( SUSE ): 6.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H * CVE-2024-41095 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-41095 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-42070 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2024-42070 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-42093 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L * CVE-2024-42096 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2024-42096 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2024-42119 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-42120 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-42124 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-42145 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2024-42145 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-42223 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-42223 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-42224 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-42224 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 An update that solves 178 vulnerabilities and has seven security fixes can now be installed. ## Description: The SUSE Linux Enterprise 12 SP5 Azure kernel was updated to receive various security bugfixes. The following security bugs were fixed: * CVE-2024-39494: ima: Fix use-after-free on a dentry's dname.name (bsc#1227716). * CVE-2024-42096: x86: stop playing stack games in profile_pc() (bsc#1228633). * CVE-2024-39506: liquidio: adjust a NULL pointer handling path in lio_vf_rep_copy_packet (bsc#1227729). * CVE-2021-47619: i40e: Fix queues reservation for XDP (bsc#1226645). * CVE-2024-42145: IB/core: Implement a limit on UMAD receive List (bsc#1228743). * CVE-2024-42124: scsi: qedf: Make qedf_execute_tmf() non-preemptible (bsc#1228705). * CVE-2024-42223: media: dvb-frontends: tda10048: Fix integer overflow (bsc#1228726). * CVE-2024-42119: drm/amd/display: Skip finding free audio for unknown engine_id (bsc#1228584). * CVE-2024-42120: drm/amd/display: Check pipe offset before setting vblank (bsc#1228588). * CVE-2024-41095: drm/nouveau/dispnv04: fix null pointer dereference in nv17_tv_get_ld_modes (bsc#1228662). * CVE-2024-42224: net: dsa: mv88e6xxx: Correct check for empty list (bsc#1228723). * CVE-2024-41072: wifi: cfg80211: wext: add extra SIOCSIWSCAN data check (bsc#1228626). * CVE-2024-41048: skmsg: Skip zero length skb in sk_msg_recvmsg (bsc#1228565). * CVE-2024-40995: net/sched: act_api: fix possible infinite loop in tcf_idr_check_alloc() (bsc#1227830). * CVE-2024-41044: ppp: reject claimed-as-LCP but actually malformed packets (bsc#1228530). * CVE-2024-41066: ibmvnic: add tx check to prevent skb leak (bsc#1228640). * CVE-2024-42093: net/dpaa2: Avoid explicit cpumask var allocation on stack (bsc#1228680). * CVE-2024-41089: drm/nouveau/dispnv04: fix null pointer dereference in nv17_tv_get_hd_modes (bsc#1228658). * CVE-2024-41060: drm/radeon: check bo_va->bo is non-NULL before using it (bsc#1228567). * CVE-2022-48829: NFSD: Fix NFSv3 SETATTR/CREATE's handling of large file sizes (bsc#1228055). * CVE-2022-48828: NFSD: Fix ia_size underflow (bsc#1228054). * CVE-2022-48827: NFSD: Fix the behavior of READ near OFFSET_MAX (bsc#1228037). * CVE-2024-41078: btrfs: qgroup: fix quota root leak after quota disable failure (bsc#1228655). * CVE-2024-41071: wifi: mac80211: Avoid address calculations via out of bounds array indexing (bsc#1228625). * CVE-2024-41064: powerpc/eeh: avoid possible crash when edev->pdev changes (bsc#1228599). * CVE-2024-35949: btrfs: make sure that WRITTEN is set on all metadata blocks (bsc#1224700). * CVE-2024-41081: ila: block BH in ila_output() (bsc#1228617). * CVE-2024-40978: scsi: qedi: Fix crash while reading debugfs attribute (bsc#1227929). * CVE-2022-48792: scsi: pm8001: Fix use-after-free for aborted SSP/STP sas_task (bsc#1228013). * CVE-2022-48823: scsi: qedf: Fix refcount issue when LOGO is received during TMF (bsc#1228045). * CVE-2024-41076: NFSv4: Fix memory leak in nfs4_set_security_label (bsc#1228649). * CVE-2024-40998: ext4: fix uninitialized ratelimit_state->lock access in __ext4_fill_super() (bsc#1227866). * CVE-2024-41059: hfsplus: fix uninit-value in copy_name (bsc#1228561). * CVE-2024-40987: drm/amdgpu: fix UBSAN warning in kv_dpm.c (bsc#1228235). * CVE-2022-48826: drm/vc4: Fix deadlock on DSI device attach error (bsc#1227975) * CVE-2024-27437: vfio/pci: Disable auto-enable of exclusive INTx IRQ (bsc#1222625). * CVE-2024-41015: ocfs2: add bounds checking to ocfs2_check_dir_entry() (bsc#1228409). * CVE-2024-41016: ocfs2: strict bound check before memcmp in ocfs2_xattr_find_entry() (bsc#1228410). * CVE-2024-41063: bluetooth: hci_core: cancel all works upon hci_unregister_dev() (bsc#1228580). * CVE-2024-42070: netfilter: nf_tables: fully validate NFT_DATA_VALUE on store to data registers (bsc#1228470). * CVE-2024-41070: KVM: PPC: Book3S HV: Prevent UAF in kvm_spapr_tce_attach_iommu_group() (bsc#1228581). * CVE-2021-47405: HID: usbhid: free raw_report buffers in usbhid_stop (bsc#1225238). * CVE-2024-40988: drm/radeon: fix UBSAN warning in kv_dpm.c (bsc#1227957). * CVE-2024-40932: drm/exynos/vidi: fix memory leak in .get_modes() (bsc#1227828). * CVE-2021-47403: ipack: ipoctal: fix module reference leak (bsc#1225241). * CVE-2021-47388: mac80211: fix use-after-free in CCMP/GCMP RX (bsc#1225214). * CVE-2024-41014: xfs: add bounds checking to xlog_recover_process_data (bsc#1228408). * CVE-2024-41091: tun: add missing verification for short frame (bsc#1228327). * CVE-2024-41090: tap: add missing verification for short frame (bsc#1228328). * CVE-2024-40999: net: ena: Add validation for completion descriptors consistency (bsc#1227913). * CVE-2024-35837: net: mvpp2: clear BM pool before initialization (bsc#1224500). * CVE-2021-47588: sit: do not call ipip6_dev_free() from sit_init_net() (bsc#1226568). * CVE-2022-48804: vt_ioctl: fix array_index_nospec in vt_setactivate (bsc#1227968). * CVE-2024-40967: serial: imx: Introduce timeout when waiting on transmitter empty (bsc#1227891). * CVE-2024-40966: kABI: tty: add the option to have a tty reject a new ldisc (bsc#1227886). * CVE-2022-48850: net-sysfs: add check for netdevice being present to speed_show (bsc#1228071). * CVE-2021-47582: usb: core: Do not hold the device lock while sleeping in do_proc_control() (bsc#1226559). * CVE-2024-40982: ssb: fix potential NULL pointer dereference in ssb_device_uevent() (bsc#1227865). * CVE-2021-47468: isdn: mISDN: Fix sleeping function called from invalid context (bsc#1225346). * CVE-2021-47395: mac80211: limit injected vht mcs/nss in ieee80211_parse_tx_radiotap (bsc#1225326). * CVE-2022-48810: ipmr,ip6mr: acquire RTNL before calling ip[6]mr_free_table() on failure path (bsc#1227936). * CVE-2023-52594: Fixed potential array-index-out-of-bounds read in ath9k_htc_txstatus() (bsc#1221045). * CVE-2022-48855: sctp: fix kernel-infoleak for SCTP sockets (bsc#1228003). * CVE-2021-47580: scsi: scsi_debug: Fix type in min_t to avoid stack OOB (bsc#1226550). * CVE-2024-26735: ipv6: sr: fix possible use-after-free and null-ptr-deref (bsc#1222372). * CVE-2024-38560: scsi: bfa: Ensure the copied buf is NUL terminated (bsc#1226786). * CVE-2022-48811: ibmvnic: do not release napi in __ibmvnic_open() (bsc#1227928). * CVE-2021-0129: Improper access control in BlueZ may have allowed an authenticated user to potentially enable information disclosure via adjacent access (bsc#1186463). * CVE-2020-26558: Fixed a flaw in the Bluetooth LE and BR/EDR secure pairing that could permit a nearby man-in-the-middle attacker to identify the Passkey used during pairing (bsc#1179610). * CVE-2024-40937: gve: Clear napi->skb before dev_kfree_skb_any() (bsc#1227836). * CVE-2024-39507: net: hns3: fix kernel crash problem in concurrent scenario (bsc#1227730). * CVE-2024-40923: vmxnet3: disable rx data ring on dma allocation failure (bsc#1227786). * CVE-2024-40941: wifi: iwlwifi: mvm: do not read past the mfuart notifcation (bsc#1227771). * CVE-2022-48860: ethernet: Fix error handling in xemaclite_of_probe (bsc#1228008). * CVE-2022-48863: mISDN: Fix memory leak in dsp_pipeline_build() (bsc#1228063). * CVE-2024-40953: KVM: Fix a data race on last_boosted_vcpu in kvm_vcpu_on_spin() (bsc#1227806). * CVE-2024-39499: vmci: prevent speculation leaks by sanitizing event in event_deliver() (bsc#1227725). * CVE-2024-39487: bonding: Fix out-of-bounds read in bond_option_arp_ip_targets_set() (bsc#1227573) * CVE-2024-35934: net/smc: reduce rtnl pressure in smc_pnet_create_pnetids_list() (bsc#1224641) * CVE-2024-40959: xfrm6: check ip6_dst_idev() return value in xfrm6_get_saddr() (bsc#1227884). * CVE-2024-35893: net/sched: act_skbmod: prevent kernel-infoleak (bsc#1224512) * CVE-2021-47441: mlxsw: thermal: Fix out-of-bounds memory accesses (bsc#1225224) * CVE-2021-47194: cfg80211: call cfg80211_stop_ap when switch from P2P_GO type (bsc#1222829). * CVE-2024-27020: netfilter: nf_tables: Fix potential data-race in __nft_expr_type_get() (bsc#1223815) * CVE-2022-48775: Drivers: hv: vmbus: Fix memory leak in vmbus_add_channel_kobj (bsc#1227924). * CVE-2024-27019: netfilter: nf_tables: Fix potential data-race in __nft_obj_type_get() (bsc#1223813) * CVE-2024-40929: wifi: iwlwifi: mvm: check n_ssids before accessing the ssids (bsc#1227774). * CVE-2024-40912: wifi: mac80211: Fix deadlock in ieee80211_sta_ps_deliver_wakeup() (bsc#1227790). * CVE-2024-40942: wifi: mac80211: mesh: Fix leak of mesh_preq_queue objects (bsc#1227770). * CVE-2022-48857: NFC: port100: fix use-after-free in port100_send_complete (bsc#1228005). * CVE-2024-36902: ipv6: fib6_rules: avoid possible NULL dereference in fib6_rule_action() (bsc#1225719). * CVE-2021-47606: net: netlink: af_netlink: Prevent empty skb by adding a check on len. (bsc#1226555). * CVE-2024-40901: scsi: mpt3sas: Avoid test/set_bit() operating in non- allocated memory (bsc#1227762). * CVE-2024-26924: scsi: lpfc: Release hbalock before calling lpfc_worker_wake_up() (bsc#1225820). * CVE-2024-26830: Fixed i40e to not allow untrusted VF to remove administratively set MAC (bsc#1223012). * CVE-2021-47516: nfp: Fix memory leak in nfp_cpp_area_cache_add() (bsc#1225427). * CVE-2021-47501: i40e: Fix NULL pointer dereference in i40e_dbg_dump_desc (bsc#1225361). * CVE-2024-39501: drivers: core: synchronize really_probe() and dev_uevent() (bsc#1227754). * CVE-2023-52743: ice: Do not use WQ_MEM_RECLAIM flag for workqueue (bsc#1225003) * CVE-2021-47542: net: qlogic: qlcnic: Fix a NULL pointer dereference in qlcnic_83xx_add_rings() (bsc#1225455). * CVE-2024-36901: ipv6: prevent NULL dereference in ip6_output() (bsc#1225711) * CVE-2024-36004: i40e: Do not use WQ_MEM_RECLAIM flag for workqueue (bsc#1224545) * CVE-2024-27025: nbd: null check for nla_nest_start (bsc#1223778) * CVE-2021-47599: btrfs: use latest_dev in btrfs_show_devname (bsc#1226571). * CVE-2023-52435: net: prevent mss overflow in skb_segment() (bsc#1220138). * CVE-2024-26663: tipc: Check the bearer type before calling tipc_udp_nl_bearer_add() (bsc#1222326). * CVE-2021-47597: inet_diag: fix kernel-infoleak for UDP sockets (bsc#1226553). * CVE-2024-39490: ipv6: sr: fix missing sk_buff release in seg6_input_core (bsc#1227626). * CVE-2024-38558: net: openvswitch: fix overwriting ct original tuple for ICMPv6 (bsc#1226783). * CVE-2024-26615: net/smc: fix illegal rmb_desc access in SMC-D connection dump (bsc#1220942). * CVE-2023-52619: Fixed possible crash when setting number of cpus to an odd number in pstore/ram (bsc#1221618). * CVE-2024-26659: Fixed wrong handling of isoc Babble and Buffer Overrun events in xhci (bsc#1222317). * CVE-2024-35978: Bluetooth: Fix memory leak in hci_req_sync_complete() (bsc#1224571). * CVE-2023-52669: crypto: s390/aes - Fix buffer overread in CTR mode (bsc#1224637). * CVE-2023-52615: Fixed page fault dead lock on mmap-ed hwrng (bsc#1221614). * CVE-2023-52612: Fixed req->dst buffer overflow in crypto/scomp (bsc#1221616). * CVE-2024-35995: ACPI: CPPC: Use access_width over bit_width for system memory accesses (bsc#1224557). * CVE-2023-52623: Fixed suspicious RCU usage in SUNRPC (bsc#1222060). * CVE-2021-47295: net: sched: fix memory leak in tcindex_partial_destroy_work (bsc#1224975) * CVE-2023-52693: ACPI: video: check for error while searching for backlight device parent (bsc#1224686). * CVE-2023-52683: ACPI: LPIT: Avoid u32 multiplication overflow (bsc#1224627). * CVE-2023-4244: Fixed a use-after-free in the nf_tables component, which could be exploited to achieve local privilege escalation (bsc#1215420). * CVE-2024-39475: fbdev: savage: Handle err return when savagefb_check_var failed (bsc#1227435) * CVE-2021-47520: can: pch_can: pch_can_rx_normal: fix use after free (bsc#1225431). * CVE-2024-36941: wifi: nl80211: do not free NULL coalescing rule (bsc#1225835). * CVE-2021-47145: btrfs: do not BUG_ON in link_to_fixup_dir (bsc#1222005). * CVE-2021-47547: net: tulip: de4x5: fix the problem that the array 'lp->phy' may be out of bound (bsc#1225505). * CVE-2023-52817: drm/amdgpu: Fix a null pointer access when the smc_rreg pointer is NULL (bsc#1225569). * CVE-2023-52819: drm/amd: Fix UBSAN array-index-out-of-bounds for Polaris and Tonga (bsc#1225532). * CVE-2023-52818: drm/amd: Fix UBSAN array-index-out-of-bounds for SMU7 (bsc#1225530). * CVE-2023-52753: drm/amd/display: Avoid NULL dereference of timing generator (bsc#1225478). * CVE-2024-36014: drm/arm/malidp: fix a possible null pointer dereference (bsc#1225593). * CVE-2024-26636: llc: make llc_ui_sendmsg() more robust against bonding changes (bsc#1221659). * CVE-2024-26635: llc: Drop support for ETH_P_TR_802_2 (bsc#1221656). * CVE-2024-35828: wifi: libertas: fix some memleaks in lbs_allocate_cmd_buffer() (bsc#1224622). * CVE-2023-52507: Fixed possible shift-out-of-bounds in nfc/nci (bsc#1220833). * CVE-2024-38598: md: fix resync softlockup when bitmap size is less than array size (bsc#1226757). * CVE-2024-35805: dm snapshot: fix lockup in dm_exception_table_exit (bsc#1224743). * CVE-2024-26880: dm: call the resume method on internal suspend (bsc#1223188). * CVE-2021-47498: dm rq: do not queue request to blk-mq during DM suspend (bsc#1225357). * CVE-2021-47275: bcache: avoid oversized read request in cache missing code path (bsc#1224965). * CVE-2024-38619: usb-storage: alauda: Check whether the media is initialized (bsc#1226861). * CVE-2021-47201: iavf: free q_vectors before queues in iavf_disable_vf (bsc#1222792). * CVE-2024-26863: hsr: Fix uninit-value access in hsr_get_node() (bsc#1223021). * CVE-2024-38630: watchdog: cpu5wdt.c: Fix use-after-free bug caused by cpu5wdt_trigger (bsc#1226908). * CVE-2024-39301: net/9p: fix uninit-value in p9_client_rpc() (bsc#1226994). * CVE-2021-47559: net/smc: Fix NULL pointer dereferencing in smc_vlan_by_tcpsk() (bsc#1225396). The following non-security bugs were fixed: * Fix spurious WARNING caused by a qxl driver patch (bsc#1227213,bsc#1227191) * KVM: PPC: Book3S HV: Do not take kvm->lock around kvm_for_each_vcpu (bsc#1065729). * KVM: PPC: Book3S HV: remove extraneous asterisk from rm_host_ipi_action() comment (bsc#1065729). * KVM: PPC: Book3S PR: Exiting split hack mode needs to fixup both PC and LR (bsc#1065729). * KVM: PPC: Book3S: Fix some RCU-list locks (git-fixes). * KVM: PPC: Book3S: Only report KVM_CAP_SPAPR_TCE_VFIO on powernv machines (bsc#1065729). * KVM: PPC: Book3S: Use new mutex to synchronize access to rtas token list (bsc#1065729). * KVM: PPC: Inform the userspace about TCE update failures (bsc#1065729). * KVM: PPC: Move and undef TRACE_INCLUDE_PATH/FILE (bsc#1065729). * PCI: Fix resource double counting on remove & rescan (git-fixes). * PCI: hv: Return zero, not garbage, when reading PCI_INTERRUPT_PIN (git- fixes). * PM: hibernate: x86: Use crc32 instead of md5 for hibernation e820 integrity check (git-fixes). * SUNRPC: Fix gss_free_in_token_pages() (git-fixes). * SUNRPC: Fix loop termination condition in gss_free_in_token_pages() (git- fixes). * Tools: hv: kvp: eliminate 'may be used uninitialized' warning (git-fixes). * USB: class: cdc-wdm: Fix CPU lockup caused by excessive log messages (git- fixes). * btrfs: fix 64bit compat send ioctl arguments not initializing version member (bsc#1228030). * btrfs: fix send ioctl on 32bit with 64bit kernel (bsc#1228030). * btrfs: incremental send, fix emission of invalid clone operations (bsc#1228030). * btrfs: remove unused members dir_path from recorded_ref (bsc#1228030). * btrfs: send, improve clone range (bsc#1228030). * btrfs: send: add new command FILEATTR for file attributes (bsc#1228030). * btrfs: send: add stream v2 definitions (bsc#1228030). * btrfs: send: always use the rbtree based inode ref management infrastructure (bsc#1228030). * btrfs: send: avoid copying file data (bsc#1228030). * btrfs: send: explicitly number commands and attributes (bsc#1228030). * btrfs: send: fix failures when processing inodes with no links (bsc#1228030). * btrfs: send: fix send failure of a subcase of orphan inodes (bsc#1228030). * btrfs: send: fix sending link commands for existing file paths (bsc#1228030). * btrfs: send: get rid of i_size logic in send_write() (bsc#1228030). * btrfs: send: introduce recorded_ref_alloc and recorded_ref_free (bsc#1228030). * btrfs: send: prepare for v2 protocol (bsc#1228030). * btrfs: send: refactor arguments of get_inode_info() (bsc#1228030). * btrfs: send: remove stale code when checking for shared extents (bsc#1228030). * btrfs: send: remove unused found_type parameter to lookup_dir_item_inode() (bsc#1228030). * btrfs: send: remove unused send_ctx::{total,cmd}_send_size (bsc#1228030). * btrfs: send: use boolean types for current inode status (bsc#1228030). * btrfs: silence maybe-uninitialized warning in clone_range (bsc#1228030). * drm/amdgpu/debugfs: fix error code when smc register accessors are NULL (git-fixes). * drm/vc4: dsi: Only register our component once a DSI device is (bsc#1227975) * hv_netvsc: rndis_filter needs to select NLS (git-fixes). * ipv6: sr: fix incorrect unregister order (git-fixes). * kgdb: Add kgdb_has_hit_break function (git-fixes). * kgdb: Move the extern declaration kgdb_has_hit_break() to generic kgdb.h (git-fixes). * net: hsr: fix placement of logical operator in a multi-line statement (bsc#1223021). * net: mana: Fix the extra HZ in mana_hwc_send_request (git-fixes). * net: mana: select PAGE_POOL (git-fixes). * net_sched: add a temporary refcnt for struct tcindex_data (bsc#1224975). * net_sched: fix a memory leak in cls_tcindex (bsc#1224975). * net_sched: fix a missing refcnt in tcindex_init() (bsc#1224975). * net_sched: hold rtnl lock in tcindex_partial_destroy_work() (bsc#1224975) * nfs: Handle error of rpc_proc_register() in nfs_net_init() (git-fixes). * nvme: fixup comment for nvme RDMA Provider Type (git-fixes). * ocfs2: fix DIO failure due to insufficient transaction credits (bsc#1216834). * ocfs2: remove redundant assignment to variable free_space (bsc#1228409). * ocfs2: strict bound check before memcmp in ocfs2_xattr_find_entry() (bsc#1228410). * powerpc/rtas: Prevent Spectre v1 gadget construction in sys_rtas() (bsc#1227487). * sched/deadline: Fix BUG_ON condition for deboosted tasks (bsc#1227407). * scsi: qla2xxx: Avoid possible run-time warning with long model_num (bsc#1228850). * scsi: qla2xxx: Complete command early within lock (bsc#1228850). * scsi: qla2xxx: Convert comma to semicolon (bsc#1228850). * scsi: qla2xxx: Drop driver owner assignment (bsc#1228850). * scsi: qla2xxx: During vport delete send async logout explicitly (bsc#1228850). * scsi: qla2xxx: Fix debugfs output for fw_resource_count (bsc#1228850). * scsi: qla2xxx: Fix flash read failure (bsc#1228850). * scsi: qla2xxx: Fix for possible memory corruption (bsc#1228850). * scsi: qla2xxx: Fix optrom version displayed in FDMI (bsc#1228850). * scsi: qla2xxx: Reduce fabric scan duplicate code (bsc#1228850). * scsi: qla2xxx: Remove unused struct 'scsi_dif_tuple' (bsc#1228850). * scsi: qla2xxx: Return ENOBUFS if sg_cnt is more than one for ELS cmds (bsc#1228850). * scsi: qla2xxx: Unable to act on RSCN for port online (bsc#1228850). * scsi: qla2xxx: Update version to 10.02.09.300-k (bsc#1228850). * scsi: qla2xxx: Use QP lock to search for bsg (bsc#1228850). * scsi: qla2xxx: validate nvme_local_port correctly (bsc#1228850). * signal: Introduce clear_siginfo (git-fixes). * string.h: Introduce memtostr() and memtostr_pad() (bsc#1228850). * sunrpc: fix NFSACL RPC retry on soft mount (git-fixes). * tools lib: Fix builds when glibc contains strlcpy() (git-fixes). * tools: hv: fix KVP and VSS daemons exit code (git-fixes). * usb: add a hcd_uses_dma helper (git-fixes). * usb: atm: cxacru: fix endpoint checking in cxacru_bind() (git-fixes). * usb: musb: da8xx: fix a resource leak in probe() (git-fixes). * x86/apic: Fix kernel panic when booting with intremap=off and x2apic_phys (git-fixes). * x86/bhi: Avoid warning in #DB handler due to BHI mitigation (git-fixes). * x86/boot/e820: Fix typo in e820.c comment (git-fixes). * x86/bugs: Remove CONFIG_BHI_MITIGATION_AUTO and spectre_bhi=auto (git- fixes). * x86/bugs: Replace CONFIG_SPECTRE_BHI_{ON,OFF} with CONFIG_MITIGATION_SPECTRE_BHI (git-fixes). * x86/cpu: Fix AMD erratum #1485 on Zen4-based CPUs (git-fixes). * x86/fpu: Return proper error codes from user access functions (git-fixes). * x86/ioremap: Fix page aligned size calculation in __ioremap_caller() (git- fixes). * x86/kprobes: Fix kprobes instruction boudary check with CONFIG_RETHUNK (git- fixes). * x86/kprobes: Fix optprobe optimization check with CONFIG_RETHUNK (git- fixes). * x86/msr: Fix wr/rdmsr_safe_regs_on_cpu() prototypes (git-fixes). * x86/numa: Use cpumask_available instead of hardcoded NULL check (git-fixes). * x86: __memcpy_flushcache: fix wrong alignment if size > 2^32 (git-fixes). * xfs: check that dir block entries do not off the end of the buffer (git- fixes). * xfs: refactor xfs_verifier_error and xfs_buf_ioerror (git-fixes). * xfs: remove XFS_WANT_CORRUPTED_RETURN from dir3 data verifiers (git-fixes). * xhci: Poll for U0 after disabling USB2 LPM (git-fixes). ## Special Instructions and Notes: * Please reboot the system after installing this update. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server for SAP Applications 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-2901=1 * SUSE Linux Enterprise High Performance Computing 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-2901=1 * SUSE Linux Enterprise Server 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-2901=1 ## Package List: * SUSE Linux Enterprise Server for SAP Applications 12 SP5 (nosrc x86_64) * kernel-azure-4.12.14-16.194.1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 (x86_64) * kernel-azure-debugsource-4.12.14-16.194.1 * kernel-azure-devel-4.12.14-16.194.1 * kernel-azure-base-4.12.14-16.194.1 * kernel-azure-base-debuginfo-4.12.14-16.194.1 * kernel-syms-azure-4.12.14-16.194.1 * kernel-azure-debuginfo-4.12.14-16.194.1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 (noarch) * kernel-devel-azure-4.12.14-16.194.1 * kernel-source-azure-4.12.14-16.194.1 * SUSE Linux Enterprise High Performance Computing 12 SP5 (nosrc x86_64) * kernel-azure-4.12.14-16.194.1 * SUSE Linux Enterprise High Performance Computing 12 SP5 (x86_64) * kernel-azure-debugsource-4.12.14-16.194.1 * kernel-azure-devel-4.12.14-16.194.1 * kernel-azure-base-4.12.14-16.194.1 * kernel-azure-base-debuginfo-4.12.14-16.194.1 * kernel-syms-azure-4.12.14-16.194.1 * kernel-azure-debuginfo-4.12.14-16.194.1 * SUSE Linux Enterprise High Performance Computing 12 SP5 (noarch) * kernel-devel-azure-4.12.14-16.194.1 * kernel-source-azure-4.12.14-16.194.1 * SUSE Linux Enterprise Server 12 SP5 (nosrc x86_64) * kernel-azure-4.12.14-16.194.1 * SUSE Linux Enterprise Server 12 SP5 (x86_64) * kernel-azure-debugsource-4.12.14-16.194.1 * kernel-azure-devel-4.12.14-16.194.1 * kernel-azure-base-4.12.14-16.194.1 * kernel-azure-base-debuginfo-4.12.14-16.194.1 * kernel-syms-azure-4.12.14-16.194.1 * kernel-azure-debuginfo-4.12.14-16.194.1 * SUSE Linux Enterprise Server 12 SP5 (noarch) * kernel-devel-azure-4.12.14-16.194.1 * kernel-source-azure-4.12.14-16.194.1 ## References: * https://www.suse.com/security/cve/CVE-2020-26558.html * https://www.suse.com/security/cve/CVE-2021-0129.html * https://www.suse.com/security/cve/CVE-2021-47145.html * https://www.suse.com/security/cve/CVE-2021-47191.html * https://www.suse.com/security/cve/CVE-2021-47194.html * https://www.suse.com/security/cve/CVE-2021-47197.html * https://www.suse.com/security/cve/CVE-2021-47201.html * https://www.suse.com/security/cve/CVE-2021-47219.html * https://www.suse.com/security/cve/CVE-2021-47275.html * https://www.suse.com/security/cve/CVE-2021-47295.html * https://www.suse.com/security/cve/CVE-2021-47388.html * https://www.suse.com/security/cve/CVE-2021-47395.html * https://www.suse.com/security/cve/CVE-2021-47399.html * https://www.suse.com/security/cve/CVE-2021-47403.html * https://www.suse.com/security/cve/CVE-2021-47405.html * https://www.suse.com/security/cve/CVE-2021-47438.html * https://www.suse.com/security/cve/CVE-2021-47441.html * https://www.suse.com/security/cve/CVE-2021-47468.html * https://www.suse.com/security/cve/CVE-2021-47498.html * https://www.suse.com/security/cve/CVE-2021-47501.html * https://www.suse.com/security/cve/CVE-2021-47516.html * https://www.suse.com/security/cve/CVE-2021-47520.html * https://www.suse.com/security/cve/CVE-2021-47542.html * https://www.suse.com/security/cve/CVE-2021-47547.html * https://www.suse.com/security/cve/CVE-2021-47559.html * https://www.suse.com/security/cve/CVE-2021-47580.html * https://www.suse.com/security/cve/CVE-2021-47582.html * https://www.suse.com/security/cve/CVE-2021-47588.html * https://www.suse.com/security/cve/CVE-2021-47597.html * https://www.suse.com/security/cve/CVE-2021-47599.html * https://www.suse.com/security/cve/CVE-2021-47606.html * https://www.suse.com/security/cve/CVE-2021-47619.html * https://www.suse.com/security/cve/CVE-2022-20368.html * https://www.suse.com/security/cve/CVE-2022-28748.html * https://www.suse.com/security/cve/CVE-2022-2964.html * https://www.suse.com/security/cve/CVE-2022-48775.html * https://www.suse.com/security/cve/CVE-2022-48792.html * https://www.suse.com/security/cve/CVE-2022-48794.html * https://www.suse.com/security/cve/CVE-2022-48804.html * https://www.suse.com/security/cve/CVE-2022-48805.html * https://www.suse.com/security/cve/CVE-2022-48810.html * https://www.suse.com/security/cve/CVE-2022-48811.html * https://www.suse.com/security/cve/CVE-2022-48823.html * https://www.suse.com/security/cve/CVE-2022-48826.html * https://www.suse.com/security/cve/CVE-2022-48827.html * https://www.suse.com/security/cve/CVE-2022-48828.html * https://www.suse.com/security/cve/CVE-2022-48829.html * https://www.suse.com/security/cve/CVE-2022-48836.html * https://www.suse.com/security/cve/CVE-2022-48839.html * https://www.suse.com/security/cve/CVE-2022-48850.html * https://www.suse.com/security/cve/CVE-2022-48855.html * https://www.suse.com/security/cve/CVE-2022-48857.html * https://www.suse.com/security/cve/CVE-2022-48860.html * https://www.suse.com/security/cve/CVE-2022-48863.html * https://www.suse.com/security/cve/CVE-2023-4244.html * https://www.suse.com/security/cve/CVE-2023-52435.html * https://www.suse.com/security/cve/CVE-2023-52507.html * https://www.suse.com/security/cve/CVE-2023-52594.html * https://www.suse.com/security/cve/CVE-2023-52612.html * https://www.suse.com/security/cve/CVE-2023-52615.html * https://www.suse.com/security/cve/CVE-2023-52619.html * https://www.suse.com/security/cve/CVE-2023-52623.html * https://www.suse.com/security/cve/CVE-2023-52669.html * https://www.suse.com/security/cve/CVE-2023-52683.html * https://www.suse.com/security/cve/CVE-2023-52693.html * https://www.suse.com/security/cve/CVE-2023-52743.html * https://www.suse.com/security/cve/CVE-2023-52753.html * https://www.suse.com/security/cve/CVE-2023-52817.html * https://www.suse.com/security/cve/CVE-2023-52818.html * https://www.suse.com/security/cve/CVE-2023-52819.html * https://www.suse.com/security/cve/CVE-2023-52885.html * https://www.suse.com/security/cve/CVE-2024-26615.html * https://www.suse.com/security/cve/CVE-2024-26635.html * https://www.suse.com/security/cve/CVE-2024-26636.html * https://www.suse.com/security/cve/CVE-2024-26659.html * https://www.suse.com/security/cve/CVE-2024-26663.html * https://www.suse.com/security/cve/CVE-2024-26735.html * https://www.suse.com/security/cve/CVE-2024-26830.html * https://www.suse.com/security/cve/CVE-2024-26863.html * https://www.suse.com/security/cve/CVE-2024-26880.html * https://www.suse.com/security/cve/CVE-2024-26920.html * https://www.suse.com/security/cve/CVE-2024-26924.html * https://www.suse.com/security/cve/CVE-2024-27019.html * https://www.suse.com/security/cve/CVE-2024-27020.html * https://www.suse.com/security/cve/CVE-2024-27025.html * https://www.suse.com/security/cve/CVE-2024-27437.html * https://www.suse.com/security/cve/CVE-2024-35805.html * https://www.suse.com/security/cve/CVE-2024-35806.html * https://www.suse.com/security/cve/CVE-2024-35819.html * https://www.suse.com/security/cve/CVE-2024-35828.html * https://www.suse.com/security/cve/CVE-2024-35837.html * https://www.suse.com/security/cve/CVE-2024-35887.html * https://www.suse.com/security/cve/CVE-2024-35893.html * https://www.suse.com/security/cve/CVE-2024-35934.html * https://www.suse.com/security/cve/CVE-2024-35947.html * https://www.suse.com/security/cve/CVE-2024-35949.html * https://www.suse.com/security/cve/CVE-2024-35966.html * https://www.suse.com/security/cve/CVE-2024-35967.html * https://www.suse.com/security/cve/CVE-2024-35978.html * https://www.suse.com/security/cve/CVE-2024-35995.html * https://www.suse.com/security/cve/CVE-2024-36004.html * https://www.suse.com/security/cve/CVE-2024-36014.html * https://www.suse.com/security/cve/CVE-2024-36288.html * https://www.suse.com/security/cve/CVE-2024-36592.html * https://www.suse.com/security/cve/CVE-2024-36901.html * https://www.suse.com/security/cve/CVE-2024-36902.html * https://www.suse.com/security/cve/CVE-2024-36919.html * https://www.suse.com/security/cve/CVE-2024-36924.html * https://www.suse.com/security/cve/CVE-2024-36939.html * https://www.suse.com/security/cve/CVE-2024-36941.html * https://www.suse.com/security/cve/CVE-2024-36952.html * https://www.suse.com/security/cve/CVE-2024-38558.html * https://www.suse.com/security/cve/CVE-2024-38560.html * https://www.suse.com/security/cve/CVE-2024-38598.html * https://www.suse.com/security/cve/CVE-2024-38619.html * https://www.suse.com/security/cve/CVE-2024-38630.html * https://www.suse.com/security/cve/CVE-2024-39301.html * https://www.suse.com/security/cve/CVE-2024-39475.html * https://www.suse.com/security/cve/CVE-2024-39487.html * https://www.suse.com/security/cve/CVE-2024-39488.html * https://www.suse.com/security/cve/CVE-2024-39490.html * https://www.suse.com/security/cve/CVE-2024-39494.html * https://www.suse.com/security/cve/CVE-2024-39499.html * https://www.suse.com/security/cve/CVE-2024-39501.html * https://www.suse.com/security/cve/CVE-2024-39506.html * https://www.suse.com/security/cve/CVE-2024-39507.html * https://www.suse.com/security/cve/CVE-2024-39509.html * https://www.suse.com/security/cve/CVE-2024-40901.html * https://www.suse.com/security/cve/CVE-2024-40904.html * https://www.suse.com/security/cve/CVE-2024-40912.html * https://www.suse.com/security/cve/CVE-2024-40923.html * https://www.suse.com/security/cve/CVE-2024-40929.html * https://www.suse.com/security/cve/CVE-2024-40932.html * https://www.suse.com/security/cve/CVE-2024-40937.html * https://www.suse.com/security/cve/CVE-2024-40941.html * https://www.suse.com/security/cve/CVE-2024-40942.html * https://www.suse.com/security/cve/CVE-2024-40943.html * https://www.suse.com/security/cve/CVE-2024-40953.html * https://www.suse.com/security/cve/CVE-2024-40959.html * https://www.suse.com/security/cve/CVE-2024-40966.html * https://www.suse.com/security/cve/CVE-2024-40967.html * https://www.suse.com/security/cve/CVE-2024-40978.html * https://www.suse.com/security/cve/CVE-2024-40982.html * https://www.suse.com/security/cve/CVE-2024-40987.html * https://www.suse.com/security/cve/CVE-2024-40988.html * https://www.suse.com/security/cve/CVE-2024-40990.html * https://www.suse.com/security/cve/CVE-2024-40995.html * https://www.suse.com/security/cve/CVE-2024-40998.html * https://www.suse.com/security/cve/CVE-2024-40999.html * https://www.suse.com/security/cve/CVE-2024-41014.html * https://www.suse.com/security/cve/CVE-2024-41015.html * https://www.suse.com/security/cve/CVE-2024-41016.html * https://www.suse.com/security/cve/CVE-2024-41044.html * https://www.suse.com/security/cve/CVE-2024-41048.html * https://www.suse.com/security/cve/CVE-2024-41059.html * https://www.suse.com/security/cve/CVE-2024-41060.html * https://www.suse.com/security/cve/CVE-2024-41063.html * https://www.suse.com/security/cve/CVE-2024-41064.html * https://www.suse.com/security/cve/CVE-2024-41066.html * https://www.suse.com/security/cve/CVE-2024-41070.html * https://www.suse.com/security/cve/CVE-2024-41071.html * https://www.suse.com/security/cve/CVE-2024-41072.html * https://www.suse.com/security/cve/CVE-2024-41076.html * https://www.suse.com/security/cve/CVE-2024-41078.html * https://www.suse.com/security/cve/CVE-2024-41081.html * https://www.suse.com/security/cve/CVE-2024-41089.html * https://www.suse.com/security/cve/CVE-2024-41090.html * https://www.suse.com/security/cve/CVE-2024-41091.html * https://www.suse.com/security/cve/CVE-2024-41095.html * https://www.suse.com/security/cve/CVE-2024-42070.html * https://www.suse.com/security/cve/CVE-2024-42093.html * https://www.suse.com/security/cve/CVE-2024-42096.html * https://www.suse.com/security/cve/CVE-2024-42119.html * https://www.suse.com/security/cve/CVE-2024-42120.html * https://www.suse.com/security/cve/CVE-2024-42124.html * https://www.suse.com/security/cve/CVE-2024-42145.html * https://www.suse.com/security/cve/CVE-2024-42223.html * https://www.suse.com/security/cve/CVE-2024-42224.html * https://bugzilla.suse.com/show_bug.cgi?id=1065729 * https://bugzilla.suse.com/show_bug.cgi?id=1088701 * https://bugzilla.suse.com/show_bug.cgi?id=1149446 * https://bugzilla.suse.com/show_bug.cgi?id=1179610 * https://bugzilla.suse.com/show_bug.cgi?id=1186463 * https://bugzilla.suse.com/show_bug.cgi?id=1196018 * https://bugzilla.suse.com/show_bug.cgi?id=1202346 * https://bugzilla.suse.com/show_bug.cgi?id=1215420 * https://bugzilla.suse.com/show_bug.cgi?id=1216834 * https://bugzilla.suse.com/show_bug.cgi?id=1220138 * https://bugzilla.suse.com/show_bug.cgi?id=1220833 * https://bugzilla.suse.com/show_bug.cgi?id=1220942 * https://bugzilla.suse.com/show_bug.cgi?id=1221045 * https://bugzilla.suse.com/show_bug.cgi?id=1221614 * https://bugzilla.suse.com/show_bug.cgi?id=1221616 * https://bugzilla.suse.com/show_bug.cgi?id=1221618 * https://bugzilla.suse.com/show_bug.cgi?id=1221656 * https://bugzilla.suse.com/show_bug.cgi?id=1221659 * https://bugzilla.suse.com/show_bug.cgi?id=1222005 * https://bugzilla.suse.com/show_bug.cgi?id=1222060 * https://bugzilla.suse.com/show_bug.cgi?id=1222317 * https://bugzilla.suse.com/show_bug.cgi?id=1222326 * https://bugzilla.suse.com/show_bug.cgi?id=1222372 * https://bugzilla.suse.com/show_bug.cgi?id=1222625 * https://bugzilla.suse.com/show_bug.cgi?id=1222776 * https://bugzilla.suse.com/show_bug.cgi?id=1222792 * https://bugzilla.suse.com/show_bug.cgi?id=1222824 * https://bugzilla.suse.com/show_bug.cgi?id=1222829 * https://bugzilla.suse.com/show_bug.cgi?id=1222866 * https://bugzilla.suse.com/show_bug.cgi?id=1223012 * https://bugzilla.suse.com/show_bug.cgi?id=1223021 * https://bugzilla.suse.com/show_bug.cgi?id=1223188 * https://bugzilla.suse.com/show_bug.cgi?id=1223778 * https://bugzilla.suse.com/show_bug.cgi?id=1223813 * https://bugzilla.suse.com/show_bug.cgi?id=1223815 * https://bugzilla.suse.com/show_bug.cgi?id=1224500 * https://bugzilla.suse.com/show_bug.cgi?id=1224512 * https://bugzilla.suse.com/show_bug.cgi?id=1224545 * https://bugzilla.suse.com/show_bug.cgi?id=1224557 * https://bugzilla.suse.com/show_bug.cgi?id=1224571 * https://bugzilla.suse.com/show_bug.cgi?id=1224576 * https://bugzilla.suse.com/show_bug.cgi?id=1224587 * https://bugzilla.suse.com/show_bug.cgi?id=1224622 * https://bugzilla.suse.com/show_bug.cgi?id=1224627 * https://bugzilla.suse.com/show_bug.cgi?id=1224637 * https://bugzilla.suse.com/show_bug.cgi?id=1224641 * https://bugzilla.suse.com/show_bug.cgi?id=1224647 * https://bugzilla.suse.com/show_bug.cgi?id=1224663 * https://bugzilla.suse.com/show_bug.cgi?id=1224683 * https://bugzilla.suse.com/show_bug.cgi?id=1224686 * https://bugzilla.suse.com/show_bug.cgi?id=1224699 * https://bugzilla.suse.com/show_bug.cgi?id=1224700 * https://bugzilla.suse.com/show_bug.cgi?id=1224743 * https://bugzilla.suse.com/show_bug.cgi?id=1224965 * https://bugzilla.suse.com/show_bug.cgi?id=1224975 * https://bugzilla.suse.com/show_bug.cgi?id=1225003 * https://bugzilla.suse.com/show_bug.cgi?id=1225214 * https://bugzilla.suse.com/show_bug.cgi?id=1225224 * https://bugzilla.suse.com/show_bug.cgi?id=1225229 * https://bugzilla.suse.com/show_bug.cgi?id=1225238 * https://bugzilla.suse.com/show_bug.cgi?id=1225241 * https://bugzilla.suse.com/show_bug.cgi?id=1225326 * https://bugzilla.suse.com/show_bug.cgi?id=1225328 * https://bugzilla.suse.com/show_bug.cgi?id=1225346 * https://bugzilla.suse.com/show_bug.cgi?id=1225357 * https://bugzilla.suse.com/show_bug.cgi?id=1225361 * https://bugzilla.suse.com/show_bug.cgi?id=1225396 * https://bugzilla.suse.com/show_bug.cgi?id=1225427 * https://bugzilla.suse.com/show_bug.cgi?id=1225431 * https://bugzilla.suse.com/show_bug.cgi?id=1225455 * https://bugzilla.suse.com/show_bug.cgi?id=1225478 * https://bugzilla.suse.com/show_bug.cgi?id=1225505 * https://bugzilla.suse.com/show_bug.cgi?id=1225530 * https://bugzilla.suse.com/show_bug.cgi?id=1225532 * https://bugzilla.suse.com/show_bug.cgi?id=1225569 * https://bugzilla.suse.com/show_bug.cgi?id=1225593 * https://bugzilla.suse.com/show_bug.cgi?id=1225711 * https://bugzilla.suse.com/show_bug.cgi?id=1225719 * https://bugzilla.suse.com/show_bug.cgi?id=1225767 * https://bugzilla.suse.com/show_bug.cgi?id=1225820 * https://bugzilla.suse.com/show_bug.cgi?id=1225835 * https://bugzilla.suse.com/show_bug.cgi?id=1225838 * https://bugzilla.suse.com/show_bug.cgi?id=1225898 * https://bugzilla.suse.com/show_bug.cgi?id=1226550 * https://bugzilla.suse.com/show_bug.cgi?id=1226553 * https://bugzilla.suse.com/show_bug.cgi?id=1226555 * https://bugzilla.suse.com/show_bug.cgi?id=1226559 * https://bugzilla.suse.com/show_bug.cgi?id=1226568 * https://bugzilla.suse.com/show_bug.cgi?id=1226571 * https://bugzilla.suse.com/show_bug.cgi?id=1226645 * https://bugzilla.suse.com/show_bug.cgi?id=1226757 * https://bugzilla.suse.com/show_bug.cgi?id=1226783 * https://bugzilla.suse.com/show_bug.cgi?id=1226786 * https://bugzilla.suse.com/show_bug.cgi?id=1226834 * https://bugzilla.suse.com/show_bug.cgi?id=1226861 * https://bugzilla.suse.com/show_bug.cgi?id=1226908 * https://bugzilla.suse.com/show_bug.cgi?id=1226994 * https://bugzilla.suse.com/show_bug.cgi?id=1227191 * https://bugzilla.suse.com/show_bug.cgi?id=1227213 * https://bugzilla.suse.com/show_bug.cgi?id=1227407 * https://bugzilla.suse.com/show_bug.cgi?id=1227435 * https://bugzilla.suse.com/show_bug.cgi?id=1227487 * https://bugzilla.suse.com/show_bug.cgi?id=1227573 * https://bugzilla.suse.com/show_bug.cgi?id=1227618 * https://bugzilla.suse.com/show_bug.cgi?id=1227626 * https://bugzilla.suse.com/show_bug.cgi?id=1227716 * https://bugzilla.suse.com/show_bug.cgi?id=1227725 * https://bugzilla.suse.com/show_bug.cgi?id=1227729 * https://bugzilla.suse.com/show_bug.cgi?id=1227730 * https://bugzilla.suse.com/show_bug.cgi?id=1227733 * https://bugzilla.suse.com/show_bug.cgi?id=1227750 * https://bugzilla.suse.com/show_bug.cgi?id=1227754 * https://bugzilla.suse.com/show_bug.cgi?id=1227762 * https://bugzilla.suse.com/show_bug.cgi?id=1227770 * https://bugzilla.suse.com/show_bug.cgi?id=1227771 * https://bugzilla.suse.com/show_bug.cgi?id=1227772 * https://bugzilla.suse.com/show_bug.cgi?id=1227774 * https://bugzilla.suse.com/show_bug.cgi?id=1227786 * https://bugzilla.suse.com/show_bug.cgi?id=1227790 * https://bugzilla.suse.com/show_bug.cgi?id=1227806 * https://bugzilla.suse.com/show_bug.cgi?id=1227824 * https://bugzilla.suse.com/show_bug.cgi?id=1227828 * https://bugzilla.suse.com/show_bug.cgi?id=1227830 * https://bugzilla.suse.com/show_bug.cgi?id=1227836 * https://bugzilla.suse.com/show_bug.cgi?id=1227849 * https://bugzilla.suse.com/show_bug.cgi?id=1227865 * https://bugzilla.suse.com/show_bug.cgi?id=1227866 * https://bugzilla.suse.com/show_bug.cgi?id=1227884 * https://bugzilla.suse.com/show_bug.cgi?id=1227886 * https://bugzilla.suse.com/show_bug.cgi?id=1227891 * https://bugzilla.suse.com/show_bug.cgi?id=1227913 * https://bugzilla.suse.com/show_bug.cgi?id=1227924 * https://bugzilla.suse.com/show_bug.cgi?id=1227928 * https://bugzilla.suse.com/show_bug.cgi?id=1227929 * https://bugzilla.suse.com/show_bug.cgi?id=1227936 * https://bugzilla.suse.com/show_bug.cgi?id=1227957 * https://bugzilla.suse.com/show_bug.cgi?id=1227968 * https://bugzilla.suse.com/show_bug.cgi?id=1227969 * https://bugzilla.suse.com/show_bug.cgi?id=1227975 * https://bugzilla.suse.com/show_bug.cgi?id=1227985 * https://bugzilla.suse.com/show_bug.cgi?id=1227989 * https://bugzilla.suse.com/show_bug.cgi?id=1228003 * https://bugzilla.suse.com/show_bug.cgi?id=1228005 * https://bugzilla.suse.com/show_bug.cgi?id=1228008 * https://bugzilla.suse.com/show_bug.cgi?id=1228013 * https://bugzilla.suse.com/show_bug.cgi?id=1228025 * https://bugzilla.suse.com/show_bug.cgi?id=1228030 * https://bugzilla.suse.com/show_bug.cgi?id=1228037 * https://bugzilla.suse.com/show_bug.cgi?id=1228045 * https://bugzilla.suse.com/show_bug.cgi?id=1228054 * https://bugzilla.suse.com/show_bug.cgi?id=1228055 * https://bugzilla.suse.com/show_bug.cgi?id=1228063 * https://bugzilla.suse.com/show_bug.cgi?id=1228071 * https://bugzilla.suse.com/show_bug.cgi?id=1228235 * https://bugzilla.suse.com/show_bug.cgi?id=1228237 * https://bugzilla.suse.com/show_bug.cgi?id=1228327 * https://bugzilla.suse.com/show_bug.cgi?id=1228328 * https://bugzilla.suse.com/show_bug.cgi?id=1228408 * https://bugzilla.suse.com/show_bug.cgi?id=1228409 * https://bugzilla.suse.com/show_bug.cgi?id=1228410 * https://bugzilla.suse.com/show_bug.cgi?id=1228470 * https://bugzilla.suse.com/show_bug.cgi?id=1228530 * https://bugzilla.suse.com/show_bug.cgi?id=1228561 * https://bugzilla.suse.com/show_bug.cgi?id=1228565 * https://bugzilla.suse.com/show_bug.cgi?id=1228567 * https://bugzilla.suse.com/show_bug.cgi?id=1228580 * https://bugzilla.suse.com/show_bug.cgi?id=1228581 * https://bugzilla.suse.com/show_bug.cgi?id=1228584 * https://bugzilla.suse.com/show_bug.cgi?id=1228588 * https://bugzilla.suse.com/show_bug.cgi?id=1228599 * https://bugzilla.suse.com/show_bug.cgi?id=1228617 * https://bugzilla.suse.com/show_bug.cgi?id=1228625 * https://bugzilla.suse.com/show_bug.cgi?id=1228626 * https://bugzilla.suse.com/show_bug.cgi?id=1228633 * https://bugzilla.suse.com/show_bug.cgi?id=1228640 * https://bugzilla.suse.com/show_bug.cgi?id=1228649 * https://bugzilla.suse.com/show_bug.cgi?id=1228655 * https://bugzilla.suse.com/show_bug.cgi?id=1228658 * https://bugzilla.suse.com/show_bug.cgi?id=1228662 * https://bugzilla.suse.com/show_bug.cgi?id=1228680 * https://bugzilla.suse.com/show_bug.cgi?id=1228705 * https://bugzilla.suse.com/show_bug.cgi?id=1228723 * https://bugzilla.suse.com/show_bug.cgi?id=1228726 * https://bugzilla.suse.com/show_bug.cgi?id=1228743 * https://bugzilla.suse.com/show_bug.cgi?id=1228850 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Wed Aug 14 12:35:03 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Wed, 14 Aug 2024 12:35:03 -0000 Subject: SUSE-SU-2024:2900-1: important: Security update for python-setuptools Message-ID: <172363890396.24208.4039700346555048947@smelt2.prg2.suse.org> # Security update for python-setuptools Announcement ID: SUSE-SU-2024:2900-1 Rating: important References: * bsc#1228105 Cross-References: * CVE-2024-6345 CVSS scores: * CVE-2024-6345 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H Affected Products: * Containers Module 12 * Public Cloud Module 12 * SUSE Linux Enterprise High Performance Computing 12 SP2 * SUSE Linux Enterprise High Performance Computing 12 SP3 * SUSE Linux Enterprise High Performance Computing 12 SP4 * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise Server 12 * SUSE Linux Enterprise Server 12 SP1 * SUSE Linux Enterprise Server 12 SP2 * SUSE Linux Enterprise Server 12 SP3 * SUSE Linux Enterprise Server 12 SP4 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server for SAP Applications 12 * SUSE Linux Enterprise Server for SAP Applications 12 SP1 * SUSE Linux Enterprise Server for SAP Applications 12 SP2 * SUSE Linux Enterprise Server for SAP Applications 12 SP3 * SUSE Linux Enterprise Server for SAP Applications 12 SP4 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 * SUSE Linux Enterprise Software Development Kit 12 SP5 An update that solves one vulnerability can now be installed. ## Description: This update for python-setuptools fixes the following issues: * CVE-2024-6345: Fixed code execution via download functions in the package_index module (bsc#1228105) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * Containers Module 12 zypper in -t patch SUSE-SLE-Module-Containers-12-2024-2900=1 * Public Cloud Module 12 zypper in -t patch SUSE-SLE-Module-Public-Cloud-12-2024-2900=1 * SUSE Linux Enterprise Software Development Kit 12 SP5 zypper in -t patch SUSE-SLE-SDK-12-SP5-2024-2900=1 * SUSE Linux Enterprise High Performance Computing 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-2900=1 * SUSE Linux Enterprise Server 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-2900=1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-2900=1 ## Package List: * Containers Module 12 (noarch) * python-setuptools-40.6.2-4.24.1 * Public Cloud Module 12 (noarch) * python-setuptools-40.6.2-4.24.1 * python3-setuptools-40.6.2-4.24.1 * SUSE Linux Enterprise Software Development Kit 12 SP5 (noarch) * python3-setuptools-40.6.2-4.24.1 * SUSE Linux Enterprise High Performance Computing 12 SP5 (noarch) * python-setuptools-40.6.2-4.24.1 * python3-setuptools-40.6.2-4.24.1 * SUSE Linux Enterprise Server 12 SP5 (noarch) * python-setuptools-40.6.2-4.24.1 * python3-setuptools-40.6.2-4.24.1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 (noarch) * python-setuptools-40.6.2-4.24.1 * python3-setuptools-40.6.2-4.24.1 ## References: * https://www.suse.com/security/cve/CVE-2024-6345.html * https://bugzilla.suse.com/show_bug.cgi?id=1228105 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Wed Aug 14 12:35:08 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Wed, 14 Aug 2024 12:35:08 -0000 Subject: SUSE-SU-2024:2899-1: important: Security update for python-setuptools Message-ID: <172363890838.24208.8198359522592934440@smelt2.prg2.suse.org> # Security update for python-setuptools Announcement ID: SUSE-SU-2024:2899-1 Rating: important References: * bsc#1228105 Cross-References: * CVE-2024-6345 CVSS scores: * CVE-2024-6345 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H Affected Products: * SUSE Enterprise Storage 7.1 * SUSE Linux Enterprise High Performance Computing 15 SP2 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 * SUSE Linux Enterprise High Performance Computing 15 SP3 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 * SUSE Linux Enterprise Micro 5.1 * SUSE Linux Enterprise Micro 5.2 * SUSE Linux Enterprise Micro for Rancher 5.2 * SUSE Linux Enterprise Server 15 SP2 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 * SUSE Linux Enterprise Server 15 SP3 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 An update that solves one vulnerability can now be installed. ## Description: This update for python-setuptools fixes the following issues: * CVE-2024-6345: Fixed code execution via download functions in the package_index module (bsc#1228105) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server for SAP Applications 15 SP3 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP3-2024-2899=1 * SUSE Enterprise Storage 7.1 zypper in -t patch SUSE-Storage-7.1-2024-2899=1 * SUSE Linux Enterprise Micro 5.1 zypper in -t patch SUSE-SUSE-MicroOS-5.1-2024-2899=1 * SUSE Linux Enterprise Micro 5.2 zypper in -t patch SUSE-SUSE-MicroOS-5.2-2024-2899=1 * SUSE Linux Enterprise Micro for Rancher 5.2 zypper in -t patch SUSE-SUSE-MicroOS-5.2-2024-2899=1 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 zypper in -t patch SUSE-SLE-Product-HPC-15-SP2-LTSS-2024-2899=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 zypper in -t patch SUSE-SLE-Product-HPC-15-SP3-LTSS-2024-2899=1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 zypper in -t patch SUSE-SLE-Product-SLES-15-SP2-LTSS-2024-2899=1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 zypper in -t patch SUSE-SLE-Product-SLES-15-SP3-LTSS-2024-2899=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP2-2024-2899=1 ## Package List: * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (noarch) * python3-setuptools-test-40.5.0-150100.6.9.1 * python3-setuptools-wheel-40.5.0-150100.6.9.1 * python3-setuptools-40.5.0-150100.6.9.1 * SUSE Enterprise Storage 7.1 (noarch) * python3-setuptools-wheel-40.5.0-150100.6.9.1 * python3-setuptools-test-40.5.0-150100.6.9.1 * python3-setuptools-40.5.0-150100.6.9.1 * SUSE Linux Enterprise Micro 5.1 (noarch) * python3-setuptools-40.5.0-150100.6.9.1 * SUSE Linux Enterprise Micro 5.2 (noarch) * python3-setuptools-40.5.0-150100.6.9.1 * SUSE Linux Enterprise Micro for Rancher 5.2 (noarch) * python3-setuptools-40.5.0-150100.6.9.1 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 (noarch) * python3-setuptools-40.5.0-150100.6.9.1 * python2-setuptools-40.5.0-150100.6.9.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (noarch) * python3-setuptools-test-40.5.0-150100.6.9.1 * python3-setuptools-wheel-40.5.0-150100.6.9.1 * python3-setuptools-40.5.0-150100.6.9.1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (noarch) * python3-setuptools-40.5.0-150100.6.9.1 * python2-setuptools-40.5.0-150100.6.9.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (noarch) * python3-setuptools-test-40.5.0-150100.6.9.1 * python3-setuptools-wheel-40.5.0-150100.6.9.1 * python3-setuptools-40.5.0-150100.6.9.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 (noarch) * python3-setuptools-40.5.0-150100.6.9.1 * python2-setuptools-40.5.0-150100.6.9.1 ## References: * https://www.suse.com/security/cve/CVE-2024-6345.html * https://bugzilla.suse.com/show_bug.cgi?id=1228105 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Wed Aug 14 16:30:04 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Wed, 14 Aug 2024 16:30:04 -0000 Subject: SUSE-SU-2024:2911-1: important: Security update for kernel-firmware Message-ID: <172365300456.12638.2398100376674784839@smelt2.prg2.suse.org> # Security update for kernel-firmware Announcement ID: SUSE-SU-2024:2911-1 Rating: important References: * bsc#1229069 Cross-References: * CVE-2023-31315 CVSS scores: * CVE-2023-31315 ( SUSE ): 7.5 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H Affected Products: * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 An update that solves one vulnerability can now be installed. ## Description: This update for kernel-firmware fixes the following issues: * CVE-2023-31315: Fixed validation in a model specific register (MSR) that lead to modification of SMM configuration by malicious program with ring0 access (bsc#1229069) ## Special Instructions and Notes: * Please reboot the system after installing this update. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise High Performance Computing 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-2911=1 * SUSE Linux Enterprise Server 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-2911=1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-2911=1 ## Package List: * SUSE Linux Enterprise High Performance Computing 12 SP5 (noarch) * kernel-firmware-20190618-5.37.1 * ucode-amd-20190618-5.37.1 * SUSE Linux Enterprise Server 12 SP5 (noarch) * kernel-firmware-20190618-5.37.1 * ucode-amd-20190618-5.37.1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 (noarch) * kernel-firmware-20190618-5.37.1 * ucode-amd-20190618-5.37.1 ## References: * https://www.suse.com/security/cve/CVE-2023-31315.html * https://bugzilla.suse.com/show_bug.cgi?id=1229069 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Wed Aug 14 16:30:08 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Wed, 14 Aug 2024 16:30:08 -0000 Subject: SUSE-SU-2024:2910-1: important: Security update for 389-ds Message-ID: <172365300888.12638.7324877138546254391@smelt2.prg2.suse.org> # Security update for 389-ds Announcement ID: SUSE-SU-2024:2910-1 Rating: important References: * bsc#1225507 * bsc#1225512 * bsc#1226277 * bsc#1228912 Cross-References: * CVE-2024-2199 * CVE-2024-3657 * CVE-2024-5953 CVSS scores: * CVE-2024-2199 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-3657 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-5953 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H Affected Products: * openSUSE Leap 15.6 * Server Applications Module 15-SP6 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 An update that solves three vulnerabilities and has one security fix can now be installed. ## Description: This update for 389-ds fixes the following issues: Security issues fixed: * CVE-2024-3657: Fixed potential denial of service via specially crafted kerberos AS-REQ request (bsc#1225512) * CVE-2024-5953: Fixed a denial of service caused by malformed userPassword hashes (bsc#1226277) * CVE-2024-2199: Fixed a crash caused by malformed userPassword in do_modify() (bsc#1225507) Non-security issues fixed: * crash when user does change password using iso-8859-1 encoding (bsc#1228912) * Update to version 2.2.10: Issue 2324 - Add a CI test (#6289) Issue 6284 - BUG - freelist ordering causes high wtime Issue 5327 - Fix test metadata Issue 5853 - Update Cargo.lock Issue 5962 - Rearrange includes for 32-bit support logic Issue 5973 - Fix fedora cop RawHide builds (#5974) Bump braces from 3.0.2 to 3.0.3 in /src/cockpit/389-console Issue 6254 - Enabling replication for a sub suffix crashes browser (#6255) Issue 6224 - d2entry - Could not open id2entry err 0 - at startup when having sub-suffixes (#6225) Issue 6183 - Slow ldif2db import on a newly created BDB backend (#6208) Issue 6170 - audit log buffering doesn't handle large updates Issue 6193 - Test failure: test_tls_command_returns_error_text Issue 6189 - CI tests fail with `[Errno 2] No such file or directory: '/var/cache/dnf/metadata_lock.pid'` Issue 6172 - RFE: improve the performance of evaluation of filter component when tested against a large valueset (like group members) (#6173) Issue 6092 - passwordHistory is not updated with a pre-hashed password (#6093) Issue 6080 - ns-slapd crash in referint_get_config (#6081) Issue 6117 - Fix the UTC offset print (#6118) Issue 5305 - OpenLDAP version autodetection doesn't work Issue 6112 - RFE - add new operation note for MFA authentications Issue 5842 - Add log buffering to audit log Issue 6103 - New connection timeout error breaks errormap (#6104) Issue 6067 - Improve dsidm CLI No Such Entry handling (#6079) Issue 6096 - Improve connection timeout error logging (#6097) Issue 6067 - Add hidden -v and -j options to each CLI subcommand (#6088) Issue 5487 - Fix various isses with logconv.pl (#6085) Issue 6052 - Paged results test sets hostname to `localhost` on test collection Issue 6061 - Certificate lifetime displayed as NaN Issue 6043, 6044 - Enhance Rust and JS bundling and add SPDX licenses for both (#6045) Issue 3555 - Remove audit-ci from dependencies (#6056) Issue 5647 - Fix unused variable warning from previous commit (#5670) issue 5647 - covscan: memory leak in audit log when adding entries (#5650) Issue 6047 - Add a check for tagged commits Issue 6041 - dscreate ds-root - accepts relative path (#6042) Issue 6034 - Change replica_id from str to int Issue 5938 - Attribute Names changed to lowercase after adding the Attributes (#5940) Issue 5870 - ns-slapd crashes at startup if a backend has no suffix (#5871) Issue 5939 - During an update, if the target entry is reverted in the entry cache, the server should not retry to lock it (#6007) Issue 5944 - Reversion of the entry cache should be limited to BETXN plugin failures (#5994) Issue 5954 - Disable Transparent Huge Pages ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * Server Applications Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Server-Applications-15-SP6-2024-2910=1 * openSUSE Leap 15.6 zypper in -t patch SUSE-2024-2910=1 openSUSE-SLE-15.6-2024-2910=1 ## Package List: * Server Applications Module 15-SP6 (aarch64 ppc64le s390x x86_64) * 389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2 * lib389-2.2.10~git2.345056d3-150600.8.7.2 * 389-ds-debuginfo-2.2.10~git2.345056d3-150600.8.7.2 * libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2 * libsvrcore0-debuginfo-2.2.10~git2.345056d3-150600.8.7.2 * 389-ds-2.2.10~git2.345056d3-150600.8.7.2 * 389-ds-debugsource-2.2.10~git2.345056d3-150600.8.7.2 * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64) * 389-ds-devel-2.2.10~git2.345056d3-150600.8.7.2 * lib389-2.2.10~git2.345056d3-150600.8.7.2 * 389-ds-debuginfo-2.2.10~git2.345056d3-150600.8.7.2 * libsvrcore0-2.2.10~git2.345056d3-150600.8.7.2 * libsvrcore0-debuginfo-2.2.10~git2.345056d3-150600.8.7.2 * 389-ds-2.2.10~git2.345056d3-150600.8.7.2 * 389-ds-snmp-debuginfo-2.2.10~git2.345056d3-150600.8.7.2 * 389-ds-snmp-2.2.10~git2.345056d3-150600.8.7.2 * 389-ds-debugsource-2.2.10~git2.345056d3-150600.8.7.2 ## References: * https://www.suse.com/security/cve/CVE-2024-2199.html * https://www.suse.com/security/cve/CVE-2024-3657.html * https://www.suse.com/security/cve/CVE-2024-5953.html * https://bugzilla.suse.com/show_bug.cgi?id=1225507 * https://bugzilla.suse.com/show_bug.cgi?id=1225512 * https://bugzilla.suse.com/show_bug.cgi?id=1226277 * https://bugzilla.suse.com/show_bug.cgi?id=1228912 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Wed Aug 14 16:30:11 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Wed, 14 Aug 2024 16:30:11 -0000 Subject: SUSE-SU-2024:2909-1: moderate: Security update for openssl-1_1 Message-ID: <172365301189.12638.18328202325783691383@smelt2.prg2.suse.org> # Security update for openssl-1_1 Announcement ID: SUSE-SU-2024:2909-1 Rating: moderate References: * bsc#1227138 Cross-References: * CVE-2024-5535 CVSS scores: * CVE-2024-5535 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * SUSE Enterprise Storage 7.1 * SUSE Linux Enterprise High Performance Computing 15 SP2 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 * SUSE Linux Enterprise High Performance Computing 15 SP3 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 * SUSE Linux Enterprise Micro 5.1 * SUSE Linux Enterprise Micro 5.2 * SUSE Linux Enterprise Micro for Rancher 5.2 * SUSE Linux Enterprise Server 15 SP2 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 * SUSE Linux Enterprise Server 15 SP3 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 An update that solves one vulnerability can now be installed. ## Description: This update for openssl-1_1 fixes the following issues: * CVE-2024-5535: Fixed a buffer overread in function SSL_select_next_proto() with an empty supported client protocols buffer (bsc#1227138) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 zypper in -t patch SUSE-SLE-Product-HPC-15-SP2-LTSS-2024-2909=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 zypper in -t patch SUSE-SLE-Product-HPC-15-SP3-LTSS-2024-2909=1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 zypper in -t patch SUSE-SLE-Product-SLES-15-SP2-LTSS-2024-2909=1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 zypper in -t patch SUSE-SLE-Product-SLES-15-SP3-LTSS-2024-2909=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP2-2024-2909=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP3-2024-2909=1 * SUSE Enterprise Storage 7.1 zypper in -t patch SUSE-Storage-7.1-2024-2909=1 * SUSE Linux Enterprise Micro 5.1 zypper in -t patch SUSE-SUSE-MicroOS-5.1-2024-2909=1 * SUSE Linux Enterprise Micro 5.2 zypper in -t patch SUSE-SUSE-MicroOS-5.2-2024-2909=1 * SUSE Linux Enterprise Micro for Rancher 5.2 zypper in -t patch SUSE-SUSE-MicroOS-5.2-2024-2909=1 ## Package List: * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 (aarch64 x86_64) * openssl-1_1-debuginfo-1.1.1d-150200.11.94.1 * libopenssl1_1-debuginfo-1.1.1d-150200.11.94.1 * libopenssl1_1-hmac-1.1.1d-150200.11.94.1 * libopenssl1_1-1.1.1d-150200.11.94.1 * libopenssl-1_1-devel-1.1.1d-150200.11.94.1 * openssl-1_1-1.1.1d-150200.11.94.1 * openssl-1_1-debugsource-1.1.1d-150200.11.94.1 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 (x86_64) * libopenssl1_1-32bit-1.1.1d-150200.11.94.1 * libopenssl1_1-32bit-debuginfo-1.1.1d-150200.11.94.1 * libopenssl1_1-hmac-32bit-1.1.1d-150200.11.94.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (aarch64 x86_64) * openssl-1_1-debuginfo-1.1.1d-150200.11.94.1 * libopenssl1_1-debuginfo-1.1.1d-150200.11.94.1 * libopenssl1_1-hmac-1.1.1d-150200.11.94.1 * libopenssl1_1-1.1.1d-150200.11.94.1 * libopenssl-1_1-devel-1.1.1d-150200.11.94.1 * openssl-1_1-1.1.1d-150200.11.94.1 * openssl-1_1-debugsource-1.1.1d-150200.11.94.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (noarch) * openssl-1_1-doc-1.1.1d-150200.11.94.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (x86_64) * libopenssl1_1-32bit-1.1.1d-150200.11.94.1 * libopenssl-1_1-devel-32bit-1.1.1d-150200.11.94.1 * libopenssl1_1-32bit-debuginfo-1.1.1d-150200.11.94.1 * libopenssl1_1-hmac-32bit-1.1.1d-150200.11.94.1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (aarch64 ppc64le s390x x86_64) * openssl-1_1-debuginfo-1.1.1d-150200.11.94.1 * libopenssl1_1-debuginfo-1.1.1d-150200.11.94.1 * libopenssl1_1-hmac-1.1.1d-150200.11.94.1 * libopenssl1_1-1.1.1d-150200.11.94.1 * libopenssl-1_1-devel-1.1.1d-150200.11.94.1 * openssl-1_1-1.1.1d-150200.11.94.1 * openssl-1_1-debugsource-1.1.1d-150200.11.94.1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (x86_64) * libopenssl1_1-32bit-1.1.1d-150200.11.94.1 * libopenssl1_1-32bit-debuginfo-1.1.1d-150200.11.94.1 * libopenssl1_1-hmac-32bit-1.1.1d-150200.11.94.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (aarch64 ppc64le s390x x86_64) * openssl-1_1-debuginfo-1.1.1d-150200.11.94.1 * libopenssl1_1-debuginfo-1.1.1d-150200.11.94.1 * libopenssl1_1-hmac-1.1.1d-150200.11.94.1 * libopenssl1_1-1.1.1d-150200.11.94.1 * libopenssl-1_1-devel-1.1.1d-150200.11.94.1 * openssl-1_1-1.1.1d-150200.11.94.1 * openssl-1_1-debugsource-1.1.1d-150200.11.94.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (noarch) * openssl-1_1-doc-1.1.1d-150200.11.94.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (x86_64) * libopenssl1_1-32bit-1.1.1d-150200.11.94.1 * libopenssl-1_1-devel-32bit-1.1.1d-150200.11.94.1 * libopenssl1_1-32bit-debuginfo-1.1.1d-150200.11.94.1 * libopenssl1_1-hmac-32bit-1.1.1d-150200.11.94.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 (ppc64le x86_64) * openssl-1_1-debuginfo-1.1.1d-150200.11.94.1 * libopenssl1_1-debuginfo-1.1.1d-150200.11.94.1 * libopenssl1_1-hmac-1.1.1d-150200.11.94.1 * libopenssl1_1-1.1.1d-150200.11.94.1 * libopenssl-1_1-devel-1.1.1d-150200.11.94.1 * openssl-1_1-1.1.1d-150200.11.94.1 * openssl-1_1-debugsource-1.1.1d-150200.11.94.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 (x86_64) * libopenssl1_1-32bit-1.1.1d-150200.11.94.1 * libopenssl1_1-32bit-debuginfo-1.1.1d-150200.11.94.1 * libopenssl1_1-hmac-32bit-1.1.1d-150200.11.94.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (ppc64le x86_64) * openssl-1_1-debuginfo-1.1.1d-150200.11.94.1 * libopenssl1_1-debuginfo-1.1.1d-150200.11.94.1 * libopenssl1_1-hmac-1.1.1d-150200.11.94.1 * libopenssl1_1-1.1.1d-150200.11.94.1 * libopenssl-1_1-devel-1.1.1d-150200.11.94.1 * openssl-1_1-1.1.1d-150200.11.94.1 * openssl-1_1-debugsource-1.1.1d-150200.11.94.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (noarch) * openssl-1_1-doc-1.1.1d-150200.11.94.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (x86_64) * libopenssl1_1-32bit-1.1.1d-150200.11.94.1 * libopenssl-1_1-devel-32bit-1.1.1d-150200.11.94.1 * libopenssl1_1-32bit-debuginfo-1.1.1d-150200.11.94.1 * libopenssl1_1-hmac-32bit-1.1.1d-150200.11.94.1 * SUSE Enterprise Storage 7.1 (aarch64 x86_64) * openssl-1_1-debuginfo-1.1.1d-150200.11.94.1 * libopenssl1_1-debuginfo-1.1.1d-150200.11.94.1 * libopenssl1_1-hmac-1.1.1d-150200.11.94.1 * libopenssl1_1-1.1.1d-150200.11.94.1 * libopenssl-1_1-devel-1.1.1d-150200.11.94.1 * openssl-1_1-1.1.1d-150200.11.94.1 * openssl-1_1-debugsource-1.1.1d-150200.11.94.1 * SUSE Enterprise Storage 7.1 (noarch) * openssl-1_1-doc-1.1.1d-150200.11.94.1 * SUSE Enterprise Storage 7.1 (x86_64) * libopenssl1_1-32bit-1.1.1d-150200.11.94.1 * libopenssl-1_1-devel-32bit-1.1.1d-150200.11.94.1 * libopenssl1_1-32bit-debuginfo-1.1.1d-150200.11.94.1 * libopenssl1_1-hmac-32bit-1.1.1d-150200.11.94.1 * SUSE Linux Enterprise Micro 5.1 (aarch64 s390x x86_64) * openssl-1_1-debuginfo-1.1.1d-150200.11.94.1 * libopenssl1_1-debuginfo-1.1.1d-150200.11.94.1 * libopenssl1_1-hmac-1.1.1d-150200.11.94.1 * libopenssl1_1-1.1.1d-150200.11.94.1 * libopenssl-1_1-devel-1.1.1d-150200.11.94.1 * openssl-1_1-1.1.1d-150200.11.94.1 * openssl-1_1-debugsource-1.1.1d-150200.11.94.1 * SUSE Linux Enterprise Micro 5.2 (aarch64 s390x x86_64) * openssl-1_1-debuginfo-1.1.1d-150200.11.94.1 * libopenssl1_1-debuginfo-1.1.1d-150200.11.94.1 * libopenssl1_1-hmac-1.1.1d-150200.11.94.1 * libopenssl1_1-1.1.1d-150200.11.94.1 * libopenssl-1_1-devel-1.1.1d-150200.11.94.1 * openssl-1_1-1.1.1d-150200.11.94.1 * openssl-1_1-debugsource-1.1.1d-150200.11.94.1 * SUSE Linux Enterprise Micro for Rancher 5.2 (aarch64 s390x x86_64) * openssl-1_1-debuginfo-1.1.1d-150200.11.94.1 * libopenssl1_1-debuginfo-1.1.1d-150200.11.94.1 * libopenssl1_1-hmac-1.1.1d-150200.11.94.1 * libopenssl1_1-1.1.1d-150200.11.94.1 * libopenssl-1_1-devel-1.1.1d-150200.11.94.1 * openssl-1_1-1.1.1d-150200.11.94.1 * openssl-1_1-debugsource-1.1.1d-150200.11.94.1 ## References: * https://www.suse.com/security/cve/CVE-2024-5535.html * https://bugzilla.suse.com/show_bug.cgi?id=1227138 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Wed Aug 14 16:30:14 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Wed, 14 Aug 2024 16:30:14 -0000 Subject: SUSE-SU-2024:2908-1: moderate: Security update for python-Pillow Message-ID: <172365301453.12638.6508645309810294448@smelt2.prg2.suse.org> # Security update for python-Pillow Announcement ID: SUSE-SU-2024:2908-1 Rating: moderate References: * bsc#1205416 Cross-References: * CVE-2022-45198 CVSS scores: * CVE-2022-45198 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2022-45198 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * openSUSE Leap 15.3 * openSUSE Leap 15.5 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Package Hub 15 15-SP6 An update that solves one vulnerability can now be installed. ## Description: This update for python-Pillow fixes the following issues: * CVE-2022-45198: Fixed improper handling of highly compressed GIF data (bsc#1205416) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.3 zypper in -t patch SUSE-2024-2908=1 * openSUSE Leap 15.5 zypper in -t patch openSUSE-SLE-15.5-2024-2908=1 * SUSE Package Hub 15 15-SP6 zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP6-2024-2908=1 ## Package List: * openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64 i586) * python-Pillow-debuginfo-7.2.0-150300.3.18.1 * python-Pillow-debugsource-7.2.0-150300.3.18.1 * python3-Pillow-7.2.0-150300.3.18.1 * python3-Pillow-debuginfo-7.2.0-150300.3.18.1 * python3-Pillow-tk-7.2.0-150300.3.18.1 * python3-Pillow-tk-debuginfo-7.2.0-150300.3.18.1 * openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64) * python-Pillow-debuginfo-7.2.0-150300.3.18.1 * python-Pillow-debugsource-7.2.0-150300.3.18.1 * python3-Pillow-7.2.0-150300.3.18.1 * python3-Pillow-debuginfo-7.2.0-150300.3.18.1 * python3-Pillow-tk-7.2.0-150300.3.18.1 * python3-Pillow-tk-debuginfo-7.2.0-150300.3.18.1 * SUSE Package Hub 15 15-SP6 (aarch64 ppc64le s390x x86_64) * python3-Pillow-debuginfo-7.2.0-150300.3.18.1 * python-Pillow-debuginfo-7.2.0-150300.3.18.1 * python3-Pillow-7.2.0-150300.3.18.1 * python-Pillow-debugsource-7.2.0-150300.3.18.1 ## References: * https://www.suse.com/security/cve/CVE-2022-45198.html * https://bugzilla.suse.com/show_bug.cgi?id=1205416 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Thu Aug 15 08:30:32 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Thu, 15 Aug 2024 08:30:32 -0000 Subject: SUSE-SU-2024:2923-1: important: Security update for the Linux Kernel Message-ID: <172371063266.632.14351478350936642831@smelt2.prg2.suse.org> # Security update for the Linux Kernel Announcement ID: SUSE-SU-2024:2923-1 Rating: important References: * bsc#1065729 * bsc#1179610 * bsc#1186463 * bsc#1216834 * bsc#1218820 * bsc#1220185 * bsc#1220186 * bsc#1220187 * bsc#1221539 * bsc#1222824 * bsc#1224682 * bsc#1224918 * bsc#1225404 * bsc#1225431 * bsc#1226519 * bsc#1226550 * bsc#1226574 * bsc#1226575 * bsc#1226666 * bsc#1226758 * bsc#1226785 * bsc#1227213 * bsc#1227487 * bsc#1227716 * bsc#1227750 * bsc#1227836 * bsc#1227976 * bsc#1228013 * bsc#1228114 * bsc#1228328 * bsc#1228561 * bsc#1228644 * bsc#1228743 Cross-References: * CVE-2020-26558 * CVE-2021-0129 * CVE-2021-47126 * CVE-2021-47219 * CVE-2021-47291 * CVE-2021-47506 * CVE-2021-47520 * CVE-2021-47580 * CVE-2021-47598 * CVE-2021-47600 * CVE-2022-48792 * CVE-2022-48821 * CVE-2023-52686 * CVE-2023-52885 * CVE-2024-26583 * CVE-2024-26584 * CVE-2024-26585 * CVE-2024-36974 * CVE-2024-38559 * CVE-2024-39494 * CVE-2024-40937 * CVE-2024-41011 * CVE-2024-41059 * CVE-2024-41069 * CVE-2024-41090 * CVE-2024-42145 CVSS scores: * CVE-2020-26558 ( SUSE ): 4.2 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N * CVE-2020-26558 ( NVD ): 4.2 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N * CVE-2021-0129 ( SUSE ): 6.4 CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2021-0129 ( NVD ): 5.7 CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2021-47126 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47219 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2021-47291 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2021-47506 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2021-47520 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2021-47520 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2021-47580 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:L * CVE-2021-47598 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2021-47600 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48792 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48792 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48821 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-52686 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52885 ( SUSE ): 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26583 ( SUSE ): 5.1 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26583 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26584 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26584 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26585 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26585 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36974 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-38559 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2024-39494 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-39494 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-40937 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-41011 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-41059 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2024-41059 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-41069 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2024-41069 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-41090 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H * CVE-2024-42145 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2024-42145 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * SUSE Linux Enterprise High Availability Extension 15 SP2 * SUSE Linux Enterprise High Performance Computing 15 SP2 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 * SUSE Linux Enterprise Live Patching 15-SP2 * SUSE Linux Enterprise Server 15 SP2 * SUSE Linux Enterprise Server 15 SP2 Business Critical Linux 15-SP2 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 * SUSE Manager Proxy 4.1 * SUSE Manager Retail Branch Server 4.1 * SUSE Manager Server 4.1 An update that solves 26 vulnerabilities and has seven security fixes can now be installed. ## Description: The SUSE Linux Enterprise 15 SP2 kernel was updated to receive various security bugfixes. The following security bugs were fixed: * CVE-2024-39494: ima: Fix use-after-free on a dentry's dname.name (bsc#1227716). * CVE-2024-41069: ASoC: topology: Fix route memory corruption (bsc#1228644). * CVE-2024-42145: IB/core: Implement a limit on UMAD receive List (bsc#1228743). * CVE-2024-41059: hfsplus: fix uninit-value in copy_name (bsc#1228561). * CVE-2023-52885: SUNRPC: Fix UAF in svc_tcp_listen_data_ready() (bsc#1227750). * CVE-2022-48792: scsi: pm8001: Fix use-after-free for aborted SSP/STP sas_task (bsc#1228013). * CVE-2024-41090: tap: add missing verification for short frame (bsc#1228328). * CVE-2021-47291: ipv6: fix another slab-out-of-bounds in fib6_nh_flush_exceptions (bsc#1224918). * CVE-2021-47126: ipv6: Fix KASAN: slab-out-of-bounds Read in fib6_nh_flush_exceptions (bsc#1221539). * CVE-2024-41011: drm/amdkfd: do not allow mapping the MMIO HDP page with large pages (bsc#1228114). * CVE-2021-47598: sch_cake: do not call cake_destroy() from cake_init() (bsc#1226574). * CVE-2021-47580: scsi: scsi_debug: Fix type in min_t to avoid stack OOB (bsc#1226550). * CVE-2021-47219: scsi: scsi_debug: Fix out-of-bound read in resp_report_tgtpgs() (bsc#1222824). * CVE-2024-40937: gve: Clear napi->skb before dev_kfree_skb_any() (bsc#1227836). * CVE-2021-0129: Improper access control in BlueZ may have allowed an authenticated user to potentially enable information disclosure via adjacent access (bsc#1186463). * CVE-2020-26558: Fixed a flaw in the Bluetooth LE and BR/EDR secure pairing that could permit a nearby man-in-the-middle attacker to identify the Passkey used during pairing (bsc#1179610). * CVE-2022-48821: misc: fastrpc: avoid double fput() on failed usercopy (bsc#1227976). * CVE-2021-47506: nfsd: fix use-after-free due to delegation race (bsc#1225404). * CVE-2021-47520: can: pch_can: pch_can_rx_normal: fix use after free (bsc#1225431). * CVE-2024-26583: tls: fix use-after-free on failed backlog decryption (bsc#1220185). * CVE-2024-26585: Fixed race between tx work scheduling and socket close (bsc#1220187). * CVE-2021-47600: dm btree remove: fix use after free in rebalance_children() (bsc#1226575). * CVE-2024-36974: net/sched: taprio: always validate TCA_TAPRIO_ATTR_PRIOMAP (bsc#1226519). The following non-security bugs were fixed: * Fix spurious WARNING caused by a qxl driver patch (bsc#1227213) * X.509: Fix the parser of extended key usage for length (bsc#1218820 bsc#1226666). * ocfs2: fix DIO failure due to insufficient transaction credits (bsc#1216834). * powerpc/rtas: Prevent Spectre v1 gadget construction in sys_rtas() (bsc#1227487). * powerpc/rtas: clean up includes (bsc#1227487). ## Special Instructions and Notes: * Please reboot the system after installing this update. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Live Patching 15-SP2 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP2-2024-2923=1 * SUSE Linux Enterprise High Availability Extension 15 SP2 zypper in -t patch SUSE-SLE-Product-HA-15-SP2-2024-2923=1 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 zypper in -t patch SUSE-SLE-Product-HPC-15-SP2-LTSS-2024-2923=1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 zypper in -t patch SUSE-SLE-Product-SLES-15-SP2-LTSS-2024-2923=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP2-2024-2923=1 ## Package List: * SUSE Linux Enterprise Live Patching 15-SP2 (nosrc) * kernel-default-5.3.18-150200.24.200.1 * SUSE Linux Enterprise Live Patching 15-SP2 (ppc64le s390x x86_64) * kernel-livepatch-SLE15-SP2_Update_51-debugsource-1-150200.5.3.1 * kernel-default-livepatch-devel-5.3.18-150200.24.200.1 * kernel-default-debugsource-5.3.18-150200.24.200.1 * kernel-livepatch-5_3_18-150200_24_200-default-1-150200.5.3.1 * kernel-default-livepatch-5.3.18-150200.24.200.1 * kernel-livepatch-5_3_18-150200_24_200-default-debuginfo-1-150200.5.3.1 * kernel-default-debuginfo-5.3.18-150200.24.200.1 * SUSE Linux Enterprise High Availability Extension 15 SP2 (aarch64 ppc64le s390x x86_64) * dlm-kmp-default-5.3.18-150200.24.200.1 * kernel-default-debugsource-5.3.18-150200.24.200.1 * gfs2-kmp-default-5.3.18-150200.24.200.1 * cluster-md-kmp-default-5.3.18-150200.24.200.1 * ocfs2-kmp-default-debuginfo-5.3.18-150200.24.200.1 * gfs2-kmp-default-debuginfo-5.3.18-150200.24.200.1 * ocfs2-kmp-default-5.3.18-150200.24.200.1 * cluster-md-kmp-default-debuginfo-5.3.18-150200.24.200.1 * kernel-default-debuginfo-5.3.18-150200.24.200.1 * dlm-kmp-default-debuginfo-5.3.18-150200.24.200.1 * SUSE Linux Enterprise High Availability Extension 15 SP2 (nosrc) * kernel-default-5.3.18-150200.24.200.1 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 (aarch64 nosrc x86_64) * kernel-preempt-5.3.18-150200.24.200.1 * kernel-default-5.3.18-150200.24.200.1 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 (aarch64 x86_64) * kernel-preempt-devel-debuginfo-5.3.18-150200.24.200.1 * kernel-default-debugsource-5.3.18-150200.24.200.1 * kernel-obs-build-5.3.18-150200.24.200.1 * kernel-default-devel-debuginfo-5.3.18-150200.24.200.1 * kernel-default-base-5.3.18-150200.24.200.1.150200.9.103.1 * kernel-preempt-debuginfo-5.3.18-150200.24.200.1 * kernel-preempt-devel-5.3.18-150200.24.200.1 * kernel-syms-5.3.18-150200.24.200.1 * kernel-default-debuginfo-5.3.18-150200.24.200.1 * kernel-preempt-debugsource-5.3.18-150200.24.200.1 * kernel-default-devel-5.3.18-150200.24.200.1 * kernel-obs-build-debugsource-5.3.18-150200.24.200.1 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 (noarch) * kernel-macros-5.3.18-150200.24.200.1 * kernel-source-5.3.18-150200.24.200.1 * kernel-devel-5.3.18-150200.24.200.1 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 (noarch nosrc) * kernel-docs-5.3.18-150200.24.200.1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (aarch64 ppc64le s390x x86_64 nosrc) * kernel-default-5.3.18-150200.24.200.1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (aarch64 ppc64le s390x x86_64) * kernel-default-debugsource-5.3.18-150200.24.200.1 * kernel-obs-build-5.3.18-150200.24.200.1 * reiserfs-kmp-default-debuginfo-5.3.18-150200.24.200.1 * kernel-default-devel-debuginfo-5.3.18-150200.24.200.1 * kernel-default-base-5.3.18-150200.24.200.1.150200.9.103.1 * reiserfs-kmp-default-5.3.18-150200.24.200.1 * kernel-syms-5.3.18-150200.24.200.1 * kernel-default-debuginfo-5.3.18-150200.24.200.1 * kernel-default-devel-5.3.18-150200.24.200.1 * kernel-obs-build-debugsource-5.3.18-150200.24.200.1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (noarch) * kernel-macros-5.3.18-150200.24.200.1 * kernel-source-5.3.18-150200.24.200.1 * kernel-devel-5.3.18-150200.24.200.1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (noarch nosrc) * kernel-docs-5.3.18-150200.24.200.1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (aarch64 nosrc x86_64) * kernel-preempt-5.3.18-150200.24.200.1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (aarch64 x86_64) * kernel-preempt-devel-debuginfo-5.3.18-150200.24.200.1 * kernel-preempt-debuginfo-5.3.18-150200.24.200.1 * kernel-preempt-debugsource-5.3.18-150200.24.200.1 * kernel-preempt-devel-5.3.18-150200.24.200.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 (nosrc ppc64le x86_64) * kernel-default-5.3.18-150200.24.200.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 (ppc64le x86_64) * kernel-default-debugsource-5.3.18-150200.24.200.1 * kernel-obs-build-5.3.18-150200.24.200.1 * reiserfs-kmp-default-debuginfo-5.3.18-150200.24.200.1 * kernel-default-devel-debuginfo-5.3.18-150200.24.200.1 * kernel-default-base-5.3.18-150200.24.200.1.150200.9.103.1 * reiserfs-kmp-default-5.3.18-150200.24.200.1 * kernel-syms-5.3.18-150200.24.200.1 * kernel-default-debuginfo-5.3.18-150200.24.200.1 * kernel-default-devel-5.3.18-150200.24.200.1 * kernel-obs-build-debugsource-5.3.18-150200.24.200.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 (noarch) * kernel-macros-5.3.18-150200.24.200.1 * kernel-source-5.3.18-150200.24.200.1 * kernel-devel-5.3.18-150200.24.200.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 (noarch nosrc) * kernel-docs-5.3.18-150200.24.200.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 (nosrc x86_64) * kernel-preempt-5.3.18-150200.24.200.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 (x86_64) * kernel-preempt-devel-debuginfo-5.3.18-150200.24.200.1 * kernel-preempt-debuginfo-5.3.18-150200.24.200.1 * kernel-preempt-debugsource-5.3.18-150200.24.200.1 * kernel-preempt-devel-5.3.18-150200.24.200.1 ## References: * https://www.suse.com/security/cve/CVE-2020-26558.html * https://www.suse.com/security/cve/CVE-2021-0129.html * https://www.suse.com/security/cve/CVE-2021-47126.html * https://www.suse.com/security/cve/CVE-2021-47219.html * https://www.suse.com/security/cve/CVE-2021-47291.html * https://www.suse.com/security/cve/CVE-2021-47506.html * https://www.suse.com/security/cve/CVE-2021-47520.html * https://www.suse.com/security/cve/CVE-2021-47580.html * https://www.suse.com/security/cve/CVE-2021-47598.html * https://www.suse.com/security/cve/CVE-2021-47600.html * https://www.suse.com/security/cve/CVE-2022-48792.html * https://www.suse.com/security/cve/CVE-2022-48821.html * https://www.suse.com/security/cve/CVE-2023-52686.html * https://www.suse.com/security/cve/CVE-2023-52885.html * https://www.suse.com/security/cve/CVE-2024-26583.html * https://www.suse.com/security/cve/CVE-2024-26584.html * https://www.suse.com/security/cve/CVE-2024-26585.html * https://www.suse.com/security/cve/CVE-2024-36974.html * https://www.suse.com/security/cve/CVE-2024-38559.html * https://www.suse.com/security/cve/CVE-2024-39494.html * https://www.suse.com/security/cve/CVE-2024-40937.html * https://www.suse.com/security/cve/CVE-2024-41011.html * https://www.suse.com/security/cve/CVE-2024-41059.html * https://www.suse.com/security/cve/CVE-2024-41069.html * https://www.suse.com/security/cve/CVE-2024-41090.html * https://www.suse.com/security/cve/CVE-2024-42145.html * https://bugzilla.suse.com/show_bug.cgi?id=1065729 * https://bugzilla.suse.com/show_bug.cgi?id=1179610 * https://bugzilla.suse.com/show_bug.cgi?id=1186463 * https://bugzilla.suse.com/show_bug.cgi?id=1216834 * https://bugzilla.suse.com/show_bug.cgi?id=1218820 * https://bugzilla.suse.com/show_bug.cgi?id=1220185 * https://bugzilla.suse.com/show_bug.cgi?id=1220186 * https://bugzilla.suse.com/show_bug.cgi?id=1220187 * https://bugzilla.suse.com/show_bug.cgi?id=1221539 * https://bugzilla.suse.com/show_bug.cgi?id=1222824 * https://bugzilla.suse.com/show_bug.cgi?id=1224682 * https://bugzilla.suse.com/show_bug.cgi?id=1224918 * https://bugzilla.suse.com/show_bug.cgi?id=1225404 * https://bugzilla.suse.com/show_bug.cgi?id=1225431 * https://bugzilla.suse.com/show_bug.cgi?id=1226519 * https://bugzilla.suse.com/show_bug.cgi?id=1226550 * https://bugzilla.suse.com/show_bug.cgi?id=1226574 * https://bugzilla.suse.com/show_bug.cgi?id=1226575 * https://bugzilla.suse.com/show_bug.cgi?id=1226666 * https://bugzilla.suse.com/show_bug.cgi?id=1226758 * https://bugzilla.suse.com/show_bug.cgi?id=1226785 * https://bugzilla.suse.com/show_bug.cgi?id=1227213 * https://bugzilla.suse.com/show_bug.cgi?id=1227487 * https://bugzilla.suse.com/show_bug.cgi?id=1227716 * https://bugzilla.suse.com/show_bug.cgi?id=1227750 * https://bugzilla.suse.com/show_bug.cgi?id=1227836 * https://bugzilla.suse.com/show_bug.cgi?id=1227976 * https://bugzilla.suse.com/show_bug.cgi?id=1228013 * https://bugzilla.suse.com/show_bug.cgi?id=1228114 * https://bugzilla.suse.com/show_bug.cgi?id=1228328 * https://bugzilla.suse.com/show_bug.cgi?id=1228561 * https://bugzilla.suse.com/show_bug.cgi?id=1228644 * https://bugzilla.suse.com/show_bug.cgi?id=1228743 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Thu Aug 15 08:30:35 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Thu, 15 Aug 2024 08:30:35 -0000 Subject: SUSE-SU-2024:2928-1: moderate: Security update for kubernetes1.25 Message-ID: <172371063504.632.16143413354680876210@smelt2.prg2.suse.org> # Security update for kubernetes1.25 Announcement ID: SUSE-SU-2024:2928-1 Rating: moderate References: * bsc#1194400 * jsc#PED-5755 Cross-References: * CVE-2021-25743 CVSS scores: * CVE-2021-25743 ( SUSE ): 4.0 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N * CVE-2021-25743 ( NVD ): 3.0 CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:N/I:L/A:N Affected Products: * Containers Module 15-SP5 * Containers Module 15-SP6 * openSUSE Leap 15.4 * openSUSE Leap 15.5 * openSUSE Leap 15.6 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 An update that solves one vulnerability and contains one feature can now be installed. ## Description: This update for kubernetes1.25 fixes the following issues: * CVE-2021-25743: Fixed sanitization of raw data of escape, meta or control sequences before output it to terminal (bsc#1194400) Other fixes: \- Included kubernetes1.25-client package. (jsc#PED-5755) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch SUSE-2024-2928=1 * openSUSE Leap 15.5 zypper in -t patch openSUSE-SLE-15.5-2024-2928=1 * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2024-2928=1 * Containers Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Containers-15-SP5-2024-2928=1 * Containers Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Containers-15-SP6-2024-2928=1 ## Package List: * openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64) * kubernetes1.25-apiserver-1.25.16-150400.9.10.1 * kubernetes1.25-kubelet-1.25.16-150400.9.10.1 * kubernetes1.25-proxy-1.25.16-150400.9.10.1 * kubernetes1.25-controller-manager-1.25.16-150400.9.10.1 * kubernetes1.25-kubeadm-1.25.16-150400.9.10.1 * kubernetes1.25-kubelet-common-1.25.16-150400.9.10.1 * kubernetes1.25-client-1.25.16-150400.9.10.1 * kubernetes1.25-client-common-1.25.16-150400.9.10.1 * kubernetes1.25-scheduler-1.25.16-150400.9.10.1 * openSUSE Leap 15.4 (noarch) * kubernetes1.25-client-fish-completion-1.25.16-150400.9.10.1 * kubernetes1.25-client-bash-completion-1.25.16-150400.9.10.1 * openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64) * kubernetes1.25-client-1.25.16-150400.9.10.1 * kubernetes1.25-client-common-1.25.16-150400.9.10.1 * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64) * kubernetes1.25-apiserver-1.25.16-150400.9.10.1 * kubernetes1.25-kubelet-1.25.16-150400.9.10.1 * kubernetes1.25-proxy-1.25.16-150400.9.10.1 * kubernetes1.25-controller-manager-1.25.16-150400.9.10.1 * kubernetes1.25-kubeadm-1.25.16-150400.9.10.1 * kubernetes1.25-kubelet-common-1.25.16-150400.9.10.1 * kubernetes1.25-client-1.25.16-150400.9.10.1 * kubernetes1.25-client-common-1.25.16-150400.9.10.1 * kubernetes1.25-scheduler-1.25.16-150400.9.10.1 * openSUSE Leap 15.6 (noarch) * kubernetes1.25-client-fish-completion-1.25.16-150400.9.10.1 * kubernetes1.25-client-bash-completion-1.25.16-150400.9.10.1 * Containers Module 15-SP5 (aarch64 ppc64le s390x x86_64) * kubernetes1.25-client-1.25.16-150400.9.10.1 * kubernetes1.25-client-common-1.25.16-150400.9.10.1 * Containers Module 15-SP6 (aarch64 ppc64le s390x x86_64) * kubernetes1.25-client-1.25.16-150400.9.10.1 * kubernetes1.25-client-common-1.25.16-150400.9.10.1 ## References: * https://www.suse.com/security/cve/CVE-2021-25743.html * https://bugzilla.suse.com/show_bug.cgi?id=1194400 * https://jira.suse.com/browse/PED-5755 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Thu Aug 15 08:30:38 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Thu, 15 Aug 2024 08:30:38 -0000 Subject: SUSE-SU-2024:2927-1: moderate: Security update for openssl-1_1 Message-ID: <172371063834.632.12499959927466919426@smelt2.prg2.suse.org> # Security update for openssl-1_1 Announcement ID: SUSE-SU-2024:2927-1 Rating: moderate References: * bsc#1226463 * bsc#1227138 Cross-References: * CVE-2024-5535 CVSS scores: * CVE-2024-5535 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * openSUSE Leap 15.4 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Micro for Rancher 5.3 * SUSE Linux Enterprise Micro for Rancher 5.4 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Manager Proxy 4.3 * SUSE Manager Retail Branch Server 4.3 * SUSE Manager Server 4.3 An update that solves one vulnerability and has one security fix can now be installed. ## Description: This update for openssl-1_1 fixes the following issues: * CVE-2024-5535: Fixed a buffer overread in function SSL_select_next_proto() with an empty supported client protocols buffer (bsc#1227138) Other fixes: \- Build with no-afalgeng (bsc#1226463) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch SUSE-2024-2927=1 * SUSE Linux Enterprise Micro for Rancher 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2024-2927=1 * SUSE Linux Enterprise Micro 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2024-2927=1 * SUSE Linux Enterprise Micro for Rancher 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2024-2927=1 * SUSE Linux Enterprise Micro 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2024-2927=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2024-2927=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2024-2927=1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 zypper in -t patch SUSE-SLE-Product-SLED-15-SP4-LTSS-2024-2927=1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2024-2927=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2024-2927=1 * SUSE Manager Proxy 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Proxy-4.3-2024-2927=1 * SUSE Manager Retail Branch Server 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Retail-Branch- Server-4.3-2024-2927=1 * SUSE Manager Server 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Server-4.3-2024-2927=1 ## Package List: * openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586) * openssl-1_1-debuginfo-1.1.1l-150400.7.72.1 * libopenssl-1_1-devel-1.1.1l-150400.7.72.1 * libopenssl1_1-debuginfo-1.1.1l-150400.7.72.1 * openssl-1_1-1.1.1l-150400.7.72.1 * libopenssl1_1-1.1.1l-150400.7.72.1 * libopenssl1_1-hmac-1.1.1l-150400.7.72.1 * openssl-1_1-debugsource-1.1.1l-150400.7.72.1 * openSUSE Leap 15.4 (x86_64) * libopenssl-1_1-devel-32bit-1.1.1l-150400.7.72.1 * libopenssl1_1-32bit-1.1.1l-150400.7.72.1 * libopenssl1_1-32bit-debuginfo-1.1.1l-150400.7.72.1 * libopenssl1_1-hmac-32bit-1.1.1l-150400.7.72.1 * openSUSE Leap 15.4 (noarch) * openssl-1_1-doc-1.1.1l-150400.7.72.1 * openSUSE Leap 15.4 (aarch64_ilp32) * libopenssl1_1-64bit-1.1.1l-150400.7.72.1 * libopenssl1_1-hmac-64bit-1.1.1l-150400.7.72.1 * libopenssl-1_1-devel-64bit-1.1.1l-150400.7.72.1 * libopenssl1_1-64bit-debuginfo-1.1.1l-150400.7.72.1 * SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 s390x x86_64) * openssl-1_1-debuginfo-1.1.1l-150400.7.72.1 * libopenssl-1_1-devel-1.1.1l-150400.7.72.1 * libopenssl1_1-debuginfo-1.1.1l-150400.7.72.1 * openssl-1_1-1.1.1l-150400.7.72.1 * libopenssl1_1-1.1.1l-150400.7.72.1 * libopenssl1_1-hmac-1.1.1l-150400.7.72.1 * openssl-1_1-debugsource-1.1.1l-150400.7.72.1 * SUSE Linux Enterprise Micro 5.3 (aarch64 s390x x86_64) * openssl-1_1-debuginfo-1.1.1l-150400.7.72.1 * libopenssl-1_1-devel-1.1.1l-150400.7.72.1 * libopenssl1_1-debuginfo-1.1.1l-150400.7.72.1 * openssl-1_1-1.1.1l-150400.7.72.1 * libopenssl1_1-1.1.1l-150400.7.72.1 * libopenssl1_1-hmac-1.1.1l-150400.7.72.1 * openssl-1_1-debugsource-1.1.1l-150400.7.72.1 * SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 s390x x86_64) * openssl-1_1-debuginfo-1.1.1l-150400.7.72.1 * libopenssl-1_1-devel-1.1.1l-150400.7.72.1 * libopenssl1_1-debuginfo-1.1.1l-150400.7.72.1 * openssl-1_1-1.1.1l-150400.7.72.1 * libopenssl1_1-1.1.1l-150400.7.72.1 * libopenssl1_1-hmac-1.1.1l-150400.7.72.1 * openssl-1_1-debugsource-1.1.1l-150400.7.72.1 * SUSE Linux Enterprise Micro 5.4 (aarch64 s390x x86_64) * openssl-1_1-debuginfo-1.1.1l-150400.7.72.1 * libopenssl-1_1-devel-1.1.1l-150400.7.72.1 * libopenssl1_1-debuginfo-1.1.1l-150400.7.72.1 * openssl-1_1-1.1.1l-150400.7.72.1 * libopenssl1_1-1.1.1l-150400.7.72.1 * libopenssl1_1-hmac-1.1.1l-150400.7.72.1 * openssl-1_1-debugsource-1.1.1l-150400.7.72.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 x86_64) * openssl-1_1-debuginfo-1.1.1l-150400.7.72.1 * libopenssl-1_1-devel-1.1.1l-150400.7.72.1 * libopenssl1_1-debuginfo-1.1.1l-150400.7.72.1 * openssl-1_1-1.1.1l-150400.7.72.1 * libopenssl1_1-1.1.1l-150400.7.72.1 * libopenssl1_1-hmac-1.1.1l-150400.7.72.1 * openssl-1_1-debugsource-1.1.1l-150400.7.72.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (x86_64) * libopenssl-1_1-devel-32bit-1.1.1l-150400.7.72.1 * libopenssl1_1-32bit-debuginfo-1.1.1l-150400.7.72.1 * libopenssl1_1-32bit-1.1.1l-150400.7.72.1 * libopenssl1_1-hmac-32bit-1.1.1l-150400.7.72.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 x86_64) * openssl-1_1-debuginfo-1.1.1l-150400.7.72.1 * libopenssl-1_1-devel-1.1.1l-150400.7.72.1 * libopenssl1_1-debuginfo-1.1.1l-150400.7.72.1 * openssl-1_1-1.1.1l-150400.7.72.1 * libopenssl1_1-1.1.1l-150400.7.72.1 * libopenssl1_1-hmac-1.1.1l-150400.7.72.1 * openssl-1_1-debugsource-1.1.1l-150400.7.72.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (x86_64) * libopenssl-1_1-devel-32bit-1.1.1l-150400.7.72.1 * libopenssl1_1-32bit-debuginfo-1.1.1l-150400.7.72.1 * libopenssl1_1-32bit-1.1.1l-150400.7.72.1 * libopenssl1_1-hmac-32bit-1.1.1l-150400.7.72.1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (x86_64) * libopenssl-1_1-devel-32bit-1.1.1l-150400.7.72.1 * libopenssl1_1-hmac-1.1.1l-150400.7.72.1 * openssl-1_1-debuginfo-1.1.1l-150400.7.72.1 * libopenssl-1_1-devel-1.1.1l-150400.7.72.1 * libopenssl1_1-debuginfo-1.1.1l-150400.7.72.1 * openssl-1_1-1.1.1l-150400.7.72.1 * libopenssl1_1-1.1.1l-150400.7.72.1 * libopenssl1_1-hmac-32bit-1.1.1l-150400.7.72.1 * libopenssl1_1-32bit-debuginfo-1.1.1l-150400.7.72.1 * libopenssl1_1-32bit-1.1.1l-150400.7.72.1 * openssl-1_1-debugsource-1.1.1l-150400.7.72.1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (aarch64 ppc64le s390x x86_64) * openssl-1_1-debuginfo-1.1.1l-150400.7.72.1 * libopenssl-1_1-devel-1.1.1l-150400.7.72.1 * libopenssl1_1-debuginfo-1.1.1l-150400.7.72.1 * openssl-1_1-1.1.1l-150400.7.72.1 * libopenssl1_1-1.1.1l-150400.7.72.1 * libopenssl1_1-hmac-1.1.1l-150400.7.72.1 * openssl-1_1-debugsource-1.1.1l-150400.7.72.1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (x86_64) * libopenssl-1_1-devel-32bit-1.1.1l-150400.7.72.1 * libopenssl1_1-32bit-debuginfo-1.1.1l-150400.7.72.1 * libopenssl1_1-32bit-1.1.1l-150400.7.72.1 * libopenssl1_1-hmac-32bit-1.1.1l-150400.7.72.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64) * openssl-1_1-debuginfo-1.1.1l-150400.7.72.1 * libopenssl-1_1-devel-1.1.1l-150400.7.72.1 * libopenssl1_1-debuginfo-1.1.1l-150400.7.72.1 * openssl-1_1-1.1.1l-150400.7.72.1 * libopenssl1_1-1.1.1l-150400.7.72.1 * libopenssl1_1-hmac-1.1.1l-150400.7.72.1 * openssl-1_1-debugsource-1.1.1l-150400.7.72.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (x86_64) * libopenssl-1_1-devel-32bit-1.1.1l-150400.7.72.1 * libopenssl1_1-32bit-debuginfo-1.1.1l-150400.7.72.1 * libopenssl1_1-32bit-1.1.1l-150400.7.72.1 * libopenssl1_1-hmac-32bit-1.1.1l-150400.7.72.1 * SUSE Manager Proxy 4.3 (x86_64) * libopenssl-1_1-devel-32bit-1.1.1l-150400.7.72.1 * libopenssl1_1-hmac-1.1.1l-150400.7.72.1 * openssl-1_1-debuginfo-1.1.1l-150400.7.72.1 * libopenssl-1_1-devel-1.1.1l-150400.7.72.1 * libopenssl1_1-debuginfo-1.1.1l-150400.7.72.1 * openssl-1_1-1.1.1l-150400.7.72.1 * libopenssl1_1-1.1.1l-150400.7.72.1 * libopenssl1_1-hmac-32bit-1.1.1l-150400.7.72.1 * libopenssl1_1-32bit-debuginfo-1.1.1l-150400.7.72.1 * libopenssl1_1-32bit-1.1.1l-150400.7.72.1 * openssl-1_1-debugsource-1.1.1l-150400.7.72.1 * SUSE Manager Retail Branch Server 4.3 (x86_64) * libopenssl-1_1-devel-32bit-1.1.1l-150400.7.72.1 * libopenssl1_1-hmac-1.1.1l-150400.7.72.1 * openssl-1_1-debuginfo-1.1.1l-150400.7.72.1 * libopenssl-1_1-devel-1.1.1l-150400.7.72.1 * libopenssl1_1-debuginfo-1.1.1l-150400.7.72.1 * openssl-1_1-1.1.1l-150400.7.72.1 * libopenssl1_1-1.1.1l-150400.7.72.1 * libopenssl1_1-hmac-32bit-1.1.1l-150400.7.72.1 * libopenssl1_1-32bit-debuginfo-1.1.1l-150400.7.72.1 * libopenssl1_1-32bit-1.1.1l-150400.7.72.1 * openssl-1_1-debugsource-1.1.1l-150400.7.72.1 * SUSE Manager Server 4.3 (ppc64le s390x x86_64) * openssl-1_1-debuginfo-1.1.1l-150400.7.72.1 * libopenssl-1_1-devel-1.1.1l-150400.7.72.1 * libopenssl1_1-debuginfo-1.1.1l-150400.7.72.1 * openssl-1_1-1.1.1l-150400.7.72.1 * libopenssl1_1-1.1.1l-150400.7.72.1 * libopenssl1_1-hmac-1.1.1l-150400.7.72.1 * openssl-1_1-debugsource-1.1.1l-150400.7.72.1 * SUSE Manager Server 4.3 (x86_64) * libopenssl-1_1-devel-32bit-1.1.1l-150400.7.72.1 * libopenssl1_1-32bit-debuginfo-1.1.1l-150400.7.72.1 * libopenssl1_1-32bit-1.1.1l-150400.7.72.1 * libopenssl1_1-hmac-32bit-1.1.1l-150400.7.72.1 ## References: * https://www.suse.com/security/cve/CVE-2024-5535.html * https://bugzilla.suse.com/show_bug.cgi?id=1226463 * https://bugzilla.suse.com/show_bug.cgi?id=1227138 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Thu Aug 15 08:30:41 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Thu, 15 Aug 2024 08:30:41 -0000 Subject: SUSE-SU-2024:2926-1: moderate: Security update for zziplib Message-ID: <172371064114.632.6350189852476242804@smelt2.prg2.suse.org> # Security update for zziplib Announcement ID: SUSE-SU-2024:2926-1 Rating: moderate References: * bsc#1227178 Cross-References: * CVE-2024-39134 CVSS scores: * CVE-2024-39134 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H Affected Products: * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 * SUSE Linux Enterprise Software Development Kit 12 SP5 * SUSE Linux Enterprise Workstation Extension 12 12-SP5 An update that solves one vulnerability can now be installed. ## Description: This update for zziplib fixes the following issues: * CVE-2024-39134: Fixed a stack buffer overflow via the __zzip_fetch_disk_trailer() (bsc#1227178) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Software Development Kit 12 SP5 zypper in -t patch SUSE-SLE-SDK-12-SP5-2024-2926=1 * SUSE Linux Enterprise Workstation Extension 12 12-SP5 zypper in -t patch SUSE-SLE-WE-12-SP5-2024-2926=1 ## Package List: * SUSE Linux Enterprise Software Development Kit 12 SP5 (aarch64 ppc64le s390x x86_64) * zziplib-debugsource-0.13.67-10.39.1 * zziplib-devel-0.13.67-10.39.1 * zziplib-devel-debuginfo-0.13.67-10.39.1 * libzzip-0-13-0.13.67-10.39.1 * libzzip-0-13-debuginfo-0.13.67-10.39.1 * SUSE Linux Enterprise Workstation Extension 12 12-SP5 (x86_64) * libzzip-0-13-0.13.67-10.39.1 * zziplib-debugsource-0.13.67-10.39.1 * libzzip-0-13-debuginfo-0.13.67-10.39.1 ## References: * https://www.suse.com/security/cve/CVE-2024-39134.html * https://bugzilla.suse.com/show_bug.cgi?id=1227178 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Thu Aug 15 08:30:43 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Thu, 15 Aug 2024 08:30:43 -0000 Subject: SUSE-SU-2024:2925-1: moderate: Security update for zziplib Message-ID: <172371064311.632.4008817029130674598@smelt2.prg2.suse.org> # Security update for zziplib Announcement ID: SUSE-SU-2024:2925-1 Rating: moderate References: * bsc#1227178 Cross-References: * CVE-2024-39134 CVSS scores: * CVE-2024-39134 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H Affected Products: * Basesystem Module 15-SP6 * openSUSE Leap 15.6 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 An update that solves one vulnerability can now be installed. ## Description: This update for zziplib fixes the following issues: * CVE-2024-39134: Fixed a stack buffer overflow via the __zzip_fetch_disk_trailer() (bsc#1227178) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch SUSE-2024-2925=1 openSUSE-SLE-15.6-2024-2925=1 * Basesystem Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP6-2024-2925=1 ## Package List: * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64 i586) * libzzip-0-13-0.13.72-150600.4.3.1 * libzzip-0-13-debuginfo-0.13.72-150600.4.3.1 * zziplib-debugsource-0.13.72-150600.4.3.1 * zziplib-devel-0.13.72-150600.4.3.1 * zziplib-devel-debuginfo-0.13.72-150600.4.3.1 * openSUSE Leap 15.6 (x86_64) * zziplib-devel-32bit-0.13.72-150600.4.3.1 * libzzip-0-13-32bit-0.13.72-150600.4.3.1 * zziplib-devel-32bit-debuginfo-0.13.72-150600.4.3.1 * libzzip-0-13-32bit-debuginfo-0.13.72-150600.4.3.1 * openSUSE Leap 15.6 (aarch64_ilp32) * libzzip-0-13-64bit-debuginfo-0.13.72-150600.4.3.1 * libzzip-0-13-64bit-0.13.72-150600.4.3.1 * zziplib-devel-64bit-debuginfo-0.13.72-150600.4.3.1 * zziplib-devel-64bit-0.13.72-150600.4.3.1 * Basesystem Module 15-SP6 (aarch64 ppc64le s390x x86_64) * libzzip-0-13-0.13.72-150600.4.3.1 * libzzip-0-13-debuginfo-0.13.72-150600.4.3.1 * zziplib-debugsource-0.13.72-150600.4.3.1 * zziplib-devel-0.13.72-150600.4.3.1 * zziplib-devel-debuginfo-0.13.72-150600.4.3.1 ## References: * https://www.suse.com/security/cve/CVE-2024-39134.html * https://bugzilla.suse.com/show_bug.cgi?id=1227178 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Thu Aug 15 12:30:13 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Thu, 15 Aug 2024 12:30:13 -0000 Subject: SUSE-SU-2024:2933-1: moderate: Security update for openssl-1_1 Message-ID: <172372501346.3187.10412409111255252202@smelt2.prg2.suse.org> # Security update for openssl-1_1 Announcement ID: SUSE-SU-2024:2933-1 Rating: moderate References: * bsc#1225907 * bsc#1226463 * bsc#1227138 Cross-References: * CVE-2024-5535 CVSS scores: * CVE-2024-5535 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * Basesystem Module 15-SP6 * Development Tools Module 15-SP6 * Legacy Module 15-SP6 * openSUSE Leap 15.6 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 An update that solves one vulnerability and has two security fixes can now be installed. ## Description: This update for openssl-1_1 fixes the following issues: * CVE-2024-5535: Fixed a buffer overread in function SSL_select_next_proto() with an empty supported client protocols buffer (bsc#1227138) Other fixes: \- Build with no-afalgeng. (bsc#1226463) \- Fixed C99 violations to allow the package to build with GCC 14. (bsc#1225907) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch SUSE-2024-2933=1 openSUSE-SLE-15.6-2024-2933=1 * Basesystem Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP6-2024-2933=1 * Development Tools Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Development-Tools-15-SP6-2024-2933=1 * Legacy Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Legacy-15-SP6-2024-2933=1 ## Package List: * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64 i586) * libopenssl-1_1-devel-1.1.1w-150600.5.6.1 * libopenssl1_1-debuginfo-1.1.1w-150600.5.6.1 * openssl-1_1-1.1.1w-150600.5.6.1 * libopenssl1_1-1.1.1w-150600.5.6.1 * openssl-1_1-debugsource-1.1.1w-150600.5.6.1 * openssl-1_1-debuginfo-1.1.1w-150600.5.6.1 * openSUSE Leap 15.6 (x86_64) * libopenssl1_1-32bit-1.1.1w-150600.5.6.1 * libopenssl1_1-32bit-debuginfo-1.1.1w-150600.5.6.1 * libopenssl-1_1-devel-32bit-1.1.1w-150600.5.6.1 * openSUSE Leap 15.6 (noarch) * openssl-1_1-doc-1.1.1w-150600.5.6.1 * openSUSE Leap 15.6 (aarch64_ilp32) * libopenssl1_1-64bit-debuginfo-1.1.1w-150600.5.6.1 * libopenssl1_1-64bit-1.1.1w-150600.5.6.1 * libopenssl-1_1-devel-64bit-1.1.1w-150600.5.6.1 * Basesystem Module 15-SP6 (aarch64 ppc64le s390x x86_64) * libopenssl1_1-1.1.1w-150600.5.6.1 * openssl-1_1-debugsource-1.1.1w-150600.5.6.1 * openssl-1_1-debuginfo-1.1.1w-150600.5.6.1 * libopenssl1_1-debuginfo-1.1.1w-150600.5.6.1 * Basesystem Module 15-SP6 (x86_64) * libopenssl1_1-32bit-1.1.1w-150600.5.6.1 * libopenssl1_1-32bit-debuginfo-1.1.1w-150600.5.6.1 * Development Tools Module 15-SP6 (aarch64 ppc64le s390x x86_64) * libopenssl-1_1-devel-1.1.1w-150600.5.6.1 * openssl-1_1-debugsource-1.1.1w-150600.5.6.1 * openssl-1_1-debuginfo-1.1.1w-150600.5.6.1 * Legacy Module 15-SP6 (aarch64 ppc64le s390x x86_64) * openssl-1_1-debugsource-1.1.1w-150600.5.6.1 * openssl-1_1-1.1.1w-150600.5.6.1 * openssl-1_1-debuginfo-1.1.1w-150600.5.6.1 ## References: * https://www.suse.com/security/cve/CVE-2024-5535.html * https://bugzilla.suse.com/show_bug.cgi?id=1225907 * https://bugzilla.suse.com/show_bug.cgi?id=1226463 * https://bugzilla.suse.com/show_bug.cgi?id=1227138 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Thu Aug 15 12:30:22 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Thu, 15 Aug 2024 12:30:22 -0000 Subject: SUSE-SU-2024:2931-1: moderate: Security update for openssl-3 Message-ID: <172372502218.3187.5403352662647489357@smelt2.prg2.suse.org> # Security update for openssl-3 Announcement ID: SUSE-SU-2024:2931-1 Rating: moderate References: * bsc#1226463 * bsc#1227138 Cross-References: * CVE-2024-5535 CVSS scores: * CVE-2024-5535 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * openSUSE Leap 15.4 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Micro for Rancher 5.3 * SUSE Linux Enterprise Micro for Rancher 5.4 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Manager Proxy 4.3 * SUSE Manager Retail Branch Server 4.3 * SUSE Manager Server 4.3 An update that solves one vulnerability and has one security fix can now be installed. ## Description: This update for openssl-3 fixes the following issues: * CVE-2024-5535: Fixed a buffer overread in function SSL_select_next_proto() with an empty supported client protocols buffer (bsc#1227138) Other fixes: \- Build with no-afalgeng (bsc#1226463) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch SUSE-2024-2931=1 * SUSE Linux Enterprise Micro for Rancher 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2024-2931=1 * SUSE Linux Enterprise Micro 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2024-2931=1 * SUSE Linux Enterprise Micro for Rancher 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2024-2931=1 * SUSE Linux Enterprise Micro 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2024-2931=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2024-2931=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2024-2931=1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 zypper in -t patch SUSE-SLE-Product-SLED-15-SP4-LTSS-2024-2931=1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2024-2931=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2024-2931=1 * SUSE Manager Proxy 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Proxy-4.3-2024-2931=1 * SUSE Manager Retail Branch Server 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Retail-Branch- Server-4.3-2024-2931=1 * SUSE Manager Server 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Server-4.3-2024-2931=1 ## Package List: * openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586) * openssl-3-3.0.8-150400.4.60.1 * libopenssl-3-devel-3.0.8-150400.4.60.1 * openssl-3-debugsource-3.0.8-150400.4.60.1 * openssl-3-debuginfo-3.0.8-150400.4.60.1 * libopenssl3-3.0.8-150400.4.60.1 * libopenssl3-debuginfo-3.0.8-150400.4.60.1 * openSUSE Leap 15.4 (x86_64) * libopenssl-3-devel-32bit-3.0.8-150400.4.60.1 * libopenssl3-32bit-3.0.8-150400.4.60.1 * libopenssl3-32bit-debuginfo-3.0.8-150400.4.60.1 * openSUSE Leap 15.4 (noarch) * openssl-3-doc-3.0.8-150400.4.60.1 * openSUSE Leap 15.4 (aarch64_ilp32) * libopenssl-3-devel-64bit-3.0.8-150400.4.60.1 * libopenssl3-64bit-3.0.8-150400.4.60.1 * libopenssl3-64bit-debuginfo-3.0.8-150400.4.60.1 * SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 s390x x86_64) * libopenssl3-debuginfo-3.0.8-150400.4.60.1 * openssl-3-debugsource-3.0.8-150400.4.60.1 * libopenssl3-3.0.8-150400.4.60.1 * SUSE Linux Enterprise Micro 5.3 (aarch64 s390x x86_64) * libopenssl3-debuginfo-3.0.8-150400.4.60.1 * openssl-3-debugsource-3.0.8-150400.4.60.1 * libopenssl3-3.0.8-150400.4.60.1 * SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 s390x x86_64) * libopenssl3-3.0.8-150400.4.60.1 * libopenssl3-debuginfo-3.0.8-150400.4.60.1 * openssl-3-debugsource-3.0.8-150400.4.60.1 * SUSE Linux Enterprise Micro 5.4 (aarch64 s390x x86_64) * libopenssl3-3.0.8-150400.4.60.1 * libopenssl3-debuginfo-3.0.8-150400.4.60.1 * openssl-3-debugsource-3.0.8-150400.4.60.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 x86_64) * openssl-3-3.0.8-150400.4.60.1 * libopenssl-3-devel-3.0.8-150400.4.60.1 * openssl-3-debugsource-3.0.8-150400.4.60.1 * openssl-3-debuginfo-3.0.8-150400.4.60.1 * libopenssl3-3.0.8-150400.4.60.1 * libopenssl3-debuginfo-3.0.8-150400.4.60.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 x86_64) * openssl-3-3.0.8-150400.4.60.1 * libopenssl-3-devel-3.0.8-150400.4.60.1 * openssl-3-debugsource-3.0.8-150400.4.60.1 * openssl-3-debuginfo-3.0.8-150400.4.60.1 * libopenssl3-3.0.8-150400.4.60.1 * libopenssl3-debuginfo-3.0.8-150400.4.60.1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (x86_64) * openssl-3-3.0.8-150400.4.60.1 * libopenssl-3-devel-3.0.8-150400.4.60.1 * openssl-3-debugsource-3.0.8-150400.4.60.1 * openssl-3-debuginfo-3.0.8-150400.4.60.1 * libopenssl3-3.0.8-150400.4.60.1 * libopenssl3-debuginfo-3.0.8-150400.4.60.1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (aarch64 ppc64le s390x x86_64) * openssl-3-3.0.8-150400.4.60.1 * libopenssl-3-devel-3.0.8-150400.4.60.1 * openssl-3-debugsource-3.0.8-150400.4.60.1 * openssl-3-debuginfo-3.0.8-150400.4.60.1 * libopenssl3-3.0.8-150400.4.60.1 * libopenssl3-debuginfo-3.0.8-150400.4.60.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64) * openssl-3-3.0.8-150400.4.60.1 * libopenssl-3-devel-3.0.8-150400.4.60.1 * openssl-3-debugsource-3.0.8-150400.4.60.1 * openssl-3-debuginfo-3.0.8-150400.4.60.1 * libopenssl3-3.0.8-150400.4.60.1 * libopenssl3-debuginfo-3.0.8-150400.4.60.1 * SUSE Manager Proxy 4.3 (x86_64) * openssl-3-3.0.8-150400.4.60.1 * libopenssl-3-devel-3.0.8-150400.4.60.1 * openssl-3-debugsource-3.0.8-150400.4.60.1 * openssl-3-debuginfo-3.0.8-150400.4.60.1 * libopenssl3-3.0.8-150400.4.60.1 * libopenssl3-debuginfo-3.0.8-150400.4.60.1 * SUSE Manager Retail Branch Server 4.3 (x86_64) * openssl-3-3.0.8-150400.4.60.1 * libopenssl-3-devel-3.0.8-150400.4.60.1 * openssl-3-debugsource-3.0.8-150400.4.60.1 * openssl-3-debuginfo-3.0.8-150400.4.60.1 * libopenssl3-3.0.8-150400.4.60.1 * libopenssl3-debuginfo-3.0.8-150400.4.60.1 * SUSE Manager Server 4.3 (ppc64le s390x x86_64) * openssl-3-3.0.8-150400.4.60.1 * libopenssl-3-devel-3.0.8-150400.4.60.1 * openssl-3-debugsource-3.0.8-150400.4.60.1 * openssl-3-debuginfo-3.0.8-150400.4.60.1 * libopenssl3-3.0.8-150400.4.60.1 * libopenssl3-debuginfo-3.0.8-150400.4.60.1 ## References: * https://www.suse.com/security/cve/CVE-2024-5535.html * https://bugzilla.suse.com/show_bug.cgi?id=1226463 * https://bugzilla.suse.com/show_bug.cgi?id=1227138 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Thu Aug 15 12:30:24 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Thu, 15 Aug 2024 12:30:24 -0000 Subject: SUSE-SU-2024:2930-1: moderate: Security update for curl Message-ID: <172372502457.3187.15331338385541458368@smelt2.prg2.suse.org> # Security update for curl Announcement ID: SUSE-SU-2024:2930-1 Rating: moderate References: * bsc#1228535 Cross-References: * CVE-2024-7264 CVSS scores: * CVE-2024-7264 ( SUSE ): 4.8 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:L * CVE-2024-7264 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H Affected Products: * SUSE Linux Enterprise Micro 5.1 * SUSE Linux Enterprise Micro 5.2 * SUSE Linux Enterprise Micro for Rancher 5.2 An update that solves one vulnerability can now be installed. ## Description: This update for curl fixes the following issues: * CVE-2024-7264: Fixed out-of-bounds read in ASN.1 date parser GTime2str() (bsc#1228535) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Micro 5.1 zypper in -t patch SUSE-SUSE-MicroOS-5.1-2024-2930=1 * SUSE Linux Enterprise Micro 5.2 zypper in -t patch SUSE-SUSE-MicroOS-5.2-2024-2930=1 * SUSE Linux Enterprise Micro for Rancher 5.2 zypper in -t patch SUSE-SUSE-MicroOS-5.2-2024-2930=1 ## Package List: * SUSE Linux Enterprise Micro 5.1 (aarch64 s390x x86_64) * curl-debuginfo-7.66.0-150200.4.75.1 * libcurl4-7.66.0-150200.4.75.1 * curl-7.66.0-150200.4.75.1 * libcurl4-debuginfo-7.66.0-150200.4.75.1 * curl-debugsource-7.66.0-150200.4.75.1 * SUSE Linux Enterprise Micro 5.2 (aarch64 s390x x86_64) * curl-debuginfo-7.66.0-150200.4.75.1 * libcurl4-7.66.0-150200.4.75.1 * curl-7.66.0-150200.4.75.1 * libcurl4-debuginfo-7.66.0-150200.4.75.1 * curl-debugsource-7.66.0-150200.4.75.1 * SUSE Linux Enterprise Micro for Rancher 5.2 (aarch64 s390x x86_64) * curl-debuginfo-7.66.0-150200.4.75.1 * libcurl4-7.66.0-150200.4.75.1 * curl-7.66.0-150200.4.75.1 * libcurl4-debuginfo-7.66.0-150200.4.75.1 * curl-debugsource-7.66.0-150200.4.75.1 ## References: * https://www.suse.com/security/cve/CVE-2024-7264.html * https://bugzilla.suse.com/show_bug.cgi?id=1228535 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Thu Aug 15 12:33:00 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Thu, 15 Aug 2024 12:33:00 -0000 Subject: SUSE-SU-2024:2929-1: important: Security update for the Linux Kernel Message-ID: <172372518043.3187.3505827702403513155@smelt2.prg2.suse.org> # Security update for the Linux Kernel Announcement ID: SUSE-SU-2024:2929-1 Rating: important References: * bsc#1156395 * bsc#1190336 * bsc#1191958 * bsc#1193454 * bsc#1193554 * bsc#1193787 * bsc#1193883 * bsc#1194324 * bsc#1194826 * bsc#1194869 * bsc#1195065 * bsc#1195254 * bsc#1195341 * bsc#1195349 * bsc#1195357 * bsc#1195668 * bsc#1195927 * bsc#1195957 * bsc#1196018 * bsc#1196746 * bsc#1196823 * bsc#1197146 * bsc#1197246 * bsc#1197762 * bsc#1197915 * bsc#1198014 * bsc#1199295 * bsc#1202346 * bsc#1202686 * bsc#1202767 * bsc#1202780 * bsc#1209636 * bsc#1213123 * bsc#1215587 * bsc#1216834 * bsc#1218820 * bsc#1220185 * bsc#1220186 * bsc#1220187 * bsc#1221044 * bsc#1222011 * bsc#1222728 * bsc#1222809 * bsc#1222810 * bsc#1223635 * bsc#1223863 * bsc#1224488 * bsc#1224495 * bsc#1224671 * bsc#1225573 * bsc#1225829 * bsc#1226168 * bsc#1226226 * bsc#1226519 * bsc#1226537 * bsc#1226539 * bsc#1226550 * bsc#1226553 * bsc#1226554 * bsc#1226556 * bsc#1226557 * bsc#1226558 * bsc#1226559 * bsc#1226561 * bsc#1226562 * bsc#1226563 * bsc#1226564 * bsc#1226567 * bsc#1226569 * bsc#1226572 * bsc#1226574 * bsc#1226575 * bsc#1226576 * bsc#1226577 * bsc#1226580 * bsc#1226583 * bsc#1226585 * bsc#1226587 * bsc#1226601 * bsc#1226602 * bsc#1226603 * bsc#1226607 * bsc#1226614 * bsc#1226617 * bsc#1226618 * bsc#1226619 * bsc#1226621 * bsc#1226624 * bsc#1226626 * bsc#1226628 * bsc#1226629 * bsc#1226643 * bsc#1226644 * bsc#1226645 * bsc#1226650 * bsc#1226653 * bsc#1226662 * bsc#1226669 * bsc#1226670 * bsc#1226672 * bsc#1226673 * bsc#1226674 * bsc#1226675 * bsc#1226679 * bsc#1226683 * bsc#1226685 * bsc#1226686 * bsc#1226690 * bsc#1226691 * bsc#1226692 * bsc#1226696 * bsc#1226697 * bsc#1226698 * bsc#1226699 * bsc#1226701 * bsc#1226702 * bsc#1226703 * bsc#1226705 * bsc#1226708 * bsc#1226709 * bsc#1226710 * bsc#1226711 * bsc#1226712 * bsc#1226713 * bsc#1226715 * bsc#1226716 * bsc#1226719 * bsc#1226720 * bsc#1226721 * bsc#1226732 * bsc#1226758 * bsc#1226762 * bsc#1226785 * bsc#1227090 * bsc#1227383 * bsc#1227487 * bsc#1227549 * bsc#1227716 * bsc#1227750 * bsc#1227764 * bsc#1227808 * bsc#1227810 * bsc#1227823 * bsc#1227829 * bsc#1227836 * bsc#1227917 * bsc#1227920 * bsc#1227921 * bsc#1227922 * bsc#1227923 * bsc#1227924 * bsc#1227925 * bsc#1227928 * bsc#1227931 * bsc#1227932 * bsc#1227933 * bsc#1227935 * bsc#1227938 * bsc#1227941 * bsc#1227942 * bsc#1227944 * bsc#1227945 * bsc#1227948 * bsc#1227949 * bsc#1227952 * bsc#1227953 * bsc#1227954 * bsc#1227956 * bsc#1227963 * bsc#1227964 * bsc#1227965 * bsc#1227968 * bsc#1227969 * bsc#1227970 * bsc#1227971 * bsc#1227972 * bsc#1227975 * bsc#1227976 * bsc#1227981 * bsc#1227982 * bsc#1227985 * bsc#1227986 * bsc#1227987 * bsc#1227988 * bsc#1227989 * bsc#1227990 * bsc#1227991 * bsc#1227993 * bsc#1227995 * bsc#1227996 * bsc#1227997 * bsc#1228000 * bsc#1228002 * bsc#1228004 * bsc#1228005 * bsc#1228006 * bsc#1228007 * bsc#1228008 * bsc#1228009 * bsc#1228010 * bsc#1228013 * bsc#1228014 * bsc#1228015 * bsc#1228019 * bsc#1228025 * bsc#1228028 * bsc#1228035 * bsc#1228037 * bsc#1228038 * bsc#1228039 * bsc#1228040 * bsc#1228045 * bsc#1228054 * bsc#1228055 * bsc#1228056 * bsc#1228060 * bsc#1228061 * bsc#1228062 * bsc#1228063 * bsc#1228064 * bsc#1228066 * bsc#1228114 * bsc#1228247 * bsc#1228328 * bsc#1228440 * bsc#1228561 * bsc#1228644 * bsc#1228680 * bsc#1228743 * bsc#1228801 Cross-References: * CVE-2021-4439 * CVE-2021-47534 * CVE-2021-47576 * CVE-2021-47578 * CVE-2021-47580 * CVE-2021-47582 * CVE-2021-47583 * CVE-2021-47584 * CVE-2021-47585 * CVE-2021-47586 * CVE-2021-47587 * CVE-2021-47589 * CVE-2021-47592 * CVE-2021-47596 * CVE-2021-47597 * CVE-2021-47598 * CVE-2021-47600 * CVE-2021-47601 * CVE-2021-47602 * CVE-2021-47603 * CVE-2021-47607 * CVE-2021-47608 * CVE-2021-47609 * CVE-2021-47611 * CVE-2021-47612 * CVE-2021-47614 * CVE-2021-47615 * CVE-2021-47616 * CVE-2021-47617 * CVE-2021-47618 * CVE-2021-47619 * CVE-2021-47620 * CVE-2021-47622 * CVE-2021-47624 * CVE-2022-0854 * CVE-2022-20368 * CVE-2022-28748 * CVE-2022-2964 * CVE-2022-48711 * CVE-2022-48712 * CVE-2022-48713 * CVE-2022-48715 * CVE-2022-48717 * CVE-2022-48720 * CVE-2022-48721 * CVE-2022-48722 * CVE-2022-48723 * CVE-2022-48724 * CVE-2022-48725 * CVE-2022-48726 * CVE-2022-48727 * CVE-2022-48728 * CVE-2022-48729 * CVE-2022-48730 * CVE-2022-48732 * CVE-2022-48734 * CVE-2022-48735 * CVE-2022-48736 * CVE-2022-48737 * CVE-2022-48738 * CVE-2022-48739 * CVE-2022-48740 * CVE-2022-48743 * CVE-2022-48744 * CVE-2022-48745 * CVE-2022-48746 * CVE-2022-48747 * CVE-2022-48749 * CVE-2022-48751 * CVE-2022-48752 * CVE-2022-48754 * CVE-2022-48756 * CVE-2022-48758 * CVE-2022-48759 * CVE-2022-48760 * CVE-2022-48761 * CVE-2022-48763 * CVE-2022-48765 * CVE-2022-48767 * CVE-2022-48768 * CVE-2022-48769 * CVE-2022-48771 * CVE-2022-48773 * CVE-2022-48774 * CVE-2022-48775 * CVE-2022-48776 * CVE-2022-48777 * CVE-2022-48778 * CVE-2022-48780 * CVE-2022-48783 * CVE-2022-48784 * CVE-2022-48786 * CVE-2022-48787 * CVE-2022-48788 * CVE-2022-48789 * CVE-2022-48790 * CVE-2022-48791 * CVE-2022-48792 * CVE-2022-48793 * CVE-2022-48794 * CVE-2022-48796 * CVE-2022-48797 * CVE-2022-48798 * CVE-2022-48799 * CVE-2022-48800 * CVE-2022-48801 * CVE-2022-48802 * CVE-2022-48803 * CVE-2022-48804 * CVE-2022-48805 * CVE-2022-48806 * CVE-2022-48807 * CVE-2022-48811 * CVE-2022-48812 * CVE-2022-48813 * CVE-2022-48814 * CVE-2022-48815 * CVE-2022-48816 * CVE-2022-48817 * CVE-2022-48818 * CVE-2022-48820 * CVE-2022-48821 * CVE-2022-48822 * CVE-2022-48823 * CVE-2022-48824 * CVE-2022-48825 * CVE-2022-48826 * CVE-2022-48827 * CVE-2022-48828 * CVE-2022-48829 * CVE-2022-48830 * CVE-2022-48831 * CVE-2022-48834 * CVE-2022-48835 * CVE-2022-48836 * CVE-2022-48837 * CVE-2022-48838 * CVE-2022-48839 * CVE-2022-48840 * CVE-2022-48841 * CVE-2022-48842 * CVE-2022-48843 * CVE-2022-48847 * CVE-2022-48849 * CVE-2022-48851 * CVE-2022-48853 * CVE-2022-48856 * CVE-2022-48857 * CVE-2022-48858 * CVE-2022-48859 * CVE-2022-48860 * CVE-2022-48861 * CVE-2022-48862 * CVE-2022-48863 * CVE-2022-48866 * CVE-2023-1582 * CVE-2023-37453 * CVE-2023-52591 * CVE-2023-52762 * CVE-2023-52766 * CVE-2023-52800 * CVE-2023-52885 * CVE-2023-52886 * CVE-2024-26583 * CVE-2024-26584 * CVE-2024-26585 * CVE-2024-26800 * CVE-2024-26813 * CVE-2024-26814 * CVE-2024-26976 * CVE-2024-35878 * CVE-2024-35901 * CVE-2024-35905 * CVE-2024-36926 * CVE-2024-36974 * CVE-2024-38541 * CVE-2024-38555 * CVE-2024-38559 * CVE-2024-39463 * CVE-2024-39494 * CVE-2024-40902 * CVE-2024-40937 * CVE-2024-40954 * CVE-2024-40956 * CVE-2024-40989 * CVE-2024-40994 * CVE-2024-41011 * CVE-2024-41012 * CVE-2024-41059 * CVE-2024-41069 * CVE-2024-41090 * CVE-2024-42093 * CVE-2024-42145 * CVE-2024-42230 CVSS scores: * CVE-2021-4439 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L * CVE-2021-47534 ( SUSE ): 4.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47576 ( SUSE ): 3.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:L * CVE-2021-47578 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47580 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:L * CVE-2021-47582 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47583 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47584 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47585 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47586 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47587 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47589 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47592 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47596 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47597 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2021-47598 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2021-47600 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2021-47601 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47602 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47603 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47607 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2021-47608 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47609 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47611 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47612 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47614 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2021-47615 ( SUSE ): 3.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:L * CVE-2021-47616 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2021-47617 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47618 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47619 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47620 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2021-47622 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47624 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2022-0854 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2022-0854 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2022-20368 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-20368 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-28748 ( SUSE ): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N * CVE-2022-2964 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-2964 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48711 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48712 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L * CVE-2022-48713 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48715 ( SUSE ): 3.6 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L * CVE-2022-48717 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2022-48720 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2022-48721 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48722 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48723 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48724 ( SUSE ): 4.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48725 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48726 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48727 ( SUSE ): 4.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2022-48728 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48729 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48730 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2022-48732 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48734 ( SUSE ): 4.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48735 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48736 ( SUSE ): 0.0 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N * CVE-2022-48737 ( SUSE ): 0.0 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N * CVE-2022-48738 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48739 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2022-48740 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48743 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48744 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48745 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48746 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48747 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2022-48749 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48751 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48752 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48754 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48756 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48758 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48759 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48760 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48761 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48763 ( SUSE ): 4.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48765 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48767 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48768 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48769 ( SUSE ): 4.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48771 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48773 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48774 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2022-48775 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2022-48776 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2022-48777 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48778 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2022-48780 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48783 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48784 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48786 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2022-48787 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48787 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48788 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2022-48788 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48789 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48789 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48790 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48790 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48791 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48791 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48792 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48792 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48793 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48793 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48794 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2022-48796 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48796 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48797 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N * CVE-2022-48798 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48799 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48800 ( SUSE ): 2.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2022-48801 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48802 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48803 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2022-48804 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2022-48805 ( SUSE ): 6.6 CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48806 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N * CVE-2022-48807 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48811 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48812 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48813 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48814 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48815 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48816 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48817 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48818 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48820 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48821 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48822 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48822 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48823 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2022-48824 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48824 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48825 ( SUSE ): 0.0 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N * CVE-2022-48826 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48827 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48828 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N * CVE-2022-48829 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N * CVE-2022-48830 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48831 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48834 ( SUSE ): 0.0 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N * CVE-2022-48834 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48835 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48835 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48836 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48836 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48837 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48837 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48838 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48838 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48839 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48839 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48840 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48840 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48841 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48841 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48842 ( SUSE ): 4.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48842 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48843 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48843 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48847 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48847 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48849 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48849 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N * CVE-2022-48851 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48851 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48853 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48853 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2022-48856 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48856 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48857 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48857 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48858 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48858 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48859 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48859 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48860 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48860 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48861 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48861 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48862 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48862 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48863 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L * CVE-2022-48863 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48866 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2022-48866 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2023-1582 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-1582 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-37453 ( SUSE ): 4.6 CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2023-37453 ( NVD ): 4.6 CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52591 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2023-52762 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52766 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2023-52800 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2023-52885 ( SUSE ): 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2023-52886 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26583 ( SUSE ): 5.1 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26583 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26584 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26584 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26585 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26585 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26800 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26813 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26814 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26976 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35878 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35901 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35905 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-36926 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36926 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36974 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-38541 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2024-38555 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38559 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2024-39463 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-39494 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-39494 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-40902 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2024-40902 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-40937 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-40954 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-40956 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-40989 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-40994 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-41011 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-41012 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2024-41059 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2024-41059 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-41069 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2024-41069 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-41090 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H * CVE-2024-42093 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L * CVE-2024-42145 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2024-42145 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-42230 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2024-42230 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-42230 ( NVD ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H Affected Products: * openSUSE Leap 15.4 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 * SUSE Linux Enterprise High Availability Extension 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise Live Patching 15-SP4 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Micro for Rancher 5.3 * SUSE Linux Enterprise Micro for Rancher 5.4 * SUSE Linux Enterprise Real Time 15 SP4 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Manager Proxy 4.3 * SUSE Manager Retail Branch Server 4.3 * SUSE Manager Server 4.3 An update that solves 194 vulnerabilities and has 36 security fixes can now be installed. ## Description: The SUSE Linux Enterprise 15 SP4 kernel was updated to receive various security bugfixes. The following security bugs were fixed: * CVE-2024-39494: ima: Fix use-after-free on a dentry's dname.name (bsc#1227716). * CVE-2024-41069: ASoC: topology: Fix route memory corruption (bsc#1228644). * CVE-2024-40954: net: do not leave a dangling sk pointer, when socket creation fails (bsc#1227808) * CVE-2024-42145: IB/core: Implement a limit on UMAD receive List (bsc#1228743) * CVE-2024-40994: ptp: fix integer overflow in max_vclocks_store (bsc#1227829). * CVE-2024-41012: filelock: Remove locks reliably when fcntl/close race is detected (bsc#1228247). * CVE-2024-42093: net/dpaa2: Avoid explicit cpumask var allocation on stack (bsc#1228680). * CVE-2024-40989: KVM: arm64: Disassociate vcpus from redistributor region on teardown (bsc#1227823). * CVE-2024-41059: hfsplus: fix uninit-value in copy_name (bsc#1228561). * CVE-2024-40956: dmaengine: idxd: Fix possible Use-After-Free in irq_process_work_list (bsc#1227810). * CVE-2024-41090: tap: add missing verification for short frame (bsc#1228328). * CVE-2024-41011: drm/amdkfd: do not allow mapping the MMIO HDP page with large pages (bsc#1228114). * CVE-2024-39463: 9p: add missing locking around taking dentry fid list (bsc#1227090). * CVE-2021-47598: sch_cake: do not call cake_destroy() from cake_init() (bsc#1226574). * CVE-2024-40937: gve: Clear napi->skb before dev_kfree_skb_any() (bsc#1227836). * CVE-2024-35901: net: mana: Fix Rx DMA datasize and skb_over_panic (bsc#1224495). * CVE-2024-42230: powerpc/pseries: Fix scv instruction crash with kexec (bsc#1194869). * CVE-2024-26585: Fixed race between tx work scheduling and socket close (bsc#1220187). * CVE-2024-36974: net/sched: taprio: always validate TCA_TAPRIO_ATTR_PRIOMAP (bsc#1226519). * CVE-2024-38555: net/mlx5: Discard command completions in internal error (bsc#1226607). The following non-security bugs were fixed: * NFS: Do not re-read the entire page cache to find the next cookie (bsc#1226662). * NFS: Reduce use of uncached readdir (bsc#1226662). * NFSv4.x: by default serialize open/close operations (bsc#1226226 bsc#1223863). * X.509: Fix the parser of extended key usage for length (bsc#1218820). * btrfs: sysfs: update fs features directory asynchronously (bsc#1226168). * cgroup/cpuset: Prevent UAF in proc_cpuset_show() (bsc#1228801). * jfs: xattr: fix buffer overflow for invalid xattr (bsc#1227383). * kABI: rtas: Workaround false positive due to lost definition (bsc#1227487). * kernel-binary: vdso: Own module_dir * net/dcb: check for detached device before executing callbacks (bsc#1215587). * ocfs2: fix DIO failure due to insufficient transaction credits (bsc#1216834). * powerpc/rtas: Prevent Spectre v1 gadget construction in sys_rtas() (bsc#1227487). * powerpc/rtas: clean up includes (bsc#1227487). * workqueue: Improve scalability of workqueue watchdog touch (bsc#1193454). * workqueue: wq_watchdog_touch is always called with valid CPU (bsc#1193454). ## Special Instructions and Notes: * Please reboot the system after installing this update. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise High Availability Extension 15 SP4 zypper in -t patch SUSE-SLE-Product-HA-15-SP4-2024-2929=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2024-2929=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2024-2929=1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 zypper in -t patch SUSE-SLE-Product-SLED-15-SP4-LTSS-2024-2929=1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2024-2929=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2024-2929=1 * SUSE Manager Proxy 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Proxy-4.3-2024-2929=1 * SUSE Manager Retail Branch Server 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Retail-Branch- Server-4.3-2024-2929=1 * SUSE Manager Server 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Server-4.3-2024-2929=1 * openSUSE Leap 15.4 zypper in -t patch SUSE-2024-2929=1 * SUSE Linux Enterprise Micro for Rancher 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2024-2929=1 * SUSE Linux Enterprise Micro 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2024-2929=1 * SUSE Linux Enterprise Micro for Rancher 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2024-2929=1 * SUSE Linux Enterprise Micro 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2024-2929=1 * SUSE Linux Enterprise Live Patching 15-SP4 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP4-2024-2929=1 Please note that this is the initial kernel livepatch without fixes itself, this package is later updated by separate standalone kernel livepatch updates. ## Package List: * SUSE Linux Enterprise High Availability Extension 15 SP4 (aarch64 ppc64le s390x x86_64) * gfs2-kmp-default-5.14.21-150400.24.128.1 * cluster-md-kmp-default-debuginfo-5.14.21-150400.24.128.1 * cluster-md-kmp-default-5.14.21-150400.24.128.1 * ocfs2-kmp-default-5.14.21-150400.24.128.1 * gfs2-kmp-default-debuginfo-5.14.21-150400.24.128.1 * dlm-kmp-default-5.14.21-150400.24.128.1 * kernel-default-debuginfo-5.14.21-150400.24.128.1 * kernel-default-debugsource-5.14.21-150400.24.128.1 * ocfs2-kmp-default-debuginfo-5.14.21-150400.24.128.1 * dlm-kmp-default-debuginfo-5.14.21-150400.24.128.1 * SUSE Linux Enterprise High Availability Extension 15 SP4 (nosrc) * kernel-default-5.14.21-150400.24.128.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 nosrc) * kernel-64kb-5.14.21-150400.24.128.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64) * kernel-64kb-devel-debuginfo-5.14.21-150400.24.128.1 * kernel-64kb-debugsource-5.14.21-150400.24.128.1 * kernel-64kb-debuginfo-5.14.21-150400.24.128.1 * kernel-64kb-devel-5.14.21-150400.24.128.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 nosrc x86_64) * kernel-default-5.14.21-150400.24.128.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 x86_64) * kernel-default-devel-debuginfo-5.14.21-150400.24.128.1 * reiserfs-kmp-default-debuginfo-5.14.21-150400.24.128.1 * kernel-syms-5.14.21-150400.24.128.1 * kernel-default-base-5.14.21-150400.24.128.1.150400.24.62.1 * kernel-obs-build-debugsource-5.14.21-150400.24.128.1 * kernel-default-debuginfo-5.14.21-150400.24.128.1 * reiserfs-kmp-default-5.14.21-150400.24.128.1 * kernel-obs-build-5.14.21-150400.24.128.1 * kernel-default-debugsource-5.14.21-150400.24.128.1 * kernel-default-devel-5.14.21-150400.24.128.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (noarch) * kernel-source-5.14.21-150400.24.128.1 * kernel-macros-5.14.21-150400.24.128.1 * kernel-devel-5.14.21-150400.24.128.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (noarch nosrc) * kernel-docs-5.14.21-150400.24.128.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 nosrc) * kernel-64kb-5.14.21-150400.24.128.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64) * kernel-64kb-devel-debuginfo-5.14.21-150400.24.128.1 * kernel-64kb-debugsource-5.14.21-150400.24.128.1 * kernel-64kb-debuginfo-5.14.21-150400.24.128.1 * kernel-64kb-devel-5.14.21-150400.24.128.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 nosrc x86_64) * kernel-default-5.14.21-150400.24.128.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 x86_64) * kernel-default-devel-debuginfo-5.14.21-150400.24.128.1 * reiserfs-kmp-default-debuginfo-5.14.21-150400.24.128.1 * kernel-syms-5.14.21-150400.24.128.1 * kernel-default-base-5.14.21-150400.24.128.1.150400.24.62.1 * kernel-obs-build-debugsource-5.14.21-150400.24.128.1 * kernel-default-debuginfo-5.14.21-150400.24.128.1 * reiserfs-kmp-default-5.14.21-150400.24.128.1 * kernel-obs-build-5.14.21-150400.24.128.1 * kernel-default-debugsource-5.14.21-150400.24.128.1 * kernel-default-devel-5.14.21-150400.24.128.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (noarch) * kernel-source-5.14.21-150400.24.128.1 * kernel-macros-5.14.21-150400.24.128.1 * kernel-devel-5.14.21-150400.24.128.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (noarch nosrc) * kernel-docs-5.14.21-150400.24.128.1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (nosrc x86_64) * kernel-default-5.14.21-150400.24.128.1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (x86_64) * kernel-default-devel-debuginfo-5.14.21-150400.24.128.1 * kernel-default-extra-debuginfo-5.14.21-150400.24.128.1 * kernel-syms-5.14.21-150400.24.128.1 * kernel-default-extra-5.14.21-150400.24.128.1 * kernel-default-base-5.14.21-150400.24.128.1.150400.24.62.1 * kernel-obs-build-debugsource-5.14.21-150400.24.128.1 * kernel-default-debuginfo-5.14.21-150400.24.128.1 * kernel-obs-build-5.14.21-150400.24.128.1 * kernel-default-debugsource-5.14.21-150400.24.128.1 * kernel-default-devel-5.14.21-150400.24.128.1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (noarch) * kernel-source-5.14.21-150400.24.128.1 * kernel-macros-5.14.21-150400.24.128.1 * kernel-devel-5.14.21-150400.24.128.1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (noarch nosrc) * kernel-docs-5.14.21-150400.24.128.1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (aarch64 nosrc) * kernel-64kb-5.14.21-150400.24.128.1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (aarch64) * kernel-64kb-devel-debuginfo-5.14.21-150400.24.128.1 * kernel-64kb-debugsource-5.14.21-150400.24.128.1 * kernel-64kb-debuginfo-5.14.21-150400.24.128.1 * kernel-64kb-devel-5.14.21-150400.24.128.1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (aarch64 ppc64le s390x x86_64 nosrc) * kernel-default-5.14.21-150400.24.128.1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (aarch64 ppc64le x86_64) * kernel-default-base-5.14.21-150400.24.128.1.150400.24.62.1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (aarch64 ppc64le s390x x86_64) * kernel-default-devel-debuginfo-5.14.21-150400.24.128.1 * reiserfs-kmp-default-debuginfo-5.14.21-150400.24.128.1 * kernel-syms-5.14.21-150400.24.128.1 * kernel-obs-build-debugsource-5.14.21-150400.24.128.1 * kernel-default-debuginfo-5.14.21-150400.24.128.1 * reiserfs-kmp-default-5.14.21-150400.24.128.1 * kernel-obs-build-5.14.21-150400.24.128.1 * kernel-default-debugsource-5.14.21-150400.24.128.1 * kernel-default-devel-5.14.21-150400.24.128.1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (noarch) * kernel-source-5.14.21-150400.24.128.1 * kernel-macros-5.14.21-150400.24.128.1 * kernel-devel-5.14.21-150400.24.128.1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (noarch nosrc) * kernel-docs-5.14.21-150400.24.128.1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (nosrc s390x) * kernel-zfcpdump-5.14.21-150400.24.128.1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (s390x) * kernel-zfcpdump-debugsource-5.14.21-150400.24.128.1 * kernel-zfcpdump-debuginfo-5.14.21-150400.24.128.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (nosrc ppc64le x86_64) * kernel-default-5.14.21-150400.24.128.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64) * kernel-default-devel-debuginfo-5.14.21-150400.24.128.1 * reiserfs-kmp-default-debuginfo-5.14.21-150400.24.128.1 * kernel-syms-5.14.21-150400.24.128.1 * kernel-default-base-5.14.21-150400.24.128.1.150400.24.62.1 * kernel-obs-build-debugsource-5.14.21-150400.24.128.1 * kernel-default-debuginfo-5.14.21-150400.24.128.1 * reiserfs-kmp-default-5.14.21-150400.24.128.1 * kernel-obs-build-5.14.21-150400.24.128.1 * kernel-default-debugsource-5.14.21-150400.24.128.1 * kernel-default-devel-5.14.21-150400.24.128.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (noarch) * kernel-source-5.14.21-150400.24.128.1 * kernel-macros-5.14.21-150400.24.128.1 * kernel-devel-5.14.21-150400.24.128.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (noarch nosrc) * kernel-docs-5.14.21-150400.24.128.1 * SUSE Manager Proxy 4.3 (nosrc x86_64) * kernel-default-5.14.21-150400.24.128.1 * SUSE Manager Proxy 4.3 (x86_64) * kernel-default-devel-debuginfo-5.14.21-150400.24.128.1 * kernel-syms-5.14.21-150400.24.128.1 * kernel-default-base-5.14.21-150400.24.128.1.150400.24.62.1 * kernel-default-debuginfo-5.14.21-150400.24.128.1 * kernel-default-debugsource-5.14.21-150400.24.128.1 * kernel-default-devel-5.14.21-150400.24.128.1 * SUSE Manager Proxy 4.3 (noarch) * kernel-source-5.14.21-150400.24.128.1 * kernel-macros-5.14.21-150400.24.128.1 * kernel-devel-5.14.21-150400.24.128.1 * SUSE Manager Retail Branch Server 4.3 (nosrc x86_64) * kernel-default-5.14.21-150400.24.128.1 * SUSE Manager Retail Branch Server 4.3 (x86_64) * kernel-default-devel-debuginfo-5.14.21-150400.24.128.1 * kernel-default-base-5.14.21-150400.24.128.1.150400.24.62.1 * kernel-default-debuginfo-5.14.21-150400.24.128.1 * kernel-default-debugsource-5.14.21-150400.24.128.1 * kernel-default-devel-5.14.21-150400.24.128.1 * SUSE Manager Retail Branch Server 4.3 (noarch) * kernel-macros-5.14.21-150400.24.128.1 * kernel-devel-5.14.21-150400.24.128.1 * SUSE Manager Server 4.3 (nosrc ppc64le s390x x86_64) * kernel-default-5.14.21-150400.24.128.1 * SUSE Manager Server 4.3 (ppc64le x86_64) * kernel-default-base-5.14.21-150400.24.128.1.150400.24.62.1 * SUSE Manager Server 4.3 (ppc64le s390x x86_64) * kernel-default-devel-debuginfo-5.14.21-150400.24.128.1 * kernel-syms-5.14.21-150400.24.128.1 * kernel-default-debuginfo-5.14.21-150400.24.128.1 * kernel-default-debugsource-5.14.21-150400.24.128.1 * kernel-default-devel-5.14.21-150400.24.128.1 * SUSE Manager Server 4.3 (noarch) * kernel-source-5.14.21-150400.24.128.1 * kernel-macros-5.14.21-150400.24.128.1 * kernel-devel-5.14.21-150400.24.128.1 * SUSE Manager Server 4.3 (nosrc s390x) * kernel-zfcpdump-5.14.21-150400.24.128.1 * SUSE Manager Server 4.3 (s390x) * kernel-zfcpdump-debugsource-5.14.21-150400.24.128.1 * kernel-zfcpdump-debuginfo-5.14.21-150400.24.128.1 * openSUSE Leap 15.4 (noarch nosrc) * kernel-docs-5.14.21-150400.24.128.1 * openSUSE Leap 15.4 (noarch) * kernel-source-5.14.21-150400.24.128.1 * kernel-devel-5.14.21-150400.24.128.1 * kernel-source-vanilla-5.14.21-150400.24.128.1 * kernel-macros-5.14.21-150400.24.128.1 * kernel-docs-html-5.14.21-150400.24.128.1 * openSUSE Leap 15.4 (nosrc ppc64le x86_64) * kernel-debug-5.14.21-150400.24.128.1 * openSUSE Leap 15.4 (ppc64le x86_64) * kernel-debug-debuginfo-5.14.21-150400.24.128.1 * kernel-debug-livepatch-devel-5.14.21-150400.24.128.1 * kernel-debug-debugsource-5.14.21-150400.24.128.1 * kernel-debug-devel-debuginfo-5.14.21-150400.24.128.1 * kernel-debug-devel-5.14.21-150400.24.128.1 * openSUSE Leap 15.4 (aarch64 ppc64le x86_64) * kernel-kvmsmall-debuginfo-5.14.21-150400.24.128.1 * kernel-kvmsmall-devel-5.14.21-150400.24.128.1 * kernel-kvmsmall-devel-debuginfo-5.14.21-150400.24.128.1 * kernel-default-base-5.14.21-150400.24.128.1.150400.24.62.1 * kernel-kvmsmall-livepatch-devel-5.14.21-150400.24.128.1 * kernel-default-base-rebuild-5.14.21-150400.24.128.1.150400.24.62.1 * kernel-kvmsmall-debugsource-5.14.21-150400.24.128.1 * openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64) * reiserfs-kmp-default-debuginfo-5.14.21-150400.24.128.1 * cluster-md-kmp-default-debuginfo-5.14.21-150400.24.128.1 * kselftests-kmp-default-5.14.21-150400.24.128.1 * kernel-syms-5.14.21-150400.24.128.1 * cluster-md-kmp-default-5.14.21-150400.24.128.1 * dlm-kmp-default-5.14.21-150400.24.128.1 * kernel-obs-build-debugsource-5.14.21-150400.24.128.1 * kernel-default-livepatch-5.14.21-150400.24.128.1 * kselftests-kmp-default-debuginfo-5.14.21-150400.24.128.1 * kernel-default-devel-5.14.21-150400.24.128.1 * kernel-default-extra-5.14.21-150400.24.128.1 * kernel-default-debugsource-5.14.21-150400.24.128.1 * ocfs2-kmp-default-debuginfo-5.14.21-150400.24.128.1 * kernel-default-devel-debuginfo-5.14.21-150400.24.128.1 * gfs2-kmp-default-5.14.21-150400.24.128.1 * kernel-default-extra-debuginfo-5.14.21-150400.24.128.1 * kernel-default-optional-5.14.21-150400.24.128.1 * kernel-default-optional-debuginfo-5.14.21-150400.24.128.1 * ocfs2-kmp-default-5.14.21-150400.24.128.1 * gfs2-kmp-default-debuginfo-5.14.21-150400.24.128.1 * kernel-default-debuginfo-5.14.21-150400.24.128.1 * kernel-obs-build-5.14.21-150400.24.128.1 * kernel-default-livepatch-devel-5.14.21-150400.24.128.1 * kernel-obs-qa-5.14.21-150400.24.128.1 * reiserfs-kmp-default-5.14.21-150400.24.128.1 * dlm-kmp-default-debuginfo-5.14.21-150400.24.128.1 * openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 nosrc) * kernel-default-5.14.21-150400.24.128.1 * openSUSE Leap 15.4 (aarch64 nosrc ppc64le x86_64) * kernel-kvmsmall-5.14.21-150400.24.128.1 * openSUSE Leap 15.4 (ppc64le s390x x86_64) * kernel-livepatch-5_14_21-150400_24_128-default-debuginfo-1-150400.9.3.1 * kernel-livepatch-SLE15-SP4_Update_29-debugsource-1-150400.9.3.1 * kernel-livepatch-5_14_21-150400_24_128-default-1-150400.9.3.1 * openSUSE Leap 15.4 (nosrc s390x) * kernel-zfcpdump-5.14.21-150400.24.128.1 * openSUSE Leap 15.4 (s390x) * kernel-zfcpdump-debugsource-5.14.21-150400.24.128.1 * kernel-zfcpdump-debuginfo-5.14.21-150400.24.128.1 * openSUSE Leap 15.4 (nosrc) * dtb-aarch64-5.14.21-150400.24.128.1 * openSUSE Leap 15.4 (aarch64) * dtb-lg-5.14.21-150400.24.128.1 * kernel-64kb-devel-debuginfo-5.14.21-150400.24.128.1 * dtb-amd-5.14.21-150400.24.128.1 * ocfs2-kmp-64kb-5.14.21-150400.24.128.1 * gfs2-kmp-64kb-debuginfo-5.14.21-150400.24.128.1 * kselftests-kmp-64kb-debuginfo-5.14.21-150400.24.128.1 * ocfs2-kmp-64kb-debuginfo-5.14.21-150400.24.128.1 * dtb-exynos-5.14.21-150400.24.128.1 * dtb-apple-5.14.21-150400.24.128.1 * reiserfs-kmp-64kb-debuginfo-5.14.21-150400.24.128.1 * dtb-cavium-5.14.21-150400.24.128.1 * kernel-64kb-debugsource-5.14.21-150400.24.128.1 * kernel-64kb-devel-5.14.21-150400.24.128.1 * kernel-64kb-extra-debuginfo-5.14.21-150400.24.128.1 * dtb-allwinner-5.14.21-150400.24.128.1 * kernel-64kb-optional-5.14.21-150400.24.128.1 * dlm-kmp-64kb-debuginfo-5.14.21-150400.24.128.1 * reiserfs-kmp-64kb-5.14.21-150400.24.128.1 * dtb-freescale-5.14.21-150400.24.128.1 * kernel-64kb-extra-5.14.21-150400.24.128.1 * dtb-altera-5.14.21-150400.24.128.1 * dtb-mediatek-5.14.21-150400.24.128.1 * dtb-arm-5.14.21-150400.24.128.1 * cluster-md-kmp-64kb-debuginfo-5.14.21-150400.24.128.1 * dtb-amlogic-5.14.21-150400.24.128.1 * dtb-renesas-5.14.21-150400.24.128.1 * dtb-hisilicon-5.14.21-150400.24.128.1 * cluster-md-kmp-64kb-5.14.21-150400.24.128.1 * kselftests-kmp-64kb-5.14.21-150400.24.128.1 * dtb-apm-5.14.21-150400.24.128.1 * kernel-64kb-optional-debuginfo-5.14.21-150400.24.128.1 * dtb-rockchip-5.14.21-150400.24.128.1 * gfs2-kmp-64kb-5.14.21-150400.24.128.1 * dlm-kmp-64kb-5.14.21-150400.24.128.1 * dtb-broadcom-5.14.21-150400.24.128.1 * dtb-marvell-5.14.21-150400.24.128.1 * dtb-sprd-5.14.21-150400.24.128.1 * dtb-qcom-5.14.21-150400.24.128.1 * kernel-64kb-livepatch-devel-5.14.21-150400.24.128.1 * kernel-64kb-debuginfo-5.14.21-150400.24.128.1 * dtb-nvidia-5.14.21-150400.24.128.1 * dtb-xilinx-5.14.21-150400.24.128.1 * dtb-socionext-5.14.21-150400.24.128.1 * dtb-amazon-5.14.21-150400.24.128.1 * openSUSE Leap 15.4 (aarch64 nosrc) * kernel-64kb-5.14.21-150400.24.128.1 * SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 nosrc s390x x86_64) * kernel-default-5.14.21-150400.24.128.1 * SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 x86_64) * kernel-default-base-5.14.21-150400.24.128.1.150400.24.62.1 * SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 s390x x86_64) * kernel-default-debugsource-5.14.21-150400.24.128.1 * kernel-default-debuginfo-5.14.21-150400.24.128.1 * SUSE Linux Enterprise Micro 5.3 (aarch64 nosrc s390x x86_64) * kernel-default-5.14.21-150400.24.128.1 * SUSE Linux Enterprise Micro 5.3 (aarch64 x86_64) * kernel-default-base-5.14.21-150400.24.128.1.150400.24.62.1 * SUSE Linux Enterprise Micro 5.3 (aarch64 s390x x86_64) * kernel-default-debugsource-5.14.21-150400.24.128.1 * kernel-default-debuginfo-5.14.21-150400.24.128.1 * SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 nosrc s390x x86_64) * kernel-default-5.14.21-150400.24.128.1 * SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 x86_64) * kernel-default-base-5.14.21-150400.24.128.1.150400.24.62.1 * SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 s390x x86_64) * kernel-default-debugsource-5.14.21-150400.24.128.1 * kernel-default-debuginfo-5.14.21-150400.24.128.1 * SUSE Linux Enterprise Micro 5.4 (aarch64 nosrc s390x x86_64) * kernel-default-5.14.21-150400.24.128.1 * SUSE Linux Enterprise Micro 5.4 (aarch64 x86_64) * kernel-default-base-5.14.21-150400.24.128.1.150400.24.62.1 * SUSE Linux Enterprise Micro 5.4 (aarch64 s390x x86_64) * kernel-default-debugsource-5.14.21-150400.24.128.1 * kernel-default-debuginfo-5.14.21-150400.24.128.1 * SUSE Linux Enterprise Live Patching 15-SP4 (nosrc) * kernel-default-5.14.21-150400.24.128.1 * SUSE Linux Enterprise Live Patching 15-SP4 (ppc64le s390x x86_64) * kernel-livepatch-SLE15-SP4_Update_29-debugsource-1-150400.9.3.1 * kernel-livepatch-5_14_21-150400_24_128-default-1-150400.9.3.1 * kernel-default-livepatch-devel-5.14.21-150400.24.128.1 * kernel-livepatch-5_14_21-150400_24_128-default-debuginfo-1-150400.9.3.1 * kernel-default-livepatch-5.14.21-150400.24.128.1 * kernel-default-debuginfo-5.14.21-150400.24.128.1 * kernel-default-debugsource-5.14.21-150400.24.128.1 ## References: * https://www.suse.com/security/cve/CVE-2021-4439.html * https://www.suse.com/security/cve/CVE-2021-47534.html * https://www.suse.com/security/cve/CVE-2021-47576.html * https://www.suse.com/security/cve/CVE-2021-47578.html * https://www.suse.com/security/cve/CVE-2021-47580.html * https://www.suse.com/security/cve/CVE-2021-47582.html * https://www.suse.com/security/cve/CVE-2021-47583.html * https://www.suse.com/security/cve/CVE-2021-47584.html * https://www.suse.com/security/cve/CVE-2021-47585.html * https://www.suse.com/security/cve/CVE-2021-47586.html * https://www.suse.com/security/cve/CVE-2021-47587.html * https://www.suse.com/security/cve/CVE-2021-47589.html * https://www.suse.com/security/cve/CVE-2021-47592.html * https://www.suse.com/security/cve/CVE-2021-47596.html * https://www.suse.com/security/cve/CVE-2021-47597.html * https://www.suse.com/security/cve/CVE-2021-47598.html * https://www.suse.com/security/cve/CVE-2021-47600.html * https://www.suse.com/security/cve/CVE-2021-47601.html * https://www.suse.com/security/cve/CVE-2021-47602.html * https://www.suse.com/security/cve/CVE-2021-47603.html * https://www.suse.com/security/cve/CVE-2021-47607.html * https://www.suse.com/security/cve/CVE-2021-47608.html * https://www.suse.com/security/cve/CVE-2021-47609.html * https://www.suse.com/security/cve/CVE-2021-47611.html * https://www.suse.com/security/cve/CVE-2021-47612.html * https://www.suse.com/security/cve/CVE-2021-47614.html * https://www.suse.com/security/cve/CVE-2021-47615.html * https://www.suse.com/security/cve/CVE-2021-47616.html * https://www.suse.com/security/cve/CVE-2021-47617.html * https://www.suse.com/security/cve/CVE-2021-47618.html * https://www.suse.com/security/cve/CVE-2021-47619.html * https://www.suse.com/security/cve/CVE-2021-47620.html * https://www.suse.com/security/cve/CVE-2021-47622.html * https://www.suse.com/security/cve/CVE-2021-47624.html * https://www.suse.com/security/cve/CVE-2022-0854.html * https://www.suse.com/security/cve/CVE-2022-20368.html * https://www.suse.com/security/cve/CVE-2022-28748.html * https://www.suse.com/security/cve/CVE-2022-2964.html * https://www.suse.com/security/cve/CVE-2022-48711.html * https://www.suse.com/security/cve/CVE-2022-48712.html * https://www.suse.com/security/cve/CVE-2022-48713.html * https://www.suse.com/security/cve/CVE-2022-48715.html * https://www.suse.com/security/cve/CVE-2022-48717.html * https://www.suse.com/security/cve/CVE-2022-48720.html * https://www.suse.com/security/cve/CVE-2022-48721.html * https://www.suse.com/security/cve/CVE-2022-48722.html * https://www.suse.com/security/cve/CVE-2022-48723.html * https://www.suse.com/security/cve/CVE-2022-48724.html * https://www.suse.com/security/cve/CVE-2022-48725.html * https://www.suse.com/security/cve/CVE-2022-48726.html * https://www.suse.com/security/cve/CVE-2022-48727.html * https://www.suse.com/security/cve/CVE-2022-48728.html * https://www.suse.com/security/cve/CVE-2022-48729.html * https://www.suse.com/security/cve/CVE-2022-48730.html * https://www.suse.com/security/cve/CVE-2022-48732.html * https://www.suse.com/security/cve/CVE-2022-48734.html * https://www.suse.com/security/cve/CVE-2022-48735.html * https://www.suse.com/security/cve/CVE-2022-48736.html * https://www.suse.com/security/cve/CVE-2022-48737.html * https://www.suse.com/security/cve/CVE-2022-48738.html * https://www.suse.com/security/cve/CVE-2022-48739.html * https://www.suse.com/security/cve/CVE-2022-48740.html * https://www.suse.com/security/cve/CVE-2022-48743.html * https://www.suse.com/security/cve/CVE-2022-48744.html * https://www.suse.com/security/cve/CVE-2022-48745.html * https://www.suse.com/security/cve/CVE-2022-48746.html * https://www.suse.com/security/cve/CVE-2022-48747.html * https://www.suse.com/security/cve/CVE-2022-48749.html * https://www.suse.com/security/cve/CVE-2022-48751.html * https://www.suse.com/security/cve/CVE-2022-48752.html * https://www.suse.com/security/cve/CVE-2022-48754.html * https://www.suse.com/security/cve/CVE-2022-48756.html * https://www.suse.com/security/cve/CVE-2022-48758.html * https://www.suse.com/security/cve/CVE-2022-48759.html * https://www.suse.com/security/cve/CVE-2022-48760.html * https://www.suse.com/security/cve/CVE-2022-48761.html * https://www.suse.com/security/cve/CVE-2022-48763.html * https://www.suse.com/security/cve/CVE-2022-48765.html * https://www.suse.com/security/cve/CVE-2022-48767.html * https://www.suse.com/security/cve/CVE-2022-48768.html * https://www.suse.com/security/cve/CVE-2022-48769.html * https://www.suse.com/security/cve/CVE-2022-48771.html * https://www.suse.com/security/cve/CVE-2022-48773.html * https://www.suse.com/security/cve/CVE-2022-48774.html * https://www.suse.com/security/cve/CVE-2022-48775.html * https://www.suse.com/security/cve/CVE-2022-48776.html * https://www.suse.com/security/cve/CVE-2022-48777.html * https://www.suse.com/security/cve/CVE-2022-48778.html * https://www.suse.com/security/cve/CVE-2022-48780.html * https://www.suse.com/security/cve/CVE-2022-48783.html * https://www.suse.com/security/cve/CVE-2022-48784.html * https://www.suse.com/security/cve/CVE-2022-48786.html * https://www.suse.com/security/cve/CVE-2022-48787.html * https://www.suse.com/security/cve/CVE-2022-48788.html * https://www.suse.com/security/cve/CVE-2022-48789.html * https://www.suse.com/security/cve/CVE-2022-48790.html * https://www.suse.com/security/cve/CVE-2022-48791.html * https://www.suse.com/security/cve/CVE-2022-48792.html * https://www.suse.com/security/cve/CVE-2022-48793.html * https://www.suse.com/security/cve/CVE-2022-48794.html * https://www.suse.com/security/cve/CVE-2022-48796.html * https://www.suse.com/security/cve/CVE-2022-48797.html * https://www.suse.com/security/cve/CVE-2022-48798.html * https://www.suse.com/security/cve/CVE-2022-48799.html * https://www.suse.com/security/cve/CVE-2022-48800.html * https://www.suse.com/security/cve/CVE-2022-48801.html * https://www.suse.com/security/cve/CVE-2022-48802.html * https://www.suse.com/security/cve/CVE-2022-48803.html * https://www.suse.com/security/cve/CVE-2022-48804.html * https://www.suse.com/security/cve/CVE-2022-48805.html * https://www.suse.com/security/cve/CVE-2022-48806.html * https://www.suse.com/security/cve/CVE-2022-48807.html * https://www.suse.com/security/cve/CVE-2022-48811.html * https://www.suse.com/security/cve/CVE-2022-48812.html * https://www.suse.com/security/cve/CVE-2022-48813.html * https://www.suse.com/security/cve/CVE-2022-48814.html * https://www.suse.com/security/cve/CVE-2022-48815.html * https://www.suse.com/security/cve/CVE-2022-48816.html * https://www.suse.com/security/cve/CVE-2022-48817.html * https://www.suse.com/security/cve/CVE-2022-48818.html * https://www.suse.com/security/cve/CVE-2022-48820.html * https://www.suse.com/security/cve/CVE-2022-48821.html * https://www.suse.com/security/cve/CVE-2022-48822.html * https://www.suse.com/security/cve/CVE-2022-48823.html * https://www.suse.com/security/cve/CVE-2022-48824.html * https://www.suse.com/security/cve/CVE-2022-48825.html * https://www.suse.com/security/cve/CVE-2022-48826.html * https://www.suse.com/security/cve/CVE-2022-48827.html * https://www.suse.com/security/cve/CVE-2022-48828.html * https://www.suse.com/security/cve/CVE-2022-48829.html * https://www.suse.com/security/cve/CVE-2022-48830.html * https://www.suse.com/security/cve/CVE-2022-48831.html * https://www.suse.com/security/cve/CVE-2022-48834.html * https://www.suse.com/security/cve/CVE-2022-48835.html * https://www.suse.com/security/cve/CVE-2022-48836.html * https://www.suse.com/security/cve/CVE-2022-48837.html * https://www.suse.com/security/cve/CVE-2022-48838.html * https://www.suse.com/security/cve/CVE-2022-48839.html * https://www.suse.com/security/cve/CVE-2022-48840.html * https://www.suse.com/security/cve/CVE-2022-48841.html * https://www.suse.com/security/cve/CVE-2022-48842.html * https://www.suse.com/security/cve/CVE-2022-48843.html * https://www.suse.com/security/cve/CVE-2022-48847.html * https://www.suse.com/security/cve/CVE-2022-48849.html * https://www.suse.com/security/cve/CVE-2022-48851.html * https://www.suse.com/security/cve/CVE-2022-48853.html * https://www.suse.com/security/cve/CVE-2022-48856.html * https://www.suse.com/security/cve/CVE-2022-48857.html * https://www.suse.com/security/cve/CVE-2022-48858.html * https://www.suse.com/security/cve/CVE-2022-48859.html * https://www.suse.com/security/cve/CVE-2022-48860.html * https://www.suse.com/security/cve/CVE-2022-48861.html * https://www.suse.com/security/cve/CVE-2022-48862.html * https://www.suse.com/security/cve/CVE-2022-48863.html * https://www.suse.com/security/cve/CVE-2022-48866.html * https://www.suse.com/security/cve/CVE-2023-1582.html * https://www.suse.com/security/cve/CVE-2023-37453.html * https://www.suse.com/security/cve/CVE-2023-52591.html * https://www.suse.com/security/cve/CVE-2023-52762.html * https://www.suse.com/security/cve/CVE-2023-52766.html * https://www.suse.com/security/cve/CVE-2023-52800.html * https://www.suse.com/security/cve/CVE-2023-52885.html * https://www.suse.com/security/cve/CVE-2023-52886.html * https://www.suse.com/security/cve/CVE-2024-26583.html * https://www.suse.com/security/cve/CVE-2024-26584.html * https://www.suse.com/security/cve/CVE-2024-26585.html * https://www.suse.com/security/cve/CVE-2024-26800.html * https://www.suse.com/security/cve/CVE-2024-26813.html * https://www.suse.com/security/cve/CVE-2024-26814.html * https://www.suse.com/security/cve/CVE-2024-26976.html * https://www.suse.com/security/cve/CVE-2024-35878.html * https://www.suse.com/security/cve/CVE-2024-35901.html * https://www.suse.com/security/cve/CVE-2024-35905.html * https://www.suse.com/security/cve/CVE-2024-36926.html * https://www.suse.com/security/cve/CVE-2024-36974.html * https://www.suse.com/security/cve/CVE-2024-38541.html * https://www.suse.com/security/cve/CVE-2024-38555.html * https://www.suse.com/security/cve/CVE-2024-38559.html * https://www.suse.com/security/cve/CVE-2024-39463.html * https://www.suse.com/security/cve/CVE-2024-39494.html * https://www.suse.com/security/cve/CVE-2024-40902.html * https://www.suse.com/security/cve/CVE-2024-40937.html * https://www.suse.com/security/cve/CVE-2024-40954.html * https://www.suse.com/security/cve/CVE-2024-40956.html * https://www.suse.com/security/cve/CVE-2024-40989.html * https://www.suse.com/security/cve/CVE-2024-40994.html * https://www.suse.com/security/cve/CVE-2024-41011.html * https://www.suse.com/security/cve/CVE-2024-41012.html * https://www.suse.com/security/cve/CVE-2024-41059.html * https://www.suse.com/security/cve/CVE-2024-41069.html * https://www.suse.com/security/cve/CVE-2024-41090.html * https://www.suse.com/security/cve/CVE-2024-42093.html * https://www.suse.com/security/cve/CVE-2024-42145.html * https://www.suse.com/security/cve/CVE-2024-42230.html * https://bugzilla.suse.com/show_bug.cgi?id=1156395 * https://bugzilla.suse.com/show_bug.cgi?id=1190336 * https://bugzilla.suse.com/show_bug.cgi?id=1191958 * https://bugzilla.suse.com/show_bug.cgi?id=1193454 * https://bugzilla.suse.com/show_bug.cgi?id=1193554 * https://bugzilla.suse.com/show_bug.cgi?id=1193787 * https://bugzilla.suse.com/show_bug.cgi?id=1193883 * https://bugzilla.suse.com/show_bug.cgi?id=1194324 * https://bugzilla.suse.com/show_bug.cgi?id=1194826 * https://bugzilla.suse.com/show_bug.cgi?id=1194869 * https://bugzilla.suse.com/show_bug.cgi?id=1195065 * https://bugzilla.suse.com/show_bug.cgi?id=1195254 * https://bugzilla.suse.com/show_bug.cgi?id=1195341 * https://bugzilla.suse.com/show_bug.cgi?id=1195349 * https://bugzilla.suse.com/show_bug.cgi?id=1195357 * https://bugzilla.suse.com/show_bug.cgi?id=1195668 * https://bugzilla.suse.com/show_bug.cgi?id=1195927 * https://bugzilla.suse.com/show_bug.cgi?id=1195957 * https://bugzilla.suse.com/show_bug.cgi?id=1196018 * https://bugzilla.suse.com/show_bug.cgi?id=1196746 * https://bugzilla.suse.com/show_bug.cgi?id=1196823 * https://bugzilla.suse.com/show_bug.cgi?id=1197146 * https://bugzilla.suse.com/show_bug.cgi?id=1197246 * https://bugzilla.suse.com/show_bug.cgi?id=1197762 * https://bugzilla.suse.com/show_bug.cgi?id=1197915 * https://bugzilla.suse.com/show_bug.cgi?id=1198014 * https://bugzilla.suse.com/show_bug.cgi?id=1199295 * https://bugzilla.suse.com/show_bug.cgi?id=1202346 * https://bugzilla.suse.com/show_bug.cgi?id=1202686 * https://bugzilla.suse.com/show_bug.cgi?id=1202767 * https://bugzilla.suse.com/show_bug.cgi?id=1202780 * https://bugzilla.suse.com/show_bug.cgi?id=1209636 * https://bugzilla.suse.com/show_bug.cgi?id=1213123 * https://bugzilla.suse.com/show_bug.cgi?id=1215587 * https://bugzilla.suse.com/show_bug.cgi?id=1216834 * https://bugzilla.suse.com/show_bug.cgi?id=1218820 * https://bugzilla.suse.com/show_bug.cgi?id=1220185 * https://bugzilla.suse.com/show_bug.cgi?id=1220186 * https://bugzilla.suse.com/show_bug.cgi?id=1220187 * https://bugzilla.suse.com/show_bug.cgi?id=1221044 * https://bugzilla.suse.com/show_bug.cgi?id=1222011 * https://bugzilla.suse.com/show_bug.cgi?id=1222728 * https://bugzilla.suse.com/show_bug.cgi?id=1222809 * https://bugzilla.suse.com/show_bug.cgi?id=1222810 * https://bugzilla.suse.com/show_bug.cgi?id=1223635 * https://bugzilla.suse.com/show_bug.cgi?id=1223863 * https://bugzilla.suse.com/show_bug.cgi?id=1224488 * https://bugzilla.suse.com/show_bug.cgi?id=1224495 * https://bugzilla.suse.com/show_bug.cgi?id=1224671 * https://bugzilla.suse.com/show_bug.cgi?id=1225573 * https://bugzilla.suse.com/show_bug.cgi?id=1225829 * https://bugzilla.suse.com/show_bug.cgi?id=1226168 * https://bugzilla.suse.com/show_bug.cgi?id=1226226 * https://bugzilla.suse.com/show_bug.cgi?id=1226519 * https://bugzilla.suse.com/show_bug.cgi?id=1226537 * https://bugzilla.suse.com/show_bug.cgi?id=1226539 * https://bugzilla.suse.com/show_bug.cgi?id=1226550 * https://bugzilla.suse.com/show_bug.cgi?id=1226553 * https://bugzilla.suse.com/show_bug.cgi?id=1226554 * https://bugzilla.suse.com/show_bug.cgi?id=1226556 * https://bugzilla.suse.com/show_bug.cgi?id=1226557 * https://bugzilla.suse.com/show_bug.cgi?id=1226558 * https://bugzilla.suse.com/show_bug.cgi?id=1226559 * https://bugzilla.suse.com/show_bug.cgi?id=1226561 * https://bugzilla.suse.com/show_bug.cgi?id=1226562 * https://bugzilla.suse.com/show_bug.cgi?id=1226563 * https://bugzilla.suse.com/show_bug.cgi?id=1226564 * https://bugzilla.suse.com/show_bug.cgi?id=1226567 * https://bugzilla.suse.com/show_bug.cgi?id=1226569 * https://bugzilla.suse.com/show_bug.cgi?id=1226572 * https://bugzilla.suse.com/show_bug.cgi?id=1226574 * https://bugzilla.suse.com/show_bug.cgi?id=1226575 * https://bugzilla.suse.com/show_bug.cgi?id=1226576 * https://bugzilla.suse.com/show_bug.cgi?id=1226577 * https://bugzilla.suse.com/show_bug.cgi?id=1226580 * https://bugzilla.suse.com/show_bug.cgi?id=1226583 * https://bugzilla.suse.com/show_bug.cgi?id=1226585 * https://bugzilla.suse.com/show_bug.cgi?id=1226587 * https://bugzilla.suse.com/show_bug.cgi?id=1226601 * https://bugzilla.suse.com/show_bug.cgi?id=1226602 * https://bugzilla.suse.com/show_bug.cgi?id=1226603 * https://bugzilla.suse.com/show_bug.cgi?id=1226607 * https://bugzilla.suse.com/show_bug.cgi?id=1226614 * https://bugzilla.suse.com/show_bug.cgi?id=1226617 * https://bugzilla.suse.com/show_bug.cgi?id=1226618 * https://bugzilla.suse.com/show_bug.cgi?id=1226619 * https://bugzilla.suse.com/show_bug.cgi?id=1226621 * https://bugzilla.suse.com/show_bug.cgi?id=1226624 * https://bugzilla.suse.com/show_bug.cgi?id=1226626 * https://bugzilla.suse.com/show_bug.cgi?id=1226628 * https://bugzilla.suse.com/show_bug.cgi?id=1226629 * https://bugzilla.suse.com/show_bug.cgi?id=1226643 * https://bugzilla.suse.com/show_bug.cgi?id=1226644 * https://bugzilla.suse.com/show_bug.cgi?id=1226645 * https://bugzilla.suse.com/show_bug.cgi?id=1226650 * https://bugzilla.suse.com/show_bug.cgi?id=1226653 * https://bugzilla.suse.com/show_bug.cgi?id=1226662 * https://bugzilla.suse.com/show_bug.cgi?id=1226669 * https://bugzilla.suse.com/show_bug.cgi?id=1226670 * https://bugzilla.suse.com/show_bug.cgi?id=1226672 * https://bugzilla.suse.com/show_bug.cgi?id=1226673 * https://bugzilla.suse.com/show_bug.cgi?id=1226674 * https://bugzilla.suse.com/show_bug.cgi?id=1226675 * https://bugzilla.suse.com/show_bug.cgi?id=1226679 * https://bugzilla.suse.com/show_bug.cgi?id=1226683 * https://bugzilla.suse.com/show_bug.cgi?id=1226685 * https://bugzilla.suse.com/show_bug.cgi?id=1226686 * https://bugzilla.suse.com/show_bug.cgi?id=1226690 * https://bugzilla.suse.com/show_bug.cgi?id=1226691 * https://bugzilla.suse.com/show_bug.cgi?id=1226692 * https://bugzilla.suse.com/show_bug.cgi?id=1226696 * https://bugzilla.suse.com/show_bug.cgi?id=1226697 * https://bugzilla.suse.com/show_bug.cgi?id=1226698 * https://bugzilla.suse.com/show_bug.cgi?id=1226699 * https://bugzilla.suse.com/show_bug.cgi?id=1226701 * https://bugzilla.suse.com/show_bug.cgi?id=1226702 * https://bugzilla.suse.com/show_bug.cgi?id=1226703 * https://bugzilla.suse.com/show_bug.cgi?id=1226705 * https://bugzilla.suse.com/show_bug.cgi?id=1226708 * https://bugzilla.suse.com/show_bug.cgi?id=1226709 * https://bugzilla.suse.com/show_bug.cgi?id=1226710 * https://bugzilla.suse.com/show_bug.cgi?id=1226711 * https://bugzilla.suse.com/show_bug.cgi?id=1226712 * https://bugzilla.suse.com/show_bug.cgi?id=1226713 * https://bugzilla.suse.com/show_bug.cgi?id=1226715 * https://bugzilla.suse.com/show_bug.cgi?id=1226716 * https://bugzilla.suse.com/show_bug.cgi?id=1226719 * https://bugzilla.suse.com/show_bug.cgi?id=1226720 * https://bugzilla.suse.com/show_bug.cgi?id=1226721 * https://bugzilla.suse.com/show_bug.cgi?id=1226732 * https://bugzilla.suse.com/show_bug.cgi?id=1226758 * https://bugzilla.suse.com/show_bug.cgi?id=1226762 * https://bugzilla.suse.com/show_bug.cgi?id=1226785 * https://bugzilla.suse.com/show_bug.cgi?id=1227090 * https://bugzilla.suse.com/show_bug.cgi?id=1227383 * https://bugzilla.suse.com/show_bug.cgi?id=1227487 * https://bugzilla.suse.com/show_bug.cgi?id=1227549 * https://bugzilla.suse.com/show_bug.cgi?id=1227716 * https://bugzilla.suse.com/show_bug.cgi?id=1227750 * https://bugzilla.suse.com/show_bug.cgi?id=1227764 * https://bugzilla.suse.com/show_bug.cgi?id=1227808 * https://bugzilla.suse.com/show_bug.cgi?id=1227810 * https://bugzilla.suse.com/show_bug.cgi?id=1227823 * https://bugzilla.suse.com/show_bug.cgi?id=1227829 * https://bugzilla.suse.com/show_bug.cgi?id=1227836 * https://bugzilla.suse.com/show_bug.cgi?id=1227917 * https://bugzilla.suse.com/show_bug.cgi?id=1227920 * https://bugzilla.suse.com/show_bug.cgi?id=1227921 * https://bugzilla.suse.com/show_bug.cgi?id=1227922 * https://bugzilla.suse.com/show_bug.cgi?id=1227923 * https://bugzilla.suse.com/show_bug.cgi?id=1227924 * https://bugzilla.suse.com/show_bug.cgi?id=1227925 * https://bugzilla.suse.com/show_bug.cgi?id=1227928 * https://bugzilla.suse.com/show_bug.cgi?id=1227931 * https://bugzilla.suse.com/show_bug.cgi?id=1227932 * https://bugzilla.suse.com/show_bug.cgi?id=1227933 * https://bugzilla.suse.com/show_bug.cgi?id=1227935 * https://bugzilla.suse.com/show_bug.cgi?id=1227938 * https://bugzilla.suse.com/show_bug.cgi?id=1227941 * https://bugzilla.suse.com/show_bug.cgi?id=1227942 * https://bugzilla.suse.com/show_bug.cgi?id=1227944 * https://bugzilla.suse.com/show_bug.cgi?id=1227945 * https://bugzilla.suse.com/show_bug.cgi?id=1227948 * https://bugzilla.suse.com/show_bug.cgi?id=1227949 * https://bugzilla.suse.com/show_bug.cgi?id=1227952 * https://bugzilla.suse.com/show_bug.cgi?id=1227953 * https://bugzilla.suse.com/show_bug.cgi?id=1227954 * https://bugzilla.suse.com/show_bug.cgi?id=1227956 * https://bugzilla.suse.com/show_bug.cgi?id=1227963 * https://bugzilla.suse.com/show_bug.cgi?id=1227964 * https://bugzilla.suse.com/show_bug.cgi?id=1227965 * https://bugzilla.suse.com/show_bug.cgi?id=1227968 * https://bugzilla.suse.com/show_bug.cgi?id=1227969 * https://bugzilla.suse.com/show_bug.cgi?id=1227970 * https://bugzilla.suse.com/show_bug.cgi?id=1227971 * https://bugzilla.suse.com/show_bug.cgi?id=1227972 * https://bugzilla.suse.com/show_bug.cgi?id=1227975 * https://bugzilla.suse.com/show_bug.cgi?id=1227976 * https://bugzilla.suse.com/show_bug.cgi?id=1227981 * https://bugzilla.suse.com/show_bug.cgi?id=1227982 * https://bugzilla.suse.com/show_bug.cgi?id=1227985 * https://bugzilla.suse.com/show_bug.cgi?id=1227986 * https://bugzilla.suse.com/show_bug.cgi?id=1227987 * https://bugzilla.suse.com/show_bug.cgi?id=1227988 * https://bugzilla.suse.com/show_bug.cgi?id=1227989 * https://bugzilla.suse.com/show_bug.cgi?id=1227990 * https://bugzilla.suse.com/show_bug.cgi?id=1227991 * https://bugzilla.suse.com/show_bug.cgi?id=1227993 * https://bugzilla.suse.com/show_bug.cgi?id=1227995 * https://bugzilla.suse.com/show_bug.cgi?id=1227996 * https://bugzilla.suse.com/show_bug.cgi?id=1227997 * https://bugzilla.suse.com/show_bug.cgi?id=1228000 * https://bugzilla.suse.com/show_bug.cgi?id=1228002 * https://bugzilla.suse.com/show_bug.cgi?id=1228004 * https://bugzilla.suse.com/show_bug.cgi?id=1228005 * https://bugzilla.suse.com/show_bug.cgi?id=1228006 * https://bugzilla.suse.com/show_bug.cgi?id=1228007 * https://bugzilla.suse.com/show_bug.cgi?id=1228008 * https://bugzilla.suse.com/show_bug.cgi?id=1228009 * https://bugzilla.suse.com/show_bug.cgi?id=1228010 * https://bugzilla.suse.com/show_bug.cgi?id=1228013 * https://bugzilla.suse.com/show_bug.cgi?id=1228014 * https://bugzilla.suse.com/show_bug.cgi?id=1228015 * https://bugzilla.suse.com/show_bug.cgi?id=1228019 * https://bugzilla.suse.com/show_bug.cgi?id=1228025 * https://bugzilla.suse.com/show_bug.cgi?id=1228028 * https://bugzilla.suse.com/show_bug.cgi?id=1228035 * https://bugzilla.suse.com/show_bug.cgi?id=1228037 * https://bugzilla.suse.com/show_bug.cgi?id=1228038 * https://bugzilla.suse.com/show_bug.cgi?id=1228039 * https://bugzilla.suse.com/show_bug.cgi?id=1228040 * https://bugzilla.suse.com/show_bug.cgi?id=1228045 * https://bugzilla.suse.com/show_bug.cgi?id=1228054 * https://bugzilla.suse.com/show_bug.cgi?id=1228055 * https://bugzilla.suse.com/show_bug.cgi?id=1228056 * https://bugzilla.suse.com/show_bug.cgi?id=1228060 * https://bugzilla.suse.com/show_bug.cgi?id=1228061 * https://bugzilla.suse.com/show_bug.cgi?id=1228062 * https://bugzilla.suse.com/show_bug.cgi?id=1228063 * https://bugzilla.suse.com/show_bug.cgi?id=1228064 * https://bugzilla.suse.com/show_bug.cgi?id=1228066 * https://bugzilla.suse.com/show_bug.cgi?id=1228114 * https://bugzilla.suse.com/show_bug.cgi?id=1228247 * https://bugzilla.suse.com/show_bug.cgi?id=1228328 * https://bugzilla.suse.com/show_bug.cgi?id=1228440 * https://bugzilla.suse.com/show_bug.cgi?id=1228561 * https://bugzilla.suse.com/show_bug.cgi?id=1228644 * https://bugzilla.suse.com/show_bug.cgi?id=1228680 * https://bugzilla.suse.com/show_bug.cgi?id=1228743 * https://bugzilla.suse.com/show_bug.cgi?id=1228801 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Thu Aug 15 16:30:06 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Thu, 15 Aug 2024 16:30:06 -0000 Subject: SUSE-SU-2024:2938-1: moderate: Security update for curl Message-ID: <172373940624.12336.7862643467106253412@smelt2.prg2.suse.org> # Security update for curl Announcement ID: SUSE-SU-2024:2938-1 Rating: moderate References: * bsc#1228535 Cross-References: * CVE-2024-7264 CVSS scores: * CVE-2024-7264 ( SUSE ): 4.8 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:L * CVE-2024-7264 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H Affected Products: * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 * SUSE Linux Enterprise Software Development Kit 12 SP5 An update that solves one vulnerability can now be installed. ## Description: This update for curl fixes the following issues: * CVE-2024-7264: Fixed out-of-bounds read in ASN.1 date parser GTime2str() (bsc#1228535) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Software Development Kit 12 SP5 zypper in -t patch SUSE-SLE-SDK-12-SP5-2024-2938=1 * SUSE Linux Enterprise High Performance Computing 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-2938=1 * SUSE Linux Enterprise Server 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-2938=1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-2938=1 ## Package List: * SUSE Linux Enterprise Software Development Kit 12 SP5 (aarch64 ppc64le s390x x86_64) * curl-debuginfo-8.0.1-11.89.1 * curl-debugsource-8.0.1-11.89.1 * libcurl-devel-8.0.1-11.89.1 * SUSE Linux Enterprise High Performance Computing 12 SP5 (aarch64 x86_64) * libcurl4-8.0.1-11.89.1 * curl-debugsource-8.0.1-11.89.1 * libcurl4-debuginfo-8.0.1-11.89.1 * curl-debuginfo-8.0.1-11.89.1 * curl-8.0.1-11.89.1 * SUSE Linux Enterprise High Performance Computing 12 SP5 (x86_64) * libcurl4-32bit-8.0.1-11.89.1 * libcurl4-debuginfo-32bit-8.0.1-11.89.1 * SUSE Linux Enterprise Server 12 SP5 (aarch64 ppc64le s390x x86_64) * libcurl4-8.0.1-11.89.1 * curl-debugsource-8.0.1-11.89.1 * libcurl4-debuginfo-8.0.1-11.89.1 * curl-debuginfo-8.0.1-11.89.1 * curl-8.0.1-11.89.1 * SUSE Linux Enterprise Server 12 SP5 (s390x x86_64) * libcurl4-32bit-8.0.1-11.89.1 * libcurl4-debuginfo-32bit-8.0.1-11.89.1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 (ppc64le x86_64) * libcurl4-8.0.1-11.89.1 * curl-debugsource-8.0.1-11.89.1 * libcurl4-debuginfo-8.0.1-11.89.1 * curl-debuginfo-8.0.1-11.89.1 * curl-8.0.1-11.89.1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 (x86_64) * libcurl4-32bit-8.0.1-11.89.1 * libcurl4-debuginfo-32bit-8.0.1-11.89.1 ## References: * https://www.suse.com/security/cve/CVE-2024-7264.html * https://bugzilla.suse.com/show_bug.cgi?id=1228535 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Fri Aug 16 08:37:30 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Fri, 16 Aug 2024 08:37:30 -0000 Subject: SUSE-SU-2024:2939-1: important: Security update for the Linux Kernel Message-ID: <172379745038.12336.431598427330155195@smelt2.prg2.suse.org> # Security update for the Linux Kernel Announcement ID: SUSE-SU-2024:2939-1 Rating: important References: * bsc#1082555 * bsc#1156395 * bsc#1190336 * bsc#1191958 * bsc#1193454 * bsc#1193554 * bsc#1193787 * bsc#1193883 * bsc#1194324 * bsc#1194826 * bsc#1194869 * bsc#1195065 * bsc#1195254 * bsc#1195341 * bsc#1195349 * bsc#1195357 * bsc#1195668 * bsc#1195775 * bsc#1195927 * bsc#1195957 * bsc#1196018 * bsc#1196746 * bsc#1196823 * bsc#1197146 * bsc#1197246 * bsc#1197762 * bsc#1197915 * bsc#1198014 * bsc#1199295 * bsc#1202346 * bsc#1202686 * bsc#1202767 * bsc#1202780 * bsc#1205205 * bsc#1207361 * bsc#1208783 * bsc#1209636 * bsc#1213123 * bsc#1215492 * bsc#1215587 * bsc#1216834 * bsc#1217912 * bsc#1218148 * bsc#1218570 * bsc#1218820 * bsc#1219224 * bsc#1219633 * bsc#1219832 * bsc#1219847 * bsc#1220138 * bsc#1220185 * bsc#1220186 * bsc#1220368 * bsc#1220812 * bsc#1220869 * bsc#1220876 * bsc#1220942 * bsc#1220952 * bsc#1220958 * bsc#1221010 * bsc#1221086 * bsc#1221282 * bsc#1221647 * bsc#1221654 * bsc#1221656 * bsc#1221659 * bsc#1221958 * bsc#1222015 * bsc#1222072 * bsc#1222080 * bsc#1222241 * bsc#1222254 * bsc#1222323 * bsc#1222326 * bsc#1222328 * bsc#1222364 * bsc#1222625 * bsc#1222702 * bsc#1222728 * bsc#1222799 * bsc#1222809 * bsc#1222810 * bsc#1222893 * bsc#1223013 * bsc#1223018 * bsc#1223021 * bsc#1223180 * bsc#1223265 * bsc#1223384 * bsc#1223635 * bsc#1223641 * bsc#1223652 * bsc#1223675 * bsc#1223778 * bsc#1223806 * bsc#1223813 * bsc#1223815 * bsc#1223836 * bsc#1223863 * bsc#1224020 * bsc#1224331 * bsc#1224414 * bsc#1224488 * bsc#1224497 * bsc#1224498 * bsc#1224499 * bsc#1224500 * bsc#1224504 * bsc#1224512 * bsc#1224516 * bsc#1224517 * bsc#1224520 * bsc#1224539 * bsc#1224540 * bsc#1224545 * bsc#1224548 * bsc#1224552 * bsc#1224557 * bsc#1224572 * bsc#1224573 * bsc#1224583 * bsc#1224585 * bsc#1224588 * bsc#1224602 * bsc#1224603 * bsc#1224604 * bsc#1224605 * bsc#1224612 * bsc#1224614 * bsc#1224619 * bsc#1224636 * bsc#1224641 * bsc#1224661 * bsc#1224662 * bsc#1224670 * bsc#1224671 * bsc#1224674 * bsc#1224677 * bsc#1224679 * bsc#1224683 * bsc#1224694 * bsc#1224696 * bsc#1224700 * bsc#1224703 * bsc#1224712 * bsc#1224716 * bsc#1224719 * bsc#1224735 * bsc#1224743 * bsc#1224749 * bsc#1224764 * bsc#1224765 * bsc#1224766 * bsc#1224935 * bsc#1224946 * bsc#1224951 * bsc#1225050 * bsc#1225088 * bsc#1225098 * bsc#1225105 * bsc#1225272 * bsc#1225300 * bsc#1225389 * bsc#1225391 * bsc#1225419 * bsc#1225426 * bsc#1225448 * bsc#1225452 * bsc#1225467 * bsc#1225475 * bsc#1225484 * bsc#1225487 * bsc#1225489 * bsc#1225504 * bsc#1225505 * bsc#1225514 * bsc#1225518 * bsc#1225535 * bsc#1225564 * bsc#1225573 * bsc#1225581 * bsc#1225585 * bsc#1225586 * bsc#1225602 * bsc#1225611 * bsc#1225681 * bsc#1225692 * bsc#1225698 * bsc#1225699 * bsc#1225704 * bsc#1225711 * bsc#1225714 * bsc#1225717 * bsc#1225719 * bsc#1225726 * bsc#1225732 * bsc#1225737 * bsc#1225744 * bsc#1225745 * bsc#1225746 * bsc#1225749 * bsc#1225752 * bsc#1225753 * bsc#1225757 * bsc#1225758 * bsc#1225759 * bsc#1225760 * bsc#1225767 * bsc#1225770 * bsc#1225815 * bsc#1225823 * bsc#1225834 * bsc#1225838 * bsc#1225840 * bsc#1225851 * bsc#1225866 * bsc#1225872 * bsc#1225894 * bsc#1225903 * bsc#1226022 * bsc#1226131 * bsc#1226145 * bsc#1226149 * bsc#1226155 * bsc#1226202 * bsc#1226211 * bsc#1226212 * bsc#1226226 * bsc#1226502 * bsc#1226514 * bsc#1226519 * bsc#1226520 * bsc#1226537 * bsc#1226538 * bsc#1226539 * bsc#1226550 * bsc#1226551 * bsc#1226552 * bsc#1226553 * bsc#1226554 * bsc#1226555 * bsc#1226556 * bsc#1226557 * bsc#1226558 * bsc#1226559 * bsc#1226561 * bsc#1226562 * bsc#1226563 * bsc#1226564 * bsc#1226565 * bsc#1226566 * bsc#1226567 * bsc#1226568 * bsc#1226569 * bsc#1226570 * bsc#1226571 * bsc#1226572 * bsc#1226574 * bsc#1226575 * bsc#1226576 * bsc#1226577 * bsc#1226579 * bsc#1226580 * bsc#1226581 * bsc#1226582 * bsc#1226583 * bsc#1226585 * bsc#1226587 * bsc#1226588 * bsc#1226593 * bsc#1226595 * bsc#1226597 * bsc#1226601 * bsc#1226602 * bsc#1226603 * bsc#1226607 * bsc#1226610 * bsc#1226614 * bsc#1226616 * bsc#1226617 * bsc#1226618 * bsc#1226619 * bsc#1226621 * bsc#1226622 * bsc#1226624 * bsc#1226626 * bsc#1226628 * bsc#1226629 * bsc#1226632 * bsc#1226633 * bsc#1226634 * bsc#1226637 * bsc#1226643 * bsc#1226644 * bsc#1226645 * bsc#1226647 * bsc#1226650 * bsc#1226653 * bsc#1226657 * bsc#1226658 * bsc#1226669 * bsc#1226670 * bsc#1226672 * bsc#1226673 * bsc#1226674 * bsc#1226675 * bsc#1226678 * bsc#1226679 * bsc#1226683 * bsc#1226685 * bsc#1226686 * bsc#1226690 * bsc#1226691 * bsc#1226692 * bsc#1226693 * bsc#1226696 * bsc#1226697 * bsc#1226698 * bsc#1226699 * bsc#1226701 * bsc#1226702 * bsc#1226703 * bsc#1226704 * bsc#1226705 * bsc#1226706 * bsc#1226708 * bsc#1226709 * bsc#1226710 * bsc#1226711 * bsc#1226712 * bsc#1226713 * bsc#1226715 * bsc#1226716 * bsc#1226718 * bsc#1226719 * bsc#1226720 * bsc#1226721 * bsc#1226730 * bsc#1226732 * bsc#1226734 * bsc#1226735 * bsc#1226737 * bsc#1226738 * bsc#1226739 * bsc#1226740 * bsc#1226744 * bsc#1226746 * bsc#1226747 * bsc#1226749 * bsc#1226750 * bsc#1226754 * bsc#1226757 * bsc#1226762 * bsc#1226764 * bsc#1226767 * bsc#1226768 * bsc#1226769 * bsc#1226771 * bsc#1226774 * bsc#1226775 * bsc#1226777 * bsc#1226780 * bsc#1226781 * bsc#1226783 * bsc#1226785 * bsc#1226786 * bsc#1226789 * bsc#1226791 * bsc#1226834 * bsc#1226837 * bsc#1226839 * bsc#1226840 * bsc#1226841 * bsc#1226842 * bsc#1226848 * bsc#1226852 * bsc#1226857 * bsc#1226861 * bsc#1226863 * bsc#1226864 * bsc#1226867 * bsc#1226868 * bsc#1226876 * bsc#1226878 * bsc#1226883 * bsc#1226886 * bsc#1226890 * bsc#1226891 * bsc#1226895 * bsc#1226908 * bsc#1226911 * bsc#1226915 * bsc#1226928 * bsc#1226948 * bsc#1226949 * bsc#1226950 * bsc#1226953 * bsc#1226962 * bsc#1226976 * bsc#1226990 * bsc#1226992 * bsc#1226993 * bsc#1226994 * bsc#1226996 * bsc#1227066 * bsc#1227090 * bsc#1227096 * bsc#1227101 * bsc#1227103 * bsc#1227121 * bsc#1227157 * bsc#1227162 * bsc#1227274 * bsc#1227362 * bsc#1227383 * bsc#1227432 * bsc#1227435 * bsc#1227447 * bsc#1227487 * bsc#1227573 * bsc#1227618 * bsc#1227620 * bsc#1227626 * bsc#1227635 * bsc#1227661 * bsc#1227716 * bsc#1227722 * bsc#1227724 * bsc#1227725 * bsc#1227728 * bsc#1227729 * bsc#1227730 * bsc#1227732 * bsc#1227733 * bsc#1227750 * bsc#1227754 * bsc#1227755 * bsc#1227760 * bsc#1227762 * bsc#1227763 * bsc#1227764 * bsc#1227766 * bsc#1227770 * bsc#1227771 * bsc#1227772 * bsc#1227774 * bsc#1227779 * bsc#1227780 * bsc#1227783 * bsc#1227786 * bsc#1227787 * bsc#1227790 * bsc#1227792 * bsc#1227796 * bsc#1227797 * bsc#1227798 * bsc#1227800 * bsc#1227802 * bsc#1227806 * bsc#1227808 * bsc#1227810 * bsc#1227812 * bsc#1227813 * bsc#1227814 * bsc#1227816 * bsc#1227820 * bsc#1227823 * bsc#1227824 * bsc#1227828 * bsc#1227829 * bsc#1227836 * bsc#1227846 * bsc#1227849 * bsc#1227851 * bsc#1227862 * bsc#1227864 * bsc#1227865 * bsc#1227866 * bsc#1227870 * bsc#1227884 * bsc#1227886 * bsc#1227891 * bsc#1227893 * bsc#1227899 * bsc#1227900 * bsc#1227910 * bsc#1227913 * bsc#1227917 * bsc#1227919 * bsc#1227920 * bsc#1227921 * bsc#1227922 * bsc#1227923 * bsc#1227924 * bsc#1227925 * bsc#1227927 * bsc#1227928 * bsc#1227931 * bsc#1227932 * bsc#1227933 * bsc#1227935 * bsc#1227936 * bsc#1227938 * bsc#1227941 * bsc#1227942 * bsc#1227944 * bsc#1227945 * bsc#1227947 * bsc#1227948 * bsc#1227949 * bsc#1227950 * bsc#1227952 * bsc#1227953 * bsc#1227954 * bsc#1227956 * bsc#1227957 * bsc#1227963 * bsc#1227964 * bsc#1227965 * bsc#1227968 * bsc#1227969 * bsc#1227970 * bsc#1227971 * bsc#1227972 * bsc#1227975 * bsc#1227976 * bsc#1227981 * bsc#1227982 * bsc#1227985 * bsc#1227986 * bsc#1227987 * bsc#1227988 * bsc#1227989 * bsc#1227990 * bsc#1227991 * bsc#1227992 * bsc#1227993 * bsc#1227995 * bsc#1227996 * bsc#1227997 * bsc#1228000 * bsc#1228002 * bsc#1228003 * bsc#1228004 * bsc#1228005 * bsc#1228006 * bsc#1228007 * bsc#1228008 * bsc#1228009 * bsc#1228010 * bsc#1228011 * bsc#1228013 * bsc#1228014 * bsc#1228015 * bsc#1228019 * bsc#1228020 * bsc#1228025 * bsc#1228028 * bsc#1228035 * bsc#1228037 * bsc#1228038 * bsc#1228039 * bsc#1228040 * bsc#1228045 * bsc#1228054 * bsc#1228055 * bsc#1228056 * bsc#1228060 * bsc#1228061 * bsc#1228062 * bsc#1228063 * bsc#1228064 * bsc#1228066 * bsc#1228067 * bsc#1228068 * bsc#1228071 * bsc#1228079 * bsc#1228090 * bsc#1228114 * bsc#1228140 * bsc#1228190 * bsc#1228191 * bsc#1228226 * bsc#1228235 * bsc#1228247 * bsc#1228327 * bsc#1228328 * bsc#1228330 * bsc#1228403 * bsc#1228405 * bsc#1228408 * bsc#1228409 * bsc#1228410 * bsc#1228418 * bsc#1228459 * bsc#1228462 * bsc#1228470 * bsc#1228518 * bsc#1228520 * bsc#1228530 * bsc#1228561 * bsc#1228565 * bsc#1228580 * bsc#1228581 * bsc#1228591 * bsc#1228599 * bsc#1228617 * bsc#1228625 * bsc#1228626 * bsc#1228633 * bsc#1228640 * bsc#1228644 * bsc#1228649 * bsc#1228655 * bsc#1228665 * bsc#1228672 * bsc#1228680 * bsc#1228705 * bsc#1228723 * bsc#1228743 * bsc#1228756 * bsc#1228801 * bsc#1228850 * bsc#1228857 * jsc#PED-8491 * jsc#PED-8570 * jsc#PED-8582 * jsc#PED-8690 Cross-References: * CVE-2021-4439 * CVE-2021-47086 * CVE-2021-47089 * CVE-2021-47103 * CVE-2021-47186 * CVE-2021-47432 * CVE-2021-47515 * CVE-2021-47534 * CVE-2021-47538 * CVE-2021-47539 * CVE-2021-47546 * CVE-2021-47547 * CVE-2021-47555 * CVE-2021-47566 * CVE-2021-47571 * CVE-2021-47572 * CVE-2021-47576 * CVE-2021-47577 * CVE-2021-47578 * CVE-2021-47580 * CVE-2021-47582 * CVE-2021-47583 * CVE-2021-47584 * CVE-2021-47585 * CVE-2021-47586 * CVE-2021-47587 * CVE-2021-47588 * CVE-2021-47589 * CVE-2021-47590 * CVE-2021-47591 * CVE-2021-47592 * CVE-2021-47593 * CVE-2021-47595 * CVE-2021-47596 * CVE-2021-47597 * CVE-2021-47598 * CVE-2021-47599 * CVE-2021-47600 * CVE-2021-47601 * CVE-2021-47602 * CVE-2021-47603 * CVE-2021-47604 * CVE-2021-47605 * CVE-2021-47606 * CVE-2021-47607 * CVE-2021-47608 * CVE-2021-47609 * CVE-2021-47610 * CVE-2021-47611 * CVE-2021-47612 * CVE-2021-47614 * CVE-2021-47615 * CVE-2021-47616 * CVE-2021-47617 * CVE-2021-47618 * CVE-2021-47619 * CVE-2021-47620 * CVE-2021-47622 * CVE-2021-47623 * CVE-2021-47624 * CVE-2022-48711 * CVE-2022-48712 * CVE-2022-48713 * CVE-2022-48714 * CVE-2022-48715 * CVE-2022-48716 * CVE-2022-48717 * CVE-2022-48718 * CVE-2022-48720 * CVE-2022-48721 * CVE-2022-48722 * CVE-2022-48723 * CVE-2022-48724 * CVE-2022-48725 * CVE-2022-48726 * CVE-2022-48727 * CVE-2022-48728 * CVE-2022-48729 * CVE-2022-48730 * CVE-2022-48732 * CVE-2022-48733 * CVE-2022-48734 * CVE-2022-48735 * CVE-2022-48736 * CVE-2022-48737 * CVE-2022-48738 * CVE-2022-48739 * CVE-2022-48740 * CVE-2022-48743 * CVE-2022-48744 * CVE-2022-48745 * CVE-2022-48746 * CVE-2022-48747 * CVE-2022-48748 * CVE-2022-48749 * CVE-2022-48751 * CVE-2022-48752 * CVE-2022-48753 * CVE-2022-48754 * CVE-2022-48755 * CVE-2022-48756 * CVE-2022-48758 * CVE-2022-48759 * CVE-2022-48760 * CVE-2022-48761 * CVE-2022-48763 * CVE-2022-48765 * CVE-2022-48766 * CVE-2022-48767 * CVE-2022-48768 * CVE-2022-48769 * CVE-2022-48770 * CVE-2022-48771 * CVE-2022-48772 * CVE-2022-48773 * CVE-2022-48774 * CVE-2022-48775 * CVE-2022-48776 * CVE-2022-48777 * CVE-2022-48778 * CVE-2022-48780 * CVE-2022-48783 * CVE-2022-48784 * CVE-2022-48785 * CVE-2022-48786 * CVE-2022-48787 * CVE-2022-48788 * CVE-2022-48789 * CVE-2022-48790 * CVE-2022-48791 * CVE-2022-48792 * CVE-2022-48793 * CVE-2022-48794 * CVE-2022-48796 * CVE-2022-48797 * CVE-2022-48798 * CVE-2022-48799 * CVE-2022-48800 * CVE-2022-48801 * CVE-2022-48802 * CVE-2022-48803 * CVE-2022-48804 * CVE-2022-48805 * CVE-2022-48806 * CVE-2022-48807 * CVE-2022-48809 * CVE-2022-48810 * CVE-2022-48811 * CVE-2022-48812 * CVE-2022-48813 * CVE-2022-48814 * CVE-2022-48815 * CVE-2022-48816 * CVE-2022-48817 * CVE-2022-48818 * CVE-2022-48820 * CVE-2022-48821 * CVE-2022-48822 * CVE-2022-48823 * CVE-2022-48824 * CVE-2022-48825 * CVE-2022-48826 * CVE-2022-48827 * CVE-2022-48828 * CVE-2022-48829 * CVE-2022-48830 * CVE-2022-48831 * CVE-2022-48834 * CVE-2022-48835 * CVE-2022-48836 * CVE-2022-48837 * CVE-2022-48838 * CVE-2022-48839 * CVE-2022-48840 * CVE-2022-48841 * CVE-2022-48842 * CVE-2022-48843 * CVE-2022-48844 * CVE-2022-48846 * CVE-2022-48847 * CVE-2022-48849 * CVE-2022-48850 * CVE-2022-48851 * CVE-2022-48852 * CVE-2022-48853 * CVE-2022-48855 * CVE-2022-48856 * CVE-2022-48857 * CVE-2022-48858 * CVE-2022-48859 * CVE-2022-48860 * CVE-2022-48861 * CVE-2022-48862 * CVE-2022-48863 * CVE-2022-48864 * CVE-2022-48866 * CVE-2023-24023 * CVE-2023-52435 * CVE-2023-52573 * CVE-2023-52580 * CVE-2023-52622 * CVE-2023-52658 * CVE-2023-52667 * CVE-2023-52670 * CVE-2023-52672 * CVE-2023-52675 * CVE-2023-52735 * CVE-2023-52737 * CVE-2023-52751 * CVE-2023-52752 * CVE-2023-52762 * CVE-2023-52766 * CVE-2023-52775 * CVE-2023-52784 * CVE-2023-52787 * CVE-2023-52800 * CVE-2023-52812 * CVE-2023-52835 * CVE-2023-52837 * CVE-2023-52843 * CVE-2023-52845 * CVE-2023-52846 * CVE-2023-52857 * CVE-2023-52863 * CVE-2023-52869 * CVE-2023-52881 * CVE-2023-52882 * CVE-2023-52884 * CVE-2023-52885 * CVE-2023-52886 * CVE-2024-25741 * CVE-2024-26583 * CVE-2024-26584 * CVE-2024-26615 * CVE-2024-26625 * CVE-2024-26633 * CVE-2024-26635 * CVE-2024-26636 * CVE-2024-26641 * CVE-2024-26644 * CVE-2024-26661 * CVE-2024-26663 * CVE-2024-26665 * CVE-2024-26720 * CVE-2024-26800 * CVE-2024-26802 * CVE-2024-26813 * CVE-2024-26814 * CVE-2024-26842 * CVE-2024-26845 * CVE-2024-26863 * CVE-2024-26923 * CVE-2024-26935 * CVE-2024-26961 * CVE-2024-26973 * CVE-2024-26976 * CVE-2024-27015 * CVE-2024-27019 * CVE-2024-27020 * CVE-2024-27025 * CVE-2024-27065 * CVE-2024-27402 * CVE-2024-27432 * CVE-2024-27437 * CVE-2024-33619 * CVE-2024-35247 * CVE-2024-35789 * CVE-2024-35790 * CVE-2024-35805 * CVE-2024-35807 * CVE-2024-35814 * CVE-2024-35819 * CVE-2024-35835 * CVE-2024-35837 * CVE-2024-35848 * CVE-2024-35853 * CVE-2024-35855 * CVE-2024-35857 * CVE-2024-35861 * CVE-2024-35862 * CVE-2024-35864 * CVE-2024-35869 * CVE-2024-35878 * CVE-2024-35884 * CVE-2024-35886 * CVE-2024-35889 * CVE-2024-35890 * CVE-2024-35893 * CVE-2024-35896 * CVE-2024-35898 * CVE-2024-35899 * CVE-2024-35900 * CVE-2024-35905 * CVE-2024-35925 * CVE-2024-35934 * CVE-2024-35949 * CVE-2024-35950 * CVE-2024-35956 * CVE-2024-35958 * CVE-2024-35960 * CVE-2024-35961 * CVE-2024-35962 * CVE-2024-35979 * CVE-2024-35995 * CVE-2024-35997 * CVE-2024-36000 * CVE-2024-36004 * CVE-2024-36005 * CVE-2024-36008 * CVE-2024-36017 * CVE-2024-36020 * CVE-2024-36021 * CVE-2024-36025 * CVE-2024-36288 * CVE-2024-36477 * CVE-2024-36478 * CVE-2024-36479 * CVE-2024-36889 * CVE-2024-36890 * CVE-2024-36894 * CVE-2024-36899 * CVE-2024-36900 * CVE-2024-36901 * CVE-2024-36902 * CVE-2024-36904 * CVE-2024-36909 * CVE-2024-36910 * CVE-2024-36911 * CVE-2024-36912 * CVE-2024-36913 * CVE-2024-36914 * CVE-2024-36915 * CVE-2024-36916 * CVE-2024-36917 * CVE-2024-36919 * CVE-2024-36923 * CVE-2024-36934 * CVE-2024-36937 * CVE-2024-36939 * CVE-2024-36940 * CVE-2024-36945 * CVE-2024-36946 * CVE-2024-36949 * CVE-2024-36960 * CVE-2024-36964 * CVE-2024-36965 * CVE-2024-36967 * CVE-2024-36969 * CVE-2024-36971 * CVE-2024-36974 * CVE-2024-36975 * CVE-2024-36978 * CVE-2024-37021 * CVE-2024-37078 * CVE-2024-37354 * CVE-2024-38381 * CVE-2024-38388 * CVE-2024-38390 * CVE-2024-38540 * CVE-2024-38541 * CVE-2024-38544 * CVE-2024-38545 * CVE-2024-38546 * CVE-2024-38547 * CVE-2024-38548 * CVE-2024-38549 * CVE-2024-38550 * CVE-2024-38552 * CVE-2024-38553 * CVE-2024-38555 * CVE-2024-38556 * CVE-2024-38557 * CVE-2024-38558 * CVE-2024-38559 * CVE-2024-38560 * CVE-2024-38564 * CVE-2024-38565 * CVE-2024-38567 * CVE-2024-38568 * CVE-2024-38570 * CVE-2024-38571 * CVE-2024-38573 * CVE-2024-38578 * CVE-2024-38579 * CVE-2024-38580 * CVE-2024-38581 * CVE-2024-38582 * CVE-2024-38583 * CVE-2024-38586 * CVE-2024-38587 * CVE-2024-38588 * CVE-2024-38590 * CVE-2024-38591 * CVE-2024-38594 * CVE-2024-38597 * CVE-2024-38598 * CVE-2024-38599 * CVE-2024-38600 * CVE-2024-38601 * CVE-2024-38603 * CVE-2024-38605 * CVE-2024-38608 * CVE-2024-38616 * CVE-2024-38618 * CVE-2024-38619 * CVE-2024-38621 * CVE-2024-38627 * CVE-2024-38628 * CVE-2024-38630 * CVE-2024-38633 * CVE-2024-38634 * CVE-2024-38635 * CVE-2024-38659 * CVE-2024-38661 * CVE-2024-38780 * CVE-2024-39276 * CVE-2024-39301 * CVE-2024-39371 * CVE-2024-39463 * CVE-2024-39468 * CVE-2024-39469 * CVE-2024-39471 * CVE-2024-39472 * CVE-2024-39475 * CVE-2024-39482 * CVE-2024-39487 * CVE-2024-39488 * CVE-2024-39490 * CVE-2024-39493 * CVE-2024-39494 * CVE-2024-39497 * CVE-2024-39499 * CVE-2024-39500 * CVE-2024-39501 * CVE-2024-39502 * CVE-2024-39505 * CVE-2024-39506 * CVE-2024-39507 * CVE-2024-39508 * CVE-2024-39509 * CVE-2024-40900 * CVE-2024-40901 * CVE-2024-40902 * CVE-2024-40903 * CVE-2024-40904 * CVE-2024-40906 * CVE-2024-40908 * CVE-2024-40909 * CVE-2024-40911 * CVE-2024-40912 * CVE-2024-40916 * CVE-2024-40919 * CVE-2024-40923 * CVE-2024-40924 * CVE-2024-40927 * CVE-2024-40929 * CVE-2024-40931 * CVE-2024-40932 * CVE-2024-40934 * CVE-2024-40935 * CVE-2024-40937 * CVE-2024-40940 * CVE-2024-40941 * CVE-2024-40942 * CVE-2024-40943 * CVE-2024-40945 * CVE-2024-40953 * CVE-2024-40954 * CVE-2024-40956 * CVE-2024-40958 * CVE-2024-40959 * CVE-2024-40960 * CVE-2024-40961 * CVE-2024-40966 * CVE-2024-40967 * CVE-2024-40970 * CVE-2024-40972 * CVE-2024-40976 * CVE-2024-40977 * CVE-2024-40981 * CVE-2024-40982 * CVE-2024-40984 * CVE-2024-40987 * CVE-2024-40988 * CVE-2024-40989 * CVE-2024-40990 * CVE-2024-40994 * CVE-2024-40998 * CVE-2024-40999 * CVE-2024-41002 * CVE-2024-41004 * CVE-2024-41006 * CVE-2024-41009 * CVE-2024-41011 * CVE-2024-41012 * CVE-2024-41013 * CVE-2024-41014 * CVE-2024-41015 * CVE-2024-41016 * CVE-2024-41017 * CVE-2024-41040 * CVE-2024-41041 * CVE-2024-41044 * CVE-2024-41048 * CVE-2024-41057 * CVE-2024-41058 * CVE-2024-41059 * CVE-2024-41063 * CVE-2024-41064 * CVE-2024-41066 * CVE-2024-41069 * CVE-2024-41070 * CVE-2024-41071 * CVE-2024-41072 * CVE-2024-41076 * CVE-2024-41078 * CVE-2024-41081 * CVE-2024-41087 * CVE-2024-41090 * CVE-2024-41091 * CVE-2024-42070 * CVE-2024-42079 * CVE-2024-42093 * CVE-2024-42096 * CVE-2024-42105 * CVE-2024-42122 * CVE-2024-42124 * CVE-2024-42145 * CVE-2024-42161 * CVE-2024-42224 * CVE-2024-42230 CVSS scores: * CVE-2021-4439 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L * CVE-2021-47086 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47089 ( SUSE ): 4.0 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2021-47103 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47186 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47432 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47515 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47534 ( SUSE ): 4.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47538 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2021-47539 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2021-47546 ( SUSE ): 2.3 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:L * CVE-2021-47546 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47547 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L * CVE-2021-47555 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L * CVE-2021-47566 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2021-47571 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2021-47571 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2021-47572 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47572 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47576 ( SUSE ): 3.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:L * CVE-2021-47577 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47578 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47580 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:L * CVE-2021-47582 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47583 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47584 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47585 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47586 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47587 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47588 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47589 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47590 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47591 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47592 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47593 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47595 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47596 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47597 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2021-47598 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2021-47599 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47600 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2021-47601 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47602 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47603 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47604 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47605 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2021-47606 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47607 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2021-47608 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47609 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47610 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47611 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47612 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47614 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2021-47615 ( SUSE ): 3.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:L * CVE-2021-47616 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2021-47617 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47618 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47619 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47620 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2021-47622 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47623 ( SUSE ): 0.0 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N * CVE-2021-47624 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2022-48711 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48712 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L * CVE-2022-48713 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48714 ( SUSE ): 2.3 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:L * CVE-2022-48715 ( SUSE ): 3.6 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L * CVE-2022-48716 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N * CVE-2022-48717 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2022-48718 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48720 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2022-48721 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48722 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48723 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48724 ( SUSE ): 4.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48725 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48726 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48727 ( SUSE ): 4.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2022-48728 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48729 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48730 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2022-48732 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48733 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48734 ( SUSE ): 4.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48735 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48736 ( SUSE ): 0.0 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N * CVE-2022-48737 ( SUSE ): 0.0 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N * CVE-2022-48738 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48739 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2022-48740 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48743 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48744 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48745 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48746 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48747 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2022-48748 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L * CVE-2022-48749 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48751 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48752 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48753 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48754 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48755 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48756 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48758 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48759 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48760 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48761 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48763 ( SUSE ): 4.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48765 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48766 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48767 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48768 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48769 ( SUSE ): 4.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48770 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48771 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48772 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48773 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48774 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2022-48775 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2022-48776 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2022-48777 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48778 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2022-48780 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48783 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48784 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48785 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48786 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2022-48787 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48787 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48788 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2022-48788 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48789 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48789 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48790 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48790 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48791 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48791 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48792 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48792 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48793 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48793 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48794 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2022-48796 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48796 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48797 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N * CVE-2022-48798 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48799 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48800 ( SUSE ): 2.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2022-48801 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48802 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48803 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2022-48804 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2022-48805 ( SUSE ): 6.6 CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48806 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N * CVE-2022-48807 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48809 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48809 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48810 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48811 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48812 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48813 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48814 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48815 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48816 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48817 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48818 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48820 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48821 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48822 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48822 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48823 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2022-48824 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48824 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48825 ( SUSE ): 0.0 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N * CVE-2022-48826 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48827 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48828 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N * CVE-2022-48829 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N * CVE-2022-48830 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48831 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48834 ( SUSE ): 0.0 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N * CVE-2022-48834 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48835 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48835 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48836 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48836 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48837 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48837 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48838 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48838 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48839 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48839 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48840 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48840 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48841 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48841 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48842 ( SUSE ): 4.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48842 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48843 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48843 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48844 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2022-48844 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48846 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48846 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48847 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48847 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48849 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48849 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N * CVE-2022-48850 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48850 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48851 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48851 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48852 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48852 ( NVD ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2022-48853 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48853 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2022-48855 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48855 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2022-48856 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48856 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48857 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48857 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48858 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48858 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48859 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48859 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48860 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48860 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48861 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48861 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48862 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48862 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48863 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L * CVE-2022-48863 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48864 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48864 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48866 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2022-48866 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2023-24023 ( SUSE ): 6.8 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N * CVE-2023-24023 ( NVD ): 6.8 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N * CVE-2023-52435 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52435 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52573 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52580 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52622 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52658 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52667 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52670 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52672 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52675 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52735 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52737 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52751 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52752 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-52752 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-52762 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52766 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2023-52775 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N * CVE-2023-52784 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52787 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52800 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2023-52812 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2023-52835 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2023-52837 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2023-52843 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52845 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52846 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-52857 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52863 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52869 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52881 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:L * CVE-2023-52882 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52884 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52885 ( SUSE ): 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2023-52886 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-25741 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:L * CVE-2024-26583 ( SUSE ): 5.1 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26583 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26584 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26584 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26615 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26625 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26633 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26635 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2024-26636 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26641 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2024-26644 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26661 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26663 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26665 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26720 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26800 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26802 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26813 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26814 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26842 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26845 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26863 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26923 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26935 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-26961 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26973 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26976 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27015 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27015 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27019 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27019 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2024-27020 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27020 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-27025 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2024-27065 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27402 ( SUSE ): 5.8 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2024-27432 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27437 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-33619 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35247 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35789 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35790 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35805 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35807 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35814 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35819 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35835 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35837 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35848 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35853 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35855 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35857 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35861 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35862 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35864 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35869 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35878 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35884 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35886 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35889 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35890 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35893 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35896 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35898 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35899 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35900 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35905 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35925 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35934 ( SUSE ): 2.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-35949 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35950 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35956 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35958 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35960 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35961 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35962 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35979 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35995 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2024-35997 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35997 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36000 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36004 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36005 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36008 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36008 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36017 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2024-36020 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36021 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36025 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:L * CVE-2024-36288 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36288 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36477 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N * CVE-2024-36477 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-36478 ( SUSE ): 4.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36479 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36889 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N * CVE-2024-36890 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36894 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-36899 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-36900 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36901 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36901 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36902 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36902 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36904 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-36909 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2024-36910 ( SUSE ): 6.0 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N * CVE-2024-36911 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2024-36912 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2024-36913 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2024-36914 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36915 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2024-36916 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2024-36917 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36919 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36923 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2024-36934 ( SUSE ): 5.1 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:L * CVE-2024-36937 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36939 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36940 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2024-36945 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36946 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N * CVE-2024-36949 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36960 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2024-36964 ( SUSE ): 7.2 CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2024-36965 ( SUSE ): 5.6 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:H * CVE-2024-36965 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36967 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36967 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36969 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36969 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36971 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-36971 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-36974 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-36975 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36978 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:L * CVE-2024-37021 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-37078 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-37354 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2024-38381 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2024-38388 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-38390 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38540 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38541 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2024-38544 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38545 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38546 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38547 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38548 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38549 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38550 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38552 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2024-38553 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38555 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38556 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38557 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38558 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L * CVE-2024-38559 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2024-38560 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38564 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2024-38565 ( SUSE ): 5.7 CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2024-38567 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38568 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:L * CVE-2024-38570 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2024-38570 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-38571 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38571 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38573 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38578 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2024-38579 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2024-38580 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38581 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2024-38581 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-38582 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38583 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-38583 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-38586 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38587 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:L * CVE-2024-38588 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38590 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38591 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38594 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2024-38597 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38598 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38599 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2024-38600 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38601 ( SUSE ): 4.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38603 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38603 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38605 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38608 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L * CVE-2024-38616 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38618 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38619 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38621 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38627 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38628 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38630 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2024-38633 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38634 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38635 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38659 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:L/A:H * CVE-2024-38661 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38780 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38780 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39276 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39301 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39371 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39463 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-39468 ( SUSE ): 4.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39469 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39471 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39472 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L * CVE-2024-39472 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39475 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39475 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39482 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L * CVE-2024-39482 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39487 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2024-39488 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39490 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-39493 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2024-39493 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39494 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-39494 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-39497 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39499 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2024-39500 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39501 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39502 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2024-39505 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2024-39506 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39507 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39508 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2024-39509 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40900 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2024-40901 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L * CVE-2024-40902 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2024-40902 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-40903 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2024-40903 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-40904 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40906 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40908 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40909 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-40911 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40912 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40916 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40919 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40923 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40924 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40927 ( SUSE ): 6.6 CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-40929 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40931 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2024-40932 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L * CVE-2024-40934 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L * CVE-2024-40935 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40937 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-40940 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40941 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40942 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40943 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40945 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40953 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40954 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-40956 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-40958 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40959 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40960 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40961 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40966 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40967 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40970 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40972 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40976 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40977 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40981 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-40982 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40984 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40987 ( SUSE ): 5.0 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H * CVE-2024-40988 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40989 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-40990 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40994 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-40998 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40999 ( SUSE ): 3.6 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L * CVE-2024-41002 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L * CVE-2024-41004 ( SUSE ): 0.0 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:N * CVE-2024-41006 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L * CVE-2024-41009 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-41009 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-41011 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-41012 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2024-41013 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2024-41014 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-41015 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N * CVE-2024-41016 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N * CVE-2024-41017 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-41040 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2024-41041 ( SUSE ): 0.0 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N * CVE-2024-41044 ( SUSE ): 6.3 CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:L * CVE-2024-41048 ( SUSE ): 6.5 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-41057 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2024-41057 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-41058 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2024-41058 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2024-41059 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2024-41059 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-41063 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2024-41063 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-41064 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2024-41064 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-41066 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2024-41066 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2024-41069 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2024-41069 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-41070 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2024-41071 ( SUSE ): 4.3 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N * CVE-2024-41072 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N * CVE-2024-41076 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-41078 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-41081 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-41087 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-41087 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-41090 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H * CVE-2024-41091 ( SUSE ): 6.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H * CVE-2024-42070 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2024-42070 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-42079 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-42079 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-42093 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L * CVE-2024-42096 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2024-42096 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2024-42105 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2024-42105 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2024-42122 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-42124 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-42145 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2024-42145 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-42161 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2024-42161 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2024-42161 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-42224 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-42224 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-42230 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2024-42230 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-42230 ( NVD ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H Affected Products: * Basesystem Module 15-SP5 * Development Tools Module 15-SP5 * Legacy Module 15-SP5 * openSUSE Leap 15.5 * openSUSE Leap Micro 5.5 * SUSE Linux Enterprise Desktop 15 SP5 * SUSE Linux Enterprise High Availability Extension 15 SP5 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Live Patching 15-SP5 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Linux Enterprise Workstation Extension 15 SP5 An update that solves 531 vulnerabilities, contains four features and has 93 security fixes can now be installed. ## Description: The SUSE Linux Enterprise 15 SP5 kernel was updated to receive various security bugfixes. The following security bugs were fixed: * CVE-2021-47086: phonet/pep: refuse to enable an unbound pipe (bsc#1220952). * CVE-2021-47089: kfence: fix memory leak when cat kfence objects (bsc#1220958). * CVE-2021-47103: net: sock: preserve kabi for sock (bsc#1221010). * CVE-2021-47186: tipc: check for null after calling kmemdup (bsc#1222702). * CVE-2021-47432: lib/generic-radix-tree.c: Do not overflow in peek() (bsc#1225391). * CVE-2021-47515: seg6: fix the iif in the IPv6 socket control block (bsc#1225426). * CVE-2021-47538: rxrpc: Fix rxrpc_local leak in rxrpc_lookup_peer() (bsc#1225448). * CVE-2021-47539: rxrpc: Fix rxrpc_peer leak in rxrpc_look_up_bundle() (bsc#1225452). * CVE-2021-47546: ipv6: fix memory leak in fib6_rule_suppress (bsc#1225504). * CVE-2021-47547: net: tulip: de4x5: fix the problem that the array 'lp->phy' may be out of bound (bsc#1225505). * CVE-2021-47555: net: vlan: fix underflow for the real_dev refcnt (bsc#1225467). * CVE-2021-47566: Fix clearing user buffer by properly using clear_user() (bsc#1225514). * CVE-2021-47571: staging: rtl8192e: Fix use after free in _rtl92e_pci_disconnect() (bsc#1225518). * CVE-2021-47572: net: nexthop: fix null pointer dereference when IPv6 is not enabled (bsc#1225389). * CVE-2021-47588: sit: do not call ipip6_dev_free() from sit_init_net() (bsc#1226568). * CVE-2021-47590: mptcp: fix deadlock in __mptcp_push_pending() (bsc#1226565). * CVE-2021-47591: mptcp: remove tcp ulp setsockopt support (bsc#1226570). * CVE-2021-47593: mptcp: clear 'kern' flag from fallback sockets (bsc#1226551). * CVE-2021-47598: sch_cake: do not call cake_destroy() from cake_init() (bsc#1226574). * CVE-2021-47599: btrfs: use latest_dev in btrfs_show_devname (bsc#1226571). * CVE-2021-47606: net: netlink: af_netlink: Prevent empty skb by adding a check on len. (bsc#1226555). * CVE-2021-47623: powerpc/fixmap: Fix VM debug warning on unmap (bsc#1227919). * CVE-2022-48716: ASoC: codecs: wcd938x: fix incorrect used of portid (bsc#1226678). * CVE-2022-48785: ipv6: mcast: use rcu-safe version of ipv6_get_lladdr() (bsc#1227927) * CVE-2022-48810: ipmr,ip6mr: acquire RTNL before calling ip[6]mr_free_table() on failure path (bsc#1227936). * CVE-2022-48850: net-sysfs: add check for netdevice being present to speed_show (bsc#1228071). * CVE-2022-48855: sctp: fix kernel-infoleak for SCTP sockets (bsc#1228003). * CVE-2023-24023: Bluetooth: Add more enc key size check (bsc#1218148). * CVE-2023-52435: net: prevent mss overflow in skb_segment() (bsc#1220138). * CVE-2023-52573: net: rds: Fix possible NULL-pointer dereference (bsc#1220869). * CVE-2023-52580: net/core: Fix ETH_P_1588 flow dissector (bsc#1220876). * CVE-2023-52622: ext4: avoid online resizing failures due to oversized flex bg (bsc#1222080). * CVE-2023-52658: Revert "net/mlx5: Block entering switchdev mode with ns inconsistency" (bsc#1224719). * CVE-2023-52667: net/mlx5e: fix a potential double-free in fs_any_create_groups (bsc#1224603). * CVE-2023-52670: rpmsg: virtio: Free driver_override when rpmsg_remove() (bsc#1224696). * CVE-2023-52672: pipe: wakeup wr_wait after setting max_usage (bsc#1224614). * CVE-2023-52675: powerpc/imc-pmu: Add a null pointer check in update_events_in_group() (bsc#1224504). * CVE-2023-52735: bpf, sockmap: Don't let sock_map_{close,destroy,unhash} call itself (bsc#1225475). * CVE-2023-52737: btrfs: lock the inode in shared mode before starting fiemap (bsc#1225484). * CVE-2023-52751: smb: client: fix use-after-free in smb2_query_info_compound() (bsc#1225489). * CVE-2023-52752: smb: client: fix use-after-free bug in cifs_debug_data_proc_show() (bsc#1225487). * CVE-2023-52762: virtio-blk: fix implicit overflow on virtio_max_dma_size (bsc#1225573). * CVE-2023-52775: net/smc: avoid data corruption caused by decline (bsc#1225088). * CVE-2023-52784: bonding: stop the device in bond_setup_by_slave() (bsc#1224946). * CVE-2023-52787: blk-mq: make sure active queue usage is held for bio_integrity_prep() (bsc#1225105). * CVE-2023-52812: drm/amd: check num of link levels when update pcie param (bsc#1225564). * CVE-2023-52835: perf/core: Bail out early if the request AUX area is out of bound (bsc#1225602). * CVE-2023-52837: nbd: fix uaf in nbd_open (bsc#1224935). * CVE-2023-52843: llc: verify mac len before reading mac header (bsc#1224951). * CVE-2023-52845: tipc: Change nla_policy for bearer-related names to NLA_NUL_STRING (bsc#1225585). * CVE-2023-52846: hsr: Prevent use after free in prp_create_tagged_frame() (bsc#1225098). * CVE-2023-52857: drm/mediatek: Fix coverity issue with unintentional integer overflow (bsc#1225581). * CVE-2023-52863: hwmon: (axi-fan-control) Fix possible NULL pointer dereference (bsc#1225586). * CVE-2023-52869: pstore/platform: Add check for kstrdup (bsc#1225050). * CVE-2023-52881: tcp: do not accept ACK of bytes we never sent (bsc#1225611). * CVE-2023-52882: clk: sunxi-ng: h6: Reparent CPUX during PLL CPUX rate change (bsc#1225692). * CVE-2024-26615: net/smc: fix illegal rmb_desc access in SMC-D connection dump (bsc#1220942). * CVE-2024-26625: Call sock_orphan() at release time (bsc#1221086) * CVE-2024-26633: ip6_tunnel: fix NEXTHDR_FRAGMENT handling in ip6_tnl_parse_tlv_enc_lim() (bsc#1221647). * CVE-2024-26635: llc: Drop support for ETH_P_TR_802_2 (bsc#1221656). * CVE-2024-26636: llc: make llc_ui_sendmsg() more robust against bonding changes (bsc#1221659). * CVE-2024-26641: ip6_tunnel: make sure to pull inner header in __ip6_tnl_rcv() (bsc#1221654). * CVE-2024-26644: btrfs: do not abort filesystem when attempting to snapshot deleted subvolume (bsc#1221282, bsc#1222072). * CVE-2024-26661: drm/amd/display: Add NULL test for 'timing generator' in 'dcn21_set_pipe()' (bsc#1222323). * CVE-2024-26663: tipc: Check the bearer type before calling tipc_udp_nl_bearer_add() (bsc#1222326). * CVE-2024-26665: tunnels: fix out of bounds access when building IPv6 PMTU error (bsc#1222328). * CVE-2024-26720: mm: Avoid overflows in dirty throttling logic (bsc#1222364). * CVE-2024-26802: stmmac: Clear variable when destroying workqueue (bsc#1222799). * CVE-2024-26813: vfio/platform: Create persistent IRQ handlers (bsc#1222809). * CVE-2024-26814: vfio/fsl-mc: Block calling interrupt handler without trigger (bsc#1222810). * CVE-2024-26842: scsi: target: core: Add TMF to tmr_list handling (bsc#1223013). * CVE-2024-26845: scsi: target: core: Add TMF to tmr_list handling (bsc#1223018). * CVE-2024-26863: hsr: Fix uninit-value access in hsr_get_node() (bsc#1223021). * CVE-2024-26923: Fixed false-positive lockdep splat for spin_lock() in __unix_gc() (bsc#1223384). * CVE-2024-26961: mac802154: fix llsec key resources release in mac802154_llsec_key_del (bsc#1223652). * CVE-2024-26973: fat: fix uninitialized field in nostale filehandles (bsc#1223641). * CVE-2024-27015: netfilter: flowtable: incorrect pppoe tuple (bsc#1223806). * CVE-2024-27019: netfilter: nf_tables: Fix potential data-race in __nft_obj_type_get() (bsc#1223813) * CVE-2024-27020: netfilter: nf_tables: Fix potential data-race in __nft_expr_type_get() (bsc#1223815) * CVE-2024-27025: nbd: null check for nla_nest_start (bsc#1223778) * CVE-2024-27065: netfilter: nf_tables: do not compare internal table flags on updates (bsc#1223836). * CVE-2024-27402: phonet/pep: fix racy skb_queue_empty() use (bsc#1224414). * CVE-2024-27432: net: ethernet: mtk_eth_soc: fix PPE hanging issue (bsc#1224716). * CVE-2024-27437: vfio/pci: Disable auto-enable of exclusive INTx IRQ (bsc#1222625). * CVE-2024-35247: fpga: region: add owner module and take its refcount (bsc#1226948). * CVE-2024-35789: Check fast rx for non-4addr sta VLAN changes (bsc#1224749). * CVE-2024-35790: usb: typec: altmodes/displayport: create sysfs nodes as driver's default device attribute group (bsc#1224712). * CVE-2024-35805: dm snapshot: fix lockup in dm_exception_table_exit (bsc#1224743). * CVE-2024-35807: ext4: fix corruption during on-line resize (bsc#1224735). * CVE-2024-35819: soc: fsl: qbman: Use raw spinlock for cgr_lock (bsc#1224683). * CVE-2024-35835: net/mlx5e: fix a double-free in arfs_create_groups (bsc#1224605). * CVE-2024-35837: net: mvpp2: clear BM pool before initialization (bsc#1224500). * CVE-2024-35848: eeprom: at24: fix memory corruption race condition (bsc#1224612). * CVE-2024-35853: mlxsw: spectrum_acl_tcam: Fix memory leak during rehash (bsc#1224604). * CVE-2024-35857: icmp: prevent possible NULL dereferences from icmp_build_probe() (bsc#1224619). * CVE-2024-35861: Fixed potential UAF in cifs_signal_cifsd_for_reconnect() (bsc#1224766). * CVE-2024-35862: Fixed potential UAF in smb2_is_network_name_deleted() (bsc#1224764). * CVE-2024-35864: Fixed potential UAF in smb2_is_valid_lease_break() (bsc#1224765). * CVE-2024-35869: smb: client: guarantee refcounted children from parent session (bsc#1224679). * CVE-2024-35884: udp: do not accept non-tunnel GSO skbs landing in a tunnel (bsc#1224520). * CVE-2024-35886: ipv6: Fix infinite recursion in fib6_dump_done() (bsc#1224670). * CVE-2024-35889: idpf: fix kernel panic on unknown packet types (bsc#1224517). * CVE-2024-35890: gro: fix ownership transfer (bsc#1224516). * CVE-2024-35893: net/sched: act_skbmod: prevent kernel-infoleak (bsc#1224512) * CVE-2024-35898: netfilter: nf_tables: Fix potential data-race in __nft_flowtable_type_get() (bsc#1224498). * CVE-2024-35899: netfilter: nf_tables: flush pending destroy work before exit_net release (bsc#1224499) * CVE-2024-35900: netfilter: nf_tables: reject new basechain after table flag update (bsc#1224497). * CVE-2024-35925: block: prevent division by zero in blk_rq_stat_sum() (bsc#1224661). * CVE-2024-35934: net/smc: reduce rtnl pressure in smc_pnet_create_pnetids_list() (bsc#1224641) * CVE-2024-35949: btrfs: make sure that WRITTEN is set on all metadata blocks (bsc#1224700). * CVE-2024-35950: drm/client: Fully protect modes with dev->mode_config.mutex (bsc#1224703). * CVE-2024-35956: Fixed qgroup prealloc rsv leak in subvolume operations (bsc#1224674) * CVE-2024-35958: net: ena: Fix incorrect descriptor free behavior (bsc#1224677). * CVE-2024-35960: net/mlx5: Properly link new fs rules into the tree (bsc#1224588). * CVE-2024-35961: net/mlx5: Register devlink first under devlink lock (bsc#1224585). * CVE-2024-35979: raid1: fix use-after-free for original bio in raid1_write_request() (bsc#1224572). * CVE-2024-35995: ACPI: CPPC: Use access_width over bit_width for system memory accesses (bsc#1224557). * CVE-2024-35997: Remove I2C_HID_READ_PENDING flag to prevent lock-up (bsc#1224552). * CVE-2024-36000: mm/hugetlb: fix missing hugetlb_lock for resv uncharge (bsc#1224548). * CVE-2024-36004: i40e: Do not use WQ_MEM_RECLAIM flag for workqueue (bsc#1224545) * CVE-2024-36005: netfilter: nf_tables: honor table dormant flag from netdev release event path (bsc#1224539). * CVE-2024-36008: ipv4: check for NULL idev in ip_route_use_hint() (bsc#1224540). * CVE-2024-36017: rtnetlink: Correct nested IFLA_VF_VLAN_LIST attribute validation (bsc#1225681). * CVE-2024-36020: i40e: fix vf may be used uninitialized in this function warning (bsc#1225698). * CVE-2024-36021: net: hns3: fix kernel crash when devlink reload during pf initialization (bsc#1225699). * CVE-2024-36478: null_blk: fix null-ptr-dereference while configuring 'power' and 'submit_queues' (bsc#1226841). * CVE-2024-36479: fpga: bridge: add owner module and take its refcount (bsc#1226949). * CVE-2024-36890: mm/slab: make __free(kfree) accept error pointers (bsc#1225714). * CVE-2024-36894: usb: gadget: f_fs: Fix race between aio_cancel() and AIO request complete (bsc#1225749). * CVE-2024-36899: gpiolib: cdev: Fix use after free in lineinfo_changed_notify (bsc#1225737). * CVE-2024-36900: net: hns3: fix kernel crash when devlink reload during initialization (bsc#1225726). * CVE-2024-36901: ipv6: prevent NULL dereference in ip6_output() (bsc#1225711) * CVE-2024-36902: ipv6: fib6_rules: avoid possible NULL dereference in fib6_rule_action() (bsc#1225719). * CVE-2024-36904: tcp: Use refcount_inc_not_zero() in tcp_twsk_unique() (bsc#1225732). * CVE-2024-36909: Drivers: hv: vmbus: Do not free ring buffers that couldn't be re-encrypted (bsc#1225744). * CVE-2024-36910: uio_hv_generic: Do not free decrypted memory (bsc#1225717). * CVE-2024-36911: hv_netvsc: Do not free decrypted memory (bsc#1225745). * CVE-2024-36912: Drivers: hv: vmbus: Track decrypted status in vmbus_gpadl (bsc#1225752). * CVE-2024-36913: Drivers: hv: vmbus: Leak pages if set_memory_encrypted() fails (bsc#1225753). * CVE-2024-36914: drm/amd/display: Skip on writeback when it's not applicable (bsc#1225757). * CVE-2024-36915: nfc: llcp: fix nfc_llcp_setsockopt() unsafe copies (bsc#1225758). * CVE-2024-36916: blk-iocost: avoid out of bounds shift (bsc#1225759). * CVE-2024-36917: block: fix overflow in blk_ioctl_discard() (bsc#1225770). * CVE-2024-36919: scsi: bnx2fc: Remove spin_lock_bh while releasing resources after upload (bsc#1225767). * CVE-2024-36923: fs/9p: fix uninitialized values during inode evict (bsc#1225815). * CVE-2024-36934: bna: ensure the copied buf is NUL terminated (bsc#1225760). * CVE-2024-36937: xdp: use flags field to disambiguate broadcast redirect (bsc#1225834). * CVE-2024-36939: nfs: Handle error of rpc_proc_register() in nfs_net_init() (bsc#1225838). * CVE-2024-36940: pinctrl: core: delete incorrect free in pinctrl_enable() (bsc#1225840). * CVE-2024-36945: net/smc: fix neighbour and rtable leak in smc_ib_find_route() (bsc#1225823). * CVE-2024-36946: phonet: fix rtm_phonet_notify() skb allocation (bsc#1225851). * CVE-2024-36949: amd/amdkfd: sync all devices to wait all processes being evicted (bsc#1225872) * CVE-2024-36964: fs/9p: only translate RWX permissions for plain 9P2000 (bsc#1225866). * CVE-2024-36971: net: fix __dst_negative_advice() race (bsc#1226145). * CVE-2024-36974: net/sched: taprio: always validate TCA_TAPRIO_ATTR_PRIOMAP (bsc#1226519). * CVE-2024-36978: net: sched: sch_multiq: fix possible OOB write in multiq_tune() (bsc#1226514). * CVE-2024-37021: fpga: manager: add owner module and take its refcount (bsc#1226950). * CVE-2024-37078: nilfs2: fix potential kernel bug due to lack of writeback flag waiting (bsc#1227066). * CVE-2024-37354: btrfs: fix crash on racing fsync and size-extending write into prealloc (bsc#1227101). * CVE-2024-38545: RDMA/hns: Fix UAF for cq async event (bsc#1226595). * CVE-2024-38553: net: fec: remove .ndo_poll_controller to avoid deadlock (bsc#1226744). * CVE-2024-38555: net/mlx5: Discard command completions in internal error (bsc#1226607). * CVE-2024-38556: net/mlx5: Add a timeout to acquire the command queue semaphore (bsc#1226774). * CVE-2024-38557: net/mlx5: Reload only IB representors upon lag disable/enable (bsc#1226781). * CVE-2024-38558: net: openvswitch: fix overwriting ct original tuple for ICMPv6 (bsc#1226783). * CVE-2024-38559: scsi: qedf: Ensure the copied buf is NUL terminated (bsc#1226785). * CVE-2024-38560: scsi: bfa: Ensure the copied buf is NUL terminated (bsc#1226786). * CVE-2024-38564: bpf: Add BPF_PROG_TYPE_CGROUP_SKB attach type enforcement in BPF_LINK_CREATE (bsc#1226789). * CVE-2024-38568: drivers/perf: hisi: hns3: Fix out-of-bound access when valid event group (bsc#1226771). * CVE-2024-38570: gfs2: Fix potential glock use-after-free on unmount (bsc#1226775). * CVE-2024-38578: ecryptfs: Fix buffer size for tag 66 packet (bsc#1226634). * CVE-2024-38580: epoll: be better about file lifetimes (bsc#1226610). * CVE-2024-38586: r8169: Fix possible ring buffer corruption on fragmented Tx packets (bsc#1226750). * CVE-2024-38594: net: stmmac: move the EST lock to struct stmmac_priv (bsc#1226734). * CVE-2024-38597: eth: sungem: remove .ndo_poll_controller to avoid deadlocks (bsc#1226749). * CVE-2024-38598: md: fix resync softlockup when bitmap size is less than array size (bsc#1226757). * CVE-2024-38603: drivers/perf: hisi: hns3: Actually use devm_add_action_or_reset() (bsc#1226842). * CVE-2024-38608: net/mlx5e: Fix netif state handling (bsc#1226746). * CVE-2024-38627: stm class: Fix a double free in stm_register_device() (bsc#1226857). * CVE-2024-38628: usb: gadget: u_audio: Fix race condition use of controls after free during gadget unbind (bsc#1226911). * CVE-2024-38659: enic: Validate length of nl attributes in enic_set_vf_port (bsc#1226883). * CVE-2024-38661: s390/ap: Fix crash in AP internal function modify_bitmap() (bsc#1226996). * CVE-2024-38780: dma-buf/sw-sync: do not enable IRQ from sync_print_obj() (bsc#1226886). * CVE-2024-39276: ext4: fix mb_cache_entry's e_refcnt leak in ext4_xattr_block_cache_find() (bsc#1226993). * CVE-2024-39301: net/9p: fix uninit-value in p9_client_rpc() (bsc#1226994). * CVE-2024-39371: io_uring: check for non-NULL file pointer in io_file_can_poll() (bsc#1226990). * CVE-2024-39463: 9p: add missing locking around taking dentry fid list (bsc#1227090). * CVE-2024-39468: smb: client: fix deadlock in smb2_find_smb_tcon() (bsc#1227103). * CVE-2024-39469: nilfs2: fix nilfs_empty_dir() misjudgment and long loop on I/O errors (bsc#1226992). * CVE-2024-39472: xfs: fix log recovery buffer allocation for the legacy h_size fixup (bsc#1227432). * CVE-2024-39475: fbdev: savage: Handle err return when savagefb_check_var failed (bsc#1227435) * CVE-2024-39482: bcache: fix variable length array abuse in btree_iter (bsc#1227447). * CVE-2024-39487: bonding: Fix out-of-bounds read in bond_option_arp_ip_targets_set() (bsc#1227573) * CVE-2024-39490: ipv6: sr: fix missing sk_buff release in seg6_input_core (bsc#1227626). * CVE-2024-39493: crypto: qat - fix ADF_DEV_RESET_SYNC memory leak (bsc#1227620). * CVE-2024-39494: ima: Fix use-after-free on a dentry's dname.name (bsc#1227716). * CVE-2024-39497: drm/shmem-helper: fix BUG_ON() on mmap(PROT_WRITE, MAP_PRIVATE) (bsc#1227722). * CVE-2024-39502: ionic: fix use after netif_napi_del() (bsc#1227755). * CVE-2024-39506: liquidio: adjust a NULL pointer handling path in lio_vf_rep_copy_packet (bsc#1227729). * CVE-2024-39507: net: hns3: fix kernel crash problem in concurrent scenario (bsc#1227730). * CVE-2024-39508: io_uring/io-wq: use set_bit() and test_bit() at worker->flags (bsc#1227732). * CVE-2024-40901: scsi: mpt3sas: Avoid test/set_bit() operating in non- allocated memory (bsc#1227762). * CVE-2024-40906: net/mlx5: Always stop health timer during driver removal (bsc#1227763). * CVE-2024-40908: bpf: Set run context for rawtp test_run callback (bsc#1227783). * CVE-2024-40909: bpf: Fix a potential use-after-free in bpf_link_free() (bsc#1227798). * CVE-2024-40919: bnxt_en: Adjust logging of firmware messages in case of released token in __hwrm_send() (bsc#1227779). * CVE-2024-40923: vmxnet3: disable rx data ring on dma allocation failure (bsc#1227786). * CVE-2024-40931: mptcp: ensure snd_una is properly initialized on connect (bsc#1227780). * CVE-2024-40935: cachefiles: flush all requests after setting CACHEFILES_DEAD (bsc#1227797). * CVE-2024-40937: gve: Clear napi->skb before dev_kfree_skb_any() (bsc#1227836). * CVE-2024-40940: net/mlx5: Fix tainted pointer delete is case of flow rules creation fail (bsc#1227800). * CVE-2024-40943: ocfs2: fix races between hole punching and AIO+DIO (bsc#1227849). * CVE-2024-40953: KVM: Fix a data race on last_boosted_vcpu in kvm_vcpu_on_spin() (bsc#1227806). * CVE-2024-40954: net: do not leave a dangling sk pointer, when socket creation fails (bsc#1227808) * CVE-2024-40956: dmaengine: idxd: Fix possible Use-After-Free in irq_process_work_list (bsc#1227810). * CVE-2024-40958: netns: Make get_net_ns() handle zero refcount net (bsc#1227812). * CVE-2024-40959: xfrm6: check ip6_dst_idev() return value in xfrm6_get_saddr() (bsc#1227884). * CVE-2024-40960: ipv6: prevent possible NULL dereference in rt6_probe() (bsc#1227813). * CVE-2024-40961: ipv6: prevent possible NULL deref in fib6_nh_init() (bsc#1227814). * CVE-2024-40966: kABI: tty: add the option to have a tty reject a new ldisc (bsc#1227886). * CVE-2024-40967: serial: imx: Introduce timeout when waiting on transmitter empty (bsc#1227891). * CVE-2024-40970: Avoid hw_desc array overrun in dw-axi-dmac (bsc#1227899). * CVE-2024-40972: ext4: fold quota accounting into ext4_xattr_inode_lookup_create() (bsc#1227910). * CVE-2024-40977: wifi: mt76: mt7921s: fix potential hung tasks during chip recovery (bsc#1227950). * CVE-2024-40982: ssb: fix potential NULL pointer dereference in ssb_device_uevent() (bsc#1227865). * CVE-2024-40989: KVM: arm64: Disassociate vcpus from redistributor region on teardown (bsc#1227823). * CVE-2024-40994: ptp: fix integer overflow in max_vclocks_store (bsc#1227829). * CVE-2024-40998: ext4: fix uninitialized ratelimit_state->lock access in __ext4_fill_super() (bsc#1227866). * CVE-2024-40999: net: ena: Add validation for completion descriptors consistency (bsc#1227913). * CVE-2024-41006: netrom: Fix a memory leak in nr_heartbeat_expiry() (bsc#1227862). * CVE-2024-41009: bpf: Fix overrunning reservations in ringbuf (bsc#1228020). * CVE-2024-41011: drm/amdkfd: do not allow mapping the MMIO HDP page with large pages (bsc#1228114). * CVE-2024-41012: filelock: Remove locks reliably when fcntl/close race is detected (bsc#1228247). * CVE-2024-41013: xfs: do not walk off the end of a directory data block (bsc#1228405). * CVE-2024-41014: xfs: add bounds checking to xlog_recover_process_data (bsc#1228408). * CVE-2024-41015: ocfs2: add bounds checking to ocfs2_check_dir_entry() (bsc#1228409). * CVE-2024-41016: ocfs2: strict bound check before memcmp in ocfs2_xattr_find_entry() (bsc#1228410). * CVE-2024-41017: jfs: do not walk off the end of ealist (bsc#1228403). * CVE-2024-41040: net/sched: Fix UAF when resolving a clash (bsc#1228518). * CVE-2024-41041: udp: Set SOCK_RCU_FREE earlier in udp_lib_get_port() (bsc#1228520). * CVE-2024-41044: ppp: reject claimed-as-LCP but actually malformed packets (bsc#1228530). * CVE-2024-41048: skmsg: Skip zero length skb in sk_msg_recvmsg (bsc#1228565). * CVE-2024-41057: cachefiles: fix slab-use-after-free in cachefiles_withdraw_cookie() (bsc#1228462). * CVE-2024-41058: cachefiles: fix slab-use-after-free in fscache_withdraw_volume() (bsc#1228459). * CVE-2024-41059: hfsplus: fix uninit-value in copy_name (bsc#1228561). * CVE-2024-41063: bluetooth: hci_core: cancel all works upon hci_unregister_dev() (bsc#1228580). * CVE-2024-41064: powerpc/eeh: avoid possible crash when edev->pdev changes (bsc#1228599). * CVE-2024-41066: ibmvnic: add tx check to prevent skb leak (bsc#1228640). * CVE-2024-41069: ASoC: topology: Fix route memory corruption (bsc#1228644). * CVE-2024-41070: KVM: PPC: Book3S HV: Prevent UAF in kvm_spapr_tce_attach_iommu_group() (bsc#1228581). * CVE-2024-41071: wifi: mac80211: Avoid address calculations via out of bounds array indexing (bsc#1228625). * CVE-2024-41072: wifi: cfg80211: wext: add extra SIOCSIWSCAN data check (bsc#1228626). * CVE-2024-41076: NFSv4: Fix memory leak in nfs4_set_security_label (bsc#1228649). * CVE-2024-41078: btrfs: qgroup: fix quota root leak after quota disable failure (bsc#1228655). * CVE-2024-41081: ila: block BH in ila_output() (bsc#1228617). * CVE-2024-41090: tap: add missing verification for short frame (bsc#1228328). * CVE-2024-41091: tun: add missing verification for short frame (bsc#1228327). * CVE-2024-42070: netfilter: nf_tables: fully validate NFT_DATA_VALUE on store to data registers (bsc#1228470). * CVE-2024-42079: gfs2: Fix NULL pointer dereference in gfs2_log_flush (bsc#1228672). * CVE-2024-42093: net/dpaa2: Avoid explicit cpumask var allocation on stack (bsc#1228680). * CVE-2024-42096: x86: stop playing stack games in profile_pc() (bsc#1228633). * CVE-2024-42122: drm/amd/display: Add NULL pointer check for kzalloc (bsc#1228591). * CVE-2024-42124: scsi: qedf: Make qedf_execute_tmf() non-preemptible (bsc#1228705). * CVE-2024-42145: IB/core: Implement a limit on UMAD receive List (bsc#1228743) * CVE-2024-42161: bpf: avoid uninitialized value in BPF_CORE_READ_BITFIELD (bsc#1228756). * CVE-2024-42224: net: dsa: mv88e6xxx: Correct check for empty list (bsc#1228723). * CVE-2024-42230: powerpc/pseries: Fix scv instruction crash with kexec (bsc#1194869). The following non-security bugs were fixed: * acpi: EC: Abort address space access upon error (stable-fixes). * acpi: EC: Avoid returning AE_OK on errors in address space handler (stable- fixes). * acpi: processor_idle: Fix invalid comparison with insertion sort for latency (git-fixes). * acpi: resource: Do IRQ override on TongFang GXxHRXx and GMxHGxx (stable- fixes). * acpi: video: Add backlight=native quirk for Lenovo Slim 7 16ARH7 (stable- fixes). * acpi: x86: Force StorageD3Enable on more products (stable-fixes). * acpi: x86: utils: Add Picasso to the list for forcing StorageD3Enable (stable-fixes). * acpica: Revert "ACPICA: avoid Info: mapping multiple BARs. Your kernel is fine." (git-fixes). * alsa: dmaengine_pcm: terminate dmaengine before synchronize (stable-fixes). * alsa: dmaengine: Synchronize dma channel after drop() (stable-fixes). * alsa: emux: improve patch ioctl data validation (stable-fixes). * alsa: Fix deadlocks with kctl removals at disconnection (stable-fixes). * alsa: hda: conexant: Fix headset auto detect fail in the polling mode (git- fixes). * alsa: hda: intel-dsp-config: harden I2C/I2S codec detection (stable-fixes). * alsa: hda/realtek: Add more codec ID to no shutup pins list (stable-fixes). * alsa: hda/realtek: add quirk for Clevo V5[46]0TU (stable-fixes). * alsa: hda/realtek: Add quirks for Lenovo 13X (stable-fixes). * alsa: hda/realtek: Adjust G814JZR to use SPI init for amp (git-fixes). * alsa: hda/realtek: Enable headset mic of JP-IK LEAP W502 with ALC897 (stable-fixes). * alsa: hda/realtek: Enable headset mic on IdeaPad 330-17IKB 81DM (git-fixes). * alsa: hda/realtek: Enable headset mic on Positivo SU C1400 (stable-fixes). * alsa: hda/realtek: Enable Mute LED on HP 250 G7 (stable-fixes). * alsa: hda/realtek: Fix conflicting quirk for PCI SSID 17aa:3820 (git-fixes). * alsa: hda/realtek: fix mute/micmute LEDs do not work for EliteBook 645/665 G11 (stable-fixes). * alsa: hda/realtek: fix mute/micmute LEDs do not work for ProBook 440/460 G11 (stable-fixes). * alsa: hda/realtek: fix mute/micmute LEDs do not work for ProBook 445/465 G11 (stable-fixes). * alsa: hda/realtek: Fix the speaker output on Samsung Galaxy Book Pro 360 (stable-fixes). * alsa: hda/realtek: Limit mic boost on N14AP7 (stable-fixes). * alsa: hda/realtek: Limit mic boost on VAIO PRO PX (stable-fixes). * alsa: hda/realtek: Remove Framework Laptop 16 from quirks (git-fixes). * alsa: hda/relatek: Enable Mute LED on HP Laptop 15-gw0xxx (stable-fixes). * alsa: pcm_dmaengine: Do not synchronize DMA channel when DMA is paused (git- fixes). * alsa: timer: Set lower bound of start tick time (stable-fixes). * alsa: usb-audio: Add a quirk for Sonix HD USB Camera (stable-fixes). * alsa: usb-audio: Correct surround channels in UAC1 channel map (git-fixes). * alsa: usb-audio: Fix microphone sound on HD webcam (stable-fixes). * alsa: usb-audio: Move HD Webcam quirk to the right place (git-fixes). * alsa/hda: intel-dsp-config: Document AVS as dsp_driver option (git-fixes). * arm64: asm-bug: Add .align 2 to the end of __BUG_ENTRY (git-fixes). * arm64: dts: allwinner: Pine H64: correctly remove reg_gmac_3v3 (git-fixes) * arm64: dts: hi3798cv200: fix the size of GICR (git-fixes) * arm64: dts: imx8qm-mek: fix gpio number for reg_usdhc2_vmmc (git-fixes) * arm64: dts: microchip: sparx5: fix mdio reg (git-fixes) * arm64: dts: rockchip: Add enable-strobe-pulldown to emmc phy on ROCK (git- fixes) * arm64: dts: rockchip: Add sound-dai-cells for RK3368 (git-fixes) * arm64: dts: rockchip: fix PMIC interrupt pin on ROCK Pi E (git-fixes) * arm64: mm: Batch dsb and isb when populating pgtables (jsc#PED-8690). * arm64: mm: do not acquire mutex when rewriting swapper (jsc#PED-8690). * arm64: mm: Do not remap pgtables for allocate vs populate (jsc#PED-8690). * arm64: mm: Do not remap pgtables per-cont(pte|pmd) block (jsc#PED-8690). * arm64: tegra: Correct Tegra132 I2C alias (git-fixes) * arm64/io: add constant-argument check (bsc#1226502 git-fixes) * arm64/io: Provide a WC friendly __iowriteXX_copy() (bsc#1226502) * asoc: amd: acp: add a null check for chip_pdev structure (git-fixes). * asoc: amd: acp: remove i2s configuration check in acp_i2s_probe() (git- fixes). * asoc: amd: Adjust error handling in case of absent codec device (git-fixes). * asoc: da7219-aad: fix usage of device_get_named_child_node() (stable-fixes). * asoc: fsl-asoc-card: set priv->pdev before using it (git-fixes). * asoc: max98088: Check for clk_prepare_enable() error (git-fixes). * asoc: rt5645: Fix the electric noise due to the CBJ contacts floating (stable-fixes). * asoc: rt715-sdca: volume step modification (stable-fixes). * asoc: rt715: add vendor clear control register (stable-fixes). * asoc: ti: davinci-mcasp: Set min period size using FIFO config (stable- fixes). * asoc: ti: omap-hdmi: Fix too long driver name (stable-fixes). * ata: ahci: Clean up sysfs file on error (git-fixes). * ata: libata-core: Fix double free on error (git-fixes). * ata: libata-core: Fix null pointer dereference on error (git-fixes). * batman-adv: bypass empty buckets in batadv_purge_orig_ref() (stable-fixes). * batman-adv: Do not accept TT entries for out-of-spec VIDs (git-fixes). * blk-cgroup: dropping parent refcount after pd_free_fn() is done (bsc#1224573). * block, loop: support partitions without scanning (bsc#1227162). * block: do not add partitions if GD_SUPPRESS_PART_SCAN is set (bsc#1227162). * bluetooth: ath3k: Fix multiple issues reported by checkpatch.pl (stable- fixes). * bluetooth: btqca: use le32_to_cpu for ver.soc_id (stable-fixes). * bluetooth: hci_core: cancel all works upon hci_unregister_dev() (stable- fixes). * bluetooth: hci_qca: mark OF related data as maybe unused (stable-fixes). * bluetooth: hci_sync: Fix suspending with wrong filter policy (git-fixes). * Bluetooth: L2CAP: Fix rejecting L2CAP_CONN_PARAM_UPDATE_REQ (git-fixes). * bluetooth: qca: Fix BT enable failure again for QCA6390 after warm reboot (git-fixes). * bnxt_re: Fix imm_data endianness (git-fixes) * bpf, sockmap: Check for any of tcp_bpf_prots when cloning a listener (git- fixes). * bpf: aggressively forget precise markings during state checkpointing (bsc#1225903). * bpf: allow precision tracking for programs with subprogs (bsc#1225903). * bpf: check bpf_func_state->callback_depth when pruning states (bsc#1225903). * bpf: clean up visit_insn()'s instruction processing (bsc#1225903). * bpf: correct loop detection for iterators convergence (bsc#1225903). * bpf: encapsulate precision backtracking bookkeeping (bsc#1225903). * bpf: ensure state checkpointing at iter_next() call sites (bsc#1225903). * bpf: exact states comparison for iterator convergence checks (bsc#1225903). * bpf: extract __check_reg_arg() utility function (bsc#1225903). * bpf: extract same_callsites() as utility function (bsc#1225903). * bpf: extract setup_func_entry() utility function (bsc#1225903). * bpf: fix calculation of subseq_idx during precision backtracking (bsc#1225903). * bpf: fix mark_all_scalars_precise use in mark_chain_precision (bsc#1225903). * bpf: Fix memory leaks in __check_func_call (bsc#1225903). * bpf: fix propagate_precision() logic for inner frames (bsc#1225903). * bpf: fix regs_exact() logic in regsafe() to remap IDs correctly (bsc#1225903). * bpf: Fix to preserve reg parent/live fields when copying range info (bsc#1225903). * bpf: generalize MAYBE_NULL vs non-MAYBE_NULL rule (bsc#1225903). * bpf: improve precision backtrack logging (bsc#1225903). * bpf: Improve verifier u32 scalar equality checking (bsc#1225903). * bpf: keep track of max number of bpf_loop callback iterations (bsc#1225903). * bpf: maintain bitmasks across all active frames in __mark_chain_precision (bsc#1225903). * bpf: mark relevant stack slots scratched for register read instructions (bsc#1225903). * bpf: move explored_state() closer to the beginning of verifier.c (bsc#1225903). * bpf: perform byte-by-byte comparison only when necessary in regsafe() (bsc#1225903). * bpf: print full verifier states on infinite loop detection (bsc#1225903). * bpf: regsafe() must not skip check_ids() (bsc#1225903). * bpf: reject non-exact register type matches in regsafe() (bsc#1225903). * bpf: Remove unused insn_cnt argument from visit_[func_call_]insn() (bsc#1225903). * bpf: reorganize struct bpf_reg_state fields (bsc#1225903). * bpf: Skip invalid kfunc call in backtrack_insn (bsc#1225903). * bpf: states_equal() must build idmap for all function frames (bsc#1225903). * bpf: stop setting precise in current state (bsc#1225903). * bpf: support precision propagation in the presence of subprogs (bsc#1225903). * bpf: take into account liveness when propagating precision (bsc#1225903). * bpf: teach refsafe() to take into account ID remapping (bsc#1225903). * bpf: unconditionally reset backtrack_state masks on global func exit (bsc#1225903). * bpf: use check_ids() for active_lock comparison (bsc#1225903). * bpf: Use scalar ids in mark_chain_precision() (bsc#1225903). * bpf: verify callbacks as if they are called unknown number of times (bsc#1225903). * bpf: Verify scalar ids mapping in regsafe() using check_ids() (bsc#1225903). * bpf: widening for callback iterators (bsc#1225903). * btrfs: add device major-minor info in the struct btrfs_device (bsc#1227162). * btrfs: avoid copying BTRFS_ROOT_SUBVOL_DEAD flag to snapshot of subvolume being deleted (bsc#1221282). * btrfs: harden identification of a stale device (bsc#1227162). * btrfs: match stale devices by dev_t (bsc#1227162). * btrfs: remove the cross file system checks from remap (bsc#1227157). * btrfs: use dev_t to match device in device_matched (bsc#1227162). * btrfs: validate device maj:min during open (bsc#1227162). * bytcr_rt5640 : inverse jack detect for Archos 101 cesium (stable-fixes). * cachefiles: add output string to cachefiles_obj_[get|put]_ondemand_fd (git- fixes). * cachefiles: remove requests from xarray during flushing requests (bsc#1226588). * can: kvaser_usb: Explicitly initialize family in leafimx driver_info struct (git-fixes). * can: kvaser_usb: fix return value for hif_usb_send_regout (stable-fixes). * ceph: add ceph_cap_unlink_work to fire check_caps() immediately (bsc#1226022). * ceph: always check dir caps asynchronously (bsc#1226022). * ceph: always queue a writeback when revoking the Fb caps (bsc#1226022). * ceph: break the check delayed cap loop every 5s (bsc#1226022). * ceph: fix incorrect kmalloc size of pagevec mempool (bsc#1228418). * ceph: switch to use cap_delay_lock for the unlink delay list (bsc#1226022). * cgroup: Add annotation for holding namespace_sem in current_cgns_cgroup_from_root() (bsc#1222254). * cgroup: Eliminate the need for cgroup_mutex in proc_cgroup_show() (bsc#1222254). * cgroup: Make operations on the cgroup root_list RCU safe (bsc#1222254). * cgroup: preserve KABI of cgroup_root (bsc#1222254). * cgroup: Remove unnecessary list_empty() (bsc#1222254). * cgroup/cpuset: Prevent UAF in proc_cpuset_show() (bsc#1228801). * check-for-config-changes: ignore also GCC_ASM_GOTO_OUTPUT_BROKEN . * checkpatch: really skip LONG_LINE_* when LONG_LINE is ignored (git-fixes). * cifs: fix hang in wait_for_response() (bsc#1220812, bsc#1220368). * cpufreq: amd-pstate: Fix the inconsistency in max frequency units (git- fixes). * crypto: aead,cipher - zeroize key buffer after use (stable-fixes). * crypto: ecdh - explicitly zeroize private_key (stable-fixes). * crypto: ecdsa - Fix the public key format description (git-fixes). * crypto: ecrdsa - Fix module auto-load on add_key (stable-fixes). * crypto: hisilicon/sec - Fix memory leak for sec resource release (stable- fixes). * csky: ftrace: Drop duplicate implementation of arch_check_ftrace_location() (git-fixes). * decompress_bunzip2: fix rare decompression failure (git-fixes). * devres: Fix devm_krealloc() wasting memory (git-fixes). * devres: Fix memory leakage caused by driver API devm_free_percpu() (git- fixes). * dma: fix call order in dmam_free_coherent (git-fixes). * dmaengine: idxd: Fix possible Use-After-Free in irq_process_work_list (git- fixes). * dmaengine: ioatdma: Fix missing kmem_cache_destroy() (git-fixes). * docs: crypto: async-tx-api: fix broken code example (git-fixes). * docs: Fix formatting of literal sections in fanotify docs (stable-fixes). * drivers: core: synchronize really_probe() and dev_uevent() (git-fixes). * drm: panel-orientation-quirks: Add quirk for Valve Galileo (stable-fixes). * drm/amd: Fix shutdown (again) on some SMU v13.0.4/11 platforms (git-fixes). * drm/amd/amdgpu: Fix style errors in amdgpu_drv.c & amdgpu_device.c (stable- fixes). * drm/amd/display: Account for cursor prefetch BW in DML1 mode support (stable-fixes). * drm/amd/display: Add dtbclk access to dcn315 (stable-fixes). * drm/amd/display: Add VCO speed parameter for DCN31 FPU (stable-fixes). * drm/amd/display: Check for NULL pointer (stable-fixes). * drm/amd/display: Check index msg_id before read or write (stable-fixes). * drm/amd/display: Check pipe offset before setting vblank (stable-fixes). * drm/amd/display: drop unnecessary NULL checks in debugfs (stable-fixes). * drm/amd/display: Exit idle optimizations before HDCP execution (stable- fixes). * drm/amd/display: revert Exit idle optimizations before HDCP execution (stable-fixes). * drm/amd/display: Set color_mgmt_changed to true on unsuspend (stable-fixes). * drm/amd/display: Skip finding free audio for unknown engine_id (stable- fixes). * drm/amd/pm: Fix aldebaran pcie speed reporting (git-fixes). * drm/amd/pm: remove logically dead code for renoir (git-fixes). * drm/amdgpu: add error handle to avoid out-of-bounds (stable-fixes). * drm/amdgpu: avoid using null object of framebuffer (stable-fixes). * drm/amdgpu: Check if NBIO funcs are NULL in amdgpu_device_baco_exit (git- fixes). * drm/amdgpu: Fix pci state save during mode-1 reset (git-fixes). * drm/amdgpu: Fix signedness bug in sdma_v4_0_process_trap_irq() (git-fixes). * drm/amdgpu: Fix the ring buffer size for queue VM flush (stable-fixes). * drm/amdgpu: fix UBSAN warning in kv_dpm.c (stable-fixes). * drm/amdgpu: fix uninitialized scalar variable warning (stable-fixes). * drm/amdgpu: Fix uninitialized variable warnings (stable-fixes). * drm/amdgpu: Initialize timestamp for some legacy SOCs (stable-fixes). * drm/amdgpu: Remove GC HW IP 9.3.0 from noretry=1 (git-fixes). * drm/amdgpu: Update BO eviction priorities (stable-fixes). * drm/amdgpu/atomfirmware: add intergrated info v2.3 table (stable-fixes). * drm/amdgpu/atomfirmware: fix parsing of vram_info (stable-fixes). * drm/amdgpu/atomfirmware: silence UBSAN warning (stable-fixes). * drm/amdgpu/mes: fix use-after-free issue (stable-fixes). * drm/amdgpu/sdma5.2: Update wptr registers as well as doorbell (stable- fixes). * drm/amdkfd: Flush the process wq before creating a kfd_process (stable- fixes). * drm/amdkfd: Rework kfd_locked handling (bsc#1225872) * drm/bridge/panel: Fix runtime warning on panel bridge release (git-fixes). * drm/dp_mst: Fix all mstb marked as not probed after suspend/resume (git- fixes). * drm/etnaviv: do not block scheduler when GPU is still active (stable-fixes). * drm/etnaviv: fix DMA direction handling for cached RW buffers (git-fixes). * drm/exynos: hdmi: report safe 640x480 mode as a fallback when no EDID found (git-fixes). * drm/exynos/vidi: fix memory leak in .get_modes() (stable-fixes). * drm/gma500: fix null pointer dereference in cdv_intel_lvds_get_modes (git- fixes). * drm/gma500: fix null pointer dereference in psb_intel_lvds_get_modes (git- fixes). * drm/i915/dpt: Make DPT object unshrinkable (git-fixes). * drm/i915/gt: Disarm breadcrumbs if engines are already idle (git-fixes). * drm/i915/gt: Do not consider preemption during execlists_dequeue for gen8 (git-fixes). * drm/i915/gt: Fix potential UAF by revoke of fence registers (git-fixes). * drm/i915/guc: avoid FIELD_PREP warning (git-fixes). * drm/i915/mso: using joiner is not possible with eDP MSO (git-fixes). * drm/komeda: check for error-valued pointer (git-fixes). * drm/lima: add mask irq callback to gp and pp (stable-fixes). * drm/lima: fix shared irq handling on driver remove (stable-fixes). * drm/lima: Mark simple_ondemand governor as softdep (git-fixes). * drm/lima: mask irqs in timeout path before hard reset (stable-fixes). * drm/mediatek: Add OVL compatible name for MT8195 (git-fixes). * drm/meson: fix canvas release in bind function (git-fixes). * drm/mgag200: Bind I2C lifetime to DRM device (git-fixes). * drm/mgag200: Set DDC timeout in milliseconds (git-fixes). * drm/mipi-dsi: Fix mipi_dsi_dcs_write_seq() macro definition format (stable- fixes). * drm/mipi-dsi: Fix theoretical int overflow in mipi_dsi_dcs_write_seq() (git- fixes). * drm/msm: Enable clamp_to_idle for 7c3 (stable-fixes). * drm/msm/a6xx: Avoid a nullptr dereference when speedbin setting fails (git- fixes). * drm/msm/dp: Avoid a long timeout for AUX transfer if nothing connected (git- fixes). * drm/msm/dp: Return IRQ_NONE for unhandled interrupts (stable-fixes). * drm/msm/dpu: drop validity checks for clear_pending_flush() ctl op (git- fixes). * drm/msm/mdp5: Remove MDP_CAP_SRC_SPLIT from msm8x53_config (git-fixes). * drm/nouveau: fix null pointer dereference in nouveau_connector_get_modes (git-fixes). * drm/nouveau: prime: fix refcount underflow (git-fixes). * drm/nouveau/dispnv04: fix null pointer dereference in nv17_tv_get_hd_modes (stable-fixes). * drm/nouveau/dispnv04: fix null pointer dereference in nv17_tv_get_ld_modes (stable-fixes). * drm/panel-samsung-atna33xc20: Use ktime_get_boottime for delays (stable- fixes). * drm/panel: boe-tv101wum-nl6: Check for errors on the NOP in prepare() (git- fixes). * drm/panel: boe-tv101wum-nl6: If prepare fails, disable GPIO before regulators (git-fixes). * drm/panel: ilitek-ili9881c: Fix warning with GPIO controllers that sleep (stable-fixes). * drm/panel: simple: Add missing display timing flags for KOE TX26D202VM0BWA (git-fixes). * drm/panfrost: Mark simple_ondemand governor as softdep (git-fixes). * drm/qxl: Add check for drm_cvt_mode (git-fixes). * drm/radeon: check bo_va->bo is non-NULL before using it (stable-fixes). * drm/radeon: fix UBSAN warning in kv_dpm.c (stable-fixes). * drm/radeon/radeon_display: Decrease the size of allocated memory (stable- fixes). * drm/vmwgfx: 3D disabled should not effect STDU memory limits (git-fixes). * drm/vmwgfx: Filter modes which exceed graphics memory (git-fixes). * drm/vmwgfx: Fix a deadlock in dma buf fence polling (git-fixes). * drm/vmwgfx: Fix missing HYPERVISOR_GUEST dependency (stable-fixes). * drm/vmwgfx: Fix overlay when using Screen Targets (git-fixes). * eeprom: digsy_mtc: Fix 93xx46 driver probe failure (git-fixes). * exfat: check if cluster num is valid (git-fixes). * exfat: simplify is_valid_cluster() (git-fixes). * filelock: add a new locks_inode_context accessor function (git-fixes). * firmware: cs_dsp: Fix overflow checking of wmfw header (git-fixes). * firmware: cs_dsp: Prevent buffer overrun when processing V2 alg headers (git-fixes). * firmware: cs_dsp: Return error if block header overflows file (git-fixes). * firmware: cs_dsp: Use strnlen() on name fields in V1 wmfw files (git-fixes). * firmware: cs_dsp: Validate payload length before processing block (git- fixes). * firmware: dmi: Stop decoding on broken entry (stable-fixes). * firmware: turris-mox-rwtm: Do not complete if there are no waiters (git- fixes). * firmware: turris-mox-rwtm: Fix checking return value of wait_for_completion_timeout() (git-fixes). * firmware: turris-mox-rwtm: Initialize completion before mailbox (git-fixes). * fs: allow cross-vfsmount reflink/dedupe (bsc#1227157). * ftrace: Fix possible use-after-free issue in ftrace_location() (git-fixes). * fuse: verify {g,u}id mount options correctly (bsc#1228191). * gpio: davinci: Validate the obtained number of IRQs (git-fixes). * gpio: mc33880: Convert comma to semicolon (git-fixes). * gpio: tqmx86: fix typo in Kconfig label (git-fixes). * gpio: tqmx86: introduce shadow register for GPIO output value (git-fixes). * gpiolib: cdev: Disallow reconfiguration without direction (uAPI v1) (git- fixes). * hfsplus: fix to avoid false alarm of circular locking (git-fixes). * hfsplus: fix uninit-value in copy_name (git-fixes). * hid: Add quirk for Logitech Casa touchpad (stable-fixes). * hid: core: remove unnecessary WARN_ON() in implement() (git-fixes). * hid: logitech-dj: Fix memory leak in logi_dj_recv_switch_to_dj_mode() (git- fixes). * hid: wacom: Modify pen IDs (git-fixes). * hpet: Support 32-bit userspace (git-fixes). * hwmon: (adt7475) Fix default duty on fan is disabled (git-fixes). * hwmon: (max6697) Fix swapped temp{1,8} critical alarms (git-fixes). * hwmon: (max6697) Fix underflow when writing limit attributes (git-fixes). * hwmon: (shtc1) Fix property misspelling (git-fixes). * i2c: at91: Fix the functionality flags of the slave-only interface (git- fixes). * i2c: designware: Fix the functionality flags of the slave-only interface (git-fixes). * i2c: mark HostNotify target address as used (git-fixes). * i2c: ocores: set IACK bit after core is enabled (git-fixes). * i2c: rcar: bring hardware to known state when probing (git-fixes). * i2c: tegra: Fix failure during probe deferral cleanup (git-fixes) * i2c: tegra: Share same DMA channel for RX and TX (bsc#1227661) * i2c: testunit: avoid re-issued work after read message (git-fixes). * i2c: testunit: correct Kconfig description (git-fixes). * i2c: testunit: discard write requests while old command is running (git- fixes). * i2c: testunit: do not erase registers after STOP (git-fixes). * iio: accel: fxls8962af: select IIO_BUFFER & IIO_KFIFO_BUF (git-fixes). * iio: adc: ad7266: Fix variable checking bug (git-fixes). * iio: adc: ad9467: fix scan type sign (git-fixes). * iio: chemical: bme680: Fix calibration data variable (git-fixes). * iio: chemical: bme680: Fix overflows in compensate() functions (git-fixes). * iio: chemical: bme680: Fix pressure value output (git-fixes). * iio: chemical: bme680: Fix sensor data read operation (git-fixes). * iio: dac: ad5592r: fix temperature channel scaling value (git-fixes). * iio: imu: inv_icm42600: delete unneeded update watermark call (git-fixes). * input: elan_i2c - do not leave interrupt disabled on suspend failure (git- fixes). * input: elantech - fix touchpad state on resume for Lenovo N24 (stable- fixes). * input: ff-core - prefer struct_size over open coded arithmetic (stable- fixes). * Input: ili210x - fix ili251x_read_touch_data() return value (git-fixes). * input: qt1050 - handle CHIP_ID reading error (git-fixes). * input: silead - Always support 10 fingers (stable-fixes). * intel_th: pci: Add Granite Rapids SOC support (stable-fixes). * intel_th: pci: Add Granite Rapids support (stable-fixes). * intel_th: pci: Add Lunar Lake support (stable-fixes). * intel_th: pci: Add Meteor Lake-S CPU support (stable-fixes). * intel_th: pci: Add Meteor Lake-S support (stable-fixes). * intel_th: pci: Add Sapphire Rapids SOC support (stable-fixes). * iommu: mtk: fix module autoloading (git-fixes). * iommu: Return right value in iommu_sva_bind_device() (git-fixes). * iommu/amd: Fix sysfs leak in iommu init (git-fixes). * iommu/arm-smmu-v3: Free MSIs in case of ENOMEM (git-fixes). * ionic: clean interrupt before enabling queue to avoid credit race (git- fixes). * ipvs: Fix checksumming on GSO of SCTP packets (bsc#1221958) * jffs2: Fix potential illegal address access in jffs2_free_inode (git-fixes). * jfs: Fix array-index-out-of-bounds in diFree (git-fixes). * jfs: xattr: fix buffer overflow for invalid xattr (bsc#1227383). * kabi: bpf: bpf_reg_state reorganization kABI workaround (bsc#1225903). * kabi: bpf: callback fixes kABI workaround (bsc#1225903). * kabi: bpf: struct bpf_{idmap,idset} kABI workaround (bsc#1225903). * kabi: bpf: tmp_str_buf kABI workaround (bsc#1225903). * kabi: rtas: Workaround false positive due to lost definition (bsc#1227487). * kabi: Use __iowriteXX_copy_inlined for in-kernel modules (bsc#1226502) * kabi/severities: ignore kABI for FireWire sound local symbols (bsc#1208783) * kabi/severities: Ignore tpm_tis_core_init (bsc#1082555). * kabi/severity: add nvme common code The nvme common code is also allowed to change the data structures, there are only internal users. * kbuild: do not include include/config/auto.conf from shell scripts (bsc#1227274). * kbuild: Install dtb files as 0644 in Makefile.dtbinst (git-fixes). * kconfig: doc: fix a typo in the note about 'imply' (git-fixes). * kconfig: fix comparison to constant symbols, 'm', 'n' (git-fixes). * kernel-binary: vdso: Own module_dir * kernel-doc: fix struct_group_tagged() parsing (git-fixes). * kernel/sched: Remove dl_boosted flag comment (git fixes (sched)). * knfsd: LOOKUP can return an illegal error value (git-fixes). * kobject_uevent: Fix OOB access within zap_modalias_env() (git-fixes). * kprobes: Make arch_check_ftrace_location static (git-fixes). * kvm: nVMX: Clear EXIT_QUALIFICATION when injecting an EPT Misconfig (git- fixes). * kvm: PPC: Book3S HV Nested: L2 LPCR should inherit L1 LPES setting (bsc#1194869). * kvm: PPC: Book3S HV: Fix "rm_exit" entry in debugfs timings (bsc#1194869). * kvm: PPC: Book3S HV: Fix the set_one_reg for MMCR3 (bsc#1194869). * kvm: PPC: Book3S HV: remove extraneous asterisk from rm_host_ipi_action() comment (bsc#1194869). * kvm: PPC: Book3S: Suppress failed alloc warning in H_COPY_TOFROM_GUEST (bsc#1194869). * kvm: PPC: Book3S: Suppress warnings when allocating too big memory slots (bsc#1194869). * kvm: s390: fix LPSWEY handling (bsc#1227635 git-fixes). * kvm: SVM: Process ICR on AVIC IPI delivery failure due to invalid target (git-fixes). * kvm: VMX: Report up-to-date exit qualification to userspace (git-fixes). * kvm: x86: Add IBPB_BRTYPE support (bsc#1228079). * kvm: x86: Always sync PIR to IRR prior to scanning I/O APIC routes (git- fixes). * kvm: x86: Bail from kvm_recalculate_phys_map() if x2APIC ID is out-of-bounds (git-fixes). * kvm: x86: Disable APIC logical map if logical ID covers multiple MDAs (git- fixes). * kvm: x86: Disable APIC logical map if vCPUs are aliased in logical mode (git-fixes). * kvm: x86: Do not advertise guest.MAXPHYADDR as host.MAXPHYADDR in CPUID (git-fixes). * kvm: x86: Explicitly skip optimized logical map setup if vCPU's LDR==0 (git- fixes). * kvm: x86: Explicitly track all possibilities for APIC map's logical modes (git-fixes). * kvm: x86: Fix broken debugregs ABI for 32 bit kernels (git-fixes). * kvm: x86: Fix KVM_GET_MSRS stack info leak (git-fixes). * kvm: x86: Honor architectural behavior for aliased 8-bit APIC IDs (git- fixes). * kvm: x86: Purge "highest ISR" cache when updating APICv state (git-fixes). * kvm: x86: Save/restore all NMIs when multiple NMIs are pending (git-fixes). * kvm: x86: Skip redundant x2APIC logical mode optimized cluster setup (git- fixes). * leds: ss4200: Convert PCIBIOS_* return codes to errnos (git-fixes). * leds: trigger: Unregister sysfs attributes before calling deactivate() (git- fixes). * leds: triggers: Flush pending brightness before activating trigger (git- fixes). * lib: memcpy_kunit: Fix an invalid format specifier in an assertion msg (git- fixes). * lib: objagg: Fix general protection fault (git-fixes). * lib: objagg: Fix spelling (git-fixes). * lib: test_objagg: Fix spelling (git-fixes). * libceph: fix race between delayed_work() and ceph_monc_stop() (bsc#1228190). * lockd: set missing fl_flags field when retrieving args (git-fixes). * lockd: use locks_inode_context helper (git-fixes). * Make AMD_HSMP=m and mark it unsupported in supported.conf (jsc#PED-8582) * media: dvb-frontends: tda10048: Fix integer overflow (stable-fixes). * media: dvb-frontends: tda18271c2dd: Remove casting during div (stable- fixes). * media: dvb-usb: dib0700_devices: Add missing release_firmware() (stable- fixes). * media: dvb-usb: Fix unexpected infinite loop in dvb_usb_read_remote_control() (git-fixes). * media: dvb: as102-fe: Fix as10x_register_addr packing (stable-fixes). * media: dvbdev: Initialize sbuf (stable-fixes). * media: dw2102: Do not translate i2c read into write (stable-fixes). * media: dw2102: fix a potential buffer overflow (git-fixes). * media: flexcop-usb: clean up endpoint sanity checks (stable-fixes). * media: flexcop-usb: fix sanity check of bNumEndpoints (git-fixes). * media: imon: Fix race getting ictx->lock (git-fixes). * media: ipu3-cio2: Use temporary storage for struct device pointer (stable- fixes). * media: lgdt3306a: Add a check against null-pointer-def (stable-fixes). * media: mxl5xx: Move xpt structures off stack (stable-fixes). * media: radio-shark2: Avoid led_names truncations (git-fixes). * media: s2255: Use refcount_t instead of atomic_t for num_channels (stable- fixes). * media: uvcvideo: Fix integer overflow calculating timestamp (git-fixes). * media: uvcvideo: Override default flags (git-fixes). * media: v4l2-core: hold videodev_lock until dev reg, finishes (stable-fixes). * media: venus: fix use after free in vdec_close (git-fixes). * media: venus: flush all buffers in output plane streamoff (git-fixes). * mei: demote client disconnect warning on suspend to debug (stable-fixes). * mei: me: release irq in mei_me_pci_resume error path (git-fixes). * mfd: omap-usb-tll: Use struct_size to allocate tll (git-fixes). * mkspec-dtb: add toplevel symlinks also on arm * mmc: core: Add mmc_gpiod_set_cd_config() function (stable-fixes). * mmc: core: Do not force a retune before RPMB switch (stable-fixes). * mmc: sdhci_am654: Add ITAPDLYSEL in sdhci_j721e_4bit_set_clock (git-fixes). * mmc: sdhci_am654: Add OTAP/ITAP delay enable (git-fixes). * mmc: sdhci_am654: Drop lookup for deprecated ti,otap-del-sel (stable-fixes). * mmc: sdhci_am654: Fix ITAPDLY for HS400 timing (git-fixes). * mmc: sdhci-acpi: Disable write protect detection on Toshiba WT10-A (stable- fixes). * mmc: sdhci-acpi: Fix Lenovo Yoga Tablet 2 Pro 1380 sdcard slot not working (stable-fixes). * mmc: sdhci-acpi: Sort DMI quirks alphabetically (stable-fixes). * mmc: sdhci-pci: Convert PCIBIOS_* return codes to errnos (git-fixes). * mmc: sdhci: Do not invert write-protect twice (git-fixes). * mmc: sdhci: Do not lock spinlock around mmc_gpio_get_ro() (git-fixes). * mtd: partitions: redboot: Added conversion of operands to a larger type (stable-fixes). * mtd: rawnand: Bypass a couple of sanity checks during NAND identification (git-fixes). * mtd: rawnand: Ensure ECC configuration is propagated to upper layers (git- fixes). * mtd: rawnand: rockchip: ensure NVDDR timings are rejected (git-fixes). * net: can: j1939: enhanced error handling for tightly received RTS messages in xtp_rx_rts_session_new (git-fixes). * net: can: j1939: Initialize unused data in j1939_send_one() (git-fixes). * net: can: j1939: recover socket queue on CAN bus error during BAM transmission (git-fixes). * net: ena: Fix redundant device NUMA node override (jsc#PED-8690). * net: mana: Enable MANA driver on ARM64 with 4K page size (jsc#PED-8491). * net: mana: Fix possible double free in error handling path (git-fixes). * net: mana: Fix the extra HZ in mana_hwc_send_request (git-fixes). * net: phy: Micrel KSZ8061: fix errata solution not taking effect problem (git-fixes). * net: phy: micrel: add Microchip KSZ 9477 to the device table (git-fixes). * net: usb: ax88179_178a: improve link status logs (git-fixes). * net: usb: ax88179_178a: improve reset check (git-fixes). * net: usb: qmi_wwan: add Telit FN912 compositions (git-fixes). * net: usb: qmi_wwan: add Telit FN920C04 compositions (stable-fixes). * net: usb: rtl8150 fix unintiatilzed variables in rtl8150_get_link_ksettings (git-fixes). * net: usb: smsc95xx: fix changing LED_SEL bit value updated from EEPROM (git- fixes). * net: usb: sr9700: fix uninitialized variable use in sr_mdio_read (git- fixes). * net/dcb: check for detached device before executing callbacks (bsc#1215587). * net/mlx5e: Fix a race in command alloc flow (git-fixes). * netfilter: conntrack: ignore overly delayed tcp packets (bsc#1223180). * netfilter: conntrack: prepare tcp_in_window for ternary return value (bsc#1223180). * netfilter: conntrack: remove pr_debug callsites from tcp tracker (bsc#1223180). * netfilter: conntrack: work around exceeded receive window (bsc#1223180). * netfs, fscache: export fscache_put_volume() and add fscache_try_get_volume() (bsc#1228459 bsc#1228462). * nfc/nci: Add the inconsistency check between the input data length and count (stable-fixes). * nfs: abort nfs_atomic_open_v23 if name is too long (bsc#1219847). * nfs: add atomic_open for NFSv3 to handle O_TRUNC correctly (bsc#1219847). * nfs: avoid infinite loop in pnfs_update_layout (bsc#1219633 bsc#1226226). * nfs: Fix READ_PLUS when server does not support OP_READ_PLUS (git-fixes). * nfs: fix undefined behavior in nfs_block_bits() (git-fixes). * nfs: keep server info for remounts (git-fixes). * nfs: Leave pages in the pagecache if readpage failed (git-fixes). * nfsd enforce filehandle check for source file in COPY (git-fixes). * nfsd: Add an nfsd_file_fsync tracepoint (git-fixes). * nfsd: Add an NFSD_FILE_GC flag to enable nfsd_file garbage collection (git- fixes). * nfsd: Add errno mapping for EREMOTEIO (git-fixes). * nfsd: Add nfsd_file_lru_dispose_list() helper (git-fixes). * nfsd: add some comments to nfsd_file_do_acquire (git-fixes). * nfsd: allow nfsd_file_get to sanely handle a NULL pointer (git-fixes). * nfsd: allow reaping files still under writeback (git-fixes). * nfsd: Avoid calling fh_drop_write() twice in do_nfsd_create() (git-fixes). * nfsd: Clean up nfsd_file_put() (git-fixes). * nfsd: Clean up nfsd_open_verified() (git-fixes). * nfsd: Clean up nfsd3_proc_create() (git-fixes). * nfsd: Clean up unused code after rhashtable conversion (git-fixes). * nfsd: Convert filecache to rhltable (git-fixes). * nfsd: Convert the filecache to use rhashtable (git-fixes). * nfsd: De-duplicate hash bucket indexing (git-fixes). * nfsd: do not free files unconditionally in __nfsd_file_cache_purge (git- fixes). * nfsd: do not fsync nfsd_files on last close (git-fixes). * nfsd: do not hand out delegation on setuid files being opened for write (git-fixes). * nfsd: do not kill nfsd_files because of lease break error (git-fixes). * nfsd: Do not leave work of closing files to a work queue (bsc#1228140). * nfsd: do not take/put an extra reference when putting a file (git-fixes). * nfsd: Ensure nf_inode is never dereferenced (git-fixes). * nfsd: fix handling of cached open files in nfsd4_open codepath (git-fixes). * nfsd: Fix licensing header in filecache.c (git-fixes). * nfsd: fix net-namespace logic in __nfsd_file_cache_purge (git-fixes). * nfsd: fix nfsd_file_unhash_and_dispose (git-fixes). * nfsd: Fix potential use-after-free in nfsd_file_put() (git-fixes). * nfsd: Fix problem of COMMIT and NFS4ERR_DELAY in infinite loop (git-fixes). * nfsd: Fix the filecache LRU shrinker (git-fixes). * nfsd: fix up the filecache laundrette scheduling (git-fixes). * nfsd: fix use-after-free in nfsd_file_do_acquire tracepoint (git-fixes). * nfsd: Flesh out a documenting comment for filecache.c (git-fixes). * nfsd: handle errors better in write_ports_addfd() (git-fixes). * nfsd: Instantiate a struct file when creating a regular NFSv4 file (git- fixes). * nfsd: Leave open files out of the filecache LRU (git-fixes). * nfsd: map EBADF (git-fixes). * nfsd: Move nfsd_file_trace_alloc() tracepoint (git-fixes). * nfsd: nfsd_file_hash_remove can compute hashval (git-fixes). * nfsd: NFSD_FILE_KEY_INODE only needs to find GC'ed entries (git-fixes). * nfsd: nfsd_file_put() can sleep (git-fixes). * nfsd: nfsd_file_unhash can compute hashval from nf->nf_inode (git-fixes). * nfsd: No longer record nf_hashval in the trace log (git-fixes). * nfsd: optimise recalculate_deny_mode() for a common case (bsc#1217912). * nfsd: Pass the target nfsd_file to nfsd_commit() (git-fixes). * nfsd: put the export reference in nfsd4_verify_deleg_dentry (git-fixes). * nfsd: Record number of flush calls (git-fixes). * nfsd: Refactor __nfsd_file_close_inode() (git-fixes). * nfsd: Refactor nfsd_create_setattr() (git-fixes). * nfsd: Refactor nfsd_file_gc() (git-fixes). * nfsd: Refactor nfsd_file_lru_scan() (git-fixes). * nfsd: Refactor NFSv3 CREATE (git-fixes). * nfsd: Refactor NFSv4 OPEN(CREATE) (git-fixes). * nfsd: Remove do_nfsd_create() (git-fixes). * nfsd: Remove lockdep assertion from unhash_and_release_locked() (git-fixes). * nfsd: Remove nfsd_file::nf_hashval (git-fixes). * nfsd: remove the pages_flushed statistic from filecache (git-fixes). * nfsd: reorganize filecache.c (git-fixes). * nfsd: Replace the "init once" mechanism (git-fixes). * nfsd: Report average age of filecache items (git-fixes). * nfsd: Report count of calls to nfsd_file_acquire() (git-fixes). * nfsd: Report count of freed filecache items (git-fixes). * nfsd: Report filecache LRU size (git-fixes). * nfsd: Report the number of items evicted by the LRU walk (git-fixes). * nfsd: Retry once in nfsd_open on an -EOPENSTALE return (git-fixes). * nfsd: rework hashtable handling in nfsd_do_file_acquire (git-fixes). * nfsd: rework refcounting in filecache (git-fixes). * nfsd: Separate tracepoints for acquire and create (git-fixes). * nfsd: Set up an rhashtable for the filecache (git-fixes). * nfsd: silence extraneous printk on nfsd.ko insertion (git-fixes). * nfsd: simplify per-net file cache management (git-fixes). * nfsd: simplify test_bit return in NFSD_FILE_KEY_FULL comparator (git-fixes). * nfsd: simplify the delayed disposal list code (git-fixes). * nfsd: Trace filecache LRU activity (git-fixes). * nfsd: Trace filecache opens (git-fixes). * nfsd: update comment over __nfsd_file_cache_purge (git-fixes). * nfsd: verify the opened dentry after setting a delegation (git-fixes). * nfsd: WARN when freeing an item still linked via nf_lru (git-fixes). * nfsd: Write verifier might go backwards (git-fixes). * nfsd: Zero counters when the filecache is re-initialized (git-fixes). * nfsv4: by default serialize open/close operations (bsc#1223863 bsc#1227362) * nfsv4: Fixup smatch warning for ambiguous return (git-fixes). * nilfs2: add missing check for inode numbers on directory entries (git- fixes). * nilfs2: add missing check for inode numbers on directory entries (stable- fixes). * nilfs2: avoid undefined behavior in nilfs_cnt32_ge macro (git-fixes). * nilfs2: convert persistent object allocator to use kmap_local (git-fixes). * nilfs2: fix incorrect inode allocation from reserved inodes (git-fixes). * nilfs2: fix inode number range checks (git-fixes). * nilfs2: fix inode number range checks (stable-fixes). * nilfs2: fix potential hang in nilfs_detach_log_writer() (stable-fixes). * nvme-auth: alloc nvme_dhchap_key as single buffer (git-fixes). * nvme-auth: allow mixing of secret and hash lengths (git-fixes). * nvme-auth: use transformed key size to create resp (git-fixes). * nvme-multipath: find NUMA path only for online numa-node (git-fixes). * nvme-pci: add missing condition check for existence of mapped data (git- fixes). * nvme-pci: Fix the instructions for disabling power management (git-fixes). * nvme: adjust multiples of NVME_CTRL_PAGE_SIZE in offset (git-fixes). * nvme: avoid double free special payload (git-fixes). * nvme: ensure reset state check ordering (bsc#1215492). * nvme: find numa distance only if controller has valid numa id (git-fixes). * nvme: fixup comment for nvme RDMA Provider Type (git-fixes). * nvme: use ctrl state accessor (bsc#1215492). * nvmet-auth: fix nvmet_auth hash error handling (git-fixes). * nvmet-passthru: propagate status from id override functions (git-fixes). * nvmet: always initialize cqe.result (git-fixes). * nvmet: fix a possible leak when destroy a ctrl during qp establishment (git- fixes). * ocfs2: adjust enabling place for la window (bsc#1219224). * ocfs2: fix DIO failure due to insufficient transaction credits (bsc#1216834). * ocfs2: fix sparse warnings (bsc#1219224). * ocfs2: improve write IO performance when fragmentation is high (bsc#1219224). * ocfs2: remove redundant assignment to variable free_space (bsc#1228409). * ocfs2: speed up chain-list searching (bsc#1219224). * ocfs2: strict bound check before memcmp in ocfs2_xattr_find_entry() (bsc#1228410). * orangefs: fix out-of-bounds fsid access (git-fixes). * pci: Add PCI_ERROR_RESPONSE and related definitions (stable-fixes). * pci: Clear Secondary Status errors after enumeration (bsc#1226928) * pci: Extend ACS configurability (bsc#1228090). * pci: Fix resource double counting on remove & rescan (git-fixes). * pci: hv: Return zero, not garbage, when reading PCI_INTERRUPT_PIN (git- fixes). * pci: Introduce cleanup helpers for device reference counts and locks (git- fixes). * pci: Introduce cleanup helpers for device reference counts and locks (stable-fixes). * pci: keystone: Do not enable BAR 0 for AM654x (git-fixes). * pci: keystone: Fix NULL pointer dereference in case of DT error in ks_pcie_setup_rc_app_regs() (git-fixes). * pci: keystone: Relocate ks_pcie_set/clear_dbi_mode() (git-fixes). * pci: rockchip: Use GPIOD_OUT_LOW flag while requesting ep_gpio (git-fixes). * pci: tegra194: Set EP alignment restriction for inbound ATU (git-fixes). * pci/aspm: Update save_state when configuration changes (bsc#1226915) * pci/dpc: Fix use-after-free on concurrent DPC and hot-removal (git-fixes). * pci/pm: Avoid D3cold for HP Pavilion 17 PC/1972 PCIe Ports (git-fixes). * pci/pm: Avoid D3cold for HP Pavilion 17 PC/1972 PCIe Ports (stable-fixes). * pinctrl: core: fix possible memory leak when pinctrl_enable() fails (git- fixes). * pinctrl: fix deadlock in create_pinctrl() when handling -EPROBE_DEFER (git- fixes). * pinctrl: freescale: mxs: Fix refcount of child (git-fixes). * pinctrl: qcom: spmi-gpio: drop broken pm8008 support (git-fixes). * pinctrl: rockchip: fix pinmux bits for RK3328 GPIO2-B pins (git-fixes). * pinctrl: rockchip: fix pinmux bits for RK3328 GPIO3-B pins (git-fixes). * pinctrl: rockchip: fix pinmux reset in rockchip_pmx_set (git-fixes). * pinctrl: rockchip: update rk3308 iomux routes (git-fixes). * pinctrl: rockchip: use dedicated pinctrl type for RK3328 (git-fixes). * pinctrl: single: fix possible memory leak when pinctrl_enable() fails (git- fixes). * pinctrl: ti: ti-iodelay: fix possible memory leak when pinctrl_enable() fails (git-fixes). * platform/chrome: cros_ec_debugfs: fix wrong EC message version (git-fixes). * platform/chrome: cros_ec_proto: Lock device when updating MKBP version (git- fixes). * platform/x86: dell-smbios-base: Use sysfs_emit() (stable-fixes). * platform/x86: dell-smbios: Fix wrong token data in sysfs (git-fixes). * platform/x86: lg-laptop: Change ACPI device id (stable-fixes). * platform/x86: lg-laptop: Remove LGEX0815 hotkey handling (stable-fixes). * platform/x86: touchscreen_dmi: Add info for GlobalSpace SolT IVW 11.6" tablet (stable-fixes). * platform/x86: touchscreen_dmi: Add info for the EZpad 6s Pro (stable-fixes). * platform/x86: wireless-hotkey: Add support for LG Airplane Button (stable- fixes). * power: supply: cros_usbpd: provide ID table for avoiding fallback match (stable-fixes). * powerpc: fix a file leak in kvm_vcpu_ioctl_enable_cap() (bsc#1194869). * powerpc/cpuidle: Set CPUIDLE_FLAG_POLLING for snooze state (bsc#1227121 ltc#207129). * powerpc/kasan: Disable address sanitization in kexec paths (bsc#1194869). * powerpc/pseries: Fix scv instruction crash with kexec (bsc#1194869). * powerpc/rtas: clean up includes (bsc#1227487). * powerpc/rtas: Prevent Spectre v1 gadget construction in sys_rtas() (bsc#1227487). * pwm: stm32: Always do lazy disabling (git-fixes). * random: treat bootloader trust toggle the same way as cpu trust toggle (bsc#1226953). * ras/amd/atl: Fix MI300 bank hash (bsc#1225300). * ras/amd/atl: Use system settings for MI300 DRAM to normalized address translation (bsc#1225300). * rdma/cache: Release GID table even if leak is detected (git-fixes) * rdma/device: Return error earlier if port in not valid (git-fixes) * rdma/hns: Check atomic wr length (git-fixes) * rdma/hns: Fix incorrect sge nums calculation (git-fixes) * rdma/hns: Fix insufficient extend DB for VFs. (git-fixes) * rdma/hns: Fix mbx timing out before CMD execution is completed (git-fixes) * rdma/hns: Fix missing pagesize and alignment check in FRMR (git-fixes) * rdma/hns: Fix shift-out-bounds when max_inline_data is 0 (git-fixes) * rdma/hns: Fix soft lockup under heavy CEQE load (git-fixes) * rdma/hns: Fix undifined behavior caused by invalid max_sge (git-fixes) * rdma/hns: Fix unmatch exception handling when init eq table fails (git- fixes) * rdma/irdma: Drop unused kernel push code (git-fixes) * rdma/iwcm: Fix a use-after-free related to destroying CM IDs (git-fixes) * rdma/mana_ib: Ignore optional access flags for MRs (git-fixes). * rdma/mlx4: Fix truncated output warning in alias_GUID.c (git-fixes) * rdma/mlx4: Fix truncated output warning in mad.c (git-fixes) * rdma/mlx5: Add check for srq max_sge attribute (git-fixes) * rdma/mlx5: Set mkeys for dmabuf at PAGE_SIZE (git-fixes) * rdma/restrack: Fix potential invalid address access (git-fixes) * rdma/rxe: Do not set BTH_ACK_MASK for UC or UD QPs (git-fixes) * regmap-i2c: Subtract reg size from max_write (stable-fixes). * regulator: bd71815: fix ramp values (git-fixes). * regulator: core: Fix modpost error "regulator_get_regmap" undefined (git- fixes). * regulator: irq_helpers: duplicate IRQ name (stable-fixes). * regulator: vqmmc-ipq4019: fix module autoloading (stable-fixes). * Revert "Add remote for nfs maintainer" * Revert "ALSA: firewire-lib: obsolete workqueue for period update" (bsc#1208783). * Revert "ALSA: firewire-lib: operate for period elapse event in process context" (bsc#1208783). * Revert "build initrd without systemd" (bsc#1195775)". * Revert "leds: led-core: Fix refcount leak in of_led_get()" (git-fixes). * Revert "usb: musb: da8xx: Set phy in OTG mode by default" (stable-fixes). * rpcrdma: fix handling for RDMA_CM_EVENT_DEVICE_REMOVAL (git-fixes). * rpm/guards: fix precedence issue with control flow operator * rpm/kernel-obs-build.spec.in: Add iso9660 (bsc#1226212) * rpm/kernel-obs-build.spec.in: Add networking modules for docker (bsc#1226211) * rpm/kernel-obs-build.spec.in: Include algif_hash, aegis128 and xts modules afgif_hash is needed by some packages (e.g. iwd) for tests, xts is used for LUKS2 volumes by default and aegis128 is useful as AEAD cipher for LUKS2. * rpm/mkspec-dtb: dtbs have moved to vendor sub-directories in 6.5 * rtc: cmos: Fix return value of nvmem callbacks (git-fixes). * rtc: interface: Add RTC offset to alarm after fix-up (git-fixes). * rtc: isl1208: Fix return value of nvmem callbacks (git-fixes). * rtlwifi: rtl8192de: Style clean-ups (stable-fixes). * s390: Implement __iowrite32_copy() (bsc#1226502) * s390: Stop using weak symbols for __iowrite64_copy() (bsc#1226502) * saa7134: Unchecked i2c_transfer function result fixed (git-fixes). * sched: Fix stop_one_cpu_nowait() vs hotplug (git fixes (sched)). * sched/core: Fix incorrect initialization of the 'burst' parameter in cpu_max_write() (bsc#1226791). * sched/fair: Do not balance task to its current running CPU (git fixes (sched)). * scsi: lpfc: Allow DEVICE_RECOVERY mode after RSCN receipt if in PRLI_ISSUE state (bsc#1228857). * scsi: lpfc: Cancel ELS WQE instead of issuing abort when SLI port is inactive (bsc#1228857). * scsi: lpfc: Fix handling of fully recovered fabric node in dev_loss callbk (bsc#1228857). * scsi: lpfc: Fix incorrect request len mbox field when setting trunking via sysfs (bsc#1228857). * scsi: lpfc: Handle mailbox timeouts in lpfc_get_sfp_info (bsc#1228857). * scsi: lpfc: Relax PRLI issue conditions after GID_FT response (bsc#1228857). * scsi: lpfc: Revise lpfc_prep_embed_io routine with proper endian macro usages (bsc#1228857). * scsi: lpfc: Update lpfc version to 14.4.0.3 (bsc#1228857). * scsi: qla2xxx: Avoid possible run-time warning with long model_num (bsc#1228850). * scsi: qla2xxx: Complete command early within lock (bsc#1228850). * scsi: qla2xxx: Convert comma to semicolon (bsc#1228850). * scsi: qla2xxx: Drop driver owner assignment (bsc#1228850). * scsi: qla2xxx: During vport delete send async logout explicitly (bsc#1228850). * scsi: qla2xxx: Fix debugfs output for fw_resource_count (bsc#1228850). * scsi: qla2xxx: Fix flash read failure (bsc#1228850). * scsi: qla2xxx: Fix for possible memory corruption (bsc#1228850). * scsi: qla2xxx: Fix optrom version displayed in FDMI (bsc#1228850). * scsi: qla2xxx: Indent help text (bsc#1228850). * scsi: qla2xxx: Reduce fabric scan duplicate code (bsc#1228850). * scsi: qla2xxx: Remove unused struct 'scsi_dif_tuple' (bsc#1228850). * scsi: qla2xxx: Return ENOBUFS if sg_cnt is more than one for ELS cmds (bsc#1228850). * scsi: qla2xxx: Unable to act on RSCN for port online (bsc#1228850). * scsi: qla2xxx: Update version to 10.02.09.300-k (bsc#1228850). * scsi: qla2xxx: Use QP lock to search for bsg (bsc#1228850). * scsi: qla2xxx: validate nvme_local_port correctly (bsc#1228850). * scsi: sd: Update DIX config every time sd_revalidate_disk() is called (bsc#1218570). * selftests/bpf: __imm_insn & __imm_const macro for bpf_misc.h (bsc#1225903). * selftests/bpf: Add a selftest for checking subreg equality (bsc#1225903). * selftests/bpf: add pre bpf_prog_test_run_opts() callback for test_loader (bsc#1225903). * selftests/bpf: add precision propagation tests in the presence of subprogs (bsc#1225903). * selftests/bpf: Add pruning test case for bpf_spin_lock (bsc#1225903). * selftests/bpf: Check if mark_chain_precision() follows scalar ids (bsc#1225903). * selftests/bpf: check if max number of bpf_loop iterations is tracked (bsc#1225903). * selftests/bpf: fix __retval() being always ignored (bsc#1225903). * selftests/bpf: fix unpriv_disabled check in test_verifier (bsc#1225903). * selftests/bpf: make test_align selftest more robust (bsc#1225903). * selftests/bpf: populate map_array_ro map for verifier_array_access test (bsc#1225903). * selftests/bpf: prog_tests entry point for migrated test_verifier tests (bsc#1225903). * selftests/bpf: Report program name on parse_test_spec error (bsc#1225903). * selftests/bpf: Support custom per-test flags and multiple expected messages (bsc#1225903). * selftests/bpf: test case for callback_depth states pruning logic (bsc#1225903). * selftests/bpf: test case for relaxed prunning of active_lock.id (bsc#1225903). * selftests/bpf: test cases for regsafe() bug skipping check_id() (bsc#1225903). * selftests/bpf: test widening for iterating callbacks (bsc#1225903). * selftests/bpf: Tests execution support for test_loader.c (bsc#1225903). * selftests/bpf: tests for iterating callbacks (bsc#1225903). * selftests/bpf: track string payload offset as scalar in strobemeta (bsc#1225903). * selftests/bpf: Unprivileged tests for test_loader.c (bsc#1225903). * selftests/bpf: Verify copy_register_state() preserves parent/live fields (bsc#1225903). * selftests/bpf: verify states_equal() maintains idmap across all frames (bsc#1225903). * selftests/bpf: Verify that check_ids() is used for scalars in regsafe() (bsc#1225903). * selftests/sigaltstack: Fix ppc64 GCC build (git-fixes). * smb: client: ensure to try all targets when finding nested links (bsc#1224020). * smb: client: guarantee refcounted children from parent session (bsc#1224679. * soc: ti: wkup_m3_ipc: Send NULL dummy message instead of pointer message (stable-fixes). * soundwire: cadence: fix invalid PDI offset (stable-fixes). * spi: imx: Do not expect DMA for i.MX{25,35,50,51,53} cspi devices (stable- fixes). * spi: mux: set ctlr->bits_per_word_mask (stable-fixes). * spi: stm32: Do not warn about spurious interrupts (git-fixes). * string.h: Introduce memtostr() and memtostr_pad() (bsc#1228850). * sunrpc: avoid soft lockup when transmitting UDP to reachable server (bsc#1225272). * sunrpc: Fix gss_free_in_token_pages() (git-fixes). * sunrpc: Fix loop termination condition in gss_free_in_token_pages() (git- fixes). * sunrpc: fix NFSACL RPC retry on soft mount (git-fixes). * sunrpc: return proper error from gss_wrap_req_priv (git-fixes). * supported.conf: Add APM X-Gene SoC hardware monitoring driver (bsc#1223265 jsc#PED-8570) * supported.conf: mark orangefs as optional We do not support orangefs at all (and it is already marked as such), but since there are no SLE consumers of it, mark it as optional. * supported.conf: mark ufs as unsupported UFS is an unsupported filesystem, mark it as such. We still keep it around (not marking as optional), to accommodate any potential migrations from BSD systems. * tpm_tis: Resend command to recover from data transfer errors (bsc#1082555). * tpm_tis: Use tpm_chip_{start,stop} decoration inside tpm_tis_resume (bsc#1082555). * tpm, tpm_tis: Avoid cache incoherency in test for interrupts (bsc#1082555). * tpm, tpm_tis: Claim locality before writing interrupt registers (bsc#1082555). * tpm, tpm_tis: Claim locality in interrupt handler (bsc#1082555). * tpm, tpm_tis: Claim locality when interrupts are reenabled on resume (bsc#1082555). * tpm, tpm_tis: correct tpm_tis_flags enumeration values (bsc#1082555). * tpm, tpm_tis: Do not skip reset of original interrupt vector (bsc#1082555). * tpm, tpm_tis: Only handle supported interrupts (bsc#1082555). * tpm, tpm: Implement usage counter for locality (bsc#1082555). * tpm: Allow system suspend to continue when TPM suspend fails (bsc#1082555). * tpm: Prevent hwrng from activating during resume (bsc#1082555). * tracing: Build event generation tests only as modules (git-fixes). * tracing/net_sched: NULL pointer dereference in perf_trace_qdisc_reset() (git-fixes). * tracing/osnoise: Add OSNOISE_WORKLOAD option (bsc#1228330) * tracing/osnoise: Add osnoise/options file (bsc#1228330) * tracing/osnoise: Do not follow tracing_cpumask (bsc#1228330) * tracing/osnoise: Fix notify new tracing_max_latency (bsc#1228330) * tracing/osnoise: Make osnoise_instances static (bsc#1228330) * tracing/osnoise: Split workload start from the tracer start (bsc#1228330) * tracing/osnoise: Support a list of trace_array *tr (bsc#1228330) * tracing/osnoise: Use built-in RCU list checking (bsc#1228330) * tracing/timerlat: Notify new max thread latency (bsc#1228330) * tty: mcf: MCF54418 has 10 UARTS (git-fixes). * usb-storage: alauda: Check whether the media is initialized (git-fixes). * usb: Add USB_QUIRK_NO_SET_INTF quirk for START BP-850k (stable-fixes). * usb: atm: cxacru: fix endpoint checking in cxacru_bind() (git-fixes). * usb: cdns3: allocate TX FIFO size according to composite EP number (git- fixes). * usb: cdns3: fix incorrect calculation of ep_buf_size when more than one config (git-fixes). * usb: cdns3: fix iso transfer error when mult is not zero (git-fixes). * usb: cdns3: improve handling of unaligned address case (git-fixes). * usb: cdns3: optimize OUT transfer by copying only actual received data (git- fixes). * usb: cdns3: skip set TRB_IOC when usb_request: no_interrupt is true (git- fixes). * usb: class: cdc-wdm: Fix CPU lockup caused by excessive log messages (git- fixes). * usb: core: Fix duplicate endpoint bug by clearing reserved bits in the descriptor (git-fixes). * usb: dwc3: core: remove lock of otg mode during gadget suspend/resume to avoid deadlock (git-fixes). * usb: dwc3: gadget: Do not delay End Transfer on delayed_status (git-fixes). * usb: dwc3: gadget: Force sending delayed status during soft disconnect (git- fixes). * usb: dwc3: gadget: Synchronize IRQ between soft connect/disconnect (git- fixes). * usb: fotg210-hcd: delete an incorrect bounds test (git-fixes). * usb: gadget: call usb_gadget_check_config() to verify UDC capability (git- fixes). * usb: gadget: configfs: Prevent OOB read/write in usb_string_copy() (stable- fixes). * usb: gadget: printer: fix races against disable (git-fixes). * usb: gadget: printer: SS+ support (stable-fixes). * usb: misc: uss720: check for incompatible versions of the Belkin F5U002 (stable-fixes). * usb: musb: da8xx: fix a resource leak in probe() (git-fixes). * usb: serial: mos7840: fix crash on resume (git-fixes). * usb: serial: option: add Fibocom FM350-GL (stable-fixes). * usb: serial: option: add Netprisma LCUK54 series modules (stable-fixes). * usb: serial: option: add Rolling RW350-GL variants (stable-fixes). * usb: serial: option: add support for Foxconn T99W651 (stable-fixes). * usb: serial: option: add Telit FN912 rmnet compositions (stable-fixes). * usb: serial: option: add Telit generic core-dump composition (stable-fixes). * usb: typec: tcpm: clear pd_event queue in PORT_RESET (git-fixes). * usb: typec: tcpm: fix use-after-free case in tcpm_register_source_caps (git- fixes). * usb: typec: tcpm: Ignore received Hard Reset in TOGGLING state (git-fixes). * usb: typec: ucsi: Ack also failed Get Error commands (git-fixes). * usb: typec: ucsi: Never send a lone connector change ack (git-fixes). * usb: xen-hcd: Traverse host/ when CONFIG_USB_XEN_HCD is selected (git- fixes). * usb: xhci-plat: Do not include xhci.h (git-fixes). * usb: xhci-plat: fix legacy PHY double init (git-fixes). * usb: xhci: address off-by-one in xhci_num_trbs_free() (git-fixes). * usb: xhci: Implement xhci_handshake_check_state() helper (git-fixes). * usb: xhci: improve debug message in xhci_ring_expansion_needed() (git- fixes). * watchdog: bd9576_wdt: switch to using devm_fwnode_gpiod_get() (stable- fixes). * watchdog: bd9576: Drop "always-running" property (git-fixes). * wifi: ath11k: fix wrong handling of CCMP256 and GCMP ciphers (git-fixes). * wifi: brcmsmac: LCN PHY code is used for BCM4313 2G-only device (git-fixes). * wifi: cfg80211: fix the order of arguments for trace events of the tx_rx_evt class (stable-fixes). * wifi: cfg80211: fix typo in cfg80211_calculate_bitrate_he() (git-fixes). * wifi: cfg80211: handle 2x996 RU allocation in cfg80211_calculate_bitrate_he() (git-fixes). * wifi: cfg80211: Lock wiphy in cfg80211_get_station (git-fixes). * wifi: cfg80211: pmsr: use correct nla_get_uX functions (git-fixes). * wifi: cfg80211: restrict NL80211_ATTR_TXQ_QUANTUM values (git-fixes). * wifi: cfg80211: wext: add extra SIOCSIWSCAN data check (stable-fixes). * wifi: iwlwifi: dbg_ini: move iwl_dbg_tlv_free outside of debugfs ifdef (git- fixes). * wifi: iwlwifi: mvm: check n_ssids before accessing the ssids (git-fixes). * wifi: iwlwifi: mvm: d3: fix WoWLAN command version lookup (stable-fixes). * wifi: iwlwifi: mvm: do not read past the mfuart notifcation (git-fixes). * wifi: iwlwifi: mvm: Handle BIGTK cipher in kek_kck cmd (stable-fixes). * wifi: iwlwifi: mvm: properly set 6 GHz channel direct probe option (stable- fixes). * wifi: iwlwifi: mvm: revert gen2 TX A-MPDU size to 64 (git-fixes). * wifi: mac80211: correctly parse Spatial Reuse Parameter Set element (git- fixes). * wifi: mac80211: disable softirqs for queued frame handling (git-fixes). * wifi: mac80211: Fix deadlock in ieee80211_sta_ps_deliver_wakeup() (git- fixes). * wifi: mac80211: fix UBSAN noise in ieee80211_prep_hw_scan() (stable-fixes). * wifi: mac80211: handle tasklet frames before stopping (stable-fixes). * wifi: mac80211: mesh: Fix leak of mesh_preq_queue objects (git-fixes). * wifi: mac80211: mesh: init nonpeer_pm to active by default in mesh sdata (stable-fixes). * wifi: mt76: replace skb_put with skb_put_zero (stable-fixes). * wifi: mwifiex: Fix interface type change (git-fixes). * wifi: rtl8xxxu: Fix the TX power of RTL8192CU, RTL8723AU (stable-fixes). * wifi: rtlwifi: rtl8192de: Fix endianness issue in RX path (stable-fixes). * wifi: rtlwifi: rtl8192de: Fix low speed with WPA3-SAE (stable-fixes). * wifi: rtw89: Fix array index mistake in rtw89_sta_info_get_iter() (git- fixes). * wifi: wilc1000: fix ies_len type in connect path (git-fixes). * workqueue: Improve scalability of workqueue watchdog touch (bsc#1193454). * workqueue: wq_watchdog_touch is always called with valid CPU (bsc#1193454). * x.509: Fix the parser of extended key usage for length (bsc#1218820). * x86: Stop using weak symbols for __iowrite32_copy() (bsc#1226502) * x86/amd_nb: Use Family 19h Models 60h-7Fh Function 4 IDs (git-fixes). * x86/apic: Force native_apic_mem_read() to use the MOV instruction (git- fixes). * x86/bhi: Avoid warning in #DB handler due to BHI mitigation (git-fixes). * x86/bugs: Remove default case for fully switched enums (bsc#1227900). * x86/fpu: Fix AMD X86_BUG_FXSAVE_LEAK fixup (git-fixes). * x86/ibt,ftrace: Search for **fentry** location (git-fixes). * x86/Kconfig: Transmeta Crusoe is CPU family 5, not 6 (git-fixes). * x86/mce: Dynamically size space for machine check records (bsc#1222241). * x86/mm: Allow guest.enc_status_change_prepare() to fail (git-fixes). * x86/mm: Fix enc_status_change_finish_noop() (git-fixes). * x86/purgatory: Switch to the position-independent small code model (git- fixes). * x86/srso: Move retbleed IBPB check into existing 'has_microcode' code block (bsc#1227900). * x86/srso: Remove 'pred_cmd' label (bsc#1227900). * x86/tdx: Fix race between set_memory_encrypted() and load_unaligned_zeropad() (git-fixes). * x86/tsc: Trust initial offset in architectural TSC-adjust MSRs (bsc#1222015 bsc#1226962). * xfs: Add cond_resched to block unmap range and reflink remap path (bsc#1228226). * xfs: make sure sb_fdblocks is non-negative (bsc#1225419). * xhci: Apply broken streams quirk to Etron EJ188 xHCI host (stable-fixes). * xhci: Apply reset resume quirk to Etron EJ188 xHCI host (stable-fixes). * xhci: Fix failure to detect ring expansion need (git-fixes). * xhci: fix matching completion events with TDs (git-fixes). * xhci: Fix transfer ring expansion size calculation (git-fixes). * xhci: Handle TD clearing for multiple streams case (git-fixes). * xhci: remove unused stream_id parameter from xhci_handle_halted_endpoint() (git-fixes). * xhci: restre deleted trb fields for tracing (git-fixes). * xhci: retry Stop Endpoint on buggy NEC controllers (git-fixes). * xhci: Set correct transferred length for cancelled bulk transfers (stable- fixes). * xhci: Simplify event ring dequeue pointer update for port change events (git-fixes). * xhci: simplify event ring dequeue tracking for transfer events (git-fixes). * xhci: Stop unnecessary tracking of free trbs in a ring (git-fixes). * xhci: update event ring dequeue pointer position to controller correctly (git-fixes). ## Special Instructions and Notes: * Please reboot the system after installing this update. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.5 zypper in -t patch SUSE-2024-2939=1 openSUSE-SLE-15.5-2024-2939=1 * openSUSE Leap Micro 5.5 zypper in -t patch openSUSE-Leap-Micro-5.5-2024-2939=1 * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2024-2939=1 * Basesystem Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP5-2024-2939=1 * Development Tools Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Development-Tools-15-SP5-2024-2939=1 * Legacy Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Legacy-15-SP5-2024-2939=1 * SUSE Linux Enterprise Live Patching 15-SP5 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP5-2024-2939=1 Please note that this is the initial kernel livepatch without fixes itself, this package is later updated by separate standalone kernel livepatch updates. * SUSE Linux Enterprise High Availability Extension 15 SP5 zypper in -t patch SUSE-SLE-Product-HA-15-SP5-2024-2939=1 * SUSE Linux Enterprise Workstation Extension 15 SP5 zypper in -t patch SUSE-SLE-Product-WE-15-SP5-2024-2939=1 ## Package List: * openSUSE Leap 15.5 (noarch nosrc) * kernel-docs-5.14.21-150500.55.73.2 * openSUSE Leap 15.5 (noarch) * kernel-docs-html-5.14.21-150500.55.73.2 * kernel-source-5.14.21-150500.55.73.1 * kernel-macros-5.14.21-150500.55.73.1 * kernel-devel-5.14.21-150500.55.73.1 * kernel-source-vanilla-5.14.21-150500.55.73.1 * openSUSE Leap 15.5 (nosrc ppc64le x86_64) * kernel-debug-5.14.21-150500.55.73.1 * openSUSE Leap 15.5 (ppc64le x86_64) * kernel-debug-livepatch-devel-5.14.21-150500.55.73.1 * kernel-debug-debuginfo-5.14.21-150500.55.73.1 * kernel-debug-debugsource-5.14.21-150500.55.73.1 * kernel-debug-devel-5.14.21-150500.55.73.1 * kernel-debug-devel-debuginfo-5.14.21-150500.55.73.1 * openSUSE Leap 15.5 (x86_64) * kernel-kvmsmall-vdso-debuginfo-5.14.21-150500.55.73.1 * kernel-kvmsmall-vdso-5.14.21-150500.55.73.1 * kernel-default-vdso-5.14.21-150500.55.73.1 * kernel-default-vdso-debuginfo-5.14.21-150500.55.73.1 * kernel-debug-vdso-5.14.21-150500.55.73.1 * kernel-debug-vdso-debuginfo-5.14.21-150500.55.73.1 * openSUSE Leap 15.5 (aarch64 ppc64le x86_64) * kernel-default-base-5.14.21-150500.55.73.1.150500.6.33.8 * kernel-kvmsmall-debugsource-5.14.21-150500.55.73.1 * kernel-kvmsmall-devel-5.14.21-150500.55.73.1 * kernel-kvmsmall-livepatch-devel-5.14.21-150500.55.73.1 * kernel-kvmsmall-debuginfo-5.14.21-150500.55.73.1 * kernel-kvmsmall-devel-debuginfo-5.14.21-150500.55.73.1 * kernel-default-base-rebuild-5.14.21-150500.55.73.1.150500.6.33.8 * openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64) * kselftests-kmp-default-5.14.21-150500.55.73.1 * ocfs2-kmp-default-5.14.21-150500.55.73.1 * gfs2-kmp-default-5.14.21-150500.55.73.1 * kernel-default-livepatch-devel-5.14.21-150500.55.73.1 * kernel-syms-5.14.21-150500.55.73.1 * kselftests-kmp-default-debuginfo-5.14.21-150500.55.73.1 * kernel-default-devel-debuginfo-5.14.21-150500.55.73.1 * kernel-default-optional-5.14.21-150500.55.73.1 * gfs2-kmp-default-debuginfo-5.14.21-150500.55.73.1 * dlm-kmp-default-5.14.21-150500.55.73.1 * kernel-obs-qa-5.14.21-150500.55.73.1 * kernel-default-optional-debuginfo-5.14.21-150500.55.73.1 * cluster-md-kmp-default-debuginfo-5.14.21-150500.55.73.1 * dlm-kmp-default-debuginfo-5.14.21-150500.55.73.1 * kernel-default-debugsource-5.14.21-150500.55.73.1 * ocfs2-kmp-default-debuginfo-5.14.21-150500.55.73.1 * kernel-default-devel-5.14.21-150500.55.73.1 * cluster-md-kmp-default-5.14.21-150500.55.73.1 * kernel-default-extra-5.14.21-150500.55.73.1 * reiserfs-kmp-default-debuginfo-5.14.21-150500.55.73.1 * kernel-default-extra-debuginfo-5.14.21-150500.55.73.1 * reiserfs-kmp-default-5.14.21-150500.55.73.1 * kernel-obs-build-5.14.21-150500.55.73.1 * kernel-default-livepatch-5.14.21-150500.55.73.1 * kernel-obs-build-debugsource-5.14.21-150500.55.73.1 * kernel-default-debuginfo-5.14.21-150500.55.73.1 * openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64 nosrc) * kernel-default-5.14.21-150500.55.73.1 * openSUSE Leap 15.5 (aarch64 nosrc ppc64le x86_64) * kernel-kvmsmall-5.14.21-150500.55.73.1 * openSUSE Leap 15.5 (ppc64le s390x x86_64) * kernel-livepatch-5_14_21-150500_55_73-default-debuginfo-1-150500.11.3.1 * kernel-livepatch-5_14_21-150500_55_73-default-1-150500.11.3.1 * kernel-livepatch-SLE15-SP5_Update_17-debugsource-1-150500.11.3.1 * openSUSE Leap 15.5 (nosrc s390x) * kernel-zfcpdump-5.14.21-150500.55.73.1 * openSUSE Leap 15.5 (s390x) * kernel-zfcpdump-debugsource-5.14.21-150500.55.73.1 * kernel-zfcpdump-debuginfo-5.14.21-150500.55.73.1 * openSUSE Leap 15.5 (nosrc) * dtb-aarch64-5.14.21-150500.55.73.1 * openSUSE Leap 15.5 (aarch64) * dtb-xilinx-5.14.21-150500.55.73.1 * dtb-lg-5.14.21-150500.55.73.1 * cluster-md-kmp-64kb-5.14.21-150500.55.73.1 * gfs2-kmp-64kb-5.14.21-150500.55.73.1 * kernel-64kb-optional-debuginfo-5.14.21-150500.55.73.1 * dtb-allwinner-5.14.21-150500.55.73.1 * kernel-64kb-extra-5.14.21-150500.55.73.1 * kernel-64kb-extra-debuginfo-5.14.21-150500.55.73.1 * kernel-64kb-debugsource-5.14.21-150500.55.73.1 * kernel-64kb-livepatch-devel-5.14.21-150500.55.73.1 * kernel-64kb-devel-5.14.21-150500.55.73.1 * kselftests-kmp-64kb-5.14.21-150500.55.73.1 * kernel-64kb-debuginfo-5.14.21-150500.55.73.1 * reiserfs-kmp-64kb-debuginfo-5.14.21-150500.55.73.1 * dlm-kmp-64kb-5.14.21-150500.55.73.1 * dtb-renesas-5.14.21-150500.55.73.1 * dtb-rockchip-5.14.21-150500.55.73.1 * ocfs2-kmp-64kb-5.14.21-150500.55.73.1 * reiserfs-kmp-64kb-5.14.21-150500.55.73.1 * cluster-md-kmp-64kb-debuginfo-5.14.21-150500.55.73.1 * dtb-nvidia-5.14.21-150500.55.73.1 * dtb-socionext-5.14.21-150500.55.73.1 * dtb-cavium-5.14.21-150500.55.73.1 * dtb-apple-5.14.21-150500.55.73.1 * dtb-amd-5.14.21-150500.55.73.1 * dtb-apm-5.14.21-150500.55.73.1 * dtb-amlogic-5.14.21-150500.55.73.1 * dtb-arm-5.14.21-150500.55.73.1 * dtb-mediatek-5.14.21-150500.55.73.1 * dtb-altera-5.14.21-150500.55.73.1 * dtb-broadcom-5.14.21-150500.55.73.1 * dtb-qcom-5.14.21-150500.55.73.1 * kernel-64kb-optional-5.14.21-150500.55.73.1 * kselftests-kmp-64kb-debuginfo-5.14.21-150500.55.73.1 * dtb-amazon-5.14.21-150500.55.73.1 * dtb-sprd-5.14.21-150500.55.73.1 * dtb-hisilicon-5.14.21-150500.55.73.1 * dtb-marvell-5.14.21-150500.55.73.1 * gfs2-kmp-64kb-debuginfo-5.14.21-150500.55.73.1 * kernel-64kb-devel-debuginfo-5.14.21-150500.55.73.1 * dlm-kmp-64kb-debuginfo-5.14.21-150500.55.73.1 * dtb-exynos-5.14.21-150500.55.73.1 * dtb-freescale-5.14.21-150500.55.73.1 * ocfs2-kmp-64kb-debuginfo-5.14.21-150500.55.73.1 * openSUSE Leap 15.5 (aarch64 nosrc) * kernel-64kb-5.14.21-150500.55.73.1 * openSUSE Leap Micro 5.5 (aarch64 nosrc s390x x86_64) * kernel-default-5.14.21-150500.55.73.1 * openSUSE Leap Micro 5.5 (aarch64 x86_64) * kernel-default-base-5.14.21-150500.55.73.1.150500.6.33.8 * openSUSE Leap Micro 5.5 (aarch64 s390x x86_64) * kernel-default-debugsource-5.14.21-150500.55.73.1 * kernel-default-debuginfo-5.14.21-150500.55.73.1 * SUSE Linux Enterprise Micro 5.5 (aarch64 ppc64le s390x x86_64 nosrc) * kernel-default-5.14.21-150500.55.73.1 * SUSE Linux Enterprise Micro 5.5 (aarch64 x86_64) * kernel-default-base-5.14.21-150500.55.73.1.150500.6.33.8 * SUSE Linux Enterprise Micro 5.5 (aarch64 ppc64le s390x x86_64) * kernel-default-debugsource-5.14.21-150500.55.73.1 * kernel-default-debuginfo-5.14.21-150500.55.73.1 * Basesystem Module 15-SP5 (aarch64 nosrc) * kernel-64kb-5.14.21-150500.55.73.1 * Basesystem Module 15-SP5 (aarch64) * kernel-64kb-debugsource-5.14.21-150500.55.73.1 * kernel-64kb-devel-debuginfo-5.14.21-150500.55.73.1 * kernel-64kb-debuginfo-5.14.21-150500.55.73.1 * kernel-64kb-devel-5.14.21-150500.55.73.1 * Basesystem Module 15-SP5 (aarch64 ppc64le s390x x86_64 nosrc) * kernel-default-5.14.21-150500.55.73.1 * Basesystem Module 15-SP5 (aarch64 ppc64le x86_64) * kernel-default-base-5.14.21-150500.55.73.1.150500.6.33.8 * Basesystem Module 15-SP5 (aarch64 ppc64le s390x x86_64) * kernel-default-devel-5.14.21-150500.55.73.1 * kernel-default-debugsource-5.14.21-150500.55.73.1 * kernel-default-debuginfo-5.14.21-150500.55.73.1 * kernel-default-devel-debuginfo-5.14.21-150500.55.73.1 * Basesystem Module 15-SP5 (noarch) * kernel-devel-5.14.21-150500.55.73.1 * kernel-macros-5.14.21-150500.55.73.1 * Basesystem Module 15-SP5 (nosrc s390x) * kernel-zfcpdump-5.14.21-150500.55.73.1 * Basesystem Module 15-SP5 (s390x) * kernel-zfcpdump-debugsource-5.14.21-150500.55.73.1 * kernel-zfcpdump-debuginfo-5.14.21-150500.55.73.1 * Development Tools Module 15-SP5 (noarch nosrc) * kernel-docs-5.14.21-150500.55.73.2 * Development Tools Module 15-SP5 (aarch64 ppc64le s390x x86_64) * kernel-obs-build-5.14.21-150500.55.73.1 * kernel-syms-5.14.21-150500.55.73.1 * kernel-obs-build-debugsource-5.14.21-150500.55.73.1 * Development Tools Module 15-SP5 (noarch) * kernel-source-5.14.21-150500.55.73.1 * Legacy Module 15-SP5 (nosrc) * kernel-default-5.14.21-150500.55.73.1 * Legacy Module 15-SP5 (aarch64 ppc64le s390x x86_64) * reiserfs-kmp-default-debuginfo-5.14.21-150500.55.73.1 * kernel-default-debugsource-5.14.21-150500.55.73.1 * reiserfs-kmp-default-5.14.21-150500.55.73.1 * kernel-default-debuginfo-5.14.21-150500.55.73.1 * SUSE Linux Enterprise Live Patching 15-SP5 (nosrc) * kernel-default-5.14.21-150500.55.73.1 * SUSE Linux Enterprise Live Patching 15-SP5 (ppc64le s390x x86_64) * kernel-livepatch-5_14_21-150500_55_73-default-debuginfo-1-150500.11.3.1 * kernel-livepatch-5_14_21-150500_55_73-default-1-150500.11.3.1 * kernel-default-livepatch-5.14.21-150500.55.73.1 * kernel-default-debugsource-5.14.21-150500.55.73.1 * kernel-default-livepatch-devel-5.14.21-150500.55.73.1 * kernel-default-debuginfo-5.14.21-150500.55.73.1 * SUSE Linux Enterprise Live Patching 15-SP5 (ppc64le) * kernel-livepatch-SLE15-SP5_Update_17-debugsource-1-150500.11.3.1 * SUSE Linux Enterprise High Availability Extension 15 SP5 (aarch64 ppc64le s390x x86_64) * ocfs2-kmp-default-5.14.21-150500.55.73.1 * cluster-md-kmp-default-debuginfo-5.14.21-150500.55.73.1 * gfs2-kmp-default-debuginfo-5.14.21-150500.55.73.1 * dlm-kmp-default-debuginfo-5.14.21-150500.55.73.1 * gfs2-kmp-default-5.14.21-150500.55.73.1 * dlm-kmp-default-5.14.21-150500.55.73.1 * kernel-default-debugsource-5.14.21-150500.55.73.1 * ocfs2-kmp-default-debuginfo-5.14.21-150500.55.73.1 * cluster-md-kmp-default-5.14.21-150500.55.73.1 * kernel-default-debuginfo-5.14.21-150500.55.73.1 * SUSE Linux Enterprise High Availability Extension 15 SP5 (nosrc) * kernel-default-5.14.21-150500.55.73.1 * SUSE Linux Enterprise Workstation Extension 15 SP5 (nosrc) * kernel-default-5.14.21-150500.55.73.1 * SUSE Linux Enterprise Workstation Extension 15 SP5 (x86_64) * kernel-default-extra-debuginfo-5.14.21-150500.55.73.1 * kernel-default-debugsource-5.14.21-150500.55.73.1 * kernel-default-extra-5.14.21-150500.55.73.1 * kernel-default-debuginfo-5.14.21-150500.55.73.1 ## References: * https://www.suse.com/security/cve/CVE-2021-4439.html * https://www.suse.com/security/cve/CVE-2021-47086.html * https://www.suse.com/security/cve/CVE-2021-47089.html * https://www.suse.com/security/cve/CVE-2021-47103.html * https://www.suse.com/security/cve/CVE-2021-47186.html * https://www.suse.com/security/cve/CVE-2021-47432.html * https://www.suse.com/security/cve/CVE-2021-47515.html * https://www.suse.com/security/cve/CVE-2021-47534.html * https://www.suse.com/security/cve/CVE-2021-47538.html * https://www.suse.com/security/cve/CVE-2021-47539.html * https://www.suse.com/security/cve/CVE-2021-47546.html * https://www.suse.com/security/cve/CVE-2021-47547.html * https://www.suse.com/security/cve/CVE-2021-47555.html * https://www.suse.com/security/cve/CVE-2021-47566.html * https://www.suse.com/security/cve/CVE-2021-47571.html * https://www.suse.com/security/cve/CVE-2021-47572.html * https://www.suse.com/security/cve/CVE-2021-47576.html * https://www.suse.com/security/cve/CVE-2021-47577.html * https://www.suse.com/security/cve/CVE-2021-47578.html * https://www.suse.com/security/cve/CVE-2021-47580.html * https://www.suse.com/security/cve/CVE-2021-47582.html * https://www.suse.com/security/cve/CVE-2021-47583.html * https://www.suse.com/security/cve/CVE-2021-47584.html * https://www.suse.com/security/cve/CVE-2021-47585.html * https://www.suse.com/security/cve/CVE-2021-47586.html * https://www.suse.com/security/cve/CVE-2021-47587.html * https://www.suse.com/security/cve/CVE-2021-47588.html * https://www.suse.com/security/cve/CVE-2021-47589.html * https://www.suse.com/security/cve/CVE-2021-47590.html * https://www.suse.com/security/cve/CVE-2021-47591.html * https://www.suse.com/security/cve/CVE-2021-47592.html * https://www.suse.com/security/cve/CVE-2021-47593.html * https://www.suse.com/security/cve/CVE-2021-47595.html * https://www.suse.com/security/cve/CVE-2021-47596.html * https://www.suse.com/security/cve/CVE-2021-47597.html * https://www.suse.com/security/cve/CVE-2021-47598.html * https://www.suse.com/security/cve/CVE-2021-47599.html * https://www.suse.com/security/cve/CVE-2021-47600.html * https://www.suse.com/security/cve/CVE-2021-47601.html * https://www.suse.com/security/cve/CVE-2021-47602.html * https://www.suse.com/security/cve/CVE-2021-47603.html * https://www.suse.com/security/cve/CVE-2021-47604.html * https://www.suse.com/security/cve/CVE-2021-47605.html * https://www.suse.com/security/cve/CVE-2021-47606.html * https://www.suse.com/security/cve/CVE-2021-47607.html * https://www.suse.com/security/cve/CVE-2021-47608.html * https://www.suse.com/security/cve/CVE-2021-47609.html * https://www.suse.com/security/cve/CVE-2021-47610.html * https://www.suse.com/security/cve/CVE-2021-47611.html * https://www.suse.com/security/cve/CVE-2021-47612.html * https://www.suse.com/security/cve/CVE-2021-47614.html * https://www.suse.com/security/cve/CVE-2021-47615.html * https://www.suse.com/security/cve/CVE-2021-47616.html * https://www.suse.com/security/cve/CVE-2021-47617.html * https://www.suse.com/security/cve/CVE-2021-47618.html * https://www.suse.com/security/cve/CVE-2021-47619.html * https://www.suse.com/security/cve/CVE-2021-47620.html * https://www.suse.com/security/cve/CVE-2021-47622.html * https://www.suse.com/security/cve/CVE-2021-47623.html * https://www.suse.com/security/cve/CVE-2021-47624.html * https://www.suse.com/security/cve/CVE-2022-48711.html * https://www.suse.com/security/cve/CVE-2022-48712.html * https://www.suse.com/security/cve/CVE-2022-48713.html * https://www.suse.com/security/cve/CVE-2022-48714.html * https://www.suse.com/security/cve/CVE-2022-48715.html * https://www.suse.com/security/cve/CVE-2022-48716.html * https://www.suse.com/security/cve/CVE-2022-48717.html * https://www.suse.com/security/cve/CVE-2022-48718.html * https://www.suse.com/security/cve/CVE-2022-48720.html * https://www.suse.com/security/cve/CVE-2022-48721.html * https://www.suse.com/security/cve/CVE-2022-48722.html * https://www.suse.com/security/cve/CVE-2022-48723.html * https://www.suse.com/security/cve/CVE-2022-48724.html * https://www.suse.com/security/cve/CVE-2022-48725.html * https://www.suse.com/security/cve/CVE-2022-48726.html * https://www.suse.com/security/cve/CVE-2022-48727.html * https://www.suse.com/security/cve/CVE-2022-48728.html * https://www.suse.com/security/cve/CVE-2022-48729.html * https://www.suse.com/security/cve/CVE-2022-48730.html * https://www.suse.com/security/cve/CVE-2022-48732.html * https://www.suse.com/security/cve/CVE-2022-48733.html * https://www.suse.com/security/cve/CVE-2022-48734.html * https://www.suse.com/security/cve/CVE-2022-48735.html * https://www.suse.com/security/cve/CVE-2022-48736.html * https://www.suse.com/security/cve/CVE-2022-48737.html * https://www.suse.com/security/cve/CVE-2022-48738.html * https://www.suse.com/security/cve/CVE-2022-48739.html * https://www.suse.com/security/cve/CVE-2022-48740.html * https://www.suse.com/security/cve/CVE-2022-48743.html * https://www.suse.com/security/cve/CVE-2022-48744.html * https://www.suse.com/security/cve/CVE-2022-48745.html * https://www.suse.com/security/cve/CVE-2022-48746.html * https://www.suse.com/security/cve/CVE-2022-48747.html * https://www.suse.com/security/cve/CVE-2022-48748.html * https://www.suse.com/security/cve/CVE-2022-48749.html * https://www.suse.com/security/cve/CVE-2022-48751.html * https://www.suse.com/security/cve/CVE-2022-48752.html * https://www.suse.com/security/cve/CVE-2022-48753.html * https://www.suse.com/security/cve/CVE-2022-48754.html * https://www.suse.com/security/cve/CVE-2022-48755.html * https://www.suse.com/security/cve/CVE-2022-48756.html * https://www.suse.com/security/cve/CVE-2022-48758.html * https://www.suse.com/security/cve/CVE-2022-48759.html * https://www.suse.com/security/cve/CVE-2022-48760.html * https://www.suse.com/security/cve/CVE-2022-48761.html * https://www.suse.com/security/cve/CVE-2022-48763.html * https://www.suse.com/security/cve/CVE-2022-48765.html * https://www.suse.com/security/cve/CVE-2022-48766.html * https://www.suse.com/security/cve/CVE-2022-48767.html * https://www.suse.com/security/cve/CVE-2022-48768.html * https://www.suse.com/security/cve/CVE-2022-48769.html * https://www.suse.com/security/cve/CVE-2022-48770.html * https://www.suse.com/security/cve/CVE-2022-48771.html * https://www.suse.com/security/cve/CVE-2022-48772.html * https://www.suse.com/security/cve/CVE-2022-48773.html * https://www.suse.com/security/cve/CVE-2022-48774.html * https://www.suse.com/security/cve/CVE-2022-48775.html * https://www.suse.com/security/cve/CVE-2022-48776.html * https://www.suse.com/security/cve/CVE-2022-48777.html * https://www.suse.com/security/cve/CVE-2022-48778.html * https://www.suse.com/security/cve/CVE-2022-48780.html * https://www.suse.com/security/cve/CVE-2022-48783.html * https://www.suse.com/security/cve/CVE-2022-48784.html * https://www.suse.com/security/cve/CVE-2022-48785.html * https://www.suse.com/security/cve/CVE-2022-48786.html * https://www.suse.com/security/cve/CVE-2022-48787.html * https://www.suse.com/security/cve/CVE-2022-48788.html * https://www.suse.com/security/cve/CVE-2022-48789.html * https://www.suse.com/security/cve/CVE-2022-48790.html * https://www.suse.com/security/cve/CVE-2022-48791.html * https://www.suse.com/security/cve/CVE-2022-48792.html * https://www.suse.com/security/cve/CVE-2022-48793.html * https://www.suse.com/security/cve/CVE-2022-48794.html * https://www.suse.com/security/cve/CVE-2022-48796.html * https://www.suse.com/security/cve/CVE-2022-48797.html * https://www.suse.com/security/cve/CVE-2022-48798.html * https://www.suse.com/security/cve/CVE-2022-48799.html * https://www.suse.com/security/cve/CVE-2022-48800.html * https://www.suse.com/security/cve/CVE-2022-48801.html * https://www.suse.com/security/cve/CVE-2022-48802.html * https://www.suse.com/security/cve/CVE-2022-48803.html * https://www.suse.com/security/cve/CVE-2022-48804.html * https://www.suse.com/security/cve/CVE-2022-48805.html * https://www.suse.com/security/cve/CVE-2022-48806.html * https://www.suse.com/security/cve/CVE-2022-48807.html * https://www.suse.com/security/cve/CVE-2022-48809.html * https://www.suse.com/security/cve/CVE-2022-48810.html * https://www.suse.com/security/cve/CVE-2022-48811.html * https://www.suse.com/security/cve/CVE-2022-48812.html * https://www.suse.com/security/cve/CVE-2022-48813.html * https://www.suse.com/security/cve/CVE-2022-48814.html * https://www.suse.com/security/cve/CVE-2022-48815.html * https://www.suse.com/security/cve/CVE-2022-48816.html * https://www.suse.com/security/cve/CVE-2022-48817.html * https://www.suse.com/security/cve/CVE-2022-48818.html * https://www.suse.com/security/cve/CVE-2022-48820.html * https://www.suse.com/security/cve/CVE-2022-48821.html * https://www.suse.com/security/cve/CVE-2022-48822.html * https://www.suse.com/security/cve/CVE-2022-48823.html * https://www.suse.com/security/cve/CVE-2022-48824.html * https://www.suse.com/security/cve/CVE-2022-48825.html * https://www.suse.com/security/cve/CVE-2022-48826.html * https://www.suse.com/security/cve/CVE-2022-48827.html * https://www.suse.com/security/cve/CVE-2022-48828.html * https://www.suse.com/security/cve/CVE-2022-48829.html * https://www.suse.com/security/cve/CVE-2022-48830.html * https://www.suse.com/security/cve/CVE-2022-48831.html * https://www.suse.com/security/cve/CVE-2022-48834.html * https://www.suse.com/security/cve/CVE-2022-48835.html * https://www.suse.com/security/cve/CVE-2022-48836.html * https://www.suse.com/security/cve/CVE-2022-48837.html * https://www.suse.com/security/cve/CVE-2022-48838.html * https://www.suse.com/security/cve/CVE-2022-48839.html * https://www.suse.com/security/cve/CVE-2022-48840.html * https://www.suse.com/security/cve/CVE-2022-48841.html * https://www.suse.com/security/cve/CVE-2022-48842.html * https://www.suse.com/security/cve/CVE-2022-48843.html * https://www.suse.com/security/cve/CVE-2022-48844.html * https://www.suse.com/security/cve/CVE-2022-48846.html * https://www.suse.com/security/cve/CVE-2022-48847.html * https://www.suse.com/security/cve/CVE-2022-48849.html * https://www.suse.com/security/cve/CVE-2022-48850.html * https://www.suse.com/security/cve/CVE-2022-48851.html * https://www.suse.com/security/cve/CVE-2022-48852.html * https://www.suse.com/security/cve/CVE-2022-48853.html * https://www.suse.com/security/cve/CVE-2022-48855.html * https://www.suse.com/security/cve/CVE-2022-48856.html * https://www.suse.com/security/cve/CVE-2022-48857.html * https://www.suse.com/security/cve/CVE-2022-48858.html * https://www.suse.com/security/cve/CVE-2022-48859.html * https://www.suse.com/security/cve/CVE-2022-48860.html * https://www.suse.com/security/cve/CVE-2022-48861.html * https://www.suse.com/security/cve/CVE-2022-48862.html * https://www.suse.com/security/cve/CVE-2022-48863.html * https://www.suse.com/security/cve/CVE-2022-48864.html * https://www.suse.com/security/cve/CVE-2022-48866.html * https://www.suse.com/security/cve/CVE-2023-24023.html * https://www.suse.com/security/cve/CVE-2023-52435.html * https://www.suse.com/security/cve/CVE-2023-52573.html * https://www.suse.com/security/cve/CVE-2023-52580.html * https://www.suse.com/security/cve/CVE-2023-52622.html * https://www.suse.com/security/cve/CVE-2023-52658.html * https://www.suse.com/security/cve/CVE-2023-52667.html * https://www.suse.com/security/cve/CVE-2023-52670.html * https://www.suse.com/security/cve/CVE-2023-52672.html * https://www.suse.com/security/cve/CVE-2023-52675.html * https://www.suse.com/security/cve/CVE-2023-52735.html * https://www.suse.com/security/cve/CVE-2023-52737.html * https://www.suse.com/security/cve/CVE-2023-52751.html * https://www.suse.com/security/cve/CVE-2023-52752.html * https://www.suse.com/security/cve/CVE-2023-52762.html * https://www.suse.com/security/cve/CVE-2023-52766.html * https://www.suse.com/security/cve/CVE-2023-52775.html * https://www.suse.com/security/cve/CVE-2023-52784.html * https://www.suse.com/security/cve/CVE-2023-52787.html * https://www.suse.com/security/cve/CVE-2023-52800.html * https://www.suse.com/security/cve/CVE-2023-52812.html * https://www.suse.com/security/cve/CVE-2023-52835.html * https://www.suse.com/security/cve/CVE-2023-52837.html * https://www.suse.com/security/cve/CVE-2023-52843.html * https://www.suse.com/security/cve/CVE-2023-52845.html * https://www.suse.com/security/cve/CVE-2023-52846.html * https://www.suse.com/security/cve/CVE-2023-52857.html * https://www.suse.com/security/cve/CVE-2023-52863.html * https://www.suse.com/security/cve/CVE-2023-52869.html * https://www.suse.com/security/cve/CVE-2023-52881.html * https://www.suse.com/security/cve/CVE-2023-52882.html * https://www.suse.com/security/cve/CVE-2023-52884.html * https://www.suse.com/security/cve/CVE-2023-52885.html * https://www.suse.com/security/cve/CVE-2023-52886.html * https://www.suse.com/security/cve/CVE-2024-25741.html * https://www.suse.com/security/cve/CVE-2024-26583.html * https://www.suse.com/security/cve/CVE-2024-26584.html * https://www.suse.com/security/cve/CVE-2024-26615.html * https://www.suse.com/security/cve/CVE-2024-26625.html * https://www.suse.com/security/cve/CVE-2024-26633.html * https://www.suse.com/security/cve/CVE-2024-26635.html * https://www.suse.com/security/cve/CVE-2024-26636.html * https://www.suse.com/security/cve/CVE-2024-26641.html * https://www.suse.com/security/cve/CVE-2024-26644.html * https://www.suse.com/security/cve/CVE-2024-26661.html * https://www.suse.com/security/cve/CVE-2024-26663.html * https://www.suse.com/security/cve/CVE-2024-26665.html * https://www.suse.com/security/cve/CVE-2024-26720.html * https://www.suse.com/security/cve/CVE-2024-26800.html * https://www.suse.com/security/cve/CVE-2024-26802.html * https://www.suse.com/security/cve/CVE-2024-26813.html * https://www.suse.com/security/cve/CVE-2024-26814.html * https://www.suse.com/security/cve/CVE-2024-26842.html * https://www.suse.com/security/cve/CVE-2024-26845.html * https://www.suse.com/security/cve/CVE-2024-26863.html * https://www.suse.com/security/cve/CVE-2024-26923.html * https://www.suse.com/security/cve/CVE-2024-26935.html * https://www.suse.com/security/cve/CVE-2024-26961.html * https://www.suse.com/security/cve/CVE-2024-26973.html * https://www.suse.com/security/cve/CVE-2024-26976.html * https://www.suse.com/security/cve/CVE-2024-27015.html * https://www.suse.com/security/cve/CVE-2024-27019.html * https://www.suse.com/security/cve/CVE-2024-27020.html * https://www.suse.com/security/cve/CVE-2024-27025.html * https://www.suse.com/security/cve/CVE-2024-27065.html * https://www.suse.com/security/cve/CVE-2024-27402.html * https://www.suse.com/security/cve/CVE-2024-27432.html * https://www.suse.com/security/cve/CVE-2024-27437.html * https://www.suse.com/security/cve/CVE-2024-33619.html * https://www.suse.com/security/cve/CVE-2024-35247.html * https://www.suse.com/security/cve/CVE-2024-35789.html * https://www.suse.com/security/cve/CVE-2024-35790.html * https://www.suse.com/security/cve/CVE-2024-35805.html * https://www.suse.com/security/cve/CVE-2024-35807.html * https://www.suse.com/security/cve/CVE-2024-35814.html * https://www.suse.com/security/cve/CVE-2024-35819.html * https://www.suse.com/security/cve/CVE-2024-35835.html * https://www.suse.com/security/cve/CVE-2024-35837.html * https://www.suse.com/security/cve/CVE-2024-35848.html * https://www.suse.com/security/cve/CVE-2024-35853.html * https://www.suse.com/security/cve/CVE-2024-35855.html * https://www.suse.com/security/cve/CVE-2024-35857.html * https://www.suse.com/security/cve/CVE-2024-35861.html * https://www.suse.com/security/cve/CVE-2024-35862.html * https://www.suse.com/security/cve/CVE-2024-35864.html * https://www.suse.com/security/cve/CVE-2024-35869.html * https://www.suse.com/security/cve/CVE-2024-35878.html * https://www.suse.com/security/cve/CVE-2024-35884.html * https://www.suse.com/security/cve/CVE-2024-35886.html * https://www.suse.com/security/cve/CVE-2024-35889.html * https://www.suse.com/security/cve/CVE-2024-35890.html * https://www.suse.com/security/cve/CVE-2024-35893.html * https://www.suse.com/security/cve/CVE-2024-35896.html * https://www.suse.com/security/cve/CVE-2024-35898.html * https://www.suse.com/security/cve/CVE-2024-35899.html * https://www.suse.com/security/cve/CVE-2024-35900.html * https://www.suse.com/security/cve/CVE-2024-35905.html * https://www.suse.com/security/cve/CVE-2024-35925.html * https://www.suse.com/security/cve/CVE-2024-35934.html * https://www.suse.com/security/cve/CVE-2024-35949.html * https://www.suse.com/security/cve/CVE-2024-35950.html * https://www.suse.com/security/cve/CVE-2024-35956.html * https://www.suse.com/security/cve/CVE-2024-35958.html * https://www.suse.com/security/cve/CVE-2024-35960.html * https://www.suse.com/security/cve/CVE-2024-35961.html * https://www.suse.com/security/cve/CVE-2024-35962.html * https://www.suse.com/security/cve/CVE-2024-35979.html * https://www.suse.com/security/cve/CVE-2024-35995.html * https://www.suse.com/security/cve/CVE-2024-35997.html * https://www.suse.com/security/cve/CVE-2024-36000.html * https://www.suse.com/security/cve/CVE-2024-36004.html * https://www.suse.com/security/cve/CVE-2024-36005.html * https://www.suse.com/security/cve/CVE-2024-36008.html * https://www.suse.com/security/cve/CVE-2024-36017.html * https://www.suse.com/security/cve/CVE-2024-36020.html * https://www.suse.com/security/cve/CVE-2024-36021.html * https://www.suse.com/security/cve/CVE-2024-36025.html * https://www.suse.com/security/cve/CVE-2024-36288.html * https://www.suse.com/security/cve/CVE-2024-36477.html * https://www.suse.com/security/cve/CVE-2024-36478.html * https://www.suse.com/security/cve/CVE-2024-36479.html * https://www.suse.com/security/cve/CVE-2024-36889.html * https://www.suse.com/security/cve/CVE-2024-36890.html * https://www.suse.com/security/cve/CVE-2024-36894.html * https://www.suse.com/security/cve/CVE-2024-36899.html * https://www.suse.com/security/cve/CVE-2024-36900.html * https://www.suse.com/security/cve/CVE-2024-36901.html * https://www.suse.com/security/cve/CVE-2024-36902.html * https://www.suse.com/security/cve/CVE-2024-36904.html * https://www.suse.com/security/cve/CVE-2024-36909.html * https://www.suse.com/security/cve/CVE-2024-36910.html * https://www.suse.com/security/cve/CVE-2024-36911.html * https://www.suse.com/security/cve/CVE-2024-36912.html * https://www.suse.com/security/cve/CVE-2024-36913.html * https://www.suse.com/security/cve/CVE-2024-36914.html * https://www.suse.com/security/cve/CVE-2024-36915.html * https://www.suse.com/security/cve/CVE-2024-36916.html * https://www.suse.com/security/cve/CVE-2024-36917.html * https://www.suse.com/security/cve/CVE-2024-36919.html * https://www.suse.com/security/cve/CVE-2024-36923.html * https://www.suse.com/security/cve/CVE-2024-36934.html * https://www.suse.com/security/cve/CVE-2024-36937.html * https://www.suse.com/security/cve/CVE-2024-36939.html * https://www.suse.com/security/cve/CVE-2024-36940.html * https://www.suse.com/security/cve/CVE-2024-36945.html * https://www.suse.com/security/cve/CVE-2024-36946.html * https://www.suse.com/security/cve/CVE-2024-36949.html * https://www.suse.com/security/cve/CVE-2024-36960.html * https://www.suse.com/security/cve/CVE-2024-36964.html * https://www.suse.com/security/cve/CVE-2024-36965.html * https://www.suse.com/security/cve/CVE-2024-36967.html * https://www.suse.com/security/cve/CVE-2024-36969.html * https://www.suse.com/security/cve/CVE-2024-36971.html * https://www.suse.com/security/cve/CVE-2024-36974.html * https://www.suse.com/security/cve/CVE-2024-36975.html * https://www.suse.com/security/cve/CVE-2024-36978.html * https://www.suse.com/security/cve/CVE-2024-37021.html * https://www.suse.com/security/cve/CVE-2024-37078.html * https://www.suse.com/security/cve/CVE-2024-37354.html * https://www.suse.com/security/cve/CVE-2024-38381.html * https://www.suse.com/security/cve/CVE-2024-38388.html * https://www.suse.com/security/cve/CVE-2024-38390.html * https://www.suse.com/security/cve/CVE-2024-38540.html * https://www.suse.com/security/cve/CVE-2024-38541.html * https://www.suse.com/security/cve/CVE-2024-38544.html * https://www.suse.com/security/cve/CVE-2024-38545.html * https://www.suse.com/security/cve/CVE-2024-38546.html * https://www.suse.com/security/cve/CVE-2024-38547.html * https://www.suse.com/security/cve/CVE-2024-38548.html * https://www.suse.com/security/cve/CVE-2024-38549.html * https://www.suse.com/security/cve/CVE-2024-38550.html * https://www.suse.com/security/cve/CVE-2024-38552.html * https://www.suse.com/security/cve/CVE-2024-38553.html * https://www.suse.com/security/cve/CVE-2024-38555.html * https://www.suse.com/security/cve/CVE-2024-38556.html * https://www.suse.com/security/cve/CVE-2024-38557.html * https://www.suse.com/security/cve/CVE-2024-38558.html * https://www.suse.com/security/cve/CVE-2024-38559.html * https://www.suse.com/security/cve/CVE-2024-38560.html * https://www.suse.com/security/cve/CVE-2024-38564.html * https://www.suse.com/security/cve/CVE-2024-38565.html * https://www.suse.com/security/cve/CVE-2024-38567.html * https://www.suse.com/security/cve/CVE-2024-38568.html * https://www.suse.com/security/cve/CVE-2024-38570.html * https://www.suse.com/security/cve/CVE-2024-38571.html * https://www.suse.com/security/cve/CVE-2024-38573.html * https://www.suse.com/security/cve/CVE-2024-38578.html * https://www.suse.com/security/cve/CVE-2024-38579.html * https://www.suse.com/security/cve/CVE-2024-38580.html * https://www.suse.com/security/cve/CVE-2024-38581.html * https://www.suse.com/security/cve/CVE-2024-38582.html * https://www.suse.com/security/cve/CVE-2024-38583.html * https://www.suse.com/security/cve/CVE-2024-38586.html * https://www.suse.com/security/cve/CVE-2024-38587.html * https://www.suse.com/security/cve/CVE-2024-38588.html * https://www.suse.com/security/cve/CVE-2024-38590.html * https://www.suse.com/security/cve/CVE-2024-38591.html * https://www.suse.com/security/cve/CVE-2024-38594.html * https://www.suse.com/security/cve/CVE-2024-38597.html * https://www.suse.com/security/cve/CVE-2024-38598.html * https://www.suse.com/security/cve/CVE-2024-38599.html * https://www.suse.com/security/cve/CVE-2024-38600.html * https://www.suse.com/security/cve/CVE-2024-38601.html * https://www.suse.com/security/cve/CVE-2024-38603.html * https://www.suse.com/security/cve/CVE-2024-38605.html * https://www.suse.com/security/cve/CVE-2024-38608.html * https://www.suse.com/security/cve/CVE-2024-38616.html * https://www.suse.com/security/cve/CVE-2024-38618.html * https://www.suse.com/security/cve/CVE-2024-38619.html * https://www.suse.com/security/cve/CVE-2024-38621.html * https://www.suse.com/security/cve/CVE-2024-38627.html * https://www.suse.com/security/cve/CVE-2024-38628.html * https://www.suse.com/security/cve/CVE-2024-38630.html * https://www.suse.com/security/cve/CVE-2024-38633.html * https://www.suse.com/security/cve/CVE-2024-38634.html * https://www.suse.com/security/cve/CVE-2024-38635.html * https://www.suse.com/security/cve/CVE-2024-38659.html * https://www.suse.com/security/cve/CVE-2024-38661.html * https://www.suse.com/security/cve/CVE-2024-38780.html * https://www.suse.com/security/cve/CVE-2024-39276.html * https://www.suse.com/security/cve/CVE-2024-39301.html * https://www.suse.com/security/cve/CVE-2024-39371.html * https://www.suse.com/security/cve/CVE-2024-39463.html * https://www.suse.com/security/cve/CVE-2024-39468.html * https://www.suse.com/security/cve/CVE-2024-39469.html * https://www.suse.com/security/cve/CVE-2024-39471.html * https://www.suse.com/security/cve/CVE-2024-39472.html * https://www.suse.com/security/cve/CVE-2024-39475.html * https://www.suse.com/security/cve/CVE-2024-39482.html * https://www.suse.com/security/cve/CVE-2024-39487.html * https://www.suse.com/security/cve/CVE-2024-39488.html * https://www.suse.com/security/cve/CVE-2024-39490.html * https://www.suse.com/security/cve/CVE-2024-39493.html * https://www.suse.com/security/cve/CVE-2024-39494.html * https://www.suse.com/security/cve/CVE-2024-39497.html * https://www.suse.com/security/cve/CVE-2024-39499.html * https://www.suse.com/security/cve/CVE-2024-39500.html * https://www.suse.com/security/cve/CVE-2024-39501.html * https://www.suse.com/security/cve/CVE-2024-39502.html * https://www.suse.com/security/cve/CVE-2024-39505.html * https://www.suse.com/security/cve/CVE-2024-39506.html * https://www.suse.com/security/cve/CVE-2024-39507.html * https://www.suse.com/security/cve/CVE-2024-39508.html * https://www.suse.com/security/cve/CVE-2024-39509.html * https://www.suse.com/security/cve/CVE-2024-40900.html * https://www.suse.com/security/cve/CVE-2024-40901.html * https://www.suse.com/security/cve/CVE-2024-40902.html * https://www.suse.com/security/cve/CVE-2024-40903.html * https://www.suse.com/security/cve/CVE-2024-40904.html * https://www.suse.com/security/cve/CVE-2024-40906.html * https://www.suse.com/security/cve/CVE-2024-40908.html * https://www.suse.com/security/cve/CVE-2024-40909.html * https://www.suse.com/security/cve/CVE-2024-40911.html * https://www.suse.com/security/cve/CVE-2024-40912.html * https://www.suse.com/security/cve/CVE-2024-40916.html * https://www.suse.com/security/cve/CVE-2024-40919.html * https://www.suse.com/security/cve/CVE-2024-40923.html * https://www.suse.com/security/cve/CVE-2024-40924.html * https://www.suse.com/security/cve/CVE-2024-40927.html * https://www.suse.com/security/cve/CVE-2024-40929.html * https://www.suse.com/security/cve/CVE-2024-40931.html * https://www.suse.com/security/cve/CVE-2024-40932.html * https://www.suse.com/security/cve/CVE-2024-40934.html * https://www.suse.com/security/cve/CVE-2024-40935.html * https://www.suse.com/security/cve/CVE-2024-40937.html * https://www.suse.com/security/cve/CVE-2024-40940.html * https://www.suse.com/security/cve/CVE-2024-40941.html * https://www.suse.com/security/cve/CVE-2024-40942.html * https://www.suse.com/security/cve/CVE-2024-40943.html * https://www.suse.com/security/cve/CVE-2024-40945.html * https://www.suse.com/security/cve/CVE-2024-40953.html * https://www.suse.com/security/cve/CVE-2024-40954.html * https://www.suse.com/security/cve/CVE-2024-40956.html * https://www.suse.com/security/cve/CVE-2024-40958.html * https://www.suse.com/security/cve/CVE-2024-40959.html * https://www.suse.com/security/cve/CVE-2024-40960.html * https://www.suse.com/security/cve/CVE-2024-40961.html * https://www.suse.com/security/cve/CVE-2024-40966.html * https://www.suse.com/security/cve/CVE-2024-40967.html * https://www.suse.com/security/cve/CVE-2024-40970.html * https://www.suse.com/security/cve/CVE-2024-40972.html * https://www.suse.com/security/cve/CVE-2024-40976.html * https://www.suse.com/security/cve/CVE-2024-40977.html * https://www.suse.com/security/cve/CVE-2024-40981.html * https://www.suse.com/security/cve/CVE-2024-40982.html * https://www.suse.com/security/cve/CVE-2024-40984.html * https://www.suse.com/security/cve/CVE-2024-40987.html * https://www.suse.com/security/cve/CVE-2024-40988.html * https://www.suse.com/security/cve/CVE-2024-40989.html * https://www.suse.com/security/cve/CVE-2024-40990.html * https://www.suse.com/security/cve/CVE-2024-40994.html * https://www.suse.com/security/cve/CVE-2024-40998.html * https://www.suse.com/security/cve/CVE-2024-40999.html * https://www.suse.com/security/cve/CVE-2024-41002.html * https://www.suse.com/security/cve/CVE-2024-41004.html * https://www.suse.com/security/cve/CVE-2024-41006.html * https://www.suse.com/security/cve/CVE-2024-41009.html * https://www.suse.com/security/cve/CVE-2024-41011.html * https://www.suse.com/security/cve/CVE-2024-41012.html * https://www.suse.com/security/cve/CVE-2024-41013.html * https://www.suse.com/security/cve/CVE-2024-41014.html * https://www.suse.com/security/cve/CVE-2024-41015.html * https://www.suse.com/security/cve/CVE-2024-41016.html * https://www.suse.com/security/cve/CVE-2024-41017.html * https://www.suse.com/security/cve/CVE-2024-41040.html * https://www.suse.com/security/cve/CVE-2024-41041.html * https://www.suse.com/security/cve/CVE-2024-41044.html * https://www.suse.com/security/cve/CVE-2024-41048.html * https://www.suse.com/security/cve/CVE-2024-41057.html * https://www.suse.com/security/cve/CVE-2024-41058.html * https://www.suse.com/security/cve/CVE-2024-41059.html * https://www.suse.com/security/cve/CVE-2024-41063.html * https://www.suse.com/security/cve/CVE-2024-41064.html * https://www.suse.com/security/cve/CVE-2024-41066.html * https://www.suse.com/security/cve/CVE-2024-41069.html * https://www.suse.com/security/cve/CVE-2024-41070.html * https://www.suse.com/security/cve/CVE-2024-41071.html * https://www.suse.com/security/cve/CVE-2024-41072.html * https://www.suse.com/security/cve/CVE-2024-41076.html * https://www.suse.com/security/cve/CVE-2024-41078.html * https://www.suse.com/security/cve/CVE-2024-41081.html * https://www.suse.com/security/cve/CVE-2024-41087.html * https://www.suse.com/security/cve/CVE-2024-41090.html * https://www.suse.com/security/cve/CVE-2024-41091.html * https://www.suse.com/security/cve/CVE-2024-42070.html * https://www.suse.com/security/cve/CVE-2024-42079.html * https://www.suse.com/security/cve/CVE-2024-42093.html * https://www.suse.com/security/cve/CVE-2024-42096.html * https://www.suse.com/security/cve/CVE-2024-42105.html * https://www.suse.com/security/cve/CVE-2024-42122.html * https://www.suse.com/security/cve/CVE-2024-42124.html * https://www.suse.com/security/cve/CVE-2024-42145.html * https://www.suse.com/security/cve/CVE-2024-42161.html * https://www.suse.com/security/cve/CVE-2024-42224.html * https://www.suse.com/security/cve/CVE-2024-42230.html * https://bugzilla.suse.com/show_bug.cgi?id=1082555 * https://bugzilla.suse.com/show_bug.cgi?id=1156395 * https://bugzilla.suse.com/show_bug.cgi?id=1190336 * https://bugzilla.suse.com/show_bug.cgi?id=1191958 * https://bugzilla.suse.com/show_bug.cgi?id=1193454 * https://bugzilla.suse.com/show_bug.cgi?id=1193554 * https://bugzilla.suse.com/show_bug.cgi?id=1193787 * https://bugzilla.suse.com/show_bug.cgi?id=1193883 * https://bugzilla.suse.com/show_bug.cgi?id=1194324 * https://bugzilla.suse.com/show_bug.cgi?id=1194826 * https://bugzilla.suse.com/show_bug.cgi?id=1194869 * https://bugzilla.suse.com/show_bug.cgi?id=1195065 * https://bugzilla.suse.com/show_bug.cgi?id=1195254 * https://bugzilla.suse.com/show_bug.cgi?id=1195341 * https://bugzilla.suse.com/show_bug.cgi?id=1195349 * https://bugzilla.suse.com/show_bug.cgi?id=1195357 * https://bugzilla.suse.com/show_bug.cgi?id=1195668 * https://bugzilla.suse.com/show_bug.cgi?id=1195775 * https://bugzilla.suse.com/show_bug.cgi?id=1195927 * https://bugzilla.suse.com/show_bug.cgi?id=1195957 * https://bugzilla.suse.com/show_bug.cgi?id=1196018 * https://bugzilla.suse.com/show_bug.cgi?id=1196746 * https://bugzilla.suse.com/show_bug.cgi?id=1196823 * https://bugzilla.suse.com/show_bug.cgi?id=1197146 * https://bugzilla.suse.com/show_bug.cgi?id=1197246 * https://bugzilla.suse.com/show_bug.cgi?id=1197762 * https://bugzilla.suse.com/show_bug.cgi?id=1197915 * https://bugzilla.suse.com/show_bug.cgi?id=1198014 * https://bugzilla.suse.com/show_bug.cgi?id=1199295 * https://bugzilla.suse.com/show_bug.cgi?id=1202346 * https://bugzilla.suse.com/show_bug.cgi?id=1202686 * https://bugzilla.suse.com/show_bug.cgi?id=1202767 * https://bugzilla.suse.com/show_bug.cgi?id=1202780 * https://bugzilla.suse.com/show_bug.cgi?id=1205205 * https://bugzilla.suse.com/show_bug.cgi?id=1207361 * https://bugzilla.suse.com/show_bug.cgi?id=1208783 * https://bugzilla.suse.com/show_bug.cgi?id=1209636 * https://bugzilla.suse.com/show_bug.cgi?id=1213123 * https://bugzilla.suse.com/show_bug.cgi?id=1215492 * https://bugzilla.suse.com/show_bug.cgi?id=1215587 * https://bugzilla.suse.com/show_bug.cgi?id=1216834 * https://bugzilla.suse.com/show_bug.cgi?id=1217912 * https://bugzilla.suse.com/show_bug.cgi?id=1218148 * https://bugzilla.suse.com/show_bug.cgi?id=1218570 * https://bugzilla.suse.com/show_bug.cgi?id=1218820 * https://bugzilla.suse.com/show_bug.cgi?id=1219224 * https://bugzilla.suse.com/show_bug.cgi?id=1219633 * https://bugzilla.suse.com/show_bug.cgi?id=1219832 * https://bugzilla.suse.com/show_bug.cgi?id=1219847 * https://bugzilla.suse.com/show_bug.cgi?id=1220138 * https://bugzilla.suse.com/show_bug.cgi?id=1220185 * https://bugzilla.suse.com/show_bug.cgi?id=1220186 * https://bugzilla.suse.com/show_bug.cgi?id=1220368 * https://bugzilla.suse.com/show_bug.cgi?id=1220812 * https://bugzilla.suse.com/show_bug.cgi?id=1220869 * https://bugzilla.suse.com/show_bug.cgi?id=1220876 * https://bugzilla.suse.com/show_bug.cgi?id=1220942 * https://bugzilla.suse.com/show_bug.cgi?id=1220952 * https://bugzilla.suse.com/show_bug.cgi?id=1220958 * https://bugzilla.suse.com/show_bug.cgi?id=1221010 * https://bugzilla.suse.com/show_bug.cgi?id=1221086 * https://bugzilla.suse.com/show_bug.cgi?id=1221282 * https://bugzilla.suse.com/show_bug.cgi?id=1221647 * https://bugzilla.suse.com/show_bug.cgi?id=1221654 * https://bugzilla.suse.com/show_bug.cgi?id=1221656 * https://bugzilla.suse.com/show_bug.cgi?id=1221659 * https://bugzilla.suse.com/show_bug.cgi?id=1221958 * https://bugzilla.suse.com/show_bug.cgi?id=1222015 * https://bugzilla.suse.com/show_bug.cgi?id=1222072 * https://bugzilla.suse.com/show_bug.cgi?id=1222080 * https://bugzilla.suse.com/show_bug.cgi?id=1222241 * https://bugzilla.suse.com/show_bug.cgi?id=1222254 * https://bugzilla.suse.com/show_bug.cgi?id=1222323 * https://bugzilla.suse.com/show_bug.cgi?id=1222326 * https://bugzilla.suse.com/show_bug.cgi?id=1222328 * https://bugzilla.suse.com/show_bug.cgi?id=1222364 * https://bugzilla.suse.com/show_bug.cgi?id=1222625 * https://bugzilla.suse.com/show_bug.cgi?id=1222702 * https://bugzilla.suse.com/show_bug.cgi?id=1222728 * https://bugzilla.suse.com/show_bug.cgi?id=1222799 * https://bugzilla.suse.com/show_bug.cgi?id=1222809 * https://bugzilla.suse.com/show_bug.cgi?id=1222810 * https://bugzilla.suse.com/show_bug.cgi?id=1222893 * https://bugzilla.suse.com/show_bug.cgi?id=1223013 * https://bugzilla.suse.com/show_bug.cgi?id=1223018 * https://bugzilla.suse.com/show_bug.cgi?id=1223021 * https://bugzilla.suse.com/show_bug.cgi?id=1223180 * https://bugzilla.suse.com/show_bug.cgi?id=1223265 * https://bugzilla.suse.com/show_bug.cgi?id=1223384 * https://bugzilla.suse.com/show_bug.cgi?id=1223635 * https://bugzilla.suse.com/show_bug.cgi?id=1223641 * https://bugzilla.suse.com/show_bug.cgi?id=1223652 * https://bugzilla.suse.com/show_bug.cgi?id=1223675 * https://bugzilla.suse.com/show_bug.cgi?id=1223778 * https://bugzilla.suse.com/show_bug.cgi?id=1223806 * https://bugzilla.suse.com/show_bug.cgi?id=1223813 * https://bugzilla.suse.com/show_bug.cgi?id=1223815 * https://bugzilla.suse.com/show_bug.cgi?id=1223836 * https://bugzilla.suse.com/show_bug.cgi?id=1223863 * https://bugzilla.suse.com/show_bug.cgi?id=1224020 * https://bugzilla.suse.com/show_bug.cgi?id=1224331 * https://bugzilla.suse.com/show_bug.cgi?id=1224414 * https://bugzilla.suse.com/show_bug.cgi?id=1224488 * https://bugzilla.suse.com/show_bug.cgi?id=1224497 * https://bugzilla.suse.com/show_bug.cgi?id=1224498 * https://bugzilla.suse.com/show_bug.cgi?id=1224499 * https://bugzilla.suse.com/show_bug.cgi?id=1224500 * https://bugzilla.suse.com/show_bug.cgi?id=1224504 * https://bugzilla.suse.com/show_bug.cgi?id=1224512 * https://bugzilla.suse.com/show_bug.cgi?id=1224516 * https://bugzilla.suse.com/show_bug.cgi?id=1224517 * https://bugzilla.suse.com/show_bug.cgi?id=1224520 * https://bugzilla.suse.com/show_bug.cgi?id=1224539 * https://bugzilla.suse.com/show_bug.cgi?id=1224540 * https://bugzilla.suse.com/show_bug.cgi?id=1224545 * https://bugzilla.suse.com/show_bug.cgi?id=1224548 * https://bugzilla.suse.com/show_bug.cgi?id=1224552 * https://bugzilla.suse.com/show_bug.cgi?id=1224557 * https://bugzilla.suse.com/show_bug.cgi?id=1224572 * https://bugzilla.suse.com/show_bug.cgi?id=1224573 * https://bugzilla.suse.com/show_bug.cgi?id=1224583 * https://bugzilla.suse.com/show_bug.cgi?id=1224585 * https://bugzilla.suse.com/show_bug.cgi?id=1224588 * https://bugzilla.suse.com/show_bug.cgi?id=1224602 * https://bugzilla.suse.com/show_bug.cgi?id=1224603 * https://bugzilla.suse.com/show_bug.cgi?id=1224604 * https://bugzilla.suse.com/show_bug.cgi?id=1224605 * https://bugzilla.suse.com/show_bug.cgi?id=1224612 * https://bugzilla.suse.com/show_bug.cgi?id=1224614 * https://bugzilla.suse.com/show_bug.cgi?id=1224619 * https://bugzilla.suse.com/show_bug.cgi?id=1224636 * https://bugzilla.suse.com/show_bug.cgi?id=1224641 * https://bugzilla.suse.com/show_bug.cgi?id=1224661 * https://bugzilla.suse.com/show_bug.cgi?id=1224662 * https://bugzilla.suse.com/show_bug.cgi?id=1224670 * https://bugzilla.suse.com/show_bug.cgi?id=1224671 * https://bugzilla.suse.com/show_bug.cgi?id=1224674 * https://bugzilla.suse.com/show_bug.cgi?id=1224677 * https://bugzilla.suse.com/show_bug.cgi?id=1224679 * https://bugzilla.suse.com/show_bug.cgi?id=1224683 * https://bugzilla.suse.com/show_bug.cgi?id=1224694 * https://bugzilla.suse.com/show_bug.cgi?id=1224696 * https://bugzilla.suse.com/show_bug.cgi?id=1224700 * https://bugzilla.suse.com/show_bug.cgi?id=1224703 * https://bugzilla.suse.com/show_bug.cgi?id=1224712 * https://bugzilla.suse.com/show_bug.cgi?id=1224716 * https://bugzilla.suse.com/show_bug.cgi?id=1224719 * https://bugzilla.suse.com/show_bug.cgi?id=1224735 * https://bugzilla.suse.com/show_bug.cgi?id=1224743 * https://bugzilla.suse.com/show_bug.cgi?id=1224749 * https://bugzilla.suse.com/show_bug.cgi?id=1224764 * https://bugzilla.suse.com/show_bug.cgi?id=1224765 * https://bugzilla.suse.com/show_bug.cgi?id=1224766 * https://bugzilla.suse.com/show_bug.cgi?id=1224935 * https://bugzilla.suse.com/show_bug.cgi?id=1224946 * https://bugzilla.suse.com/show_bug.cgi?id=1224951 * https://bugzilla.suse.com/show_bug.cgi?id=1225050 * https://bugzilla.suse.com/show_bug.cgi?id=1225088 * https://bugzilla.suse.com/show_bug.cgi?id=1225098 * https://bugzilla.suse.com/show_bug.cgi?id=1225105 * https://bugzilla.suse.com/show_bug.cgi?id=1225272 * https://bugzilla.suse.com/show_bug.cgi?id=1225300 * https://bugzilla.suse.com/show_bug.cgi?id=1225389 * https://bugzilla.suse.com/show_bug.cgi?id=1225391 * https://bugzilla.suse.com/show_bug.cgi?id=1225419 * https://bugzilla.suse.com/show_bug.cgi?id=1225426 * https://bugzilla.suse.com/show_bug.cgi?id=1225448 * https://bugzilla.suse.com/show_bug.cgi?id=1225452 * https://bugzilla.suse.com/show_bug.cgi?id=1225467 * https://bugzilla.suse.com/show_bug.cgi?id=1225475 * https://bugzilla.suse.com/show_bug.cgi?id=1225484 * https://bugzilla.suse.com/show_bug.cgi?id=1225487 * https://bugzilla.suse.com/show_bug.cgi?id=1225489 * https://bugzilla.suse.com/show_bug.cgi?id=1225504 * https://bugzilla.suse.com/show_bug.cgi?id=1225505 * https://bugzilla.suse.com/show_bug.cgi?id=1225514 * https://bugzilla.suse.com/show_bug.cgi?id=1225518 * https://bugzilla.suse.com/show_bug.cgi?id=1225535 * https://bugzilla.suse.com/show_bug.cgi?id=1225564 * https://bugzilla.suse.com/show_bug.cgi?id=1225573 * https://bugzilla.suse.com/show_bug.cgi?id=1225581 * https://bugzilla.suse.com/show_bug.cgi?id=1225585 * https://bugzilla.suse.com/show_bug.cgi?id=1225586 * https://bugzilla.suse.com/show_bug.cgi?id=1225602 * https://bugzilla.suse.com/show_bug.cgi?id=1225611 * https://bugzilla.suse.com/show_bug.cgi?id=1225681 * https://bugzilla.suse.com/show_bug.cgi?id=1225692 * https://bugzilla.suse.com/show_bug.cgi?id=1225698 * https://bugzilla.suse.com/show_bug.cgi?id=1225699 * https://bugzilla.suse.com/show_bug.cgi?id=1225704 * https://bugzilla.suse.com/show_bug.cgi?id=1225711 * https://bugzilla.suse.com/show_bug.cgi?id=1225714 * https://bugzilla.suse.com/show_bug.cgi?id=1225717 * https://bugzilla.suse.com/show_bug.cgi?id=1225719 * https://bugzilla.suse.com/show_bug.cgi?id=1225726 * https://bugzilla.suse.com/show_bug.cgi?id=1225732 * https://bugzilla.suse.com/show_bug.cgi?id=1225737 * https://bugzilla.suse.com/show_bug.cgi?id=1225744 * https://bugzilla.suse.com/show_bug.cgi?id=1225745 * https://bugzilla.suse.com/show_bug.cgi?id=1225746 * https://bugzilla.suse.com/show_bug.cgi?id=1225749 * https://bugzilla.suse.com/show_bug.cgi?id=1225752 * https://bugzilla.suse.com/show_bug.cgi?id=1225753 * https://bugzilla.suse.com/show_bug.cgi?id=1225757 * https://bugzilla.suse.com/show_bug.cgi?id=1225758 * https://bugzilla.suse.com/show_bug.cgi?id=1225759 * https://bugzilla.suse.com/show_bug.cgi?id=1225760 * https://bugzilla.suse.com/show_bug.cgi?id=1225767 * https://bugzilla.suse.com/show_bug.cgi?id=1225770 * https://bugzilla.suse.com/show_bug.cgi?id=1225815 * https://bugzilla.suse.com/show_bug.cgi?id=1225823 * https://bugzilla.suse.com/show_bug.cgi?id=1225834 * https://bugzilla.suse.com/show_bug.cgi?id=1225838 * https://bugzilla.suse.com/show_bug.cgi?id=1225840 * https://bugzilla.suse.com/show_bug.cgi?id=1225851 * https://bugzilla.suse.com/show_bug.cgi?id=1225866 * https://bugzilla.suse.com/show_bug.cgi?id=1225872 * https://bugzilla.suse.com/show_bug.cgi?id=1225894 * https://bugzilla.suse.com/show_bug.cgi?id=1225903 * https://bugzilla.suse.com/show_bug.cgi?id=1226022 * https://bugzilla.suse.com/show_bug.cgi?id=1226131 * https://bugzilla.suse.com/show_bug.cgi?id=1226145 * https://bugzilla.suse.com/show_bug.cgi?id=1226149 * https://bugzilla.suse.com/show_bug.cgi?id=1226155 * https://bugzilla.suse.com/show_bug.cgi?id=1226202 * https://bugzilla.suse.com/show_bug.cgi?id=1226211 * https://bugzilla.suse.com/show_bug.cgi?id=1226212 * https://bugzilla.suse.com/show_bug.cgi?id=1226226 * https://bugzilla.suse.com/show_bug.cgi?id=1226502 * https://bugzilla.suse.com/show_bug.cgi?id=1226514 * https://bugzilla.suse.com/show_bug.cgi?id=1226519 * https://bugzilla.suse.com/show_bug.cgi?id=1226520 * https://bugzilla.suse.com/show_bug.cgi?id=1226537 * https://bugzilla.suse.com/show_bug.cgi?id=1226538 * https://bugzilla.suse.com/show_bug.cgi?id=1226539 * https://bugzilla.suse.com/show_bug.cgi?id=1226550 * https://bugzilla.suse.com/show_bug.cgi?id=1226551 * https://bugzilla.suse.com/show_bug.cgi?id=1226552 * https://bugzilla.suse.com/show_bug.cgi?id=1226553 * https://bugzilla.suse.com/show_bug.cgi?id=1226554 * https://bugzilla.suse.com/show_bug.cgi?id=1226555 * https://bugzilla.suse.com/show_bug.cgi?id=1226556 * https://bugzilla.suse.com/show_bug.cgi?id=1226557 * https://bugzilla.suse.com/show_bug.cgi?id=1226558 * https://bugzilla.suse.com/show_bug.cgi?id=1226559 * https://bugzilla.suse.com/show_bug.cgi?id=1226561 * https://bugzilla.suse.com/show_bug.cgi?id=1226562 * https://bugzilla.suse.com/show_bug.cgi?id=1226563 * https://bugzilla.suse.com/show_bug.cgi?id=1226564 * https://bugzilla.suse.com/show_bug.cgi?id=1226565 * https://bugzilla.suse.com/show_bug.cgi?id=1226566 * https://bugzilla.suse.com/show_bug.cgi?id=1226567 * https://bugzilla.suse.com/show_bug.cgi?id=1226568 * https://bugzilla.suse.com/show_bug.cgi?id=1226569 * https://bugzilla.suse.com/show_bug.cgi?id=1226570 * https://bugzilla.suse.com/show_bug.cgi?id=1226571 * https://bugzilla.suse.com/show_bug.cgi?id=1226572 * https://bugzilla.suse.com/show_bug.cgi?id=1226574 * https://bugzilla.suse.com/show_bug.cgi?id=1226575 * https://bugzilla.suse.com/show_bug.cgi?id=1226576 * https://bugzilla.suse.com/show_bug.cgi?id=1226577 * https://bugzilla.suse.com/show_bug.cgi?id=1226579 * https://bugzilla.suse.com/show_bug.cgi?id=1226580 * https://bugzilla.suse.com/show_bug.cgi?id=1226581 * https://bugzilla.suse.com/show_bug.cgi?id=1226582 * https://bugzilla.suse.com/show_bug.cgi?id=1226583 * https://bugzilla.suse.com/show_bug.cgi?id=1226585 * https://bugzilla.suse.com/show_bug.cgi?id=1226587 * https://bugzilla.suse.com/show_bug.cgi?id=1226588 * https://bugzilla.suse.com/show_bug.cgi?id=1226593 * https://bugzilla.suse.com/show_bug.cgi?id=1226595 * https://bugzilla.suse.com/show_bug.cgi?id=1226597 * https://bugzilla.suse.com/show_bug.cgi?id=1226601 * https://bugzilla.suse.com/show_bug.cgi?id=1226602 * https://bugzilla.suse.com/show_bug.cgi?id=1226603 * https://bugzilla.suse.com/show_bug.cgi?id=1226607 * https://bugzilla.suse.com/show_bug.cgi?id=1226610 * https://bugzilla.suse.com/show_bug.cgi?id=1226614 * https://bugzilla.suse.com/show_bug.cgi?id=1226616 * https://bugzilla.suse.com/show_bug.cgi?id=1226617 * https://bugzilla.suse.com/show_bug.cgi?id=1226618 * https://bugzilla.suse.com/show_bug.cgi?id=1226619 * https://bugzilla.suse.com/show_bug.cgi?id=1226621 * https://bugzilla.suse.com/show_bug.cgi?id=1226622 * https://bugzilla.suse.com/show_bug.cgi?id=1226624 * https://bugzilla.suse.com/show_bug.cgi?id=1226626 * https://bugzilla.suse.com/show_bug.cgi?id=1226628 * https://bugzilla.suse.com/show_bug.cgi?id=1226629 * https://bugzilla.suse.com/show_bug.cgi?id=1226632 * https://bugzilla.suse.com/show_bug.cgi?id=1226633 * https://bugzilla.suse.com/show_bug.cgi?id=1226634 * https://bugzilla.suse.com/show_bug.cgi?id=1226637 * https://bugzilla.suse.com/show_bug.cgi?id=1226643 * https://bugzilla.suse.com/show_bug.cgi?id=1226644 * https://bugzilla.suse.com/show_bug.cgi?id=1226645 * https://bugzilla.suse.com/show_bug.cgi?id=1226647 * https://bugzilla.suse.com/show_bug.cgi?id=1226650 * https://bugzilla.suse.com/show_bug.cgi?id=1226653 * https://bugzilla.suse.com/show_bug.cgi?id=1226657 * https://bugzilla.suse.com/show_bug.cgi?id=1226658 * https://bugzilla.suse.com/show_bug.cgi?id=1226669 * https://bugzilla.suse.com/show_bug.cgi?id=1226670 * https://bugzilla.suse.com/show_bug.cgi?id=1226672 * https://bugzilla.suse.com/show_bug.cgi?id=1226673 * https://bugzilla.suse.com/show_bug.cgi?id=1226674 * https://bugzilla.suse.com/show_bug.cgi?id=1226675 * https://bugzilla.suse.com/show_bug.cgi?id=1226678 * https://bugzilla.suse.com/show_bug.cgi?id=1226679 * https://bugzilla.suse.com/show_bug.cgi?id=1226683 * https://bugzilla.suse.com/show_bug.cgi?id=1226685 * https://bugzilla.suse.com/show_bug.cgi?id=1226686 * https://bugzilla.suse.com/show_bug.cgi?id=1226690 * https://bugzilla.suse.com/show_bug.cgi?id=1226691 * https://bugzilla.suse.com/show_bug.cgi?id=1226692 * https://bugzilla.suse.com/show_bug.cgi?id=1226693 * https://bugzilla.suse.com/show_bug.cgi?id=1226696 * https://bugzilla.suse.com/show_bug.cgi?id=1226697 * https://bugzilla.suse.com/show_bug.cgi?id=1226698 * https://bugzilla.suse.com/show_bug.cgi?id=1226699 * https://bugzilla.suse.com/show_bug.cgi?id=1226701 * https://bugzilla.suse.com/show_bug.cgi?id=1226702 * https://bugzilla.suse.com/show_bug.cgi?id=1226703 * https://bugzilla.suse.com/show_bug.cgi?id=1226704 * https://bugzilla.suse.com/show_bug.cgi?id=1226705 * https://bugzilla.suse.com/show_bug.cgi?id=1226706 * https://bugzilla.suse.com/show_bug.cgi?id=1226708 * https://bugzilla.suse.com/show_bug.cgi?id=1226709 * https://bugzilla.suse.com/show_bug.cgi?id=1226710 * https://bugzilla.suse.com/show_bug.cgi?id=1226711 * https://bugzilla.suse.com/show_bug.cgi?id=1226712 * https://bugzilla.suse.com/show_bug.cgi?id=1226713 * https://bugzilla.suse.com/show_bug.cgi?id=1226715 * https://bugzilla.suse.com/show_bug.cgi?id=1226716 * https://bugzilla.suse.com/show_bug.cgi?id=1226718 * https://bugzilla.suse.com/show_bug.cgi?id=1226719 * https://bugzilla.suse.com/show_bug.cgi?id=1226720 * https://bugzilla.suse.com/show_bug.cgi?id=1226721 * https://bugzilla.suse.com/show_bug.cgi?id=1226730 * https://bugzilla.suse.com/show_bug.cgi?id=1226732 * https://bugzilla.suse.com/show_bug.cgi?id=1226734 * https://bugzilla.suse.com/show_bug.cgi?id=1226735 * https://bugzilla.suse.com/show_bug.cgi?id=1226737 * https://bugzilla.suse.com/show_bug.cgi?id=1226738 * https://bugzilla.suse.com/show_bug.cgi?id=1226739 * https://bugzilla.suse.com/show_bug.cgi?id=1226740 * https://bugzilla.suse.com/show_bug.cgi?id=1226744 * https://bugzilla.suse.com/show_bug.cgi?id=1226746 * https://bugzilla.suse.com/show_bug.cgi?id=1226747 * https://bugzilla.suse.com/show_bug.cgi?id=1226749 * https://bugzilla.suse.com/show_bug.cgi?id=1226750 * https://bugzilla.suse.com/show_bug.cgi?id=1226754 * https://bugzilla.suse.com/show_bug.cgi?id=1226757 * https://bugzilla.suse.com/show_bug.cgi?id=1226762 * https://bugzilla.suse.com/show_bug.cgi?id=1226764 * https://bugzilla.suse.com/show_bug.cgi?id=1226767 * https://bugzilla.suse.com/show_bug.cgi?id=1226768 * https://bugzilla.suse.com/show_bug.cgi?id=1226769 * https://bugzilla.suse.com/show_bug.cgi?id=1226771 * https://bugzilla.suse.com/show_bug.cgi?id=1226774 * https://bugzilla.suse.com/show_bug.cgi?id=1226775 * https://bugzilla.suse.com/show_bug.cgi?id=1226777 * https://bugzilla.suse.com/show_bug.cgi?id=1226780 * https://bugzilla.suse.com/show_bug.cgi?id=1226781 * https://bugzilla.suse.com/show_bug.cgi?id=1226783 * https://bugzilla.suse.com/show_bug.cgi?id=1226785 * https://bugzilla.suse.com/show_bug.cgi?id=1226786 * https://bugzilla.suse.com/show_bug.cgi?id=1226789 * https://bugzilla.suse.com/show_bug.cgi?id=1226791 * https://bugzilla.suse.com/show_bug.cgi?id=1226834 * https://bugzilla.suse.com/show_bug.cgi?id=1226837 * https://bugzilla.suse.com/show_bug.cgi?id=1226839 * https://bugzilla.suse.com/show_bug.cgi?id=1226840 * https://bugzilla.suse.com/show_bug.cgi?id=1226841 * https://bugzilla.suse.com/show_bug.cgi?id=1226842 * https://bugzilla.suse.com/show_bug.cgi?id=1226848 * https://bugzilla.suse.com/show_bug.cgi?id=1226852 * https://bugzilla.suse.com/show_bug.cgi?id=1226857 * https://bugzilla.suse.com/show_bug.cgi?id=1226861 * https://bugzilla.suse.com/show_bug.cgi?id=1226863 * https://bugzilla.suse.com/show_bug.cgi?id=1226864 * https://bugzilla.suse.com/show_bug.cgi?id=1226867 * https://bugzilla.suse.com/show_bug.cgi?id=1226868 * https://bugzilla.suse.com/show_bug.cgi?id=1226876 * https://bugzilla.suse.com/show_bug.cgi?id=1226878 * https://bugzilla.suse.com/show_bug.cgi?id=1226883 * https://bugzilla.suse.com/show_bug.cgi?id=1226886 * https://bugzilla.suse.com/show_bug.cgi?id=1226890 * https://bugzilla.suse.com/show_bug.cgi?id=1226891 * https://bugzilla.suse.com/show_bug.cgi?id=1226895 * https://bugzilla.suse.com/show_bug.cgi?id=1226908 * https://bugzilla.suse.com/show_bug.cgi?id=1226911 * https://bugzilla.suse.com/show_bug.cgi?id=1226915 * https://bugzilla.suse.com/show_bug.cgi?id=1226928 * https://bugzilla.suse.com/show_bug.cgi?id=1226948 * https://bugzilla.suse.com/show_bug.cgi?id=1226949 * https://bugzilla.suse.com/show_bug.cgi?id=1226950 * https://bugzilla.suse.com/show_bug.cgi?id=1226953 * https://bugzilla.suse.com/show_bug.cgi?id=1226962 * https://bugzilla.suse.com/show_bug.cgi?id=1226976 * https://bugzilla.suse.com/show_bug.cgi?id=1226990 * https://bugzilla.suse.com/show_bug.cgi?id=1226992 * https://bugzilla.suse.com/show_bug.cgi?id=1226993 * https://bugzilla.suse.com/show_bug.cgi?id=1226994 * https://bugzilla.suse.com/show_bug.cgi?id=1226996 * https://bugzilla.suse.com/show_bug.cgi?id=1227066 * https://bugzilla.suse.com/show_bug.cgi?id=1227090 * https://bugzilla.suse.com/show_bug.cgi?id=1227096 * https://bugzilla.suse.com/show_bug.cgi?id=1227101 * https://bugzilla.suse.com/show_bug.cgi?id=1227103 * https://bugzilla.suse.com/show_bug.cgi?id=1227121 * https://bugzilla.suse.com/show_bug.cgi?id=1227157 * https://bugzilla.suse.com/show_bug.cgi?id=1227162 * https://bugzilla.suse.com/show_bug.cgi?id=1227274 * https://bugzilla.suse.com/show_bug.cgi?id=1227362 * https://bugzilla.suse.com/show_bug.cgi?id=1227383 * https://bugzilla.suse.com/show_bug.cgi?id=1227432 * https://bugzilla.suse.com/show_bug.cgi?id=1227435 * https://bugzilla.suse.com/show_bug.cgi?id=1227447 * https://bugzilla.suse.com/show_bug.cgi?id=1227487 * https://bugzilla.suse.com/show_bug.cgi?id=1227573 * https://bugzilla.suse.com/show_bug.cgi?id=1227618 * https://bugzilla.suse.com/show_bug.cgi?id=1227620 * https://bugzilla.suse.com/show_bug.cgi?id=1227626 * https://bugzilla.suse.com/show_bug.cgi?id=1227635 * https://bugzilla.suse.com/show_bug.cgi?id=1227661 * https://bugzilla.suse.com/show_bug.cgi?id=1227716 * https://bugzilla.suse.com/show_bug.cgi?id=1227722 * https://bugzilla.suse.com/show_bug.cgi?id=1227724 * https://bugzilla.suse.com/show_bug.cgi?id=1227725 * https://bugzilla.suse.com/show_bug.cgi?id=1227728 * https://bugzilla.suse.com/show_bug.cgi?id=1227729 * https://bugzilla.suse.com/show_bug.cgi?id=1227730 * https://bugzilla.suse.com/show_bug.cgi?id=1227732 * https://bugzilla.suse.com/show_bug.cgi?id=1227733 * https://bugzilla.suse.com/show_bug.cgi?id=1227750 * https://bugzilla.suse.com/show_bug.cgi?id=1227754 * https://bugzilla.suse.com/show_bug.cgi?id=1227755 * https://bugzilla.suse.com/show_bug.cgi?id=1227760 * https://bugzilla.suse.com/show_bug.cgi?id=1227762 * https://bugzilla.suse.com/show_bug.cgi?id=1227763 * https://bugzilla.suse.com/show_bug.cgi?id=1227764 * https://bugzilla.suse.com/show_bug.cgi?id=1227766 * https://bugzilla.suse.com/show_bug.cgi?id=1227770 * https://bugzilla.suse.com/show_bug.cgi?id=1227771 * https://bugzilla.suse.com/show_bug.cgi?id=1227772 * https://bugzilla.suse.com/show_bug.cgi?id=1227774 * https://bugzilla.suse.com/show_bug.cgi?id=1227779 * https://bugzilla.suse.com/show_bug.cgi?id=1227780 * https://bugzilla.suse.com/show_bug.cgi?id=1227783 * https://bugzilla.suse.com/show_bug.cgi?id=1227786 * https://bugzilla.suse.com/show_bug.cgi?id=1227787 * https://bugzilla.suse.com/show_bug.cgi?id=1227790 * https://bugzilla.suse.com/show_bug.cgi?id=1227792 * https://bugzilla.suse.com/show_bug.cgi?id=1227796 * https://bugzilla.suse.com/show_bug.cgi?id=1227797 * https://bugzilla.suse.com/show_bug.cgi?id=1227798 * https://bugzilla.suse.com/show_bug.cgi?id=1227800 * https://bugzilla.suse.com/show_bug.cgi?id=1227802 * https://bugzilla.suse.com/show_bug.cgi?id=1227806 * https://bugzilla.suse.com/show_bug.cgi?id=1227808 * https://bugzilla.suse.com/show_bug.cgi?id=1227810 * https://bugzilla.suse.com/show_bug.cgi?id=1227812 * https://bugzilla.suse.com/show_bug.cgi?id=1227813 * https://bugzilla.suse.com/show_bug.cgi?id=1227814 * https://bugzilla.suse.com/show_bug.cgi?id=1227816 * https://bugzilla.suse.com/show_bug.cgi?id=1227820 * https://bugzilla.suse.com/show_bug.cgi?id=1227823 * https://bugzilla.suse.com/show_bug.cgi?id=1227824 * https://bugzilla.suse.com/show_bug.cgi?id=1227828 * https://bugzilla.suse.com/show_bug.cgi?id=1227829 * https://bugzilla.suse.com/show_bug.cgi?id=1227836 * https://bugzilla.suse.com/show_bug.cgi?id=1227846 * https://bugzilla.suse.com/show_bug.cgi?id=1227849 * https://bugzilla.suse.com/show_bug.cgi?id=1227851 * https://bugzilla.suse.com/show_bug.cgi?id=1227862 * https://bugzilla.suse.com/show_bug.cgi?id=1227864 * https://bugzilla.suse.com/show_bug.cgi?id=1227865 * https://bugzilla.suse.com/show_bug.cgi?id=1227866 * https://bugzilla.suse.com/show_bug.cgi?id=1227870 * https://bugzilla.suse.com/show_bug.cgi?id=1227884 * https://bugzilla.suse.com/show_bug.cgi?id=1227886 * https://bugzilla.suse.com/show_bug.cgi?id=1227891 * https://bugzilla.suse.com/show_bug.cgi?id=1227893 * https://bugzilla.suse.com/show_bug.cgi?id=1227899 * https://bugzilla.suse.com/show_bug.cgi?id=1227900 * https://bugzilla.suse.com/show_bug.cgi?id=1227910 * https://bugzilla.suse.com/show_bug.cgi?id=1227913 * https://bugzilla.suse.com/show_bug.cgi?id=1227917 * https://bugzilla.suse.com/show_bug.cgi?id=1227919 * https://bugzilla.suse.com/show_bug.cgi?id=1227920 * https://bugzilla.suse.com/show_bug.cgi?id=1227921 * https://bugzilla.suse.com/show_bug.cgi?id=1227922 * https://bugzilla.suse.com/show_bug.cgi?id=1227923 * https://bugzilla.suse.com/show_bug.cgi?id=1227924 * https://bugzilla.suse.com/show_bug.cgi?id=1227925 * https://bugzilla.suse.com/show_bug.cgi?id=1227927 * https://bugzilla.suse.com/show_bug.cgi?id=1227928 * https://bugzilla.suse.com/show_bug.cgi?id=1227931 * https://bugzilla.suse.com/show_bug.cgi?id=1227932 * https://bugzilla.suse.com/show_bug.cgi?id=1227933 * https://bugzilla.suse.com/show_bug.cgi?id=1227935 * https://bugzilla.suse.com/show_bug.cgi?id=1227936 * https://bugzilla.suse.com/show_bug.cgi?id=1227938 * https://bugzilla.suse.com/show_bug.cgi?id=1227941 * https://bugzilla.suse.com/show_bug.cgi?id=1227942 * https://bugzilla.suse.com/show_bug.cgi?id=1227944 * https://bugzilla.suse.com/show_bug.cgi?id=1227945 * https://bugzilla.suse.com/show_bug.cgi?id=1227947 * https://bugzilla.suse.com/show_bug.cgi?id=1227948 * https://bugzilla.suse.com/show_bug.cgi?id=1227949 * https://bugzilla.suse.com/show_bug.cgi?id=1227950 * https://bugzilla.suse.com/show_bug.cgi?id=1227952 * https://bugzilla.suse.com/show_bug.cgi?id=1227953 * https://bugzilla.suse.com/show_bug.cgi?id=1227954 * https://bugzilla.suse.com/show_bug.cgi?id=1227956 * https://bugzilla.suse.com/show_bug.cgi?id=1227957 * https://bugzilla.suse.com/show_bug.cgi?id=1227963 * https://bugzilla.suse.com/show_bug.cgi?id=1227964 * https://bugzilla.suse.com/show_bug.cgi?id=1227965 * https://bugzilla.suse.com/show_bug.cgi?id=1227968 * https://bugzilla.suse.com/show_bug.cgi?id=1227969 * https://bugzilla.suse.com/show_bug.cgi?id=1227970 * https://bugzilla.suse.com/show_bug.cgi?id=1227971 * https://bugzilla.suse.com/show_bug.cgi?id=1227972 * https://bugzilla.suse.com/show_bug.cgi?id=1227975 * https://bugzilla.suse.com/show_bug.cgi?id=1227976 * https://bugzilla.suse.com/show_bug.cgi?id=1227981 * https://bugzilla.suse.com/show_bug.cgi?id=1227982 * https://bugzilla.suse.com/show_bug.cgi?id=1227985 * https://bugzilla.suse.com/show_bug.cgi?id=1227986 * https://bugzilla.suse.com/show_bug.cgi?id=1227987 * https://bugzilla.suse.com/show_bug.cgi?id=1227988 * https://bugzilla.suse.com/show_bug.cgi?id=1227989 * https://bugzilla.suse.com/show_bug.cgi?id=1227990 * https://bugzilla.suse.com/show_bug.cgi?id=1227991 * https://bugzilla.suse.com/show_bug.cgi?id=1227992 * https://bugzilla.suse.com/show_bug.cgi?id=1227993 * https://bugzilla.suse.com/show_bug.cgi?id=1227995 * https://bugzilla.suse.com/show_bug.cgi?id=1227996 * https://bugzilla.suse.com/show_bug.cgi?id=1227997 * https://bugzilla.suse.com/show_bug.cgi?id=1228000 * https://bugzilla.suse.com/show_bug.cgi?id=1228002 * https://bugzilla.suse.com/show_bug.cgi?id=1228003 * https://bugzilla.suse.com/show_bug.cgi?id=1228004 * https://bugzilla.suse.com/show_bug.cgi?id=1228005 * https://bugzilla.suse.com/show_bug.cgi?id=1228006 * https://bugzilla.suse.com/show_bug.cgi?id=1228007 * https://bugzilla.suse.com/show_bug.cgi?id=1228008 * https://bugzilla.suse.com/show_bug.cgi?id=1228009 * https://bugzilla.suse.com/show_bug.cgi?id=1228010 * https://bugzilla.suse.com/show_bug.cgi?id=1228011 * https://bugzilla.suse.com/show_bug.cgi?id=1228013 * https://bugzilla.suse.com/show_bug.cgi?id=1228014 * https://bugzilla.suse.com/show_bug.cgi?id=1228015 * https://bugzilla.suse.com/show_bug.cgi?id=1228019 * https://bugzilla.suse.com/show_bug.cgi?id=1228020 * https://bugzilla.suse.com/show_bug.cgi?id=1228025 * https://bugzilla.suse.com/show_bug.cgi?id=1228028 * https://bugzilla.suse.com/show_bug.cgi?id=1228035 * https://bugzilla.suse.com/show_bug.cgi?id=1228037 * https://bugzilla.suse.com/show_bug.cgi?id=1228038 * https://bugzilla.suse.com/show_bug.cgi?id=1228039 * https://bugzilla.suse.com/show_bug.cgi?id=1228040 * https://bugzilla.suse.com/show_bug.cgi?id=1228045 * https://bugzilla.suse.com/show_bug.cgi?id=1228054 * https://bugzilla.suse.com/show_bug.cgi?id=1228055 * https://bugzilla.suse.com/show_bug.cgi?id=1228056 * https://bugzilla.suse.com/show_bug.cgi?id=1228060 * https://bugzilla.suse.com/show_bug.cgi?id=1228061 * https://bugzilla.suse.com/show_bug.cgi?id=1228062 * https://bugzilla.suse.com/show_bug.cgi?id=1228063 * https://bugzilla.suse.com/show_bug.cgi?id=1228064 * https://bugzilla.suse.com/show_bug.cgi?id=1228066 * https://bugzilla.suse.com/show_bug.cgi?id=1228067 * https://bugzilla.suse.com/show_bug.cgi?id=1228068 * https://bugzilla.suse.com/show_bug.cgi?id=1228071 * https://bugzilla.suse.com/show_bug.cgi?id=1228079 * https://bugzilla.suse.com/show_bug.cgi?id=1228090 * https://bugzilla.suse.com/show_bug.cgi?id=1228114 * https://bugzilla.suse.com/show_bug.cgi?id=1228140 * https://bugzilla.suse.com/show_bug.cgi?id=1228190 * https://bugzilla.suse.com/show_bug.cgi?id=1228191 * https://bugzilla.suse.com/show_bug.cgi?id=1228226 * https://bugzilla.suse.com/show_bug.cgi?id=1228235 * https://bugzilla.suse.com/show_bug.cgi?id=1228247 * https://bugzilla.suse.com/show_bug.cgi?id=1228327 * https://bugzilla.suse.com/show_bug.cgi?id=1228328 * https://bugzilla.suse.com/show_bug.cgi?id=1228330 * https://bugzilla.suse.com/show_bug.cgi?id=1228403 * https://bugzilla.suse.com/show_bug.cgi?id=1228405 * https://bugzilla.suse.com/show_bug.cgi?id=1228408 * https://bugzilla.suse.com/show_bug.cgi?id=1228409 * https://bugzilla.suse.com/show_bug.cgi?id=1228410 * https://bugzilla.suse.com/show_bug.cgi?id=1228418 * https://bugzilla.suse.com/show_bug.cgi?id=1228459 * https://bugzilla.suse.com/show_bug.cgi?id=1228462 * https://bugzilla.suse.com/show_bug.cgi?id=1228470 * https://bugzilla.suse.com/show_bug.cgi?id=1228518 * https://bugzilla.suse.com/show_bug.cgi?id=1228520 * https://bugzilla.suse.com/show_bug.cgi?id=1228530 * https://bugzilla.suse.com/show_bug.cgi?id=1228561 * https://bugzilla.suse.com/show_bug.cgi?id=1228565 * https://bugzilla.suse.com/show_bug.cgi?id=1228580 * https://bugzilla.suse.com/show_bug.cgi?id=1228581 * https://bugzilla.suse.com/show_bug.cgi?id=1228591 * https://bugzilla.suse.com/show_bug.cgi?id=1228599 * https://bugzilla.suse.com/show_bug.cgi?id=1228617 * https://bugzilla.suse.com/show_bug.cgi?id=1228625 * https://bugzilla.suse.com/show_bug.cgi?id=1228626 * https://bugzilla.suse.com/show_bug.cgi?id=1228633 * https://bugzilla.suse.com/show_bug.cgi?id=1228640 * https://bugzilla.suse.com/show_bug.cgi?id=1228644 * https://bugzilla.suse.com/show_bug.cgi?id=1228649 * https://bugzilla.suse.com/show_bug.cgi?id=1228655 * https://bugzilla.suse.com/show_bug.cgi?id=1228665 * https://bugzilla.suse.com/show_bug.cgi?id=1228672 * https://bugzilla.suse.com/show_bug.cgi?id=1228680 * https://bugzilla.suse.com/show_bug.cgi?id=1228705 * https://bugzilla.suse.com/show_bug.cgi?id=1228723 * https://bugzilla.suse.com/show_bug.cgi?id=1228743 * https://bugzilla.suse.com/show_bug.cgi?id=1228756 * https://bugzilla.suse.com/show_bug.cgi?id=1228801 * https://bugzilla.suse.com/show_bug.cgi?id=1228850 * https://bugzilla.suse.com/show_bug.cgi?id=1228857 * https://jira.suse.com/browse/PED-8491 * https://jira.suse.com/browse/PED-8570 * https://jira.suse.com/browse/PED-8582 * https://jira.suse.com/browse/PED-8690 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Fri Aug 16 12:31:51 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Fri, 16 Aug 2024 12:31:51 -0000 Subject: SUSE-SU-2024:2940-1: important: Security update for the Linux Kernel Message-ID: <172381151171.12336.13810644137325976673@smelt2.prg2.suse.org> # Security update for the Linux Kernel Announcement ID: SUSE-SU-2024:2940-1 Rating: important References: * bsc#1065729 * bsc#1088701 * bsc#1149446 * bsc#1179610 * bsc#1186463 * bsc#1196018 * bsc#1202346 * bsc#1216834 * bsc#1220138 * bsc#1220942 * bsc#1221045 * bsc#1221614 * bsc#1221616 * bsc#1221618 * bsc#1222060 * bsc#1222317 * bsc#1222326 * bsc#1222372 * bsc#1222625 * bsc#1222776 * bsc#1222824 * bsc#1222829 * bsc#1222866 * bsc#1223012 * bsc#1223778 * bsc#1223813 * bsc#1223815 * bsc#1224500 * bsc#1224512 * bsc#1224545 * bsc#1224557 * bsc#1224571 * bsc#1224576 * bsc#1224587 * bsc#1224637 * bsc#1224641 * bsc#1224663 * bsc#1224683 * bsc#1224699 * bsc#1224700 * bsc#1224975 * bsc#1225003 * bsc#1225214 * bsc#1225224 * bsc#1225229 * bsc#1225238 * bsc#1225241 * bsc#1225326 * bsc#1225328 * bsc#1225346 * bsc#1225361 * bsc#1225396 * bsc#1225427 * bsc#1225455 * bsc#1225711 * bsc#1225719 * bsc#1225767 * bsc#1225820 * bsc#1225838 * bsc#1225898 * bsc#1226550 * bsc#1226553 * bsc#1226555 * bsc#1226559 * bsc#1226568 * bsc#1226571 * bsc#1226645 * bsc#1226783 * bsc#1226786 * bsc#1226834 * bsc#1226908 * bsc#1227191 * bsc#1227213 * bsc#1227573 * bsc#1227618 * bsc#1227626 * bsc#1227716 * bsc#1227725 * bsc#1227729 * bsc#1227730 * bsc#1227733 * bsc#1227750 * bsc#1227754 * bsc#1227762 * bsc#1227770 * bsc#1227771 * bsc#1227772 * bsc#1227774 * bsc#1227786 * bsc#1227790 * bsc#1227806 * bsc#1227824 * bsc#1227828 * bsc#1227830 * bsc#1227836 * bsc#1227849 * bsc#1227865 * bsc#1227866 * bsc#1227884 * bsc#1227886 * bsc#1227891 * bsc#1227913 * bsc#1227924 * bsc#1227928 * bsc#1227929 * bsc#1227936 * bsc#1227957 * bsc#1227968 * bsc#1227969 * bsc#1227975 * bsc#1227985 * bsc#1227989 * bsc#1228003 * bsc#1228005 * bsc#1228008 * bsc#1228013 * bsc#1228025 * bsc#1228030 * bsc#1228037 * bsc#1228045 * bsc#1228054 * bsc#1228055 * bsc#1228063 * bsc#1228071 * bsc#1228235 * bsc#1228237 * bsc#1228327 * bsc#1228328 * bsc#1228408 * bsc#1228409 * bsc#1228410 * bsc#1228470 * bsc#1228530 * bsc#1228561 * bsc#1228565 * bsc#1228567 * bsc#1228580 * bsc#1228581 * bsc#1228584 * bsc#1228588 * bsc#1228599 * bsc#1228617 * bsc#1228625 * bsc#1228626 * bsc#1228633 * bsc#1228640 * bsc#1228655 * bsc#1228658 * bsc#1228662 * bsc#1228680 * bsc#1228705 * bsc#1228723 * bsc#1228726 * bsc#1228743 * bsc#1228850 Cross-References: * CVE-2020-26558 * CVE-2021-0129 * CVE-2021-47191 * CVE-2021-47194 * CVE-2021-47197 * CVE-2021-47219 * CVE-2021-47295 * CVE-2021-47388 * CVE-2021-47395 * CVE-2021-47399 * CVE-2021-47403 * CVE-2021-47405 * CVE-2021-47438 * CVE-2021-47441 * CVE-2021-47468 * CVE-2021-47501 * CVE-2021-47516 * CVE-2021-47542 * CVE-2021-47559 * CVE-2021-47580 * CVE-2021-47582 * CVE-2021-47588 * CVE-2021-47597 * CVE-2021-47599 * CVE-2021-47606 * CVE-2021-47619 * CVE-2022-20368 * CVE-2022-28748 * CVE-2022-2964 * CVE-2022-48775 * CVE-2022-48792 * CVE-2022-48794 * CVE-2022-48804 * CVE-2022-48805 * CVE-2022-48810 * CVE-2022-48811 * CVE-2022-48823 * CVE-2022-48826 * CVE-2022-48827 * CVE-2022-48828 * CVE-2022-48829 * CVE-2022-48836 * CVE-2022-48839 * CVE-2022-48850 * CVE-2022-48855 * CVE-2022-48857 * CVE-2022-48860 * CVE-2022-48863 * CVE-2023-52435 * CVE-2023-52594 * CVE-2023-52612 * CVE-2023-52615 * CVE-2023-52619 * CVE-2023-52623 * CVE-2023-52669 * CVE-2023-52743 * CVE-2023-52885 * CVE-2024-26615 * CVE-2024-26659 * CVE-2024-26663 * CVE-2024-26735 * CVE-2024-26830 * CVE-2024-26920 * CVE-2024-26924 * CVE-2024-27019 * CVE-2024-27020 * CVE-2024-27025 * CVE-2024-27437 * CVE-2024-35806 * CVE-2024-35819 * CVE-2024-35837 * CVE-2024-35887 * CVE-2024-35893 * CVE-2024-35934 * CVE-2024-35949 * CVE-2024-35966 * CVE-2024-35967 * CVE-2024-35978 * CVE-2024-35995 * CVE-2024-36004 * CVE-2024-36288 * CVE-2024-36592 * CVE-2024-36901 * CVE-2024-36902 * CVE-2024-36919 * CVE-2024-36924 * CVE-2024-36939 * CVE-2024-36952 * CVE-2024-38558 * CVE-2024-38560 * CVE-2024-38630 * CVE-2024-39487 * CVE-2024-39488 * CVE-2024-39490 * CVE-2024-39494 * CVE-2024-39499 * CVE-2024-39501 * CVE-2024-39506 * CVE-2024-39507 * CVE-2024-39509 * CVE-2024-40901 * CVE-2024-40904 * CVE-2024-40912 * CVE-2024-40923 * CVE-2024-40929 * CVE-2024-40932 * CVE-2024-40937 * CVE-2024-40941 * CVE-2024-40942 * CVE-2024-40943 * CVE-2024-40953 * CVE-2024-40959 * CVE-2024-40966 * CVE-2024-40967 * CVE-2024-40978 * CVE-2024-40982 * CVE-2024-40987 * CVE-2024-40988 * CVE-2024-40990 * CVE-2024-40995 * CVE-2024-40998 * CVE-2024-40999 * CVE-2024-41014 * CVE-2024-41015 * CVE-2024-41016 * CVE-2024-41044 * CVE-2024-41048 * CVE-2024-41059 * CVE-2024-41060 * CVE-2024-41063 * CVE-2024-41064 * CVE-2024-41066 * CVE-2024-41070 * CVE-2024-41071 * CVE-2024-41072 * CVE-2024-41078 * CVE-2024-41081 * CVE-2024-41089 * CVE-2024-41090 * CVE-2024-41091 * CVE-2024-41095 * CVE-2024-42070 * CVE-2024-42093 * CVE-2024-42096 * CVE-2024-42119 * CVE-2024-42120 * CVE-2024-42124 * CVE-2024-42145 * CVE-2024-42223 * CVE-2024-42224 CVSS scores: * CVE-2020-26558 ( SUSE ): 4.2 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N * CVE-2020-26558 ( NVD ): 4.2 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N * CVE-2021-0129 ( SUSE ): 6.4 CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2021-0129 ( NVD ): 5.7 CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2021-47191 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47194 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47194 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2021-47197 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47219 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2021-47295 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47388 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2021-47395 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47399 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47403 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47405 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47438 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47441 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47468 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47501 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47516 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2021-47516 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47542 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47542 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47559 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47559 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47580 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:L * CVE-2021-47582 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47588 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47597 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2021-47599 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47606 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47619 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-20368 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-20368 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-28748 ( SUSE ): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N * CVE-2022-2964 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-2964 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48775 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2022-48792 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48792 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48794 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2022-48804 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2022-48805 ( SUSE ): 6.6 CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48810 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48811 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48823 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2022-48826 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48827 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48828 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N * CVE-2022-48829 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N * CVE-2022-48836 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48836 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48839 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48839 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48850 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48850 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48855 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48855 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2022-48857 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48857 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48860 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48860 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48863 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L * CVE-2022-48863 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52435 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52435 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52594 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52612 ( SUSE ): 6.0 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:H * CVE-2023-52615 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52619 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52623 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52669 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52743 ( SUSE ): 4.0 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2023-52885 ( SUSE ): 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26615 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26659 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26663 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26735 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26830 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26920 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26924 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27019 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27019 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2024-27020 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27020 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-27025 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2024-27437 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35806 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35819 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35837 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35887 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35893 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35934 ( SUSE ): 2.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-35949 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35966 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35967 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35978 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35978 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35995 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2024-36004 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36288 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36288 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36901 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36901 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36902 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36902 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36919 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36924 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36939 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36952 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38558 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L * CVE-2024-38560 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38630 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2024-39487 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2024-39488 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39490 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-39494 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-39494 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-39499 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2024-39501 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39506 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39507 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39509 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40901 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L * CVE-2024-40904 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40912 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40923 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40929 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40932 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L * CVE-2024-40937 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-40941 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40942 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40943 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40953 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40959 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40966 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40967 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40978 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40982 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40987 ( SUSE ): 5.0 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H * CVE-2024-40988 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40990 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40995 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40998 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40999 ( SUSE ): 3.6 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L * CVE-2024-41014 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-41015 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N * CVE-2024-41016 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N * CVE-2024-41044 ( SUSE ): 6.3 CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:L * CVE-2024-41048 ( SUSE ): 6.5 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-41059 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2024-41059 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-41060 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2024-41060 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-41063 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2024-41063 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-41064 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2024-41064 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-41066 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2024-41066 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2024-41070 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2024-41071 ( SUSE ): 4.3 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N * CVE-2024-41072 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N * CVE-2024-41078 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-41081 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-41089 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-41089 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-41090 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H * CVE-2024-41091 ( SUSE ): 6.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H * CVE-2024-41095 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-41095 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-42070 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2024-42070 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-42093 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L * CVE-2024-42096 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2024-42096 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2024-42119 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-42120 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-42124 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-42145 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2024-42145 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-42223 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-42223 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-42224 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-42224 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * SUSE Linux Enterprise High Availability Extension 12 SP5 * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise Live Patching 12-SP5 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 * SUSE Linux Enterprise Software Development Kit 12 SP5 * SUSE Linux Enterprise Workstation Extension 12 12-SP5 An update that solves 150 vulnerabilities and has five security fixes can now be installed. ## Description: The SUSE Linux Enterprise 12 SP5 kernel was updated to receive various security bugfixes. The following security bugs were fixed: * CVE-2024-39494: ima: Fix use-after-free on a dentry's dname.name (bsc#1227716). * CVE-2024-42096: x86: stop playing stack games in profile_pc() (bsc#1228633). * CVE-2024-39506: liquidio: adjust a NULL pointer handling path in lio_vf_rep_copy_packet (bsc#1227729). * CVE-2021-47619: i40e: Fix queues reservation for XDP (bsc#1226645). * CVE-2024-42145: IB/core: Implement a limit on UMAD receive List (bsc#1228743). * CVE-2024-42124: scsi: qedf: Make qedf_execute_tmf() non-preemptible (bsc#1228705). * CVE-2024-42223: media: dvb-frontends: tda10048: Fix integer overflow (bsc#1228726) * CVE-2024-42119: drm/amd/display: Skip finding free audio for unknown engine_id (bsc#1228584) * CVE-2024-42120: drm/amd/display: Check pipe offset before setting vblank (bsc#1228588) * CVE-2024-41095: drm/nouveau/dispnv04: fix null pointer dereference in nv17_tv_get_ld_modes (bsc#1228662) * CVE-2024-42224: net: dsa: mv88e6xxx: Correct check for empty list (bsc#1228723). * CVE-2024-41072: wifi: cfg80211: wext: add extra SIOCSIWSCAN data check (bsc#1228626). * CVE-2024-41048: skmsg: Skip zero length skb in sk_msg_recvmsg (bsc#1228565). * CVE-2024-40995: net/sched: act_api: fix possible infinite loop in tcf_idr_check_alloc() (bsc#1227830). * CVE-2024-41044: ppp: reject claimed-as-LCP but actually malformed packets (bsc#1228530). * CVE-2024-41066: ibmvnic: add tx check to prevent skb leak (bsc#1228640). * CVE-2024-42093: net/dpaa2: Avoid explicit cpumask var allocation on stack (bsc#1228680). * CVE-2024-41089: drm/nouveau/dispnv04: fix null pointer dereference in (bsc#1228658) * CVE-2024-41060: drm/radeon: check bo_va->bo is non-NULL before using it (bsc#1228567) * CVE-2022-48829: NFSD: Fix NFSv3 SETATTR/CREATE's handling of large file sizes (bsc#1228055). * CVE-2022-48828: NFSD: Fix ia_size underflow (bsc#1228054). * CVE-2022-48827: NFSD: Fix the behavior of READ near OFFSET_MAX (bsc#1228037). * CVE-2024-41078: btrfs: qgroup: fix quota root leak after quota disable failure (bsc#1228655). * CVE-2024-41071: wifi: mac80211: Avoid address calculations via out of bounds array indexing (bsc#1228625). * CVE-2024-41064: powerpc/eeh: avoid possible crash when edev->pdev changes (bsc#1228599). * CVE-2024-35949: btrfs: make sure that WRITTEN is set on all metadata blocks (bsc#1224700). * CVE-2024-41081: ila: block BH in ila_output() (bsc#1228617). * CVE-2024-40978: scsi: qedi: Fix crash while reading debugfs attribute (bsc#1227929). * CVE-2022-48792: scsi: pm8001: Fix use-after-free for aborted SSP/STP sas_task (bsc#1228013). * CVE-2022-48823: scsi: qedf: Fix refcount issue when LOGO is received during TMF (bsc#1228045). * CVE-2024-40998: ext4: fix uninitialized ratelimit_state->lock access in __ext4_fill_super() (bsc#1227866). * CVE-2024-41059: hfsplus: fix uninit-value in copy_name (bsc#1228561). * CVE-2024-40987: drm/amdgpu: fix UBSAN warning in kv_dpm.c (bsc#1228235) * CVE-2022-48826: drm/vc4: Fix deadlock on DSI device attach error (bsc#1227975) * CVE-2024-27437: vfio/pci: Disable auto-enable of exclusive INTx IRQ (bsc#1222625). * CVE-2024-41015: ocfs2: add bounds checking to ocfs2_check_dir_entry() (bsc#1228409). * CVE-2024-41016: ocfs2: strict bound check before memcmp in ocfs2_xattr_find_entry() (bsc#1228410). * CVE-2024-41063: bluetooth: hci_core: cancel all works upon hci_unregister_dev() (bsc#1228580). * CVE-2024-42070: netfilter: nf_tables: fully validate NFT_DATA_VALUE on store to data registers (bsc#1228470). * CVE-2024-41070: KVM: PPC: Book3S HV: Prevent UAF in kvm_spapr_tce_attach_iommu_group() (bsc#1228581). * CVE-2021-47405: HID: usbhid: free raw_report buffers in usbhid_stop (bsc#1225238). * CVE-2024-40988: drm/radeon: fix UBSAN warning in kv_dpm.c (bsc#1227957) * CVE-2024-40932: drm/exynos/vidi: fix memory leak in .get_modes() (bsc#1227828) * CVE-2021-47403: ipack: ipoctal: fix module reference leak (bsc#1225241). * CVE-2021-47388: mac80211: fix use-after-free in CCMP/GCMP RX (bsc#1225214). * CVE-2024-41014: xfs: add bounds checking to xlog_recover_process_data (bsc#1228408). * CVE-2024-41091: tun: add missing verification for short frame (bsc#1228327). * CVE-2024-41090: tap: add missing verification for short frame (bsc#1228328). * CVE-2024-40999: net: ena: Add validation for completion descriptors consistency (bsc#1227913). * CVE-2024-35837: net: mvpp2: clear BM pool before initialization (bsc#1224500). * CVE-2021-47588: sit: do not call ipip6_dev_free() from sit_init_net() (bsc#1226568). * CVE-2022-48804: vt_ioctl: fix array_index_nospec in vt_setactivate (bsc#1227968). * CVE-2024-40967: serial: imx: Introduce timeout when waiting on transmitter empty (bsc#1227891). * CVE-2024-40966: kABI: tty: add the option to have a tty reject a new ldisc (bsc#1227886). * CVE-2022-48850: net-sysfs: add check for netdevice being present to speed_show (bsc#1228071). * CVE-2021-47582: usb: core: Do not hold the device lock while sleeping in do_proc_control() (bsc#1226559). * CVE-2024-40982: ssb: fix potential NULL pointer dereference in ssb_device_uevent() (bsc#1227865). * CVE-2021-47468: isdn: mISDN: Fix sleeping function called from invalid context (bsc#1225346). * CVE-2021-47395: mac80211: limit injected vht mcs/nss in ieee80211_parse_tx_radiotap (bsc#1225326). * CVE-2022-48810: ipmr,ip6mr: acquire RTNL before calling ip[6]mr_free_table() on failure path (bsc#1227936). * CVE-2023-52594: Fixed potential array-index-out-of-bounds read in ath9k_htc_txstatus() (bsc#1221045). * CVE-2022-48855: sctp: fix kernel-infoleak for SCTP sockets (bsc#1228003). * CVE-2021-47580: scsi: scsi_debug: Fix type in min_t to avoid stack OOB (bsc#1226550). * CVE-2024-26735: ipv6: sr: fix possible use-after-free and null-ptr-deref (bsc#1222372). * CVE-2024-38560: scsi: bfa: Ensure the copied buf is NUL terminated (bsc#1226786). * CVE-2022-48811: ibmvnic: do not release napi in __ibmvnic_open() (bsc#1227928). * CVE-2021-0129: Improper access control in BlueZ may have allowed an authenticated user to potentially enable information disclosure via adjacent access (bsc#1186463). * CVE-2020-26558: Fixed a flaw in the Bluetooth LE and BR/EDR secure pairing that could permit a nearby man-in-the-middle attacker to identify the Passkey used during pairing (bsc#1179610). * CVE-2024-40937: gve: Clear napi->skb before dev_kfree_skb_any() (bsc#1227836). * CVE-2024-39507: net: hns3: fix kernel crash problem in concurrent scenario (bsc#1227730). * CVE-2024-40923: vmxnet3: disable rx data ring on dma allocation failure (bsc#1227786). * CVE-2024-40941: wifi: iwlwifi: mvm: do not read past the mfuart notifcation (bsc#1227771). * CVE-2022-48860: ethernet: Fix error handling in xemaclite_of_probe (bsc#1228008) * CVE-2022-48863: mISDN: Fix memory leak in dsp_pipeline_build() (bsc#1228063). * CVE-2024-40953: KVM: Fix a data race on last_boosted_vcpu in kvm_vcpu_on_spin() (bsc#1227806). * CVE-2024-39499: vmci: prevent speculation leaks by sanitizing event in event_deliver() (bsc#1227725) * CVE-2024-39509: HID: core: remove unnecessary WARN_ON() in implement() (bsc#1227733) * CVE-2024-39487: bonding: Fix out-of-bounds read in bond_option_arp_ip_targets_set() (bsc#1227573) * CVE-2024-35934: net/smc: reduce rtnl pressure in smc_pnet_create_pnetids_list() (bsc#1224641) * CVE-2024-40959: xfrm6: check ip6_dst_idev() return value in xfrm6_get_saddr() (bsc#1227884). * CVE-2024-35893: net/sched: act_skbmod: prevent kernel-infoleak (bsc#1224512) * CVE-2021-47441: mlxsw: thermal: Fix out-of-bounds memory accesses (bsc#1225224) * CVE-2021-47194: cfg80211: call cfg80211_stop_ap when switch from P2P_GO type (bsc#1222829) * CVE-2024-27020: netfilter: nf_tables: Fix potential data-race in __nft_expr_type_get() (bsc#1223815) * CVE-2022-48775: Drivers: hv: vmbus: Fix memory leak in vmbus_add_channel_kobj (bsc#1227924). * CVE-2024-27019: netfilter: nf_tables: Fix potential data-race in __nft_obj_type_get() (bsc#1223813) * CVE-2024-40929: wifi: iwlwifi: mvm: check n_ssids before accessing the ssids (bsc#1227774). * CVE-2024-40912: wifi: mac80211: Fix deadlock in ieee80211_sta_ps_deliver_wakeup() (bsc#1227790). * CVE-2024-40942: wifi: mac80211: mesh: Fix leak of mesh_preq_queue objects (bsc#1227770). * CVE-2022-48857: NFC: port100: fix use-after-free in port100_send_complete (bsc#1228005). * CVE-2024-36902: ipv6: fib6_rules: avoid possible NULL dereference in fib6_rule_action() (bsc#1225719). * CVE-2021-47606: net: netlink: af_netlink: Prevent empty skb by adding a check on len. (bsc#1226555). * CVE-2024-40901: scsi: mpt3sas: Avoid test/set_bit() operating in non- allocated memory (bsc#1227762). * CVE-2024-26924: scsi: lpfc: Release hbalock before calling lpfc_worker_wake_up() (bsc#1225820). * CVE-2024-26830: Fixed i40e to not allow untrusted VF to remove administratively set MAC (bsc#1223012). * CVE-2021-47516: nfp: Fix memory leak in nfp_cpp_area_cache_add() (bsc#1225427). * CVE-2021-47501: i40e: Fix NULL pointer dereference in i40e_dbg_dump_desc (bsc#1225361). * CVE-2024-39501: drivers: core: synchronize really_probe() and dev_uevent() (bsc#1227754). * CVE-2023-52743: ice: Do not use WQ_MEM_RECLAIM flag for workqueue (bsc#1225003) * CVE-2021-47542: net: qlogic: qlcnic: Fix a NULL pointer dereference in qlcnic_83xx_add_rings() (bsc#1225455) * CVE-2024-36901: ipv6: prevent NULL dereference in ip6_output() (bsc#1225711) * CVE-2024-36004: i40e: Do not use WQ_MEM_RECLAIM flag for workqueue (bsc#1224545) * CVE-2024-27025: nbd: null check for nla_nest_start (bsc#1223778) * CVE-2021-47599: btrfs: use latest_dev in btrfs_show_devname (bsc#1226571). * CVE-2023-52435: net: prevent mss overflow in skb_segment() (bsc#1220138). * CVE-2024-26663: tipc: Check the bearer type before calling tipc_udp_nl_bearer_add() (bsc#1222326). * CVE-2021-47597: inet_diag: fix kernel-infoleak for UDP sockets (bsc#1226553). * CVE-2024-39490: ipv6: sr: fix missing sk_buff release in seg6_input_core (bsc#1227626). * CVE-2024-38558: net: openvswitch: fix overwriting ct original tuple for ICMPv6 (bsc#1226783). * CVE-2024-26615: net/smc: fix illegal rmb_desc access in SMC-D connection dump (bsc#1220942). * CVE-2023-52619: Fixed possible crash when setting number of cpus to an odd number in pstore/ram (bsc#1221618). * CVE-2024-26659: Fixed wrong handling of isoc Babble and Buffer Overrun events in xhci (bsc#1222317). * CVE-2024-35978: Bluetooth: Fix memory leak in hci_req_sync_complete() (bsc#1224571). * CVE-2023-52669: crypto: s390/aes - Fix buffer overread in CTR mode (bsc#1224637). * CVE-2023-52615: Fixed page fault dead lock on mmap-ed hwrng (bsc#1221614). * CVE-2023-52612: Fixed req->dst buffer overflow in crypto/scomp (bsc#1221616). * CVE-2024-35995: ACPI: CPPC: Use access_width over bit_width for system memory accesses (bsc#1224557). * CVE-2023-52623: Fixed suspicious RCU usage in SUNRPC (bsc#1222060). * CVE-2021-47295: net: sched: fix memory leak in tcindex_partial_destroy_work (bsc#1224975) * CVE-2024-38630: watchdog: cpu5wdt.c: Fix use-after-free bug caused by cpu5wdt_trigger (bsc#1226908). * CVE-2021-47559: net/smc: Fix NULL pointer dereferencing in smc_vlan_by_tcpsk() (bsc#1225396). The following non-security bugs were fixed: * Fix spurious WARNING caused by a qxl driver patch (bsc#1227213,bsc#1227191) * Btrfs: incremental send, fix emission of invalid clone operations (bsc#1228030). * Btrfs: send, improve clone range (bsc#1228030). * KVM: PPC: Book3S HV: Do not take kvm->lock around kvm_for_each_vcpu (bsc#1065729). * KVM: PPC: Book3S HV: remove extraneous asterisk from rm_host_ipi_action() comment (bsc#1065729). * KVM: PPC: Book3S PR: Exiting split hack mode needs to fixup both PC and LR (bsc#1065729). * KVM: PPC: Book3S: Fix some RCU-list locks (git-fixes). * KVM: PPC: Book3S: Only report KVM_CAP_SPAPR_TCE_VFIO on powernv machines (bsc#1065729). * KVM: PPC: Book3S: Use new mutex to synchronize access to rtas token list (bsc#1065729). * KVM: PPC: Inform the userspace about TCE update failures (bsc#1065729). * KVM: PPC: Move and undef TRACE_INCLUDE_PATH/FILE (bsc#1065729). * PCI: Fix resource double counting on remove & rescan (git-fixes). * PCI: hv: Return zero, not garbage, when reading PCI_INTERRUPT_PIN (git- fixes). * Tools: hv: kvp: eliminate 'may be used uninitialized' warning (git-fixes). * USB: class: cdc-wdm: Fix CPU lockup caused by excessive log messages (git- fixes). * btrfs: fix 64bit compat send ioctl arguments not initializing version member (bsc#1228030). * btrfs: fix send ioctl on 32bit with 64bit kernel (bsc#1228030). * btrfs: remove unused members dir_path from recorded_ref (bsc#1228030). * btrfs: send: add new command FILEATTR for file attributes (bsc#1228030). * btrfs: send: add stream v2 definitions (bsc#1228030). * btrfs: send: always use the rbtree based inode ref management infrastructure (bsc#1228030). * btrfs: send: avoid copying file data (bsc#1228030). * btrfs: send: explicitly number commands and attributes (bsc#1228030). * btrfs: send: fix failures when processing inodes with no links (bsc#1228030). * btrfs: send: fix send failure of a subcase of orphan inodes (bsc#1228030). * btrfs: send: fix sending link commands for existing file paths (bsc#1228030). * btrfs: send: get rid of i_size logic in send_write() (bsc#1228030). * btrfs: send: introduce recorded_ref_alloc and recorded_ref_free (bsc#1228030). * btrfs: send: prepare for v2 protocol (bsc#1228030). * btrfs: send: refactor arguments of get_inode_info() (bsc#1228030). * btrfs: send: remove stale code when checking for shared extents (bsc#1228030). * btrfs: send: remove unused found_type parameter to lookup_dir_item_inode() (bsc#1228030). * btrfs: send: remove unused send_ctx::{total,cmd}_send_size (bsc#1228030). * btrfs: send: use boolean types for current inode status (bsc#1228030). * btrfs: silence maybe-uninitialized warning in clone_range (bsc#1228030). * drm/vc4: dsi: Only register our component once a DSI device is (bsc#1227975) * hv_netvsc: rndis_filter needs to select NLS (git-fixes). * ipv6: sr: fix incorrect unregister order (git-fixes). * net: mana: Fix the extra HZ in mana_hwc_send_request (git-fixes). * net: mana: select PAGE_POOL (git-fixes). * net_sched: add a temporary refcnt for struct tcindex_data (bsc#1224975). * net_sched: fix a memory leak in cls_tcindex (bsc#1224975). * net_sched: fix a missing refcnt in tcindex_init() (bsc#1224975). * net_sched: hold rtnl lock in tcindex_partial_destroy_work() (bsc#1224975) * nvme: fixup comment for nvme RDMA Provider Type (git-fixes). * ocfs2: fix DIO failure due to insufficient transaction credits (bsc#1216834). * ocfs2: remove redundant assignment to variable free_space (bsc#1228409). * ocfs2: strict bound check before memcmp in ocfs2_xattr_find_entry() (bsc#1228410). * scsi: qla2xxx: Avoid possible run-time warning with long model_num (bsc#1228850). * scsi: qla2xxx: Complete command early within lock (bsc#1228850). * scsi: qla2xxx: Convert comma to semicolon (bsc#1228850). * scsi: qla2xxx: Drop driver owner assignment (bsc#1228850). * scsi: qla2xxx: During vport delete send async logout explicitly (bsc#1228850). * scsi: qla2xxx: Fix debugfs output for fw_resource_count (bsc#1228850). * scsi: qla2xxx: Fix flash read failure (bsc#1228850). * scsi: qla2xxx: Fix for possible memory corruption (bsc#1228850). * scsi: qla2xxx: Fix optrom version displayed in FDMI (bsc#1228850). * scsi: qla2xxx: Reduce fabric scan duplicate code (bsc#1228850). * scsi: qla2xxx: Remove unused struct 'scsi_dif_tuple' (bsc#1228850). * scsi: qla2xxx: Return ENOBUFS if sg_cnt is more than one for ELS cmds (bsc#1228850). * scsi: qla2xxx: Unable to act on RSCN for port online (bsc#1228850). * scsi: qla2xxx: Update version to 10.02.09.300-k (bsc#1228850). * scsi: qla2xxx: Use QP lock to search for bsg (bsc#1228850). * scsi: qla2xxx: validate nvme_local_port correctly (bsc#1228850). * signal: Introduce clear_siginfo (git-fixes). * string.h: Introduce memtostr() and memtostr_pad() (bsc#1228850). * tools lib: Fix builds when glibc contains strlcpy() (git-fixes). * tools: hv: fix KVP and VSS daemons exit code (git-fixes). * usb: add a hcd_uses_dma helper (git-fixes). * usb: atm: cxacru: fix endpoint checking in cxacru_bind() (git-fixes). * usb: musb: da8xx: fix a resource leak in probe() (git-fixes). * x86/bhi: Avoid warning in #DB handler due to BHI mitigation (git-fixes). * x86/bugs: Remove CONFIG_BHI_MITIGATION_AUTO and spectre_bhi=auto (git- fixes). * x86/bugs: Replace CONFIG_SPECTRE_BHI_{ON,OFF} with CONFIG_MITIGATION_SPECTRE_BHI (git-fixes). * xfs: check that dir block entries do not off the end of the buffer (git- fixes). * xfs: refactor xfs_verifier_error and xfs_buf_ioerror (git-fixes). * xfs: remove XFS_WANT_CORRUPTED_RETURN from dir3 data verifiers (git-fixes). * xhci: Poll for U0 after disabling USB2 LPM (git-fixes). ## Special Instructions and Notes: * Please reboot the system after installing this update. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server for SAP Applications 12 SP5 zypper in -t patch SUSE-SLE-HA-12-SP5-2024-2940=1 SUSE-SLE- SERVER-12-SP5-2024-2940=1 * SUSE Linux Enterprise High Availability Extension 12 SP5 zypper in -t patch SUSE-SLE-HA-12-SP5-2024-2940=1 * SUSE Linux Enterprise Live Patching 12-SP5 zypper in -t patch SUSE-SLE-Live-Patching-12-SP5-2024-2940=1 * SUSE Linux Enterprise Software Development Kit 12 SP5 zypper in -t patch SUSE-SLE-SDK-12-SP5-2024-2940=1 * SUSE Linux Enterprise High Performance Computing 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-2940=1 * SUSE Linux Enterprise Server 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-2940=1 * SUSE Linux Enterprise Workstation Extension 12 12-SP5 zypper in -t patch SUSE-SLE-WE-12-SP5-2024-2940=1 ## Package List: * SUSE Linux Enterprise Server for SAP Applications 12 SP5 (ppc64le x86_64) * cluster-md-kmp-default-debuginfo-4.12.14-122.225.1 * kernel-default-debuginfo-4.12.14-122.225.1 * kernel-default-devel-4.12.14-122.225.1 * gfs2-kmp-default-4.12.14-122.225.1 * kernel-default-base-debuginfo-4.12.14-122.225.1 * ocfs2-kmp-default-debuginfo-4.12.14-122.225.1 * dlm-kmp-default-4.12.14-122.225.1 * kernel-default-debugsource-4.12.14-122.225.1 * dlm-kmp-default-debuginfo-4.12.14-122.225.1 * ocfs2-kmp-default-4.12.14-122.225.1 * cluster-md-kmp-default-4.12.14-122.225.1 * kernel-default-base-4.12.14-122.225.1 * kernel-syms-4.12.14-122.225.1 * gfs2-kmp-default-debuginfo-4.12.14-122.225.1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 (nosrc ppc64le x86_64) * kernel-default-4.12.14-122.225.1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 (noarch) * kernel-source-4.12.14-122.225.1 * kernel-devel-4.12.14-122.225.1 * kernel-macros-4.12.14-122.225.1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 (x86_64) * kernel-default-devel-debuginfo-4.12.14-122.225.1 * SUSE Linux Enterprise High Availability Extension 12 SP5 (ppc64le s390x x86_64) * cluster-md-kmp-default-debuginfo-4.12.14-122.225.1 * kernel-default-debuginfo-4.12.14-122.225.1 * gfs2-kmp-default-4.12.14-122.225.1 * ocfs2-kmp-default-debuginfo-4.12.14-122.225.1 * dlm-kmp-default-4.12.14-122.225.1 * kernel-default-debugsource-4.12.14-122.225.1 * dlm-kmp-default-debuginfo-4.12.14-122.225.1 * ocfs2-kmp-default-4.12.14-122.225.1 * cluster-md-kmp-default-4.12.14-122.225.1 * gfs2-kmp-default-debuginfo-4.12.14-122.225.1 * SUSE Linux Enterprise High Availability Extension 12 SP5 (nosrc) * kernel-default-4.12.14-122.225.1 * SUSE Linux Enterprise Live Patching 12-SP5 (ppc64le s390x x86_64) * kernel-default-kgraft-devel-4.12.14-122.225.1 * kernel-default-debuginfo-4.12.14-122.225.1 * kgraft-patch-4_12_14-122_225-default-1-8.3.1 * kernel-default-debugsource-4.12.14-122.225.1 * kernel-default-kgraft-4.12.14-122.225.1 * SUSE Linux Enterprise Live Patching 12-SP5 (nosrc) * kernel-default-4.12.14-122.225.1 * SUSE Linux Enterprise Software Development Kit 12 SP5 (noarch nosrc) * kernel-docs-4.12.14-122.225.2 * SUSE Linux Enterprise Software Development Kit 12 SP5 (aarch64 ppc64le s390x x86_64) * kernel-obs-build-debugsource-4.12.14-122.225.1 * kernel-obs-build-4.12.14-122.225.1 * SUSE Linux Enterprise High Performance Computing 12 SP5 (aarch64 nosrc x86_64) * kernel-default-4.12.14-122.225.1 * SUSE Linux Enterprise High Performance Computing 12 SP5 (aarch64 x86_64) * kernel-default-debuginfo-4.12.14-122.225.1 * kernel-default-devel-4.12.14-122.225.1 * kernel-default-base-debuginfo-4.12.14-122.225.1 * kernel-default-debugsource-4.12.14-122.225.1 * kernel-syms-4.12.14-122.225.1 * kernel-default-base-4.12.14-122.225.1 * SUSE Linux Enterprise High Performance Computing 12 SP5 (noarch) * kernel-source-4.12.14-122.225.1 * kernel-devel-4.12.14-122.225.1 * kernel-macros-4.12.14-122.225.1 * SUSE Linux Enterprise High Performance Computing 12 SP5 (x86_64) * kernel-default-devel-debuginfo-4.12.14-122.225.1 * SUSE Linux Enterprise Server 12 SP5 (aarch64 ppc64le s390x x86_64 nosrc) * kernel-default-4.12.14-122.225.1 * SUSE Linux Enterprise Server 12 SP5 (aarch64 ppc64le s390x x86_64) * kernel-default-debuginfo-4.12.14-122.225.1 * kernel-default-devel-4.12.14-122.225.1 * kernel-default-base-debuginfo-4.12.14-122.225.1 * kernel-default-debugsource-4.12.14-122.225.1 * kernel-syms-4.12.14-122.225.1 * kernel-default-base-4.12.14-122.225.1 * SUSE Linux Enterprise Server 12 SP5 (noarch) * kernel-source-4.12.14-122.225.1 * kernel-devel-4.12.14-122.225.1 * kernel-macros-4.12.14-122.225.1 * SUSE Linux Enterprise Server 12 SP5 (s390x) * kernel-default-man-4.12.14-122.225.1 * SUSE Linux Enterprise Server 12 SP5 (x86_64) * kernel-default-devel-debuginfo-4.12.14-122.225.1 * SUSE Linux Enterprise Workstation Extension 12 12-SP5 (nosrc) * kernel-default-4.12.14-122.225.1 * SUSE Linux Enterprise Workstation Extension 12 12-SP5 (x86_64) * kernel-default-extra-4.12.14-122.225.1 * kernel-default-debuginfo-4.12.14-122.225.1 * kernel-default-extra-debuginfo-4.12.14-122.225.1 * kernel-default-debugsource-4.12.14-122.225.1 ## References: * https://www.suse.com/security/cve/CVE-2020-26558.html * https://www.suse.com/security/cve/CVE-2021-0129.html * https://www.suse.com/security/cve/CVE-2021-47191.html * https://www.suse.com/security/cve/CVE-2021-47194.html * https://www.suse.com/security/cve/CVE-2021-47197.html * https://www.suse.com/security/cve/CVE-2021-47219.html * https://www.suse.com/security/cve/CVE-2021-47295.html * https://www.suse.com/security/cve/CVE-2021-47388.html * https://www.suse.com/security/cve/CVE-2021-47395.html * https://www.suse.com/security/cve/CVE-2021-47399.html * https://www.suse.com/security/cve/CVE-2021-47403.html * https://www.suse.com/security/cve/CVE-2021-47405.html * https://www.suse.com/security/cve/CVE-2021-47438.html * https://www.suse.com/security/cve/CVE-2021-47441.html * https://www.suse.com/security/cve/CVE-2021-47468.html * https://www.suse.com/security/cve/CVE-2021-47501.html * https://www.suse.com/security/cve/CVE-2021-47516.html * https://www.suse.com/security/cve/CVE-2021-47542.html * https://www.suse.com/security/cve/CVE-2021-47559.html * https://www.suse.com/security/cve/CVE-2021-47580.html * https://www.suse.com/security/cve/CVE-2021-47582.html * https://www.suse.com/security/cve/CVE-2021-47588.html * https://www.suse.com/security/cve/CVE-2021-47597.html * https://www.suse.com/security/cve/CVE-2021-47599.html * https://www.suse.com/security/cve/CVE-2021-47606.html * https://www.suse.com/security/cve/CVE-2021-47619.html * https://www.suse.com/security/cve/CVE-2022-20368.html * https://www.suse.com/security/cve/CVE-2022-28748.html * https://www.suse.com/security/cve/CVE-2022-2964.html * https://www.suse.com/security/cve/CVE-2022-48775.html * https://www.suse.com/security/cve/CVE-2022-48792.html * https://www.suse.com/security/cve/CVE-2022-48794.html * https://www.suse.com/security/cve/CVE-2022-48804.html * https://www.suse.com/security/cve/CVE-2022-48805.html * https://www.suse.com/security/cve/CVE-2022-48810.html * https://www.suse.com/security/cve/CVE-2022-48811.html * https://www.suse.com/security/cve/CVE-2022-48823.html * https://www.suse.com/security/cve/CVE-2022-48826.html * https://www.suse.com/security/cve/CVE-2022-48827.html * https://www.suse.com/security/cve/CVE-2022-48828.html * https://www.suse.com/security/cve/CVE-2022-48829.html * https://www.suse.com/security/cve/CVE-2022-48836.html * https://www.suse.com/security/cve/CVE-2022-48839.html * https://www.suse.com/security/cve/CVE-2022-48850.html * https://www.suse.com/security/cve/CVE-2022-48855.html * https://www.suse.com/security/cve/CVE-2022-48857.html * https://www.suse.com/security/cve/CVE-2022-48860.html * https://www.suse.com/security/cve/CVE-2022-48863.html * https://www.suse.com/security/cve/CVE-2023-52435.html * https://www.suse.com/security/cve/CVE-2023-52594.html * https://www.suse.com/security/cve/CVE-2023-52612.html * https://www.suse.com/security/cve/CVE-2023-52615.html * https://www.suse.com/security/cve/CVE-2023-52619.html * https://www.suse.com/security/cve/CVE-2023-52623.html * https://www.suse.com/security/cve/CVE-2023-52669.html * https://www.suse.com/security/cve/CVE-2023-52743.html * https://www.suse.com/security/cve/CVE-2023-52885.html * https://www.suse.com/security/cve/CVE-2024-26615.html * https://www.suse.com/security/cve/CVE-2024-26659.html * https://www.suse.com/security/cve/CVE-2024-26663.html * https://www.suse.com/security/cve/CVE-2024-26735.html * https://www.suse.com/security/cve/CVE-2024-26830.html * https://www.suse.com/security/cve/CVE-2024-26920.html * https://www.suse.com/security/cve/CVE-2024-26924.html * https://www.suse.com/security/cve/CVE-2024-27019.html * https://www.suse.com/security/cve/CVE-2024-27020.html * https://www.suse.com/security/cve/CVE-2024-27025.html * https://www.suse.com/security/cve/CVE-2024-27437.html * https://www.suse.com/security/cve/CVE-2024-35806.html * https://www.suse.com/security/cve/CVE-2024-35819.html * https://www.suse.com/security/cve/CVE-2024-35837.html * https://www.suse.com/security/cve/CVE-2024-35887.html * https://www.suse.com/security/cve/CVE-2024-35893.html * https://www.suse.com/security/cve/CVE-2024-35934.html * https://www.suse.com/security/cve/CVE-2024-35949.html * https://www.suse.com/security/cve/CVE-2024-35966.html * https://www.suse.com/security/cve/CVE-2024-35967.html * https://www.suse.com/security/cve/CVE-2024-35978.html * https://www.suse.com/security/cve/CVE-2024-35995.html * https://www.suse.com/security/cve/CVE-2024-36004.html * https://www.suse.com/security/cve/CVE-2024-36288.html * https://www.suse.com/security/cve/CVE-2024-36592.html * https://www.suse.com/security/cve/CVE-2024-36901.html * https://www.suse.com/security/cve/CVE-2024-36902.html * https://www.suse.com/security/cve/CVE-2024-36919.html * https://www.suse.com/security/cve/CVE-2024-36924.html * https://www.suse.com/security/cve/CVE-2024-36939.html * https://www.suse.com/security/cve/CVE-2024-36952.html * https://www.suse.com/security/cve/CVE-2024-38558.html * https://www.suse.com/security/cve/CVE-2024-38560.html * https://www.suse.com/security/cve/CVE-2024-38630.html * https://www.suse.com/security/cve/CVE-2024-39487.html * https://www.suse.com/security/cve/CVE-2024-39488.html * https://www.suse.com/security/cve/CVE-2024-39490.html * https://www.suse.com/security/cve/CVE-2024-39494.html * https://www.suse.com/security/cve/CVE-2024-39499.html * https://www.suse.com/security/cve/CVE-2024-39501.html * https://www.suse.com/security/cve/CVE-2024-39506.html * https://www.suse.com/security/cve/CVE-2024-39507.html * https://www.suse.com/security/cve/CVE-2024-39509.html * https://www.suse.com/security/cve/CVE-2024-40901.html * https://www.suse.com/security/cve/CVE-2024-40904.html * https://www.suse.com/security/cve/CVE-2024-40912.html * https://www.suse.com/security/cve/CVE-2024-40923.html * https://www.suse.com/security/cve/CVE-2024-40929.html * https://www.suse.com/security/cve/CVE-2024-40932.html * https://www.suse.com/security/cve/CVE-2024-40937.html * https://www.suse.com/security/cve/CVE-2024-40941.html * https://www.suse.com/security/cve/CVE-2024-40942.html * https://www.suse.com/security/cve/CVE-2024-40943.html * https://www.suse.com/security/cve/CVE-2024-40953.html * https://www.suse.com/security/cve/CVE-2024-40959.html * https://www.suse.com/security/cve/CVE-2024-40966.html * https://www.suse.com/security/cve/CVE-2024-40967.html * https://www.suse.com/security/cve/CVE-2024-40978.html * https://www.suse.com/security/cve/CVE-2024-40982.html * https://www.suse.com/security/cve/CVE-2024-40987.html * https://www.suse.com/security/cve/CVE-2024-40988.html * https://www.suse.com/security/cve/CVE-2024-40990.html * https://www.suse.com/security/cve/CVE-2024-40995.html * https://www.suse.com/security/cve/CVE-2024-40998.html * https://www.suse.com/security/cve/CVE-2024-40999.html * https://www.suse.com/security/cve/CVE-2024-41014.html * https://www.suse.com/security/cve/CVE-2024-41015.html * https://www.suse.com/security/cve/CVE-2024-41016.html * https://www.suse.com/security/cve/CVE-2024-41044.html * https://www.suse.com/security/cve/CVE-2024-41048.html * https://www.suse.com/security/cve/CVE-2024-41059.html * https://www.suse.com/security/cve/CVE-2024-41060.html * https://www.suse.com/security/cve/CVE-2024-41063.html * https://www.suse.com/security/cve/CVE-2024-41064.html * https://www.suse.com/security/cve/CVE-2024-41066.html * https://www.suse.com/security/cve/CVE-2024-41070.html * https://www.suse.com/security/cve/CVE-2024-41071.html * https://www.suse.com/security/cve/CVE-2024-41072.html * https://www.suse.com/security/cve/CVE-2024-41078.html * https://www.suse.com/security/cve/CVE-2024-41081.html * https://www.suse.com/security/cve/CVE-2024-41089.html * https://www.suse.com/security/cve/CVE-2024-41090.html * https://www.suse.com/security/cve/CVE-2024-41091.html * https://www.suse.com/security/cve/CVE-2024-41095.html * https://www.suse.com/security/cve/CVE-2024-42070.html * https://www.suse.com/security/cve/CVE-2024-42093.html * https://www.suse.com/security/cve/CVE-2024-42096.html * https://www.suse.com/security/cve/CVE-2024-42119.html * https://www.suse.com/security/cve/CVE-2024-42120.html * https://www.suse.com/security/cve/CVE-2024-42124.html * https://www.suse.com/security/cve/CVE-2024-42145.html * https://www.suse.com/security/cve/CVE-2024-42223.html * https://www.suse.com/security/cve/CVE-2024-42224.html * https://bugzilla.suse.com/show_bug.cgi?id=1065729 * https://bugzilla.suse.com/show_bug.cgi?id=1088701 * https://bugzilla.suse.com/show_bug.cgi?id=1149446 * https://bugzilla.suse.com/show_bug.cgi?id=1179610 * https://bugzilla.suse.com/show_bug.cgi?id=1186463 * https://bugzilla.suse.com/show_bug.cgi?id=1196018 * https://bugzilla.suse.com/show_bug.cgi?id=1202346 * https://bugzilla.suse.com/show_bug.cgi?id=1216834 * https://bugzilla.suse.com/show_bug.cgi?id=1220138 * https://bugzilla.suse.com/show_bug.cgi?id=1220942 * https://bugzilla.suse.com/show_bug.cgi?id=1221045 * https://bugzilla.suse.com/show_bug.cgi?id=1221614 * https://bugzilla.suse.com/show_bug.cgi?id=1221616 * https://bugzilla.suse.com/show_bug.cgi?id=1221618 * https://bugzilla.suse.com/show_bug.cgi?id=1222060 * https://bugzilla.suse.com/show_bug.cgi?id=1222317 * https://bugzilla.suse.com/show_bug.cgi?id=1222326 * https://bugzilla.suse.com/show_bug.cgi?id=1222372 * https://bugzilla.suse.com/show_bug.cgi?id=1222625 * https://bugzilla.suse.com/show_bug.cgi?id=1222776 * https://bugzilla.suse.com/show_bug.cgi?id=1222824 * https://bugzilla.suse.com/show_bug.cgi?id=1222829 * https://bugzilla.suse.com/show_bug.cgi?id=1222866 * https://bugzilla.suse.com/show_bug.cgi?id=1223012 * https://bugzilla.suse.com/show_bug.cgi?id=1223778 * https://bugzilla.suse.com/show_bug.cgi?id=1223813 * https://bugzilla.suse.com/show_bug.cgi?id=1223815 * https://bugzilla.suse.com/show_bug.cgi?id=1224500 * https://bugzilla.suse.com/show_bug.cgi?id=1224512 * https://bugzilla.suse.com/show_bug.cgi?id=1224545 * https://bugzilla.suse.com/show_bug.cgi?id=1224557 * https://bugzilla.suse.com/show_bug.cgi?id=1224571 * https://bugzilla.suse.com/show_bug.cgi?id=1224576 * https://bugzilla.suse.com/show_bug.cgi?id=1224587 * https://bugzilla.suse.com/show_bug.cgi?id=1224637 * https://bugzilla.suse.com/show_bug.cgi?id=1224641 * https://bugzilla.suse.com/show_bug.cgi?id=1224663 * https://bugzilla.suse.com/show_bug.cgi?id=1224683 * https://bugzilla.suse.com/show_bug.cgi?id=1224699 * https://bugzilla.suse.com/show_bug.cgi?id=1224700 * https://bugzilla.suse.com/show_bug.cgi?id=1224975 * https://bugzilla.suse.com/show_bug.cgi?id=1225003 * https://bugzilla.suse.com/show_bug.cgi?id=1225214 * https://bugzilla.suse.com/show_bug.cgi?id=1225224 * https://bugzilla.suse.com/show_bug.cgi?id=1225229 * https://bugzilla.suse.com/show_bug.cgi?id=1225238 * https://bugzilla.suse.com/show_bug.cgi?id=1225241 * https://bugzilla.suse.com/show_bug.cgi?id=1225326 * https://bugzilla.suse.com/show_bug.cgi?id=1225328 * https://bugzilla.suse.com/show_bug.cgi?id=1225346 * https://bugzilla.suse.com/show_bug.cgi?id=1225361 * https://bugzilla.suse.com/show_bug.cgi?id=1225396 * https://bugzilla.suse.com/show_bug.cgi?id=1225427 * https://bugzilla.suse.com/show_bug.cgi?id=1225455 * https://bugzilla.suse.com/show_bug.cgi?id=1225711 * https://bugzilla.suse.com/show_bug.cgi?id=1225719 * https://bugzilla.suse.com/show_bug.cgi?id=1225767 * https://bugzilla.suse.com/show_bug.cgi?id=1225820 * https://bugzilla.suse.com/show_bug.cgi?id=1225838 * https://bugzilla.suse.com/show_bug.cgi?id=1225898 * https://bugzilla.suse.com/show_bug.cgi?id=1226550 * https://bugzilla.suse.com/show_bug.cgi?id=1226553 * https://bugzilla.suse.com/show_bug.cgi?id=1226555 * https://bugzilla.suse.com/show_bug.cgi?id=1226559 * https://bugzilla.suse.com/show_bug.cgi?id=1226568 * https://bugzilla.suse.com/show_bug.cgi?id=1226571 * https://bugzilla.suse.com/show_bug.cgi?id=1226645 * https://bugzilla.suse.com/show_bug.cgi?id=1226783 * https://bugzilla.suse.com/show_bug.cgi?id=1226786 * https://bugzilla.suse.com/show_bug.cgi?id=1226834 * https://bugzilla.suse.com/show_bug.cgi?id=1226908 * https://bugzilla.suse.com/show_bug.cgi?id=1227191 * https://bugzilla.suse.com/show_bug.cgi?id=1227213 * https://bugzilla.suse.com/show_bug.cgi?id=1227573 * https://bugzilla.suse.com/show_bug.cgi?id=1227618 * https://bugzilla.suse.com/show_bug.cgi?id=1227626 * https://bugzilla.suse.com/show_bug.cgi?id=1227716 * https://bugzilla.suse.com/show_bug.cgi?id=1227725 * https://bugzilla.suse.com/show_bug.cgi?id=1227729 * https://bugzilla.suse.com/show_bug.cgi?id=1227730 * https://bugzilla.suse.com/show_bug.cgi?id=1227733 * https://bugzilla.suse.com/show_bug.cgi?id=1227750 * https://bugzilla.suse.com/show_bug.cgi?id=1227754 * https://bugzilla.suse.com/show_bug.cgi?id=1227762 * https://bugzilla.suse.com/show_bug.cgi?id=1227770 * https://bugzilla.suse.com/show_bug.cgi?id=1227771 * https://bugzilla.suse.com/show_bug.cgi?id=1227772 * https://bugzilla.suse.com/show_bug.cgi?id=1227774 * https://bugzilla.suse.com/show_bug.cgi?id=1227786 * https://bugzilla.suse.com/show_bug.cgi?id=1227790 * https://bugzilla.suse.com/show_bug.cgi?id=1227806 * https://bugzilla.suse.com/show_bug.cgi?id=1227824 * https://bugzilla.suse.com/show_bug.cgi?id=1227828 * https://bugzilla.suse.com/show_bug.cgi?id=1227830 * https://bugzilla.suse.com/show_bug.cgi?id=1227836 * https://bugzilla.suse.com/show_bug.cgi?id=1227849 * https://bugzilla.suse.com/show_bug.cgi?id=1227865 * https://bugzilla.suse.com/show_bug.cgi?id=1227866 * https://bugzilla.suse.com/show_bug.cgi?id=1227884 * https://bugzilla.suse.com/show_bug.cgi?id=1227886 * https://bugzilla.suse.com/show_bug.cgi?id=1227891 * https://bugzilla.suse.com/show_bug.cgi?id=1227913 * https://bugzilla.suse.com/show_bug.cgi?id=1227924 * https://bugzilla.suse.com/show_bug.cgi?id=1227928 * https://bugzilla.suse.com/show_bug.cgi?id=1227929 * https://bugzilla.suse.com/show_bug.cgi?id=1227936 * https://bugzilla.suse.com/show_bug.cgi?id=1227957 * https://bugzilla.suse.com/show_bug.cgi?id=1227968 * https://bugzilla.suse.com/show_bug.cgi?id=1227969 * https://bugzilla.suse.com/show_bug.cgi?id=1227975 * https://bugzilla.suse.com/show_bug.cgi?id=1227985 * https://bugzilla.suse.com/show_bug.cgi?id=1227989 * https://bugzilla.suse.com/show_bug.cgi?id=1228003 * https://bugzilla.suse.com/show_bug.cgi?id=1228005 * https://bugzilla.suse.com/show_bug.cgi?id=1228008 * https://bugzilla.suse.com/show_bug.cgi?id=1228013 * https://bugzilla.suse.com/show_bug.cgi?id=1228025 * https://bugzilla.suse.com/show_bug.cgi?id=1228030 * https://bugzilla.suse.com/show_bug.cgi?id=1228037 * https://bugzilla.suse.com/show_bug.cgi?id=1228045 * https://bugzilla.suse.com/show_bug.cgi?id=1228054 * https://bugzilla.suse.com/show_bug.cgi?id=1228055 * https://bugzilla.suse.com/show_bug.cgi?id=1228063 * https://bugzilla.suse.com/show_bug.cgi?id=1228071 * https://bugzilla.suse.com/show_bug.cgi?id=1228235 * https://bugzilla.suse.com/show_bug.cgi?id=1228237 * https://bugzilla.suse.com/show_bug.cgi?id=1228327 * https://bugzilla.suse.com/show_bug.cgi?id=1228328 * https://bugzilla.suse.com/show_bug.cgi?id=1228408 * https://bugzilla.suse.com/show_bug.cgi?id=1228409 * https://bugzilla.suse.com/show_bug.cgi?id=1228410 * https://bugzilla.suse.com/show_bug.cgi?id=1228470 * https://bugzilla.suse.com/show_bug.cgi?id=1228530 * https://bugzilla.suse.com/show_bug.cgi?id=1228561 * https://bugzilla.suse.com/show_bug.cgi?id=1228565 * https://bugzilla.suse.com/show_bug.cgi?id=1228567 * https://bugzilla.suse.com/show_bug.cgi?id=1228580 * https://bugzilla.suse.com/show_bug.cgi?id=1228581 * https://bugzilla.suse.com/show_bug.cgi?id=1228584 * https://bugzilla.suse.com/show_bug.cgi?id=1228588 * https://bugzilla.suse.com/show_bug.cgi?id=1228599 * https://bugzilla.suse.com/show_bug.cgi?id=1228617 * https://bugzilla.suse.com/show_bug.cgi?id=1228625 * https://bugzilla.suse.com/show_bug.cgi?id=1228626 * https://bugzilla.suse.com/show_bug.cgi?id=1228633 * https://bugzilla.suse.com/show_bug.cgi?id=1228640 * https://bugzilla.suse.com/show_bug.cgi?id=1228655 * https://bugzilla.suse.com/show_bug.cgi?id=1228658 * https://bugzilla.suse.com/show_bug.cgi?id=1228662 * https://bugzilla.suse.com/show_bug.cgi?id=1228680 * https://bugzilla.suse.com/show_bug.cgi?id=1228705 * https://bugzilla.suse.com/show_bug.cgi?id=1228723 * https://bugzilla.suse.com/show_bug.cgi?id=1228726 * https://bugzilla.suse.com/show_bug.cgi?id=1228743 * https://bugzilla.suse.com/show_bug.cgi?id=1228850 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Fri Aug 16 12:31:56 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Fri, 16 Aug 2024 12:31:56 -0000 Subject: SUSE-SU-2024:2946-1: important: Security update for libqt5-qtbase Message-ID: <172381151699.12336.14760245659378349910@smelt2.prg2.suse.org> # Security update for libqt5-qtbase Announcement ID: SUSE-SU-2024:2946-1 Rating: important References: * bsc#1214327 * bsc#1218413 * bsc#1222120 * bsc#1227426 * bsc#1227513 * jsc#PED-6193 Cross-References: * CVE-2023-37369 * CVE-2023-45935 * CVE-2023-51714 * CVE-2024-39936 CVSS scores: * CVE-2023-37369 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-37369 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2023-45935 ( SUSE ): 4.2 CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:N/I:N/A:H * CVE-2023-51714 ( SUSE ): 6.2 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2023-51714 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2024-39936 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2024-39936 ( NVD ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N Affected Products: * SUSE Enterprise Storage 7.1 * SUSE Linux Enterprise High Performance Computing 15 SP2 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 * SUSE Linux Enterprise High Performance Computing 15 SP3 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 * SUSE Linux Enterprise Server 15 SP2 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 * SUSE Linux Enterprise Server 15 SP3 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 An update that solves four vulnerabilities, contains one feature and has one security fix can now be installed. ## Description: This update for libqt5-qtbase fixes the following issues: * CVE-2023-37369: Fixed a buffer overflow in QXmlStreamReader (QTBUG-91889, bsc#1214327). * CVE-2023-45935: Fixed NULL pointer dereference in QXcbConnection::initializeAllAtoms() due to anomalous behavior from the X server (bsc#1222120) * CVE-2024-39936: Fixed information leakage due to process HTTP2 communication before encrypted() can be responded to (bsc#1227426) * CVE-2023-51714: Fixed an incorrect integer overflow check (bsc#1218413). Other fixes: \- Add patch from upstream to fix a regression in the ODBC driver (bsc#1227513, QTBUG-112375) \- Add upstream patch to fix a potential overflow in assemble_hpack_block() \- Use pkgconfig(icu-18n) to select current icu ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 zypper in -t patch SUSE-SLE-Product-SLES-15-SP3-LTSS-2024-2946=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP2-2024-2946=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP3-2024-2946=1 * SUSE Enterprise Storage 7.1 zypper in -t patch SUSE-Storage-7.1-2024-2946=1 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 zypper in -t patch SUSE-SLE-Product-HPC-15-SP2-LTSS-2024-2946=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 zypper in -t patch SUSE-SLE-Product-HPC-15-SP3-LTSS-2024-2946=1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 zypper in -t patch SUSE-SLE-Product-SLES-15-SP2-LTSS-2024-2946=1 ## Package List: * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (aarch64 ppc64le s390x x86_64) * libQt5Sql5-sqlite-5.12.7-150200.4.29.1 * libQt5PlatformHeaders-devel-5.12.7-150200.4.29.1 * libQt5Sql5-postgresql-5.12.7-150200.4.29.1 * libQt5Network-devel-5.12.7-150200.4.29.1 * libQt5Network5-5.12.7-150200.4.29.1 * libQt5OpenGL-devel-5.12.7-150200.4.29.1 * libqt5-qtbase-common-devel-5.12.7-150200.4.29.1 * libQt5Test5-5.12.7-150200.4.29.1 * libQt5KmsSupport-devel-static-5.12.7-150200.4.29.1 * libQt5Sql5-5.12.7-150200.4.29.1 * libQt5PrintSupport5-debuginfo-5.12.7-150200.4.29.1 * libQt5DBus5-5.12.7-150200.4.29.1 * libQt5DBus-devel-5.12.7-150200.4.29.1 * libqt5-qtbase-common-devel-debuginfo-5.12.7-150200.4.29.1 * libQt5Sql5-postgresql-debuginfo-5.12.7-150200.4.29.1 * libQt5Gui-devel-5.12.7-150200.4.29.1 * libQt5Core5-5.12.7-150200.4.29.1 * libQt5Xml-devel-5.12.7-150200.4.29.1 * libQt5PlatformSupport-devel-static-5.12.7-150200.4.29.1 * libQt5Sql5-mysql-5.12.7-150200.4.29.1 * libQt5Sql5-unixODBC-5.12.7-150200.4.29.1 * libQt5PrintSupport5-5.12.7-150200.4.29.1 * libQt5DBus5-debuginfo-5.12.7-150200.4.29.1 * libqt5-qtbase-devel-5.12.7-150200.4.29.1 * libQt5Xml5-debuginfo-5.12.7-150200.4.29.1 * libQt5Concurrent5-5.12.7-150200.4.29.1 * libQt5DBus-devel-debuginfo-5.12.7-150200.4.29.1 * libQt5OpenGLExtensions-devel-static-5.12.7-150200.4.29.1 * libQt5Xml5-5.12.7-150200.4.29.1 * libQt5Gui5-debuginfo-5.12.7-150200.4.29.1 * libQt5Test-devel-5.12.7-150200.4.29.1 * libQt5Sql5-sqlite-debuginfo-5.12.7-150200.4.29.1 * libQt5Core5-debuginfo-5.12.7-150200.4.29.1 * libQt5Sql-devel-5.12.7-150200.4.29.1 * libQt5Gui5-5.12.7-150200.4.29.1 * libQt5Sql5-debuginfo-5.12.7-150200.4.29.1 * libQt5Concurrent5-debuginfo-5.12.7-150200.4.29.1 * libqt5-qtbase-platformtheme-gtk3-debuginfo-5.12.7-150200.4.29.1 * libQt5Concurrent-devel-5.12.7-150200.4.29.1 * libQt5OpenGL5-debuginfo-5.12.7-150200.4.29.1 * libQt5Widgets-devel-5.12.7-150200.4.29.1 * libQt5Core-devel-5.12.7-150200.4.29.1 * libQt5Sql5-unixODBC-debuginfo-5.12.7-150200.4.29.1 * libQt5PrintSupport-devel-5.12.7-150200.4.29.1 * libqt5-qtbase-platformtheme-gtk3-5.12.7-150200.4.29.1 * libQt5Sql5-mysql-debuginfo-5.12.7-150200.4.29.1 * libQt5Network5-debuginfo-5.12.7-150200.4.29.1 * libQt5Test5-debuginfo-5.12.7-150200.4.29.1 * libQt5Widgets5-5.12.7-150200.4.29.1 * libQt5Widgets5-debuginfo-5.12.7-150200.4.29.1 * libQt5OpenGL5-5.12.7-150200.4.29.1 * libqt5-qtbase-debugsource-5.12.7-150200.4.29.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (noarch) * libQt5KmsSupport-private-headers-devel-5.12.7-150200.4.29.1 * libQt5DBus-private-headers-devel-5.12.7-150200.4.29.1 * libQt5Gui-private-headers-devel-5.12.7-150200.4.29.1 * libQt5OpenGL-private-headers-devel-5.12.7-150200.4.29.1 * libQt5PrintSupport-private-headers-devel-5.12.7-150200.4.29.1 * libQt5Widgets-private-headers-devel-5.12.7-150200.4.29.1 * libQt5PlatformSupport-private-headers-devel-5.12.7-150200.4.29.1 * libQt5Sql-private-headers-devel-5.12.7-150200.4.29.1 * libQt5Test-private-headers-devel-5.12.7-150200.4.29.1 * libQt5Core-private-headers-devel-5.12.7-150200.4.29.1 * libqt5-qtbase-private-headers-devel-5.12.7-150200.4.29.1 * libQt5Network-private-headers-devel-5.12.7-150200.4.29.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 (ppc64le x86_64) * libQt5Sql5-sqlite-5.12.7-150200.4.29.1 * libQt5PlatformHeaders-devel-5.12.7-150200.4.29.1 * libQt5Sql5-postgresql-5.12.7-150200.4.29.1 * libQt5Network-devel-5.12.7-150200.4.29.1 * libQt5Network5-5.12.7-150200.4.29.1 * libQt5OpenGL-devel-5.12.7-150200.4.29.1 * libqt5-qtbase-common-devel-5.12.7-150200.4.29.1 * libQt5Test5-5.12.7-150200.4.29.1 * libQt5KmsSupport-devel-static-5.12.7-150200.4.29.1 * libQt5Sql5-5.12.7-150200.4.29.1 * libQt5PrintSupport5-debuginfo-5.12.7-150200.4.29.1 * libQt5DBus5-5.12.7-150200.4.29.1 * libQt5DBus-devel-5.12.7-150200.4.29.1 * libqt5-qtbase-common-devel-debuginfo-5.12.7-150200.4.29.1 * libQt5Sql5-postgresql-debuginfo-5.12.7-150200.4.29.1 * libQt5Gui-devel-5.12.7-150200.4.29.1 * libQt5Core5-5.12.7-150200.4.29.1 * libQt5Xml-devel-5.12.7-150200.4.29.1 * libQt5PlatformSupport-devel-static-5.12.7-150200.4.29.1 * libQt5Sql5-mysql-5.12.7-150200.4.29.1 * libQt5Sql5-unixODBC-5.12.7-150200.4.29.1 * libQt5PrintSupport5-5.12.7-150200.4.29.1 * libQt5DBus5-debuginfo-5.12.7-150200.4.29.1 * libqt5-qtbase-devel-5.12.7-150200.4.29.1 * libQt5Xml5-debuginfo-5.12.7-150200.4.29.1 * libQt5Concurrent5-5.12.7-150200.4.29.1 * libQt5DBus-devel-debuginfo-5.12.7-150200.4.29.1 * libQt5OpenGLExtensions-devel-static-5.12.7-150200.4.29.1 * libQt5Xml5-5.12.7-150200.4.29.1 * libQt5Gui5-debuginfo-5.12.7-150200.4.29.1 * libQt5Test-devel-5.12.7-150200.4.29.1 * libQt5Sql5-sqlite-debuginfo-5.12.7-150200.4.29.1 * libQt5Core5-debuginfo-5.12.7-150200.4.29.1 * libQt5Sql-devel-5.12.7-150200.4.29.1 * libQt5Gui5-5.12.7-150200.4.29.1 * libQt5Sql5-debuginfo-5.12.7-150200.4.29.1 * libQt5Concurrent5-debuginfo-5.12.7-150200.4.29.1 * libqt5-qtbase-platformtheme-gtk3-debuginfo-5.12.7-150200.4.29.1 * libQt5Concurrent-devel-5.12.7-150200.4.29.1 * libQt5OpenGL5-debuginfo-5.12.7-150200.4.29.1 * libQt5Widgets-devel-5.12.7-150200.4.29.1 * libQt5Core-devel-5.12.7-150200.4.29.1 * libQt5Sql5-unixODBC-debuginfo-5.12.7-150200.4.29.1 * libQt5PrintSupport-devel-5.12.7-150200.4.29.1 * libqt5-qtbase-platformtheme-gtk3-5.12.7-150200.4.29.1 * libQt5Sql5-mysql-debuginfo-5.12.7-150200.4.29.1 * libQt5Network5-debuginfo-5.12.7-150200.4.29.1 * libQt5Test5-debuginfo-5.12.7-150200.4.29.1 * libQt5Widgets5-5.12.7-150200.4.29.1 * libQt5Widgets5-debuginfo-5.12.7-150200.4.29.1 * libQt5OpenGL5-5.12.7-150200.4.29.1 * libqt5-qtbase-debugsource-5.12.7-150200.4.29.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 (noarch) * libQt5KmsSupport-private-headers-devel-5.12.7-150200.4.29.1 * libQt5DBus-private-headers-devel-5.12.7-150200.4.29.1 * libQt5Gui-private-headers-devel-5.12.7-150200.4.29.1 * libQt5OpenGL-private-headers-devel-5.12.7-150200.4.29.1 * libQt5PrintSupport-private-headers-devel-5.12.7-150200.4.29.1 * libQt5Widgets-private-headers-devel-5.12.7-150200.4.29.1 * libQt5PlatformSupport-private-headers-devel-5.12.7-150200.4.29.1 * libQt5Sql-private-headers-devel-5.12.7-150200.4.29.1 * libQt5Test-private-headers-devel-5.12.7-150200.4.29.1 * libQt5Core-private-headers-devel-5.12.7-150200.4.29.1 * libqt5-qtbase-private-headers-devel-5.12.7-150200.4.29.1 * libQt5Network-private-headers-devel-5.12.7-150200.4.29.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (ppc64le x86_64) * libQt5Sql5-sqlite-5.12.7-150200.4.29.1 * libQt5PlatformHeaders-devel-5.12.7-150200.4.29.1 * libQt5Sql5-postgresql-5.12.7-150200.4.29.1 * libQt5Network-devel-5.12.7-150200.4.29.1 * libQt5Network5-5.12.7-150200.4.29.1 * libQt5OpenGL-devel-5.12.7-150200.4.29.1 * libqt5-qtbase-common-devel-5.12.7-150200.4.29.1 * libQt5Test5-5.12.7-150200.4.29.1 * libQt5KmsSupport-devel-static-5.12.7-150200.4.29.1 * libQt5Sql5-5.12.7-150200.4.29.1 * libQt5PrintSupport5-debuginfo-5.12.7-150200.4.29.1 * libQt5DBus5-5.12.7-150200.4.29.1 * libQt5DBus-devel-5.12.7-150200.4.29.1 * libqt5-qtbase-common-devel-debuginfo-5.12.7-150200.4.29.1 * libQt5Sql5-postgresql-debuginfo-5.12.7-150200.4.29.1 * libQt5Gui-devel-5.12.7-150200.4.29.1 * libQt5Core5-5.12.7-150200.4.29.1 * libQt5Xml-devel-5.12.7-150200.4.29.1 * libQt5PlatformSupport-devel-static-5.12.7-150200.4.29.1 * libQt5Sql5-mysql-5.12.7-150200.4.29.1 * libQt5Sql5-unixODBC-5.12.7-150200.4.29.1 * libQt5PrintSupport5-5.12.7-150200.4.29.1 * libQt5DBus5-debuginfo-5.12.7-150200.4.29.1 * libqt5-qtbase-devel-5.12.7-150200.4.29.1 * libQt5Xml5-debuginfo-5.12.7-150200.4.29.1 * libQt5Concurrent5-5.12.7-150200.4.29.1 * libQt5DBus-devel-debuginfo-5.12.7-150200.4.29.1 * libQt5OpenGLExtensions-devel-static-5.12.7-150200.4.29.1 * libQt5Xml5-5.12.7-150200.4.29.1 * libQt5Gui5-debuginfo-5.12.7-150200.4.29.1 * libQt5Test-devel-5.12.7-150200.4.29.1 * libQt5Sql5-sqlite-debuginfo-5.12.7-150200.4.29.1 * libQt5Core5-debuginfo-5.12.7-150200.4.29.1 * libQt5Sql-devel-5.12.7-150200.4.29.1 * libQt5Gui5-5.12.7-150200.4.29.1 * libQt5Sql5-debuginfo-5.12.7-150200.4.29.1 * libQt5Concurrent5-debuginfo-5.12.7-150200.4.29.1 * libqt5-qtbase-platformtheme-gtk3-debuginfo-5.12.7-150200.4.29.1 * libQt5Concurrent-devel-5.12.7-150200.4.29.1 * libQt5OpenGL5-debuginfo-5.12.7-150200.4.29.1 * libQt5Widgets-devel-5.12.7-150200.4.29.1 * libQt5Core-devel-5.12.7-150200.4.29.1 * libQt5Sql5-unixODBC-debuginfo-5.12.7-150200.4.29.1 * libQt5PrintSupport-devel-5.12.7-150200.4.29.1 * libqt5-qtbase-platformtheme-gtk3-5.12.7-150200.4.29.1 * libQt5Sql5-mysql-debuginfo-5.12.7-150200.4.29.1 * libQt5Network5-debuginfo-5.12.7-150200.4.29.1 * libQt5Test5-debuginfo-5.12.7-150200.4.29.1 * libQt5Widgets5-5.12.7-150200.4.29.1 * libQt5Widgets5-debuginfo-5.12.7-150200.4.29.1 * libQt5OpenGL5-5.12.7-150200.4.29.1 * libqt5-qtbase-debugsource-5.12.7-150200.4.29.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (noarch) * libQt5KmsSupport-private-headers-devel-5.12.7-150200.4.29.1 * libQt5DBus-private-headers-devel-5.12.7-150200.4.29.1 * libQt5Gui-private-headers-devel-5.12.7-150200.4.29.1 * libQt5OpenGL-private-headers-devel-5.12.7-150200.4.29.1 * libQt5PrintSupport-private-headers-devel-5.12.7-150200.4.29.1 * libQt5Widgets-private-headers-devel-5.12.7-150200.4.29.1 * libQt5PlatformSupport-private-headers-devel-5.12.7-150200.4.29.1 * libQt5Sql-private-headers-devel-5.12.7-150200.4.29.1 * libQt5Test-private-headers-devel-5.12.7-150200.4.29.1 * libQt5Core-private-headers-devel-5.12.7-150200.4.29.1 * libqt5-qtbase-private-headers-devel-5.12.7-150200.4.29.1 * libQt5Network-private-headers-devel-5.12.7-150200.4.29.1 * SUSE Enterprise Storage 7.1 (aarch64 x86_64) * libQt5Sql5-sqlite-5.12.7-150200.4.29.1 * libQt5PlatformHeaders-devel-5.12.7-150200.4.29.1 * libQt5Sql5-postgresql-5.12.7-150200.4.29.1 * libQt5Network-devel-5.12.7-150200.4.29.1 * libQt5Network5-5.12.7-150200.4.29.1 * libQt5OpenGL-devel-5.12.7-150200.4.29.1 * libqt5-qtbase-common-devel-5.12.7-150200.4.29.1 * libQt5Test5-5.12.7-150200.4.29.1 * libQt5KmsSupport-devel-static-5.12.7-150200.4.29.1 * libQt5Sql5-5.12.7-150200.4.29.1 * libQt5PrintSupport5-debuginfo-5.12.7-150200.4.29.1 * libQt5DBus5-5.12.7-150200.4.29.1 * libQt5DBus-devel-5.12.7-150200.4.29.1 * libqt5-qtbase-common-devel-debuginfo-5.12.7-150200.4.29.1 * libQt5Sql5-postgresql-debuginfo-5.12.7-150200.4.29.1 * libQt5Gui-devel-5.12.7-150200.4.29.1 * libQt5Core5-5.12.7-150200.4.29.1 * libQt5Xml-devel-5.12.7-150200.4.29.1 * libQt5PlatformSupport-devel-static-5.12.7-150200.4.29.1 * libQt5Sql5-mysql-5.12.7-150200.4.29.1 * libQt5Sql5-unixODBC-5.12.7-150200.4.29.1 * libQt5PrintSupport5-5.12.7-150200.4.29.1 * libQt5DBus5-debuginfo-5.12.7-150200.4.29.1 * libqt5-qtbase-devel-5.12.7-150200.4.29.1 * libQt5Xml5-debuginfo-5.12.7-150200.4.29.1 * libQt5Concurrent5-5.12.7-150200.4.29.1 * libQt5DBus-devel-debuginfo-5.12.7-150200.4.29.1 * libQt5OpenGLExtensions-devel-static-5.12.7-150200.4.29.1 * libQt5Xml5-5.12.7-150200.4.29.1 * libQt5Gui5-debuginfo-5.12.7-150200.4.29.1 * libQt5Test-devel-5.12.7-150200.4.29.1 * libQt5Sql5-sqlite-debuginfo-5.12.7-150200.4.29.1 * libQt5Core5-debuginfo-5.12.7-150200.4.29.1 * libQt5Sql-devel-5.12.7-150200.4.29.1 * libQt5Gui5-5.12.7-150200.4.29.1 * libQt5Sql5-debuginfo-5.12.7-150200.4.29.1 * libQt5Concurrent5-debuginfo-5.12.7-150200.4.29.1 * libqt5-qtbase-platformtheme-gtk3-debuginfo-5.12.7-150200.4.29.1 * libQt5Concurrent-devel-5.12.7-150200.4.29.1 * libQt5OpenGL5-debuginfo-5.12.7-150200.4.29.1 * libQt5Widgets-devel-5.12.7-150200.4.29.1 * libQt5Core-devel-5.12.7-150200.4.29.1 * libQt5Sql5-unixODBC-debuginfo-5.12.7-150200.4.29.1 * libQt5PrintSupport-devel-5.12.7-150200.4.29.1 * libqt5-qtbase-platformtheme-gtk3-5.12.7-150200.4.29.1 * libQt5Sql5-mysql-debuginfo-5.12.7-150200.4.29.1 * libQt5Network5-debuginfo-5.12.7-150200.4.29.1 * libQt5Test5-debuginfo-5.12.7-150200.4.29.1 * libQt5Widgets5-5.12.7-150200.4.29.1 * libQt5Widgets5-debuginfo-5.12.7-150200.4.29.1 * libQt5OpenGL5-5.12.7-150200.4.29.1 * libqt5-qtbase-debugsource-5.12.7-150200.4.29.1 * SUSE Enterprise Storage 7.1 (noarch) * libQt5KmsSupport-private-headers-devel-5.12.7-150200.4.29.1 * libQt5DBus-private-headers-devel-5.12.7-150200.4.29.1 * libQt5Gui-private-headers-devel-5.12.7-150200.4.29.1 * libQt5OpenGL-private-headers-devel-5.12.7-150200.4.29.1 * libQt5PrintSupport-private-headers-devel-5.12.7-150200.4.29.1 * libQt5Widgets-private-headers-devel-5.12.7-150200.4.29.1 * libQt5PlatformSupport-private-headers-devel-5.12.7-150200.4.29.1 * libQt5Sql-private-headers-devel-5.12.7-150200.4.29.1 * libQt5Test-private-headers-devel-5.12.7-150200.4.29.1 * libQt5Core-private-headers-devel-5.12.7-150200.4.29.1 * libqt5-qtbase-private-headers-devel-5.12.7-150200.4.29.1 * libQt5Network-private-headers-devel-5.12.7-150200.4.29.1 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 (aarch64 x86_64) * libQt5Sql5-sqlite-5.12.7-150200.4.29.1 * libQt5PlatformHeaders-devel-5.12.7-150200.4.29.1 * libQt5Sql5-postgresql-5.12.7-150200.4.29.1 * libQt5Network-devel-5.12.7-150200.4.29.1 * libQt5Network5-5.12.7-150200.4.29.1 * libQt5OpenGL-devel-5.12.7-150200.4.29.1 * libqt5-qtbase-common-devel-5.12.7-150200.4.29.1 * libQt5Test5-5.12.7-150200.4.29.1 * libQt5KmsSupport-devel-static-5.12.7-150200.4.29.1 * libQt5Sql5-5.12.7-150200.4.29.1 * libQt5PrintSupport5-debuginfo-5.12.7-150200.4.29.1 * libQt5DBus5-5.12.7-150200.4.29.1 * libQt5DBus-devel-5.12.7-150200.4.29.1 * libqt5-qtbase-common-devel-debuginfo-5.12.7-150200.4.29.1 * libQt5Sql5-postgresql-debuginfo-5.12.7-150200.4.29.1 * libQt5Gui-devel-5.12.7-150200.4.29.1 * libQt5Core5-5.12.7-150200.4.29.1 * libQt5Xml-devel-5.12.7-150200.4.29.1 * libQt5PlatformSupport-devel-static-5.12.7-150200.4.29.1 * libQt5Sql5-mysql-5.12.7-150200.4.29.1 * libQt5Sql5-unixODBC-5.12.7-150200.4.29.1 * libQt5PrintSupport5-5.12.7-150200.4.29.1 * libQt5DBus5-debuginfo-5.12.7-150200.4.29.1 * libqt5-qtbase-devel-5.12.7-150200.4.29.1 * libQt5Xml5-debuginfo-5.12.7-150200.4.29.1 * libQt5Concurrent5-5.12.7-150200.4.29.1 * libQt5DBus-devel-debuginfo-5.12.7-150200.4.29.1 * libQt5OpenGLExtensions-devel-static-5.12.7-150200.4.29.1 * libQt5Xml5-5.12.7-150200.4.29.1 * libQt5Gui5-debuginfo-5.12.7-150200.4.29.1 * libQt5Test-devel-5.12.7-150200.4.29.1 * libQt5Sql5-sqlite-debuginfo-5.12.7-150200.4.29.1 * libQt5Core5-debuginfo-5.12.7-150200.4.29.1 * libQt5Sql-devel-5.12.7-150200.4.29.1 * libQt5Gui5-5.12.7-150200.4.29.1 * libQt5Sql5-debuginfo-5.12.7-150200.4.29.1 * libQt5Concurrent5-debuginfo-5.12.7-150200.4.29.1 * libqt5-qtbase-platformtheme-gtk3-debuginfo-5.12.7-150200.4.29.1 * libQt5Concurrent-devel-5.12.7-150200.4.29.1 * libQt5OpenGL5-debuginfo-5.12.7-150200.4.29.1 * libQt5Widgets-devel-5.12.7-150200.4.29.1 * libQt5Core-devel-5.12.7-150200.4.29.1 * libQt5Sql5-unixODBC-debuginfo-5.12.7-150200.4.29.1 * libQt5PrintSupport-devel-5.12.7-150200.4.29.1 * libqt5-qtbase-platformtheme-gtk3-5.12.7-150200.4.29.1 * libQt5Sql5-mysql-debuginfo-5.12.7-150200.4.29.1 * libQt5Network5-debuginfo-5.12.7-150200.4.29.1 * libQt5Test5-debuginfo-5.12.7-150200.4.29.1 * libQt5Widgets5-5.12.7-150200.4.29.1 * libQt5Widgets5-debuginfo-5.12.7-150200.4.29.1 * libQt5OpenGL5-5.12.7-150200.4.29.1 * libqt5-qtbase-debugsource-5.12.7-150200.4.29.1 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 (noarch) * libQt5KmsSupport-private-headers-devel-5.12.7-150200.4.29.1 * libQt5DBus-private-headers-devel-5.12.7-150200.4.29.1 * libQt5Gui-private-headers-devel-5.12.7-150200.4.29.1 * libQt5OpenGL-private-headers-devel-5.12.7-150200.4.29.1 * libQt5PrintSupport-private-headers-devel-5.12.7-150200.4.29.1 * libQt5Widgets-private-headers-devel-5.12.7-150200.4.29.1 * libQt5PlatformSupport-private-headers-devel-5.12.7-150200.4.29.1 * libQt5Sql-private-headers-devel-5.12.7-150200.4.29.1 * libQt5Test-private-headers-devel-5.12.7-150200.4.29.1 * libQt5Core-private-headers-devel-5.12.7-150200.4.29.1 * libqt5-qtbase-private-headers-devel-5.12.7-150200.4.29.1 * libQt5Network-private-headers-devel-5.12.7-150200.4.29.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (aarch64 x86_64) * libQt5Sql5-sqlite-5.12.7-150200.4.29.1 * libQt5PlatformHeaders-devel-5.12.7-150200.4.29.1 * libQt5Sql5-postgresql-5.12.7-150200.4.29.1 * libQt5Network-devel-5.12.7-150200.4.29.1 * libQt5Network5-5.12.7-150200.4.29.1 * libQt5OpenGL-devel-5.12.7-150200.4.29.1 * libqt5-qtbase-common-devel-5.12.7-150200.4.29.1 * libQt5Test5-5.12.7-150200.4.29.1 * libQt5KmsSupport-devel-static-5.12.7-150200.4.29.1 * libQt5Sql5-5.12.7-150200.4.29.1 * libQt5PrintSupport5-debuginfo-5.12.7-150200.4.29.1 * libQt5DBus5-5.12.7-150200.4.29.1 * libQt5DBus-devel-5.12.7-150200.4.29.1 * libqt5-qtbase-common-devel-debuginfo-5.12.7-150200.4.29.1 * libQt5Sql5-postgresql-debuginfo-5.12.7-150200.4.29.1 * libQt5Gui-devel-5.12.7-150200.4.29.1 * libQt5Core5-5.12.7-150200.4.29.1 * libQt5Xml-devel-5.12.7-150200.4.29.1 * libQt5PlatformSupport-devel-static-5.12.7-150200.4.29.1 * libQt5Sql5-mysql-5.12.7-150200.4.29.1 * libQt5Sql5-unixODBC-5.12.7-150200.4.29.1 * libQt5PrintSupport5-5.12.7-150200.4.29.1 * libQt5DBus5-debuginfo-5.12.7-150200.4.29.1 * libqt5-qtbase-devel-5.12.7-150200.4.29.1 * libQt5Xml5-debuginfo-5.12.7-150200.4.29.1 * libQt5Concurrent5-5.12.7-150200.4.29.1 * libQt5DBus-devel-debuginfo-5.12.7-150200.4.29.1 * libQt5OpenGLExtensions-devel-static-5.12.7-150200.4.29.1 * libQt5Xml5-5.12.7-150200.4.29.1 * libQt5Gui5-debuginfo-5.12.7-150200.4.29.1 * libQt5Test-devel-5.12.7-150200.4.29.1 * libQt5Sql5-sqlite-debuginfo-5.12.7-150200.4.29.1 * libQt5Core5-debuginfo-5.12.7-150200.4.29.1 * libQt5Sql-devel-5.12.7-150200.4.29.1 * libQt5Gui5-5.12.7-150200.4.29.1 * libQt5Sql5-debuginfo-5.12.7-150200.4.29.1 * libQt5Concurrent5-debuginfo-5.12.7-150200.4.29.1 * libqt5-qtbase-platformtheme-gtk3-debuginfo-5.12.7-150200.4.29.1 * libQt5Concurrent-devel-5.12.7-150200.4.29.1 * libQt5OpenGL5-debuginfo-5.12.7-150200.4.29.1 * libQt5Widgets-devel-5.12.7-150200.4.29.1 * libQt5Core-devel-5.12.7-150200.4.29.1 * libQt5Sql5-unixODBC-debuginfo-5.12.7-150200.4.29.1 * libQt5PrintSupport-devel-5.12.7-150200.4.29.1 * libqt5-qtbase-platformtheme-gtk3-5.12.7-150200.4.29.1 * libQt5Sql5-mysql-debuginfo-5.12.7-150200.4.29.1 * libQt5Network5-debuginfo-5.12.7-150200.4.29.1 * libQt5Test5-debuginfo-5.12.7-150200.4.29.1 * libQt5Widgets5-5.12.7-150200.4.29.1 * libQt5Widgets5-debuginfo-5.12.7-150200.4.29.1 * libQt5OpenGL5-5.12.7-150200.4.29.1 * libqt5-qtbase-debugsource-5.12.7-150200.4.29.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (noarch) * libQt5KmsSupport-private-headers-devel-5.12.7-150200.4.29.1 * libQt5DBus-private-headers-devel-5.12.7-150200.4.29.1 * libQt5Gui-private-headers-devel-5.12.7-150200.4.29.1 * libQt5OpenGL-private-headers-devel-5.12.7-150200.4.29.1 * libQt5PrintSupport-private-headers-devel-5.12.7-150200.4.29.1 * libQt5Widgets-private-headers-devel-5.12.7-150200.4.29.1 * libQt5PlatformSupport-private-headers-devel-5.12.7-150200.4.29.1 * libQt5Sql-private-headers-devel-5.12.7-150200.4.29.1 * libQt5Test-private-headers-devel-5.12.7-150200.4.29.1 * libQt5Core-private-headers-devel-5.12.7-150200.4.29.1 * libqt5-qtbase-private-headers-devel-5.12.7-150200.4.29.1 * libQt5Network-private-headers-devel-5.12.7-150200.4.29.1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (aarch64 ppc64le s390x x86_64) * libQt5Sql5-sqlite-5.12.7-150200.4.29.1 * libQt5PlatformHeaders-devel-5.12.7-150200.4.29.1 * libQt5Sql5-postgresql-5.12.7-150200.4.29.1 * libQt5Network-devel-5.12.7-150200.4.29.1 * libQt5Network5-5.12.7-150200.4.29.1 * libQt5OpenGL-devel-5.12.7-150200.4.29.1 * libqt5-qtbase-common-devel-5.12.7-150200.4.29.1 * libQt5Test5-5.12.7-150200.4.29.1 * libQt5KmsSupport-devel-static-5.12.7-150200.4.29.1 * libQt5Sql5-5.12.7-150200.4.29.1 * libQt5PrintSupport5-debuginfo-5.12.7-150200.4.29.1 * libQt5DBus5-5.12.7-150200.4.29.1 * libQt5DBus-devel-5.12.7-150200.4.29.1 * libqt5-qtbase-common-devel-debuginfo-5.12.7-150200.4.29.1 * libQt5Sql5-postgresql-debuginfo-5.12.7-150200.4.29.1 * libQt5Gui-devel-5.12.7-150200.4.29.1 * libQt5Core5-5.12.7-150200.4.29.1 * libQt5Xml-devel-5.12.7-150200.4.29.1 * libQt5PlatformSupport-devel-static-5.12.7-150200.4.29.1 * libQt5Sql5-mysql-5.12.7-150200.4.29.1 * libQt5Sql5-unixODBC-5.12.7-150200.4.29.1 * libQt5PrintSupport5-5.12.7-150200.4.29.1 * libQt5DBus5-debuginfo-5.12.7-150200.4.29.1 * libqt5-qtbase-devel-5.12.7-150200.4.29.1 * libQt5Xml5-debuginfo-5.12.7-150200.4.29.1 * libQt5Concurrent5-5.12.7-150200.4.29.1 * libQt5DBus-devel-debuginfo-5.12.7-150200.4.29.1 * libQt5OpenGLExtensions-devel-static-5.12.7-150200.4.29.1 * libQt5Xml5-5.12.7-150200.4.29.1 * libQt5Gui5-debuginfo-5.12.7-150200.4.29.1 * libQt5Test-devel-5.12.7-150200.4.29.1 * libQt5Sql5-sqlite-debuginfo-5.12.7-150200.4.29.1 * libQt5Core5-debuginfo-5.12.7-150200.4.29.1 * libQt5Sql-devel-5.12.7-150200.4.29.1 * libQt5Gui5-5.12.7-150200.4.29.1 * libQt5Sql5-debuginfo-5.12.7-150200.4.29.1 * libQt5Concurrent5-debuginfo-5.12.7-150200.4.29.1 * libqt5-qtbase-platformtheme-gtk3-debuginfo-5.12.7-150200.4.29.1 * libQt5Concurrent-devel-5.12.7-150200.4.29.1 * libQt5OpenGL5-debuginfo-5.12.7-150200.4.29.1 * libQt5Widgets-devel-5.12.7-150200.4.29.1 * libQt5Core-devel-5.12.7-150200.4.29.1 * libQt5Sql5-unixODBC-debuginfo-5.12.7-150200.4.29.1 * libQt5PrintSupport-devel-5.12.7-150200.4.29.1 * libqt5-qtbase-platformtheme-gtk3-5.12.7-150200.4.29.1 * libQt5Sql5-mysql-debuginfo-5.12.7-150200.4.29.1 * libQt5Network5-debuginfo-5.12.7-150200.4.29.1 * libQt5Test5-debuginfo-5.12.7-150200.4.29.1 * libQt5Widgets5-5.12.7-150200.4.29.1 * libQt5Widgets5-debuginfo-5.12.7-150200.4.29.1 * libQt5OpenGL5-5.12.7-150200.4.29.1 * libqt5-qtbase-debugsource-5.12.7-150200.4.29.1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (noarch) * libQt5KmsSupport-private-headers-devel-5.12.7-150200.4.29.1 * libQt5DBus-private-headers-devel-5.12.7-150200.4.29.1 * libQt5Gui-private-headers-devel-5.12.7-150200.4.29.1 * libQt5OpenGL-private-headers-devel-5.12.7-150200.4.29.1 * libQt5PrintSupport-private-headers-devel-5.12.7-150200.4.29.1 * libQt5Widgets-private-headers-devel-5.12.7-150200.4.29.1 * libQt5PlatformSupport-private-headers-devel-5.12.7-150200.4.29.1 * libQt5Sql-private-headers-devel-5.12.7-150200.4.29.1 * libQt5Test-private-headers-devel-5.12.7-150200.4.29.1 * libQt5Core-private-headers-devel-5.12.7-150200.4.29.1 * libqt5-qtbase-private-headers-devel-5.12.7-150200.4.29.1 * libQt5Network-private-headers-devel-5.12.7-150200.4.29.1 ## References: * https://www.suse.com/security/cve/CVE-2023-37369.html * https://www.suse.com/security/cve/CVE-2023-45935.html * https://www.suse.com/security/cve/CVE-2023-51714.html * https://www.suse.com/security/cve/CVE-2024-39936.html * https://bugzilla.suse.com/show_bug.cgi?id=1214327 * https://bugzilla.suse.com/show_bug.cgi?id=1218413 * https://bugzilla.suse.com/show_bug.cgi?id=1222120 * https://bugzilla.suse.com/show_bug.cgi?id=1227426 * https://bugzilla.suse.com/show_bug.cgi?id=1227513 * https://jira.suse.com/browse/PED-6193 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Fri Aug 16 12:31:59 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Fri, 16 Aug 2024 12:31:59 -0000 Subject: SUSE-SU-2024:2944-1: important: Security update for kernel-firmware Message-ID: <172381151923.12336.4243789902747048727@smelt2.prg2.suse.org> # Security update for kernel-firmware Announcement ID: SUSE-SU-2024:2944-1 Rating: important References: * bsc#1229069 Cross-References: * CVE-2023-31315 CVSS scores: * CVE-2023-31315 ( SUSE ): 7.5 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H Affected Products: * SUSE Linux Enterprise High Performance Computing 15 SP2 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 * SUSE Linux Enterprise Server 15 SP2 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 An update that solves one vulnerability can now be installed. ## Description: This update for kernel-firmware fixes the following issues: * CVE-2023-31315: Fixed validation in a model specific register (MSR) that lead to modification of SMM configuration by malicious program with ring0 access (bsc#1229069) ## Special Instructions and Notes: * Please reboot the system after installing this update. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 zypper in -t patch SUSE-SLE-Product-HPC-15-SP2-LTSS-2024-2944=1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 zypper in -t patch SUSE-SLE-Product-SLES-15-SP2-LTSS-2024-2944=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP2-2024-2944=1 ## Package List: * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 (noarch) * ucode-amd-20200107-150100.3.43.1 * kernel-firmware-20200107-150100.3.43.1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (noarch) * ucode-amd-20200107-150100.3.43.1 * kernel-firmware-20200107-150100.3.43.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 (noarch) * ucode-amd-20200107-150100.3.43.1 * kernel-firmware-20200107-150100.3.43.1 ## References: * https://www.suse.com/security/cve/CVE-2023-31315.html * https://bugzilla.suse.com/show_bug.cgi?id=1229069 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Fri Aug 16 12:32:02 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Fri, 16 Aug 2024 12:32:02 -0000 Subject: SUSE-SU-2024:2943-1: important: Security update for kernel-firmware Message-ID: <172381152260.12336.16968559720278261657@smelt2.prg2.suse.org> # Security update for kernel-firmware Announcement ID: SUSE-SU-2024:2943-1 Rating: important References: * bsc#1229069 Cross-References: * CVE-2023-31315 CVSS scores: * CVE-2023-31315 ( SUSE ): 7.5 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.3 * SUSE Enterprise Storage 7.1 * SUSE Linux Enterprise High Performance Computing 15 SP3 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 * SUSE Linux Enterprise Micro 5.1 * SUSE Linux Enterprise Micro 5.2 * SUSE Linux Enterprise Micro for Rancher 5.2 * SUSE Linux Enterprise Server 15 SP3 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 An update that solves one vulnerability can now be installed. ## Description: This update for kernel-firmware fixes the following issues: * CVE-2023-31315: Fixed validation in a model specific register (MSR) that lead to modification of SMM configuration by malicious program with ring0 access (bsc#1229069) ## Special Instructions and Notes: * Please reboot the system after installing this update. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.3 zypper in -t patch SUSE-2024-2943=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 zypper in -t patch SUSE-SLE-Product-HPC-15-SP3-LTSS-2024-2943=1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 zypper in -t patch SUSE-SLE-Product-SLES-15-SP3-LTSS-2024-2943=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP3-2024-2943=1 * SUSE Enterprise Storage 7.1 zypper in -t patch SUSE-Storage-7.1-2024-2943=1 * SUSE Linux Enterprise Micro 5.1 zypper in -t patch SUSE-SUSE-MicroOS-5.1-2024-2943=1 * SUSE Linux Enterprise Micro 5.2 zypper in -t patch SUSE-SUSE-MicroOS-5.2-2024-2943=1 * SUSE Linux Enterprise Micro for Rancher 5.2 zypper in -t patch SUSE-SUSE-MicroOS-5.2-2024-2943=1 ## Package List: * openSUSE Leap 15.3 (noarch) * kernel-firmware-iwlwifi-20210208-150300.4.22.1 * kernel-firmware-usb-network-20210208-150300.4.22.1 * kernel-firmware-intel-20210208-150300.4.22.1 * kernel-firmware-ath11k-20210208-150300.4.22.1 * kernel-firmware-ath10k-20210208-150300.4.22.1 * kernel-firmware-atheros-20210208-150300.4.22.1 * kernel-firmware-nfp-20210208-150300.4.22.1 * ucode-amd-20210208-150300.4.22.1 * kernel-firmware-platform-20210208-150300.4.22.1 * kernel-firmware-prestera-20210208-150300.4.22.1 * kernel-firmware-bluetooth-20210208-150300.4.22.1 * kernel-firmware-radeon-20210208-150300.4.22.1 * kernel-firmware-mediatek-20210208-150300.4.22.1 * kernel-firmware-serial-20210208-150300.4.22.1 * kernel-firmware-ueagle-20210208-150300.4.22.1 * kernel-firmware-bnx2-20210208-150300.4.22.1 * kernel-firmware-dpaa2-20210208-150300.4.22.1 * kernel-firmware-sound-20210208-150300.4.22.1 * kernel-firmware-mwifiex-20210208-150300.4.22.1 * kernel-firmware-nvidia-20210208-150300.4.22.1 * kernel-firmware-realtek-20210208-150300.4.22.1 * kernel-firmware-liquidio-20210208-150300.4.22.1 * kernel-firmware-marvell-20210208-150300.4.22.1 * kernel-firmware-i915-20210208-150300.4.22.1 * kernel-firmware-mellanox-20210208-150300.4.22.1 * kernel-firmware-brcm-20210208-150300.4.22.1 * kernel-firmware-ti-20210208-150300.4.22.1 * kernel-firmware-media-20210208-150300.4.22.1 * kernel-firmware-chelsio-20210208-150300.4.22.1 * kernel-firmware-20210208-150300.4.22.1 * kernel-firmware-qlogic-20210208-150300.4.22.1 * kernel-firmware-all-20210208-150300.4.22.1 * kernel-firmware-amdgpu-20210208-150300.4.22.1 * kernel-firmware-network-20210208-150300.4.22.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (noarch) * kernel-firmware-brcm-20210208-150300.4.22.1 * ucode-amd-20210208-150300.4.22.1 * kernel-firmware-20210208-150300.4.22.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (noarch) * kernel-firmware-brcm-20210208-150300.4.22.1 * ucode-amd-20210208-150300.4.22.1 * kernel-firmware-20210208-150300.4.22.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (noarch) * ucode-amd-20210208-150300.4.22.1 * kernel-firmware-20210208-150300.4.22.1 * SUSE Enterprise Storage 7.1 (noarch) * kernel-firmware-brcm-20210208-150300.4.22.1 * ucode-amd-20210208-150300.4.22.1 * kernel-firmware-20210208-150300.4.22.1 * SUSE Linux Enterprise Micro 5.1 (noarch) * kernel-firmware-iwlwifi-20210208-150300.4.22.1 * kernel-firmware-usb-network-20210208-150300.4.22.1 * kernel-firmware-intel-20210208-150300.4.22.1 * kernel-firmware-ath11k-20210208-150300.4.22.1 * kernel-firmware-ath10k-20210208-150300.4.22.1 * kernel-firmware-atheros-20210208-150300.4.22.1 * kernel-firmware-nfp-20210208-150300.4.22.1 * ucode-amd-20210208-150300.4.22.1 * kernel-firmware-platform-20210208-150300.4.22.1 * kernel-firmware-prestera-20210208-150300.4.22.1 * kernel-firmware-bluetooth-20210208-150300.4.22.1 * kernel-firmware-radeon-20210208-150300.4.22.1 * kernel-firmware-mediatek-20210208-150300.4.22.1 * kernel-firmware-serial-20210208-150300.4.22.1 * kernel-firmware-ueagle-20210208-150300.4.22.1 * kernel-firmware-bnx2-20210208-150300.4.22.1 * kernel-firmware-dpaa2-20210208-150300.4.22.1 * kernel-firmware-sound-20210208-150300.4.22.1 * kernel-firmware-mwifiex-20210208-150300.4.22.1 * kernel-firmware-nvidia-20210208-150300.4.22.1 * kernel-firmware-realtek-20210208-150300.4.22.1 * kernel-firmware-liquidio-20210208-150300.4.22.1 * kernel-firmware-marvell-20210208-150300.4.22.1 * kernel-firmware-i915-20210208-150300.4.22.1 * kernel-firmware-mellanox-20210208-150300.4.22.1 * kernel-firmware-brcm-20210208-150300.4.22.1 * kernel-firmware-ti-20210208-150300.4.22.1 * kernel-firmware-media-20210208-150300.4.22.1 * kernel-firmware-chelsio-20210208-150300.4.22.1 * kernel-firmware-qlogic-20210208-150300.4.22.1 * kernel-firmware-all-20210208-150300.4.22.1 * kernel-firmware-amdgpu-20210208-150300.4.22.1 * kernel-firmware-network-20210208-150300.4.22.1 * SUSE Linux Enterprise Micro 5.2 (noarch) * kernel-firmware-iwlwifi-20210208-150300.4.22.1 * kernel-firmware-usb-network-20210208-150300.4.22.1 * kernel-firmware-intel-20210208-150300.4.22.1 * kernel-firmware-ath11k-20210208-150300.4.22.1 * kernel-firmware-ath10k-20210208-150300.4.22.1 * kernel-firmware-atheros-20210208-150300.4.22.1 * kernel-firmware-nfp-20210208-150300.4.22.1 * ucode-amd-20210208-150300.4.22.1 * kernel-firmware-platform-20210208-150300.4.22.1 * kernel-firmware-prestera-20210208-150300.4.22.1 * kernel-firmware-bluetooth-20210208-150300.4.22.1 * kernel-firmware-radeon-20210208-150300.4.22.1 * kernel-firmware-mediatek-20210208-150300.4.22.1 * kernel-firmware-serial-20210208-150300.4.22.1 * kernel-firmware-ueagle-20210208-150300.4.22.1 * kernel-firmware-bnx2-20210208-150300.4.22.1 * kernel-firmware-dpaa2-20210208-150300.4.22.1 * kernel-firmware-sound-20210208-150300.4.22.1 * kernel-firmware-mwifiex-20210208-150300.4.22.1 * kernel-firmware-nvidia-20210208-150300.4.22.1 * kernel-firmware-realtek-20210208-150300.4.22.1 * kernel-firmware-liquidio-20210208-150300.4.22.1 * kernel-firmware-marvell-20210208-150300.4.22.1 * kernel-firmware-i915-20210208-150300.4.22.1 * kernel-firmware-mellanox-20210208-150300.4.22.1 * kernel-firmware-brcm-20210208-150300.4.22.1 * kernel-firmware-ti-20210208-150300.4.22.1 * kernel-firmware-media-20210208-150300.4.22.1 * kernel-firmware-chelsio-20210208-150300.4.22.1 * kernel-firmware-qlogic-20210208-150300.4.22.1 * kernel-firmware-all-20210208-150300.4.22.1 * kernel-firmware-amdgpu-20210208-150300.4.22.1 * kernel-firmware-network-20210208-150300.4.22.1 * SUSE Linux Enterprise Micro for Rancher 5.2 (noarch) * kernel-firmware-iwlwifi-20210208-150300.4.22.1 * kernel-firmware-usb-network-20210208-150300.4.22.1 * kernel-firmware-intel-20210208-150300.4.22.1 * kernel-firmware-ath11k-20210208-150300.4.22.1 * kernel-firmware-ath10k-20210208-150300.4.22.1 * kernel-firmware-atheros-20210208-150300.4.22.1 * kernel-firmware-nfp-20210208-150300.4.22.1 * ucode-amd-20210208-150300.4.22.1 * kernel-firmware-platform-20210208-150300.4.22.1 * kernel-firmware-prestera-20210208-150300.4.22.1 * kernel-firmware-bluetooth-20210208-150300.4.22.1 * kernel-firmware-radeon-20210208-150300.4.22.1 * kernel-firmware-mediatek-20210208-150300.4.22.1 * kernel-firmware-serial-20210208-150300.4.22.1 * kernel-firmware-ueagle-20210208-150300.4.22.1 * kernel-firmware-bnx2-20210208-150300.4.22.1 * kernel-firmware-dpaa2-20210208-150300.4.22.1 * kernel-firmware-sound-20210208-150300.4.22.1 * kernel-firmware-mwifiex-20210208-150300.4.22.1 * kernel-firmware-nvidia-20210208-150300.4.22.1 * kernel-firmware-realtek-20210208-150300.4.22.1 * kernel-firmware-liquidio-20210208-150300.4.22.1 * kernel-firmware-marvell-20210208-150300.4.22.1 * kernel-firmware-i915-20210208-150300.4.22.1 * kernel-firmware-mellanox-20210208-150300.4.22.1 * kernel-firmware-brcm-20210208-150300.4.22.1 * kernel-firmware-ti-20210208-150300.4.22.1 * kernel-firmware-media-20210208-150300.4.22.1 * kernel-firmware-chelsio-20210208-150300.4.22.1 * kernel-firmware-qlogic-20210208-150300.4.22.1 * kernel-firmware-all-20210208-150300.4.22.1 * kernel-firmware-amdgpu-20210208-150300.4.22.1 * kernel-firmware-network-20210208-150300.4.22.1 ## References: * https://www.suse.com/security/cve/CVE-2023-31315.html * https://bugzilla.suse.com/show_bug.cgi?id=1229069 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Fri Aug 16 12:32:06 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Fri, 16 Aug 2024 12:32:06 -0000 Subject: SUSE-SU-2024:2941-1: important: Security update for ucode-intel Message-ID: <172381152652.12336.10655811993622028890@smelt2.prg2.suse.org> # Security update for ucode-intel Announcement ID: SUSE-SU-2024:2941-1 Rating: important References: * bsc#1229129 Cross-References: * CVE-2023-42667 * CVE-2023-49141 * CVE-2024-24853 * CVE-2024-24980 * CVE-2024-25939 CVSS scores: * CVE-2023-42667 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2023-42667 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2023-49141 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2023-49141 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2024-24853 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:P/PR:H/UI:P/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H * CVE-2024-24853 ( SUSE ): 7.2 CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:C/C:H/I:H/A:H * CVE-2024-24980 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:H/AT:P/PR:H/UI:N/VC:L/VI:H/VA:N/SC:L/SI:H/SA:N * CVE-2024-24980 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:H/A:N * CVE-2024-25939 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2024-25939 ( SUSE ): 6.0 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H Affected Products: * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 An update that solves five vulnerabilities can now be installed. ## Description: This update for ucode-intel fixes the following issues: * Intel CPU Microcode was updated to the 20240813 release (bsc#1229129) * CVE-2024-24853: Security updates for INTEL-SA-01083 * CVE-2024-25939: Security updates for INTEL-SA-01118 * CVE-2024-24980: Security updates for INTEL-SA-01100 * CVE-2023-42667: Security updates for INTEL-SA-01038 * CVE-2023-49141: Security updates for INTEL-SA-01046 Other issues fixed: * Update for functional issues. Refer to Intel Core Ultra Processor for details. * Update for functional issues. Refer to 3rd Generation Intel Xeon Processor Scalable Family Specification Update for details. * Update for functional issues. Refer to 3rd Generation Intel Xeon Scalable Processors Specification Update for details. * Update for functional issues. Refer to 2nd Generation Intel Xeon Processor Scalable Family Specification Update for details * Update for functional issues. Refer to Intel Xeon D-2700 Processor Specification Update for details. * Update for functional issues. Refer to Intel Xeon E-2300 Processor Specification Update for details. * Update for functional issues. Refer to 13th Generation Intel Core Processor Specification Update for details. * Update for functional issues. Refer to 12th Generation Intel Core Processor Family for details. * Update for functional issues. Refer to 11th Gen Intel Core Processor Specification Update for details. * Update for functional issues. Refer to 10th Gen Intel Core Processor Families Specification Update for details. * Update for functional issues. Refer to 10th Generation Intel Core Processor Specification Update for details. * Update for functional issues. Refer to 8th and 9th Generation Intel Core Processor Family Spec Update for details. * Update for functional issues. Refer to 8th Generation Intel Core Processor Families Specification Update for details. * Update for functional issues. Refer to 7th and 8th Generation Intel Core Processor Specification Update for details. * Update for functional issues. Refer to Intel Processors and Intel Core i3 N-Series for details. * Update for functional issues. Refer to Intel Atom x6000E Series, and Intel Pentium and Celeron N and J Series Processors for Internet of Things (IoT) Applications for details. Updated Platforms: | Processor | Stepping | F-M-S/PI | Old Ver | New Ver | Products |:---------------|:---------|:------------|:---------|:---------|:--------- | AML-Y22 | H0 | 06-8e-09/10 | 000000f4 | 000000f6 | Core Gen8 Mobile | AML-Y42 | V0 | 06-8e-0c/94 | 000000fa | 000000fc | Core Gen10 Mobile | CFL-H | R0 | 06-9e-0d/22 | 000000fc | 00000100 | Core Gen9 Mobile | CFL-H/S | P0 | 06-9e-0c/22 | 000000f6 | 000000f8 | Core Gen9 | CFL-H/S/E3 | U0 | 06-9e-0a/22 | 000000f6 | 000000f8 | Core Gen8 Desktop, Mobile, Xeon E | CFL-S | B0 | 06-9e-0b/02 | 000000f4 | 000000f6 | Core Gen8 | CFL-S | P0 | 06-9e-0c/22 | 000000f6 | 000000f8 | Core Gen9 Desktop | CFL-U43e | D0 | 06-8e-0a/c0 | 000000f4 | 000000f6 | Core Gen8 Mobile | CLX-SP | B1 | 06-55-07/bf | 05003605 | 05003707 | Xeon Scalable Gen2 | CML-H | R1 | 06-a5-02/20 | 000000fa | 000000fc | Core Gen10 Mobile | CML-S102 | Q0 | 06-a5-05/22 | 000000fa | 000000fc | Core Gen10 | CML-S62 | G1 | 06-a5-03/22 | 000000fa | 000000fc | Core Gen10 | CML-U42 | V0 | 06-8e-0c/94 | 000000fa | 000000fc | Core Gen10 Mobile | CML-U62 V1 | A0 | 06-a6-00/80 | 000000fa | 000000fe | Core Gen10 Mobile | CML-U62 V2 | K1 | 06-a6-01/80 | 000000fa | 000000fc | Core Gen10 Mobile | CML-Y42 | V0 | 06-8e-0c/94 | 000000fa | 000000fc | Core Gen10 Mobile | CPX-SP | A1 | 06-55-0b/bf | 07002802 | 07002904 | Xeon Scalable Gen3 | EHL | B1 | 06-96-01/01 | 00000019 | 0000001a | Pentium J6426/N6415, Celeron J6412/J6413/N6210/N6211, Atom x6000E | ICL-D | B0 | 06-6c-01/10 | 01000290 | 010002b0 | Xeon D-17xx, D-27xx | ICL-U/Y | D1 | 06-7e-05/80 | 000000c4 | 000000c6 | Core Gen10 Mobile | ICX-SP | Dx/M1 | 06-6a-06/87 | 0d0003d1 | 0d0003e7 | Xeon Scalable Gen3 | KBL-R U | Y0 | 06-8e-0a/c0 | 000000f4 | 000000f6 | Core Gen8 Mobile | KBL-U23e | J1 | 06-8e-09/c0 | 000000f4 | 000000f6 | Core Gen7 Mobile | KBL-U/Y | H0 | 06-8e-09/c0 | 000000f4 | 000000f6 | Core Gen7 Mobile | MTL | C-0 | 06-aa-04/e6 | 0000001c | 0000001e | Core Ultra Processor | RKL-S | B0 | 06-a7-01/02 | 0000005e | 00000062 | Core Gen11 | TGL | B0/B1 | 06-8c-01/80 | 000000b6 | 000000b8 | Core Gen11 Mobile | TGL-H | R0 | 06-8d-01/c2 | 00000050 | 00000052 | Core Gen11 Mobile | TGL-R | C0 | 06-8c-02/c2 | 00000036 | 00000038 | Core Gen11 Mobile | WHL-U | V0 | 06-8e-0c/94 | 000000fa | 000000fc | Core Gen8 Mobile | WHL-U | W0 | 06-8e-0b/d0 | 000000f4 | 000000f6 | Core Gen8 Mobile * update to 20240531: * Update for functional issues. Refer to Intel Pentium Silver and Intel Celeron Processor Specification Update * Updated Platforms: | Processor | Stepping | F-M-S/PI | Old Ver | New Ver | Products |:---------------|:---------|:------------|:---------|:---------|:--------- | GLK | B0 | 06-7a-01/01 | 00000040 | 00000042 | Pentium Silver N/J5xxx, Celeron N/J4xxx ## Special Instructions and Notes: * Please reboot the system after installing this update. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server for SAP Applications 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-2941=1 * SUSE Linux Enterprise High Performance Computing 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-2941=1 * SUSE Linux Enterprise Server 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-2941=1 ## Package List: * SUSE Linux Enterprise Server for SAP Applications 12 SP5 (x86_64) * ucode-intel-20240813-140.1 * ucode-intel-debuginfo-20240813-140.1 * ucode-intel-debugsource-20240813-140.1 * SUSE Linux Enterprise High Performance Computing 12 SP5 (x86_64) * ucode-intel-20240813-140.1 * ucode-intel-debuginfo-20240813-140.1 * ucode-intel-debugsource-20240813-140.1 * SUSE Linux Enterprise Server 12 SP5 (x86_64) * ucode-intel-20240813-140.1 * ucode-intel-debuginfo-20240813-140.1 * ucode-intel-debugsource-20240813-140.1 ## References: * https://www.suse.com/security/cve/CVE-2023-42667.html * https://www.suse.com/security/cve/CVE-2023-49141.html * https://www.suse.com/security/cve/CVE-2024-24853.html * https://www.suse.com/security/cve/CVE-2024-24980.html * https://www.suse.com/security/cve/CVE-2024-25939.html * https://bugzilla.suse.com/show_bug.cgi?id=1229129 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Fri Aug 16 16:30:10 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Fri, 16 Aug 2024 16:30:10 -0000 Subject: SUSE-SU-2024:2950-1: important: Security update for python36-setuptools Message-ID: <172382581095.15335.990154287000897391@smelt2.prg2.suse.org> # Security update for python36-setuptools Announcement ID: SUSE-SU-2024:2950-1 Rating: important References: * bsc#1228105 Cross-References: * CVE-2024-6345 CVSS scores: * CVE-2024-6345 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H Affected Products: * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 An update that solves one vulnerability can now be installed. ## Description: This update for python36-setuptools fixes the following issues: * CVE-2024-6345: Fixed code execution via download functions in the package_index module (bsc#1228105) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise High Performance Computing 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-2950=1 * SUSE Linux Enterprise Server 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-2950=1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-2950=1 ## Package List: * SUSE Linux Enterprise High Performance Computing 12 SP5 (noarch) * python36-setuptools-44.1.1-8.9.1 * SUSE Linux Enterprise Server 12 SP5 (noarch) * python36-setuptools-44.1.1-8.9.1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 (noarch) * python36-setuptools-44.1.1-8.9.1 ## References: * https://www.suse.com/security/cve/CVE-2024-6345.html * https://bugzilla.suse.com/show_bug.cgi?id=1228105 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Fri Aug 16 16:30:16 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Fri, 16 Aug 2024 16:30:16 -0000 Subject: SUSE-SU-2024:2949-1: important: Security update for webkit2gtk3 Message-ID: <172382581627.15335.9583047857398577994@smelt2.prg2.suse.org> # Security update for webkit2gtk3 Announcement ID: SUSE-SU-2024:2949-1 Rating: important References: * bsc#1228613 * bsc#1228693 * bsc#1228694 * bsc#1228695 Cross-References: * CVE-2024-40776 * CVE-2024-40779 * CVE-2024-40780 * CVE-2024-40782 CVSS scores: * CVE-2024-40776 ( SUSE ): 8.9 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:H * CVE-2024-40776 ( SUSE ): 8.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H * CVE-2024-40779 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2024-40779 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2024-40780 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2024-40780 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2024-40782 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H Affected Products: * SUSE Enterprise Storage 7.1 * SUSE Linux Enterprise High Performance Computing 15 SP2 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 * SUSE Linux Enterprise High Performance Computing 15 SP3 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 * SUSE Linux Enterprise Server 15 SP2 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 * SUSE Linux Enterprise Server 15 SP3 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 An update that solves four vulnerabilities can now be installed. ## Description: This update for webkit2gtk3 fixes the following issues: * CVE-2024-40776: Fixed a use-after-free issue with improved memory management (bsc#1228613). * CVE-2024-40779: Fixed a out-of-bounds read with improved bounds checking (bsc#1228693). * CVE-2024-40780: Fixed another out-of-bounds read with improved bounds checking (bsc#1228694). * CVE-2024-40782: Fixed a second use-after-free issue with improved memory management (bsc#1228695). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 zypper in -t patch SUSE-SLE-Product-HPC-15-SP2-LTSS-2024-2949=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 zypper in -t patch SUSE-SLE-Product-HPC-15-SP3-LTSS-2024-2949=1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 zypper in -t patch SUSE-SLE-Product-SLES-15-SP2-LTSS-2024-2949=1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 zypper in -t patch SUSE-SLE-Product-SLES-15-SP3-LTSS-2024-2949=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP2-2024-2949=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP3-2024-2949=1 * SUSE Enterprise Storage 7.1 zypper in -t patch SUSE-Storage-7.1-2024-2949=1 ## Package List: * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 (aarch64 x86_64) * libwebkit2gtk-4_0-37-2.44.2-150200.115.1 * libjavascriptcoregtk-4_0-18-2.44.2-150200.115.1 * webkit2gtk3-devel-2.44.2-150200.115.1 * libwebkit2gtk-4_0-37-debuginfo-2.44.2-150200.115.1 * webkit2gtk3-debugsource-2.44.2-150200.115.1 * typelib-1_0-JavaScriptCore-4_0-2.44.2-150200.115.1 * libjavascriptcoregtk-4_0-18-debuginfo-2.44.2-150200.115.1 * webkit2gtk-4_0-injected-bundles-debuginfo-2.44.2-150200.115.1 * typelib-1_0-WebKit2-4_0-2.44.2-150200.115.1 * typelib-1_0-WebKit2WebExtension-4_0-2.44.2-150200.115.1 * webkit2gtk-4_0-injected-bundles-2.44.2-150200.115.1 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 (noarch) * libwebkit2gtk3-lang-2.44.2-150200.115.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (aarch64 x86_64) * libwebkit2gtk-4_0-37-2.44.2-150200.115.1 * libjavascriptcoregtk-4_0-18-2.44.2-150200.115.1 * webkit2gtk3-devel-2.44.2-150200.115.1 * libwebkit2gtk-4_0-37-debuginfo-2.44.2-150200.115.1 * webkit2gtk3-debugsource-2.44.2-150200.115.1 * typelib-1_0-JavaScriptCore-4_0-2.44.2-150200.115.1 * libjavascriptcoregtk-4_0-18-debuginfo-2.44.2-150200.115.1 * webkit2gtk-4_0-injected-bundles-debuginfo-2.44.2-150200.115.1 * typelib-1_0-WebKit2-4_0-2.44.2-150200.115.1 * typelib-1_0-WebKit2WebExtension-4_0-2.44.2-150200.115.1 * webkit2gtk-4_0-injected-bundles-2.44.2-150200.115.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (noarch) * libwebkit2gtk3-lang-2.44.2-150200.115.1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (aarch64 ppc64le s390x x86_64) * libwebkit2gtk-4_0-37-2.44.2-150200.115.1 * libjavascriptcoregtk-4_0-18-2.44.2-150200.115.1 * webkit2gtk3-devel-2.44.2-150200.115.1 * libwebkit2gtk-4_0-37-debuginfo-2.44.2-150200.115.1 * webkit2gtk3-debugsource-2.44.2-150200.115.1 * typelib-1_0-JavaScriptCore-4_0-2.44.2-150200.115.1 * libjavascriptcoregtk-4_0-18-debuginfo-2.44.2-150200.115.1 * webkit2gtk-4_0-injected-bundles-debuginfo-2.44.2-150200.115.1 * typelib-1_0-WebKit2-4_0-2.44.2-150200.115.1 * typelib-1_0-WebKit2WebExtension-4_0-2.44.2-150200.115.1 * webkit2gtk-4_0-injected-bundles-2.44.2-150200.115.1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (noarch) * libwebkit2gtk3-lang-2.44.2-150200.115.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (aarch64 ppc64le s390x x86_64) * libwebkit2gtk-4_0-37-2.44.2-150200.115.1 * libjavascriptcoregtk-4_0-18-2.44.2-150200.115.1 * webkit2gtk3-devel-2.44.2-150200.115.1 * libwebkit2gtk-4_0-37-debuginfo-2.44.2-150200.115.1 * webkit2gtk3-debugsource-2.44.2-150200.115.1 * typelib-1_0-JavaScriptCore-4_0-2.44.2-150200.115.1 * libjavascriptcoregtk-4_0-18-debuginfo-2.44.2-150200.115.1 * webkit2gtk-4_0-injected-bundles-debuginfo-2.44.2-150200.115.1 * typelib-1_0-WebKit2-4_0-2.44.2-150200.115.1 * typelib-1_0-WebKit2WebExtension-4_0-2.44.2-150200.115.1 * webkit2gtk-4_0-injected-bundles-2.44.2-150200.115.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (noarch) * libwebkit2gtk3-lang-2.44.2-150200.115.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 (ppc64le x86_64) * libwebkit2gtk-4_0-37-2.44.2-150200.115.1 * libjavascriptcoregtk-4_0-18-2.44.2-150200.115.1 * webkit2gtk3-devel-2.44.2-150200.115.1 * libwebkit2gtk-4_0-37-debuginfo-2.44.2-150200.115.1 * webkit2gtk3-debugsource-2.44.2-150200.115.1 * typelib-1_0-JavaScriptCore-4_0-2.44.2-150200.115.1 * libjavascriptcoregtk-4_0-18-debuginfo-2.44.2-150200.115.1 * webkit2gtk-4_0-injected-bundles-debuginfo-2.44.2-150200.115.1 * typelib-1_0-WebKit2-4_0-2.44.2-150200.115.1 * typelib-1_0-WebKit2WebExtension-4_0-2.44.2-150200.115.1 * webkit2gtk-4_0-injected-bundles-2.44.2-150200.115.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 (noarch) * libwebkit2gtk3-lang-2.44.2-150200.115.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (ppc64le x86_64) * libwebkit2gtk-4_0-37-2.44.2-150200.115.1 * libjavascriptcoregtk-4_0-18-2.44.2-150200.115.1 * webkit2gtk3-devel-2.44.2-150200.115.1 * libwebkit2gtk-4_0-37-debuginfo-2.44.2-150200.115.1 * webkit2gtk3-debugsource-2.44.2-150200.115.1 * typelib-1_0-JavaScriptCore-4_0-2.44.2-150200.115.1 * libjavascriptcoregtk-4_0-18-debuginfo-2.44.2-150200.115.1 * webkit2gtk-4_0-injected-bundles-debuginfo-2.44.2-150200.115.1 * typelib-1_0-WebKit2-4_0-2.44.2-150200.115.1 * typelib-1_0-WebKit2WebExtension-4_0-2.44.2-150200.115.1 * webkit2gtk-4_0-injected-bundles-2.44.2-150200.115.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (noarch) * libwebkit2gtk3-lang-2.44.2-150200.115.1 * SUSE Enterprise Storage 7.1 (aarch64 x86_64) * libwebkit2gtk-4_0-37-2.44.2-150200.115.1 * libjavascriptcoregtk-4_0-18-2.44.2-150200.115.1 * webkit2gtk3-devel-2.44.2-150200.115.1 * libwebkit2gtk-4_0-37-debuginfo-2.44.2-150200.115.1 * webkit2gtk3-debugsource-2.44.2-150200.115.1 * typelib-1_0-JavaScriptCore-4_0-2.44.2-150200.115.1 * libjavascriptcoregtk-4_0-18-debuginfo-2.44.2-150200.115.1 * webkit2gtk-4_0-injected-bundles-debuginfo-2.44.2-150200.115.1 * typelib-1_0-WebKit2-4_0-2.44.2-150200.115.1 * typelib-1_0-WebKit2WebExtension-4_0-2.44.2-150200.115.1 * webkit2gtk-4_0-injected-bundles-2.44.2-150200.115.1 * SUSE Enterprise Storage 7.1 (noarch) * libwebkit2gtk3-lang-2.44.2-150200.115.1 ## References: * https://www.suse.com/security/cve/CVE-2024-40776.html * https://www.suse.com/security/cve/CVE-2024-40779.html * https://www.suse.com/security/cve/CVE-2024-40780.html * https://www.suse.com/security/cve/CVE-2024-40782.html * https://bugzilla.suse.com/show_bug.cgi?id=1228613 * https://bugzilla.suse.com/show_bug.cgi?id=1228693 * https://bugzilla.suse.com/show_bug.cgi?id=1228694 * https://bugzilla.suse.com/show_bug.cgi?id=1228695 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Fri Aug 16 16:30:44 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Fri, 16 Aug 2024 16:30:44 -0000 Subject: SUSE-SU-2024:2948-1: important: Security update for the Linux Kernel Message-ID: <172382584473.15335.661568139742414893@smelt2.prg2.suse.org> # Security update for the Linux Kernel Announcement ID: SUSE-SU-2024:2948-1 Rating: important References: * bsc#1065729 * bsc#1179610 * bsc#1186463 * bsc#1216834 * bsc#1218820 * bsc#1220185 * bsc#1220186 * bsc#1220187 * bsc#1221539 * bsc#1222728 * bsc#1222824 * bsc#1223863 * bsc#1224918 * bsc#1225404 * bsc#1225431 * bsc#1226519 * bsc#1226550 * bsc#1226574 * bsc#1226575 * bsc#1226662 * bsc#1226666 * bsc#1226785 * bsc#1227213 * bsc#1227362 * bsc#1227487 * bsc#1227716 * bsc#1227750 * bsc#1227810 * bsc#1227836 * bsc#1227976 * bsc#1228013 * bsc#1228040 * bsc#1228114 * bsc#1228328 * bsc#1228561 * bsc#1228644 * bsc#1228743 Cross-References: * CVE-2020-26558 * CVE-2021-0129 * CVE-2021-47126 * CVE-2021-47219 * CVE-2021-47291 * CVE-2021-47506 * CVE-2021-47520 * CVE-2021-47580 * CVE-2021-47598 * CVE-2021-47600 * CVE-2022-48792 * CVE-2022-48821 * CVE-2022-48822 * CVE-2023-52686 * CVE-2023-52885 * CVE-2024-26583 * CVE-2024-26584 * CVE-2024-26585 * CVE-2024-26800 * CVE-2024-36974 * CVE-2024-38559 * CVE-2024-39494 * CVE-2024-40937 * CVE-2024-40956 * CVE-2024-41011 * CVE-2024-41059 * CVE-2024-41069 * CVE-2024-41090 * CVE-2024-42145 CVSS scores: * CVE-2020-26558 ( SUSE ): 4.2 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N * CVE-2020-26558 ( NVD ): 4.2 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N * CVE-2021-0129 ( SUSE ): 6.4 CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2021-0129 ( NVD ): 5.7 CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2021-47126 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47219 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2021-47291 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2021-47506 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2021-47520 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2021-47520 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2021-47580 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:L * CVE-2021-47598 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2021-47600 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48792 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48792 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48821 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48822 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48822 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-52686 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52885 ( SUSE ): 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26583 ( SUSE ): 5.1 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26583 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26584 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26584 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26585 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26585 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26800 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36974 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-38559 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2024-39494 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-39494 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-40937 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-40956 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-41011 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-41059 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2024-41059 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-41069 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2024-41069 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-41090 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H * CVE-2024-42145 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2024-42145 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * openSUSE Leap 15.3 * SUSE Enterprise Storage 7.1 * SUSE Linux Enterprise High Availability Extension 15 SP3 * SUSE Linux Enterprise High Performance Computing 15 SP3 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 * SUSE Linux Enterprise Live Patching 15-SP3 * SUSE Linux Enterprise Micro 5.1 * SUSE Linux Enterprise Micro 5.2 * SUSE Linux Enterprise Micro for Rancher 5.2 * SUSE Linux Enterprise Server 15 SP3 * SUSE Linux Enterprise Server 15 SP3 Business Critical Linux 15-SP3 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 * SUSE Manager Proxy 4.2 * SUSE Manager Retail Branch Server 4.2 * SUSE Manager Server 4.2 An update that solves 29 vulnerabilities and has eight security fixes can now be installed. ## Description: The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security bugfixes. The following security bugs were fixed: * CVE-2020-26558: Fixed a flaw in the Bluetooth LE and BR/EDR secure pairing that could permit a nearby man-in-the-middle attacker to identify the Passkey used during pairing (bsc#1179610). * CVE-2021-0129: Improper access control in BlueZ may have allowed an authenticated user to potentially enable information disclosure via adjacent access (bsc#1186463). * CVE-2021-47126: ipv6: Fix KASAN: slab-out-of-bounds Read in fib6_nh_flush_exceptions (bsc#1221539). * CVE-2021-47219: scsi: scsi_debug: Fix out-of-bound read in resp_report_tgtpgs() (bsc#1222824). * CVE-2021-47291: ipv6: fix another slab-out-of-bounds in fib6_nh_flush_exceptions (bsc#1224918). * CVE-2021-47506: nfsd: fix use-after-free due to delegation race (bsc#1225404). * CVE-2021-47520: can: pch_can: pch_can_rx_normal: fix use after free (bsc#1225431). * CVE-2021-47580: scsi: scsi_debug: Fix type in min_t to avoid stack OOB (bsc#1226550). * CVE-2021-47598: sch_cake: do not call cake_destroy() from cake_init() (bsc#1226574). * CVE-2021-47600: dm btree remove: fix use after free in rebalance_children() (bsc#1226575). * CVE-2022-48792: scsi: pm8001: Fix use-after-free for aborted SSP/STP sas_task (bsc#1228013). * CVE-2022-48821: misc: fastrpc: avoid double fput() on failed usercopy (bsc#1227976). * CVE-2023-52686: Fix a null pointer in opal_event_init() (bsc#1065729). * CVE-2023-52885: SUNRPC: Fix UAF in svc_tcp_listen_data_ready() (bsc#1227750). * CVE-2024-26585: Fixed race between tx work scheduling and socket close (bsc#1220187). * CVE-2024-36974: net/sched: taprio: always validate TCA_TAPRIO_ATTR_PRIOMAP (bsc#1226519). * CVE-2024-38559: scsi: qedf: Ensure the copied buf is NUL terminated (bsc#1226785). * CVE-2024-39494: ima: Fix use-after-free on a dentry's dname.name (bsc#1227716). * CVE-2024-40937: gve: Clear napi->skb before dev_kfree_skb_any() (bsc#1227836). * CVE-2024-40956: dmaengine: idxd: Fix possible Use-After-Free in irq_process_work_list (bsc#1227810). * CVE-2024-41011: drm/amdkfd: do not allow mapping the MMIO HDP page with large pages (bsc#1228114). * CVE-2024-41059: hfsplus: fix uninit-value in copy_name (bsc#1228561). * CVE-2024-41069: ASoC: topology: Fix route memory corruption (bsc#1228644). * CVE-2024-41090: tap: add missing verification for short frame (bsc#1228328). * CVE-2024-42145: IB/core: Implement a limit on UMAD receive List (bsc#1228743). The following non-security bugs were fixed: * Fix spurious WARNING caused by a qxl driver patch (bsc#1227213) * nfs: Clean up directory array handling (bsc#1226662). * nfs: Clean up nfs_readdir_page_filler() (bsc#1226662). * nfs: Clean up readdir struct nfs_cache_array (bsc#1226662). * nfs: Do not discard readdir results (bsc#1226662). * nfs: Do not overfill uncached readdir pages (bsc#1226662). * nfs: Do not re-read the entire page cache to find the next cookie (bsc#1226662). * nfs: Ensure contents of struct nfs_open_dir_context are consistent (bsc#1226662). * nfs: Fix up directory verifier races (bsc#1226662). * nfs: Further optimisations for 'ls -l' (bsc#1226662). * nfs: More readdir cleanups (bsc#1226662). * nfs: Reduce number of RPC calls when doing uncached readdir (bsc#1226662). * nfs: Reduce use of uncached readdir (bsc#1226662). * nfs: Support larger readdir buffers (bsc#1226662). * nfs: Use the 64-bit server readdir cookies when possible (bsc#1226662). * nfs: optimise readdir cache page invalidation (bsc#1226662). * nfsv4.x: by default serialize open/close operations (bsc#1223863 bsc#1227362) * ocfs2: fix DIO failure due to insufficient transaction credits (bsc#1216834). * powerpc/rtas: Prevent Spectre v1 gadget construction in sys_rtas() (bsc#1227487). * powerpc/rtas: clean up includes (bsc#1227487). * x.509: Fix the parser of extended key usage for length (bsc#1218820, bsc#1226666). ## Special Instructions and Notes: * Please reboot the system after installing this update. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.3 zypper in -t patch SUSE-2024-2948=1 * SUSE Linux Enterprise Live Patching 15-SP3 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP3-2024-2948=1 * SUSE Linux Enterprise High Availability Extension 15 SP3 zypper in -t patch SUSE-SLE-Product-HA-15-SP3-2024-2948=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 zypper in -t patch SUSE-SLE-Product-HPC-15-SP3-LTSS-2024-2948=1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 zypper in -t patch SUSE-SLE-Product-SLES-15-SP3-LTSS-2024-2948=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP3-2024-2948=1 * SUSE Enterprise Storage 7.1 zypper in -t patch SUSE-Storage-7.1-2024-2948=1 * SUSE Linux Enterprise Micro 5.1 zypper in -t patch SUSE-SUSE-MicroOS-5.1-2024-2948=1 * SUSE Linux Enterprise Micro 5.2 zypper in -t patch SUSE-SUSE-MicroOS-5.2-2024-2948=1 * SUSE Linux Enterprise Micro for Rancher 5.2 zypper in -t patch SUSE-SUSE-MicroOS-5.2-2024-2948=1 ## Package List: * openSUSE Leap 15.3 (noarch nosrc) * kernel-docs-5.3.18-150300.59.170.2 * openSUSE Leap 15.3 (noarch) * kernel-source-5.3.18-150300.59.170.1 * kernel-macros-5.3.18-150300.59.170.1 * kernel-source-vanilla-5.3.18-150300.59.170.1 * kernel-docs-html-5.3.18-150300.59.170.2 * kernel-devel-5.3.18-150300.59.170.1 * openSUSE Leap 15.3 (nosrc ppc64le x86_64) * kernel-kvmsmall-5.3.18-150300.59.170.1 * kernel-debug-5.3.18-150300.59.170.1 * openSUSE Leap 15.3 (ppc64le x86_64) * kernel-kvmsmall-devel-5.3.18-150300.59.170.1 * kernel-debug-debuginfo-5.3.18-150300.59.170.1 * kernel-kvmsmall-debugsource-5.3.18-150300.59.170.1 * kernel-debug-livepatch-devel-5.3.18-150300.59.170.1 * kernel-kvmsmall-devel-debuginfo-5.3.18-150300.59.170.1 * kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.170.1 * kernel-debug-devel-debuginfo-5.3.18-150300.59.170.1 * kernel-debug-debugsource-5.3.18-150300.59.170.1 * kernel-debug-devel-5.3.18-150300.59.170.1 * kernel-kvmsmall-debuginfo-5.3.18-150300.59.170.1 * openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64) * kernel-default-livepatch-devel-5.3.18-150300.59.170.1 * gfs2-kmp-default-debuginfo-5.3.18-150300.59.170.1 * cluster-md-kmp-default-debuginfo-5.3.18-150300.59.170.1 * kernel-default-base-rebuild-5.3.18-150300.59.170.1.150300.18.100.1 * dlm-kmp-default-5.3.18-150300.59.170.1 * kernel-default-optional-5.3.18-150300.59.170.1 * kernel-obs-build-5.3.18-150300.59.170.1 * kernel-default-debugsource-5.3.18-150300.59.170.1 * kernel-default-extra-debuginfo-5.3.18-150300.59.170.1 * kselftests-kmp-default-debuginfo-5.3.18-150300.59.170.1 * kernel-default-extra-5.3.18-150300.59.170.1 * kernel-default-livepatch-5.3.18-150300.59.170.1 * reiserfs-kmp-default-debuginfo-5.3.18-150300.59.170.1 * kernel-default-base-5.3.18-150300.59.170.1.150300.18.100.1 * kernel-default-debuginfo-5.3.18-150300.59.170.1 * cluster-md-kmp-default-5.3.18-150300.59.170.1 * dlm-kmp-default-debuginfo-5.3.18-150300.59.170.1 * kernel-obs-build-debugsource-5.3.18-150300.59.170.1 * kselftests-kmp-default-5.3.18-150300.59.170.1 * kernel-obs-qa-5.3.18-150300.59.170.1 * kernel-default-optional-debuginfo-5.3.18-150300.59.170.1 * reiserfs-kmp-default-5.3.18-150300.59.170.1 * ocfs2-kmp-default-debuginfo-5.3.18-150300.59.170.1 * kernel-default-devel-debuginfo-5.3.18-150300.59.170.1 * gfs2-kmp-default-5.3.18-150300.59.170.1 * kernel-syms-5.3.18-150300.59.170.1 * kernel-default-devel-5.3.18-150300.59.170.1 * ocfs2-kmp-default-5.3.18-150300.59.170.1 * openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64 nosrc) * kernel-default-5.3.18-150300.59.170.1 * openSUSE Leap 15.3 (ppc64le s390x x86_64) * kernel-livepatch-5_3_18-150300_59_170-default-debuginfo-1-150300.7.3.1 * kernel-livepatch-5_3_18-150300_59_170-default-1-150300.7.3.1 * kernel-livepatch-SLE15-SP3_Update_47-debugsource-1-150300.7.3.1 * openSUSE Leap 15.3 (x86_64) * kernel-livepatch-5_3_18-150300_59_170-preempt-1-150300.7.3.1 * kernel-livepatch-5_3_18-150300_59_170-preempt-debuginfo-1-150300.7.3.1 * openSUSE Leap 15.3 (aarch64 x86_64) * cluster-md-kmp-preempt-debuginfo-5.3.18-150300.59.170.1 * kernel-preempt-debuginfo-5.3.18-150300.59.170.1 * kernel-preempt-extra-5.3.18-150300.59.170.1 * kselftests-kmp-preempt-5.3.18-150300.59.170.1 * gfs2-kmp-preempt-debuginfo-5.3.18-150300.59.170.1 * kernel-preempt-optional-5.3.18-150300.59.170.1 * reiserfs-kmp-preempt-5.3.18-150300.59.170.1 * kernel-preempt-debugsource-5.3.18-150300.59.170.1 * dlm-kmp-preempt-debuginfo-5.3.18-150300.59.170.1 * kernel-preempt-devel-debuginfo-5.3.18-150300.59.170.1 * kernel-preempt-devel-5.3.18-150300.59.170.1 * gfs2-kmp-preempt-5.3.18-150300.59.170.1 * kernel-preempt-livepatch-devel-5.3.18-150300.59.170.1 * cluster-md-kmp-preempt-5.3.18-150300.59.170.1 * ocfs2-kmp-preempt-5.3.18-150300.59.170.1 * kernel-preempt-optional-debuginfo-5.3.18-150300.59.170.1 * dlm-kmp-preempt-5.3.18-150300.59.170.1 * ocfs2-kmp-preempt-debuginfo-5.3.18-150300.59.170.1 * reiserfs-kmp-preempt-debuginfo-5.3.18-150300.59.170.1 * kselftests-kmp-preempt-debuginfo-5.3.18-150300.59.170.1 * kernel-preempt-extra-debuginfo-5.3.18-150300.59.170.1 * openSUSE Leap 15.3 (aarch64 nosrc x86_64) * kernel-preempt-5.3.18-150300.59.170.1 * openSUSE Leap 15.3 (nosrc s390x) * kernel-zfcpdump-5.3.18-150300.59.170.1 * openSUSE Leap 15.3 (s390x) * kernel-zfcpdump-debuginfo-5.3.18-150300.59.170.1 * kernel-zfcpdump-debugsource-5.3.18-150300.59.170.1 * openSUSE Leap 15.3 (nosrc) * dtb-aarch64-5.3.18-150300.59.170.1 * openSUSE Leap 15.3 (aarch64) * dtb-mediatek-5.3.18-150300.59.170.1 * dlm-kmp-64kb-5.3.18-150300.59.170.1 * dtb-qcom-5.3.18-150300.59.170.1 * dtb-lg-5.3.18-150300.59.170.1 * dtb-broadcom-5.3.18-150300.59.170.1 * kernel-64kb-livepatch-devel-5.3.18-150300.59.170.1 * dtb-socionext-5.3.18-150300.59.170.1 * dtb-apm-5.3.18-150300.59.170.1 * dtb-nvidia-5.3.18-150300.59.170.1 * dtb-zte-5.3.18-150300.59.170.1 * ocfs2-kmp-64kb-5.3.18-150300.59.170.1 * dtb-renesas-5.3.18-150300.59.170.1 * dtb-exynos-5.3.18-150300.59.170.1 * dtb-rockchip-5.3.18-150300.59.170.1 * kselftests-kmp-64kb-5.3.18-150300.59.170.1 * dtb-hisilicon-5.3.18-150300.59.170.1 * kernel-64kb-debuginfo-5.3.18-150300.59.170.1 * kernel-64kb-optional-debuginfo-5.3.18-150300.59.170.1 * reiserfs-kmp-64kb-debuginfo-5.3.18-150300.59.170.1 * kselftests-kmp-64kb-debuginfo-5.3.18-150300.59.170.1 * dtb-cavium-5.3.18-150300.59.170.1 * dtb-freescale-5.3.18-150300.59.170.1 * gfs2-kmp-64kb-5.3.18-150300.59.170.1 * dtb-al-5.3.18-150300.59.170.1 * dtb-allwinner-5.3.18-150300.59.170.1 * kernel-64kb-debugsource-5.3.18-150300.59.170.1 * kernel-64kb-extra-5.3.18-150300.59.170.1 * dtb-amd-5.3.18-150300.59.170.1 * dtb-marvell-5.3.18-150300.59.170.1 * dtb-arm-5.3.18-150300.59.170.1 * dtb-xilinx-5.3.18-150300.59.170.1 * dtb-altera-5.3.18-150300.59.170.1 * dtb-amlogic-5.3.18-150300.59.170.1 * reiserfs-kmp-64kb-5.3.18-150300.59.170.1 * cluster-md-kmp-64kb-debuginfo-5.3.18-150300.59.170.1 * cluster-md-kmp-64kb-5.3.18-150300.59.170.1 * kernel-64kb-devel-debuginfo-5.3.18-150300.59.170.1 * gfs2-kmp-64kb-debuginfo-5.3.18-150300.59.170.1 * kernel-64kb-optional-5.3.18-150300.59.170.1 * kernel-64kb-extra-debuginfo-5.3.18-150300.59.170.1 * dtb-sprd-5.3.18-150300.59.170.1 * dlm-kmp-64kb-debuginfo-5.3.18-150300.59.170.1 * ocfs2-kmp-64kb-debuginfo-5.3.18-150300.59.170.1 * kernel-64kb-devel-5.3.18-150300.59.170.1 * openSUSE Leap 15.3 (aarch64 nosrc) * kernel-64kb-5.3.18-150300.59.170.1 * SUSE Linux Enterprise Live Patching 15-SP3 (nosrc) * kernel-default-5.3.18-150300.59.170.1 * SUSE Linux Enterprise Live Patching 15-SP3 (ppc64le s390x x86_64) * kernel-default-debugsource-5.3.18-150300.59.170.1 * kernel-default-livepatch-devel-5.3.18-150300.59.170.1 * kernel-default-debuginfo-5.3.18-150300.59.170.1 * kernel-livepatch-SLE15-SP3_Update_47-debugsource-1-150300.7.3.1 * kernel-livepatch-5_3_18-150300_59_170-default-debuginfo-1-150300.7.3.1 * kernel-livepatch-5_3_18-150300_59_170-default-1-150300.7.3.1 * kernel-default-livepatch-5.3.18-150300.59.170.1 * SUSE Linux Enterprise High Availability Extension 15 SP3 (aarch64 ppc64le s390x x86_64) * kernel-default-debugsource-5.3.18-150300.59.170.1 * kernel-default-debuginfo-5.3.18-150300.59.170.1 * gfs2-kmp-default-debuginfo-5.3.18-150300.59.170.1 * cluster-md-kmp-default-5.3.18-150300.59.170.1 * ocfs2-kmp-default-debuginfo-5.3.18-150300.59.170.1 * cluster-md-kmp-default-debuginfo-5.3.18-150300.59.170.1 * gfs2-kmp-default-5.3.18-150300.59.170.1 * dlm-kmp-default-5.3.18-150300.59.170.1 * dlm-kmp-default-debuginfo-5.3.18-150300.59.170.1 * ocfs2-kmp-default-5.3.18-150300.59.170.1 * SUSE Linux Enterprise High Availability Extension 15 SP3 (nosrc) * kernel-default-5.3.18-150300.59.170.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (aarch64 nosrc) * kernel-64kb-5.3.18-150300.59.170.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (aarch64) * kernel-64kb-debugsource-5.3.18-150300.59.170.1 * kernel-64kb-debuginfo-5.3.18-150300.59.170.1 * kernel-64kb-devel-debuginfo-5.3.18-150300.59.170.1 * kernel-64kb-devel-5.3.18-150300.59.170.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (aarch64 nosrc x86_64) * kernel-preempt-5.3.18-150300.59.170.1 * kernel-default-5.3.18-150300.59.170.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (aarch64 x86_64) * kernel-preempt-devel-5.3.18-150300.59.170.1 * kernel-default-base-5.3.18-150300.59.170.1.150300.18.100.1 * kernel-default-debugsource-5.3.18-150300.59.170.1 * kernel-default-debuginfo-5.3.18-150300.59.170.1 * kernel-preempt-debuginfo-5.3.18-150300.59.170.1 * reiserfs-kmp-default-5.3.18-150300.59.170.1 * kernel-preempt-debugsource-5.3.18-150300.59.170.1 * kernel-default-devel-debuginfo-5.3.18-150300.59.170.1 * kernel-syms-5.3.18-150300.59.170.1 * kernel-preempt-devel-debuginfo-5.3.18-150300.59.170.1 * kernel-obs-build-debugsource-5.3.18-150300.59.170.1 * kernel-default-devel-5.3.18-150300.59.170.1 * kernel-obs-build-5.3.18-150300.59.170.1 * reiserfs-kmp-default-debuginfo-5.3.18-150300.59.170.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (noarch) * kernel-macros-5.3.18-150300.59.170.1 * kernel-devel-5.3.18-150300.59.170.1 * kernel-source-5.3.18-150300.59.170.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (noarch nosrc) * kernel-docs-5.3.18-150300.59.170.2 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (aarch64 nosrc) * kernel-64kb-5.3.18-150300.59.170.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (aarch64) * kernel-64kb-debugsource-5.3.18-150300.59.170.1 * kernel-64kb-debuginfo-5.3.18-150300.59.170.1 * kernel-64kb-devel-debuginfo-5.3.18-150300.59.170.1 * kernel-64kb-devel-5.3.18-150300.59.170.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (aarch64 ppc64le s390x x86_64 nosrc) * kernel-default-5.3.18-150300.59.170.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (aarch64 ppc64le s390x x86_64) * kernel-default-base-5.3.18-150300.59.170.1.150300.18.100.1 * kernel-default-debugsource-5.3.18-150300.59.170.1 * kernel-default-debuginfo-5.3.18-150300.59.170.1 * reiserfs-kmp-default-5.3.18-150300.59.170.1 * kernel-default-devel-debuginfo-5.3.18-150300.59.170.1 * kernel-syms-5.3.18-150300.59.170.1 * kernel-obs-build-debugsource-5.3.18-150300.59.170.1 * kernel-default-devel-5.3.18-150300.59.170.1 * kernel-obs-build-5.3.18-150300.59.170.1 * reiserfs-kmp-default-debuginfo-5.3.18-150300.59.170.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (noarch) * kernel-macros-5.3.18-150300.59.170.1 * kernel-devel-5.3.18-150300.59.170.1 * kernel-source-5.3.18-150300.59.170.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (noarch nosrc) * kernel-docs-5.3.18-150300.59.170.2 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (aarch64 nosrc x86_64) * kernel-preempt-5.3.18-150300.59.170.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (aarch64 x86_64) * kernel-preempt-devel-5.3.18-150300.59.170.1 * kernel-preempt-devel-debuginfo-5.3.18-150300.59.170.1 * kernel-preempt-debuginfo-5.3.18-150300.59.170.1 * kernel-preempt-debugsource-5.3.18-150300.59.170.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (nosrc s390x) * kernel-zfcpdump-5.3.18-150300.59.170.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (s390x) * kernel-zfcpdump-debuginfo-5.3.18-150300.59.170.1 * kernel-zfcpdump-debugsource-5.3.18-150300.59.170.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (nosrc ppc64le x86_64) * kernel-default-5.3.18-150300.59.170.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (ppc64le x86_64) * kernel-default-base-5.3.18-150300.59.170.1.150300.18.100.1 * kernel-default-debugsource-5.3.18-150300.59.170.1 * kernel-default-debuginfo-5.3.18-150300.59.170.1 * reiserfs-kmp-default-5.3.18-150300.59.170.1 * kernel-default-devel-debuginfo-5.3.18-150300.59.170.1 * kernel-syms-5.3.18-150300.59.170.1 * kernel-obs-build-debugsource-5.3.18-150300.59.170.1 * kernel-default-devel-5.3.18-150300.59.170.1 * kernel-obs-build-5.3.18-150300.59.170.1 * reiserfs-kmp-default-debuginfo-5.3.18-150300.59.170.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (noarch) * kernel-macros-5.3.18-150300.59.170.1 * kernel-devel-5.3.18-150300.59.170.1 * kernel-source-5.3.18-150300.59.170.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (noarch nosrc) * kernel-docs-5.3.18-150300.59.170.2 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (nosrc x86_64) * kernel-preempt-5.3.18-150300.59.170.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (x86_64) * kernel-preempt-devel-5.3.18-150300.59.170.1 * kernel-preempt-devel-debuginfo-5.3.18-150300.59.170.1 * kernel-preempt-debuginfo-5.3.18-150300.59.170.1 * kernel-preempt-debugsource-5.3.18-150300.59.170.1 * SUSE Enterprise Storage 7.1 (aarch64 nosrc) * kernel-64kb-5.3.18-150300.59.170.1 * SUSE Enterprise Storage 7.1 (aarch64) * kernel-64kb-debugsource-5.3.18-150300.59.170.1 * kernel-64kb-debuginfo-5.3.18-150300.59.170.1 * kernel-64kb-devel-debuginfo-5.3.18-150300.59.170.1 * kernel-64kb-devel-5.3.18-150300.59.170.1 * SUSE Enterprise Storage 7.1 (aarch64 nosrc x86_64) * kernel-preempt-5.3.18-150300.59.170.1 * kernel-default-5.3.18-150300.59.170.1 * SUSE Enterprise Storage 7.1 (aarch64 x86_64) * kernel-preempt-devel-5.3.18-150300.59.170.1 * kernel-default-base-5.3.18-150300.59.170.1.150300.18.100.1 * kernel-default-debugsource-5.3.18-150300.59.170.1 * kernel-default-debuginfo-5.3.18-150300.59.170.1 * kernel-preempt-debuginfo-5.3.18-150300.59.170.1 * reiserfs-kmp-default-5.3.18-150300.59.170.1 * kernel-preempt-debugsource-5.3.18-150300.59.170.1 * kernel-default-devel-debuginfo-5.3.18-150300.59.170.1 * kernel-syms-5.3.18-150300.59.170.1 * kernel-preempt-devel-debuginfo-5.3.18-150300.59.170.1 * kernel-obs-build-debugsource-5.3.18-150300.59.170.1 * kernel-default-devel-5.3.18-150300.59.170.1 * kernel-obs-build-5.3.18-150300.59.170.1 * reiserfs-kmp-default-debuginfo-5.3.18-150300.59.170.1 * SUSE Enterprise Storage 7.1 (noarch) * kernel-macros-5.3.18-150300.59.170.1 * kernel-devel-5.3.18-150300.59.170.1 * kernel-source-5.3.18-150300.59.170.1 * SUSE Enterprise Storage 7.1 (noarch nosrc) * kernel-docs-5.3.18-150300.59.170.2 * SUSE Linux Enterprise Micro 5.1 (aarch64 nosrc s390x x86_64) * kernel-default-5.3.18-150300.59.170.1 * SUSE Linux Enterprise Micro 5.1 (aarch64 s390x x86_64) * kernel-default-debuginfo-5.3.18-150300.59.170.1 * kernel-default-base-5.3.18-150300.59.170.1.150300.18.100.1 * kernel-default-debugsource-5.3.18-150300.59.170.1 * SUSE Linux Enterprise Micro 5.2 (aarch64 nosrc s390x x86_64) * kernel-default-5.3.18-150300.59.170.1 * SUSE Linux Enterprise Micro 5.2 (aarch64 x86_64) * kernel-default-base-5.3.18-150300.59.170.1.150300.18.100.1 * SUSE Linux Enterprise Micro 5.2 (aarch64 s390x x86_64) * kernel-default-debuginfo-5.3.18-150300.59.170.1 * kernel-default-debugsource-5.3.18-150300.59.170.1 * SUSE Linux Enterprise Micro for Rancher 5.2 (aarch64 nosrc s390x x86_64) * kernel-default-5.3.18-150300.59.170.1 * SUSE Linux Enterprise Micro for Rancher 5.2 (aarch64 x86_64) * kernel-default-base-5.3.18-150300.59.170.1.150300.18.100.1 * SUSE Linux Enterprise Micro for Rancher 5.2 (aarch64 s390x x86_64) * kernel-default-debuginfo-5.3.18-150300.59.170.1 * kernel-default-debugsource-5.3.18-150300.59.170.1 ## References: * https://www.suse.com/security/cve/CVE-2020-26558.html * https://www.suse.com/security/cve/CVE-2021-0129.html * https://www.suse.com/security/cve/CVE-2021-47126.html * https://www.suse.com/security/cve/CVE-2021-47219.html * https://www.suse.com/security/cve/CVE-2021-47291.html * https://www.suse.com/security/cve/CVE-2021-47506.html * https://www.suse.com/security/cve/CVE-2021-47520.html * https://www.suse.com/security/cve/CVE-2021-47580.html * https://www.suse.com/security/cve/CVE-2021-47598.html * https://www.suse.com/security/cve/CVE-2021-47600.html * https://www.suse.com/security/cve/CVE-2022-48792.html * https://www.suse.com/security/cve/CVE-2022-48821.html * https://www.suse.com/security/cve/CVE-2022-48822.html * https://www.suse.com/security/cve/CVE-2023-52686.html * https://www.suse.com/security/cve/CVE-2023-52885.html * https://www.suse.com/security/cve/CVE-2024-26583.html * https://www.suse.com/security/cve/CVE-2024-26584.html * https://www.suse.com/security/cve/CVE-2024-26585.html * https://www.suse.com/security/cve/CVE-2024-26800.html * https://www.suse.com/security/cve/CVE-2024-36974.html * https://www.suse.com/security/cve/CVE-2024-38559.html * https://www.suse.com/security/cve/CVE-2024-39494.html * https://www.suse.com/security/cve/CVE-2024-40937.html * https://www.suse.com/security/cve/CVE-2024-40956.html * https://www.suse.com/security/cve/CVE-2024-41011.html * https://www.suse.com/security/cve/CVE-2024-41059.html * https://www.suse.com/security/cve/CVE-2024-41069.html * https://www.suse.com/security/cve/CVE-2024-41090.html * https://www.suse.com/security/cve/CVE-2024-42145.html * https://bugzilla.suse.com/show_bug.cgi?id=1065729 * https://bugzilla.suse.com/show_bug.cgi?id=1179610 * https://bugzilla.suse.com/show_bug.cgi?id=1186463 * https://bugzilla.suse.com/show_bug.cgi?id=1216834 * https://bugzilla.suse.com/show_bug.cgi?id=1218820 * https://bugzilla.suse.com/show_bug.cgi?id=1220185 * https://bugzilla.suse.com/show_bug.cgi?id=1220186 * https://bugzilla.suse.com/show_bug.cgi?id=1220187 * https://bugzilla.suse.com/show_bug.cgi?id=1221539 * https://bugzilla.suse.com/show_bug.cgi?id=1222728 * https://bugzilla.suse.com/show_bug.cgi?id=1222824 * https://bugzilla.suse.com/show_bug.cgi?id=1223863 * https://bugzilla.suse.com/show_bug.cgi?id=1224918 * https://bugzilla.suse.com/show_bug.cgi?id=1225404 * https://bugzilla.suse.com/show_bug.cgi?id=1225431 * https://bugzilla.suse.com/show_bug.cgi?id=1226519 * https://bugzilla.suse.com/show_bug.cgi?id=1226550 * https://bugzilla.suse.com/show_bug.cgi?id=1226574 * https://bugzilla.suse.com/show_bug.cgi?id=1226575 * https://bugzilla.suse.com/show_bug.cgi?id=1226662 * https://bugzilla.suse.com/show_bug.cgi?id=1226666 * https://bugzilla.suse.com/show_bug.cgi?id=1226785 * https://bugzilla.suse.com/show_bug.cgi?id=1227213 * https://bugzilla.suse.com/show_bug.cgi?id=1227362 * https://bugzilla.suse.com/show_bug.cgi?id=1227487 * https://bugzilla.suse.com/show_bug.cgi?id=1227716 * https://bugzilla.suse.com/show_bug.cgi?id=1227750 * https://bugzilla.suse.com/show_bug.cgi?id=1227810 * https://bugzilla.suse.com/show_bug.cgi?id=1227836 * https://bugzilla.suse.com/show_bug.cgi?id=1227976 * https://bugzilla.suse.com/show_bug.cgi?id=1228013 * https://bugzilla.suse.com/show_bug.cgi?id=1228040 * https://bugzilla.suse.com/show_bug.cgi?id=1228114 * https://bugzilla.suse.com/show_bug.cgi?id=1228328 * https://bugzilla.suse.com/show_bug.cgi?id=1228561 * https://bugzilla.suse.com/show_bug.cgi?id=1228644 * https://bugzilla.suse.com/show_bug.cgi?id=1228743 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Fri Aug 16 16:34:51 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Fri, 16 Aug 2024 16:34:51 -0000 Subject: SUSE-SU-2024:2947-1: important: Security update for the Linux Kernel Message-ID: <172382609169.15335.14654850194356370190@smelt2.prg2.suse.org> # Security update for the Linux Kernel Announcement ID: SUSE-SU-2024:2947-1 Rating: important References: * bsc#1082555 * bsc#1193454 * bsc#1193554 * bsc#1193787 * bsc#1194324 * bsc#1194869 * bsc#1195357 * bsc#1195668 * bsc#1195927 * bsc#1195957 * bsc#1196018 * bsc#1196823 * bsc#1197146 * bsc#1197246 * bsc#1197762 * bsc#1202346 * bsc#1202686 * bsc#1208783 * bsc#1209636 * bsc#1213123 * bsc#1215492 * bsc#1215587 * bsc#1216834 * bsc#1219832 * bsc#1220138 * bsc#1220185 * bsc#1220186 * bsc#1220187 * bsc#1220869 * bsc#1220876 * bsc#1220942 * bsc#1220952 * bsc#1221010 * bsc#1221044 * bsc#1221647 * bsc#1221654 * bsc#1221656 * bsc#1221659 * bsc#1221777 * bsc#1222011 * bsc#1222323 * bsc#1222326 * bsc#1222328 * bsc#1222625 * bsc#1222702 * bsc#1222728 * bsc#1222799 * bsc#1222809 * bsc#1222810 * bsc#1223021 * bsc#1223180 * bsc#1223635 * bsc#1223652 * bsc#1223675 * bsc#1223778 * bsc#1223806 * bsc#1223813 * bsc#1223815 * bsc#1223836 * bsc#1223863 * bsc#1224414 * bsc#1224499 * bsc#1224500 * bsc#1224512 * bsc#1224516 * bsc#1224517 * bsc#1224545 * bsc#1224548 * bsc#1224557 * bsc#1224572 * bsc#1224573 * bsc#1224585 * bsc#1224604 * bsc#1224636 * bsc#1224641 * bsc#1224683 * bsc#1224694 * bsc#1224700 * bsc#1224743 * bsc#1225088 * bsc#1225272 * bsc#1225301 * bsc#1225475 * bsc#1225489 * bsc#1225504 * bsc#1225505 * bsc#1225564 * bsc#1225573 * bsc#1225581 * bsc#1225586 * bsc#1225711 * bsc#1225717 * bsc#1225719 * bsc#1225744 * bsc#1225745 * bsc#1225746 * bsc#1225752 * bsc#1225753 * bsc#1225757 * bsc#1225767 * bsc#1225810 * bsc#1225815 * bsc#1225820 * bsc#1225829 * bsc#1225835 * bsc#1225838 * bsc#1225839 * bsc#1225843 * bsc#1225847 * bsc#1225851 * bsc#1225856 * bsc#1225895 * bsc#1225898 * bsc#1225903 * bsc#1226202 * bsc#1226502 * bsc#1226519 * bsc#1226551 * bsc#1226555 * bsc#1226565 * bsc#1226568 * bsc#1226570 * bsc#1226571 * bsc#1226574 * bsc#1226588 * bsc#1226607 * bsc#1226650 * bsc#1226698 * bsc#1226713 * bsc#1226716 * bsc#1226750 * bsc#1226757 * bsc#1226758 * bsc#1226775 * bsc#1226783 * bsc#1226785 * bsc#1226834 * bsc#1226837 * bsc#1226911 * bsc#1226990 * bsc#1226993 * bsc#1227090 * bsc#1227121 * bsc#1227157 * bsc#1227162 * bsc#1227362 * bsc#1227383 * bsc#1227432 * bsc#1227435 * bsc#1227447 * bsc#1227487 * bsc#1227549 * bsc#1227573 * bsc#1227618 * bsc#1227620 * bsc#1227626 * bsc#1227635 * bsc#1227661 * bsc#1227716 * bsc#1227722 * bsc#1227724 * bsc#1227725 * bsc#1227728 * bsc#1227729 * bsc#1227730 * bsc#1227732 * bsc#1227733 * bsc#1227750 * bsc#1227754 * bsc#1227755 * bsc#1227760 * bsc#1227762 * bsc#1227763 * bsc#1227764 * bsc#1227766 * bsc#1227770 * bsc#1227771 * bsc#1227772 * bsc#1227774 * bsc#1227779 * bsc#1227780 * bsc#1227783 * bsc#1227786 * bsc#1227787 * bsc#1227790 * bsc#1227792 * bsc#1227796 * bsc#1227797 * bsc#1227798 * bsc#1227800 * bsc#1227802 * bsc#1227806 * bsc#1227808 * bsc#1227810 * bsc#1227812 * bsc#1227813 * bsc#1227814 * bsc#1227816 * bsc#1227820 * bsc#1227823 * bsc#1227824 * bsc#1227828 * bsc#1227829 * bsc#1227836 * bsc#1227846 * bsc#1227849 * bsc#1227851 * bsc#1227862 * bsc#1227864 * bsc#1227865 * bsc#1227866 * bsc#1227870 * bsc#1227884 * bsc#1227886 * bsc#1227891 * bsc#1227893 * bsc#1227899 * bsc#1227900 * bsc#1227910 * bsc#1227913 * bsc#1227917 * bsc#1227919 * bsc#1227920 * bsc#1227921 * bsc#1227922 * bsc#1227923 * bsc#1227924 * bsc#1227925 * bsc#1227927 * bsc#1227928 * bsc#1227931 * bsc#1227932 * bsc#1227933 * bsc#1227935 * bsc#1227936 * bsc#1227938 * bsc#1227941 * bsc#1227942 * bsc#1227944 * bsc#1227945 * bsc#1227947 * bsc#1227948 * bsc#1227949 * bsc#1227950 * bsc#1227952 * bsc#1227953 * bsc#1227954 * bsc#1227956 * bsc#1227957 * bsc#1227963 * bsc#1227964 * bsc#1227965 * bsc#1227968 * bsc#1227969 * bsc#1227970 * bsc#1227971 * bsc#1227972 * bsc#1227975 * bsc#1227976 * bsc#1227981 * bsc#1227982 * bsc#1227985 * bsc#1227986 * bsc#1227987 * bsc#1227988 * bsc#1227989 * bsc#1227990 * bsc#1227991 * bsc#1227992 * bsc#1227993 * bsc#1227995 * bsc#1227996 * bsc#1227997 * bsc#1228000 * bsc#1228002 * bsc#1228003 * bsc#1228004 * bsc#1228005 * bsc#1228006 * bsc#1228007 * bsc#1228008 * bsc#1228009 * bsc#1228010 * bsc#1228011 * bsc#1228013 * bsc#1228014 * bsc#1228015 * bsc#1228019 * bsc#1228020 * bsc#1228025 * bsc#1228028 * bsc#1228035 * bsc#1228037 * bsc#1228038 * bsc#1228039 * bsc#1228040 * bsc#1228045 * bsc#1228054 * bsc#1228055 * bsc#1228056 * bsc#1228060 * bsc#1228061 * bsc#1228062 * bsc#1228063 * bsc#1228064 * bsc#1228066 * bsc#1228067 * bsc#1228068 * bsc#1228071 * bsc#1228079 * bsc#1228090 * bsc#1228114 * bsc#1228140 * bsc#1228190 * bsc#1228191 * bsc#1228195 * bsc#1228202 * bsc#1228226 * bsc#1228235 * bsc#1228237 * bsc#1228247 * bsc#1228327 * bsc#1228328 * bsc#1228330 * bsc#1228403 * bsc#1228405 * bsc#1228408 * bsc#1228409 * bsc#1228410 * bsc#1228418 * bsc#1228440 * bsc#1228459 * bsc#1228462 * bsc#1228470 * bsc#1228518 * bsc#1228520 * bsc#1228530 * bsc#1228561 * bsc#1228565 * bsc#1228580 * bsc#1228581 * bsc#1228591 * bsc#1228599 * bsc#1228617 * bsc#1228625 * bsc#1228626 * bsc#1228633 * bsc#1228640 * bsc#1228644 * bsc#1228649 * bsc#1228655 * bsc#1228665 * bsc#1228672 * bsc#1228680 * bsc#1228705 * bsc#1228723 * bsc#1228743 * bsc#1228756 * bsc#1228801 * bsc#1228850 * bsc#1228857 * jsc#PED-8582 * jsc#PED-8690 Cross-References: * CVE-2021-47086 * CVE-2021-47103 * CVE-2021-47186 * CVE-2021-47402 * CVE-2021-47546 * CVE-2021-47547 * CVE-2021-47588 * CVE-2021-47590 * CVE-2021-47591 * CVE-2021-47593 * CVE-2021-47598 * CVE-2021-47599 * CVE-2021-47606 * CVE-2021-47622 * CVE-2021-47623 * CVE-2021-47624 * CVE-2022-48713 * CVE-2022-48730 * CVE-2022-48732 * CVE-2022-48749 * CVE-2022-48756 * CVE-2022-48773 * CVE-2022-48774 * CVE-2022-48775 * CVE-2022-48776 * CVE-2022-48777 * CVE-2022-48778 * CVE-2022-48780 * CVE-2022-48783 * CVE-2022-48784 * CVE-2022-48785 * CVE-2022-48786 * CVE-2022-48787 * CVE-2022-48788 * CVE-2022-48789 * CVE-2022-48790 * CVE-2022-48791 * CVE-2022-48792 * CVE-2022-48793 * CVE-2022-48794 * CVE-2022-48796 * CVE-2022-48797 * CVE-2022-48798 * CVE-2022-48799 * CVE-2022-48800 * CVE-2022-48801 * CVE-2022-48802 * CVE-2022-48803 * CVE-2022-48804 * CVE-2022-48805 * CVE-2022-48806 * CVE-2022-48807 * CVE-2022-48809 * CVE-2022-48810 * CVE-2022-48811 * CVE-2022-48812 * CVE-2022-48813 * CVE-2022-48814 * CVE-2022-48815 * CVE-2022-48816 * CVE-2022-48817 * CVE-2022-48818 * CVE-2022-48820 * CVE-2022-48821 * CVE-2022-48822 * CVE-2022-48823 * CVE-2022-48824 * CVE-2022-48825 * CVE-2022-48826 * CVE-2022-48827 * CVE-2022-48828 * CVE-2022-48829 * CVE-2022-48830 * CVE-2022-48831 * CVE-2022-48834 * CVE-2022-48835 * CVE-2022-48836 * CVE-2022-48837 * CVE-2022-48838 * CVE-2022-48839 * CVE-2022-48840 * CVE-2022-48841 * CVE-2022-48842 * CVE-2022-48843 * CVE-2022-48844 * CVE-2022-48846 * CVE-2022-48847 * CVE-2022-48849 * CVE-2022-48850 * CVE-2022-48851 * CVE-2022-48852 * CVE-2022-48853 * CVE-2022-48855 * CVE-2022-48856 * CVE-2022-48857 * CVE-2022-48858 * CVE-2022-48859 * CVE-2022-48860 * CVE-2022-48861 * CVE-2022-48862 * CVE-2022-48863 * CVE-2022-48864 * CVE-2022-48866 * CVE-2023-1582 * CVE-2023-37453 * CVE-2023-52435 * CVE-2023-52573 * CVE-2023-52580 * CVE-2023-52591 * CVE-2023-52735 * CVE-2023-52751 * CVE-2023-52762 * CVE-2023-52775 * CVE-2023-52812 * CVE-2023-52857 * CVE-2023-52863 * CVE-2023-52885 * CVE-2023-52886 * CVE-2024-25741 * CVE-2024-26583 * CVE-2024-26584 * CVE-2024-26585 * CVE-2024-26615 * CVE-2024-26633 * CVE-2024-26635 * CVE-2024-26636 * CVE-2024-26641 * CVE-2024-26661 * CVE-2024-26663 * CVE-2024-26665 * CVE-2024-26800 * CVE-2024-26802 * CVE-2024-26813 * CVE-2024-26814 * CVE-2024-26863 * CVE-2024-26889 * CVE-2024-26920 * CVE-2024-26935 * CVE-2024-269355 * CVE-2024-26961 * CVE-2024-26976 * CVE-2024-27015 * CVE-2024-27019 * CVE-2024-27020 * CVE-2024-27025 * CVE-2024-27065 * CVE-2024-27402 * CVE-2024-27437 * CVE-2024-35805 * CVE-2024-35819 * CVE-2024-35837 * CVE-2024-35853 * CVE-2024-35854 * CVE-2024-35855 * CVE-2024-35889 * CVE-2024-35890 * CVE-2024-35893 * CVE-2024-35899 * CVE-2024-35934 * CVE-2024-35949 * CVE-2024-35961 * CVE-2024-35979 * CVE-2024-35995 * CVE-2024-36000 * CVE-2024-36004 * CVE-2024-36288 * CVE-2024-36889 * CVE-2024-36901 * CVE-2024-36902 * CVE-2024-36909 * CVE-2024-36910 * CVE-2024-36911 * CVE-2024-36912 * CVE-2024-36913 * CVE-2024-36914 * CVE-2024-36919 * CVE-2024-36923 * CVE-2024-36924 * CVE-2024-36926 * CVE-2024-36939 * CVE-2024-36941 * CVE-2024-36942 * CVE-2024-36944 * CVE-2024-36946 * CVE-2024-36947 * CVE-2024-36950 * CVE-2024-36952 * CVE-2024-36955 * CVE-2024-36959 * CVE-2024-36974 * CVE-2024-38548 * CVE-2024-38555 * CVE-2024-38558 * CVE-2024-38559 * CVE-2024-38570 * CVE-2024-38586 * CVE-2024-38588 * CVE-2024-38598 * CVE-2024-38628 * CVE-2024-39276 * CVE-2024-39371 * CVE-2024-39463 * CVE-2024-39472 * CVE-2024-39475 * CVE-2024-39482 * CVE-2024-39487 * CVE-2024-39488 * CVE-2024-39490 * CVE-2024-39493 * CVE-2024-39494 * CVE-2024-39497 * CVE-2024-39499 * CVE-2024-39500 * CVE-2024-39501 * CVE-2024-39502 * CVE-2024-39505 * CVE-2024-39506 * CVE-2024-39507 * CVE-2024-39508 * CVE-2024-39509 * CVE-2024-40900 * CVE-2024-40901 * CVE-2024-40902 * CVE-2024-40903 * CVE-2024-40904 * CVE-2024-40906 * CVE-2024-40908 * CVE-2024-40909 * CVE-2024-40911 * CVE-2024-40912 * CVE-2024-40916 * CVE-2024-40919 * CVE-2024-40923 * CVE-2024-40924 * CVE-2024-40927 * CVE-2024-40929 * CVE-2024-40931 * CVE-2024-40932 * CVE-2024-40934 * CVE-2024-40935 * CVE-2024-40937 * CVE-2024-40940 * CVE-2024-40941 * CVE-2024-40942 * CVE-2024-40943 * CVE-2024-40945 * CVE-2024-40953 * CVE-2024-40954 * CVE-2024-40956 * CVE-2024-40958 * CVE-2024-40959 * CVE-2024-40960 * CVE-2024-40961 * CVE-2024-40966 * CVE-2024-40967 * CVE-2024-40970 * CVE-2024-40972 * CVE-2024-40976 * CVE-2024-40977 * CVE-2024-40981 * CVE-2024-40982 * CVE-2024-40984 * CVE-2024-40987 * CVE-2024-40988 * CVE-2024-40989 * CVE-2024-40990 * CVE-2024-40994 * CVE-2024-40998 * CVE-2024-40999 * CVE-2024-41002 * CVE-2024-41004 * CVE-2024-41006 * CVE-2024-41009 * CVE-2024-41011 * CVE-2024-41012 * CVE-2024-41013 * CVE-2024-41014 * CVE-2024-41015 * CVE-2024-41016 * CVE-2024-41017 * CVE-2024-41040 * CVE-2024-41041 * CVE-2024-41044 * CVE-2024-41048 * CVE-2024-41057 * CVE-2024-41058 * CVE-2024-41059 * CVE-2024-41063 * CVE-2024-41064 * CVE-2024-41066 * CVE-2024-41069 * CVE-2024-41070 * CVE-2024-41071 * CVE-2024-41072 * CVE-2024-41076 * CVE-2024-41078 * CVE-2024-41081 * CVE-2024-41087 * CVE-2024-41090 * CVE-2024-41091 * CVE-2024-42070 * CVE-2024-42079 * CVE-2024-42093 * CVE-2024-42096 * CVE-2024-42105 * CVE-2024-42122 * CVE-2024-42124 * CVE-2024-42145 * CVE-2024-42161 * CVE-2024-42224 * CVE-2024-42230 CVSS scores: * CVE-2021-47086 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47103 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47186 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47402 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2021-47546 ( SUSE ): 2.3 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:L * CVE-2021-47546 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47547 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L * CVE-2021-47588 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47590 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47591 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47593 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47598 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2021-47599 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47606 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47622 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47623 ( SUSE ): 0.0 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N * CVE-2021-47624 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2022-48713 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48730 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2022-48732 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48749 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48756 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48773 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48774 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2022-48775 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2022-48776 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2022-48777 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48778 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2022-48780 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48783 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48784 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48785 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48786 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2022-48787 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48787 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48788 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2022-48788 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48789 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48789 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48790 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48790 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48791 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48791 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48792 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48792 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48793 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48793 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48794 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2022-48796 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48796 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48797 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N * CVE-2022-48798 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48799 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48800 ( SUSE ): 2.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2022-48801 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48802 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48803 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2022-48804 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2022-48805 ( SUSE ): 6.6 CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48806 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N * CVE-2022-48807 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48809 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48809 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48810 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48811 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48812 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48813 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48814 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48815 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48816 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48817 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48818 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48820 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48821 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48822 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48822 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48823 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2022-48824 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48824 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48825 ( SUSE ): 0.0 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N * CVE-2022-48826 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48827 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48828 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N * CVE-2022-48829 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N * CVE-2022-48830 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48831 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48834 ( SUSE ): 0.0 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N * CVE-2022-48834 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48835 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48835 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48836 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48836 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48837 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48837 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48838 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48838 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48839 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48839 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48840 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48840 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48841 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48841 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48842 ( SUSE ): 4.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48842 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48843 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48843 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48844 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2022-48844 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48846 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48846 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48847 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48847 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48849 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48849 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N * CVE-2022-48850 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48850 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48851 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48851 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48852 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48852 ( NVD ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2022-48853 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48853 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2022-48855 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48855 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2022-48856 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48856 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48857 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48857 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48858 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48858 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48859 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48859 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48860 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48860 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48861 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48861 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48862 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48862 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48863 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L * CVE-2022-48863 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48864 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48864 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48866 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2022-48866 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2023-1582 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-1582 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-37453 ( SUSE ): 4.6 CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2023-37453 ( NVD ): 4.6 CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52435 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52435 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52573 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52580 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52591 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2023-52735 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52751 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52762 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52775 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N * CVE-2023-52812 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2023-52857 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52863 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52885 ( SUSE ): 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2023-52886 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-25741 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:L * CVE-2024-26583 ( SUSE ): 5.1 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26583 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26584 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26584 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26585 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26585 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26615 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26633 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26635 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2024-26636 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26641 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2024-26661 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26663 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26665 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26800 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26802 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26813 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26814 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26863 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26889 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26920 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26935 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-26961 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26976 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27015 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27015 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27019 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27019 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2024-27020 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27020 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-27025 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2024-27065 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27402 ( SUSE ): 5.8 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2024-27437 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35805 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35819 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35837 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35853 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35854 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35855 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35889 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35890 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35893 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35899 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35934 ( SUSE ): 2.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-35949 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35961 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35979 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35995 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2024-36000 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36004 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36288 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36288 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36889 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N * CVE-2024-36901 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36901 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36902 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36902 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36909 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2024-36910 ( SUSE ): 6.0 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N * CVE-2024-36911 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2024-36912 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2024-36913 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2024-36914 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36919 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36923 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2024-36924 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36926 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36926 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36939 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36941 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36942 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L * CVE-2024-36944 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36946 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N * CVE-2024-36947 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2024-36950 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36952 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36955 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-36959 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36974 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-38548 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38555 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38558 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L * CVE-2024-38559 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2024-38570 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2024-38570 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-38586 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38588 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38598 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38628 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39276 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39371 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39463 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-39472 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L * CVE-2024-39472 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39475 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39475 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39482 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L * CVE-2024-39482 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39487 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2024-39488 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39490 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-39493 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2024-39493 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39494 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-39494 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-39497 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39499 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2024-39500 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39501 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39502 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2024-39505 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2024-39506 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39507 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39508 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2024-39509 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40900 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2024-40901 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L * CVE-2024-40902 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2024-40902 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-40903 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2024-40903 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-40904 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40906 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40908 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40909 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-40911 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40912 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40916 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40919 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40923 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40924 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40927 ( SUSE ): 6.6 CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-40929 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40931 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2024-40932 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L * CVE-2024-40934 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L * CVE-2024-40935 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40937 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-40940 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40941 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40942 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40943 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40945 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40953 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40954 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-40956 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-40958 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40959 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40960 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40961 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40966 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40967 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40970 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40972 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40976 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40977 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40981 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-40982 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40984 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40987 ( SUSE ): 5.0 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H * CVE-2024-40988 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40989 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-40990 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40994 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-40998 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40999 ( SUSE ): 3.6 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L * CVE-2024-41002 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L * CVE-2024-41004 ( SUSE ): 0.0 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:N * CVE-2024-41006 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L * CVE-2024-41009 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-41009 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-41011 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-41012 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2024-41013 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2024-41014 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-41015 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N * CVE-2024-41016 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N * CVE-2024-41017 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-41040 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2024-41041 ( SUSE ): 0.0 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N * CVE-2024-41044 ( SUSE ): 6.3 CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:L * CVE-2024-41048 ( SUSE ): 6.5 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-41057 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2024-41057 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-41058 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2024-41058 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2024-41059 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2024-41059 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-41063 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2024-41063 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-41064 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2024-41064 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-41066 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2024-41066 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2024-41069 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2024-41069 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-41070 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2024-41071 ( SUSE ): 4.3 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N * CVE-2024-41072 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N * CVE-2024-41076 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-41078 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-41081 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-41087 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-41087 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-41090 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H * CVE-2024-41091 ( SUSE ): 6.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H * CVE-2024-42070 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2024-42070 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-42079 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-42079 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-42093 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L * CVE-2024-42096 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2024-42096 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2024-42105 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2024-42105 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2024-42122 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-42124 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-42145 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2024-42145 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-42161 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2024-42161 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2024-42161 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-42224 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-42224 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-42230 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2024-42230 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-42230 ( NVD ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H Affected Products: * openSUSE Leap 15.5 * Public Cloud Module 15-SP5 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 An update that solves 311 vulnerabilities, contains two features and has 50 security fixes can now be installed. ## Description: The SUSE Linux Enterprise 15 SP5 Azure kernel was updated to receive various security bugfixes. The following security bugs were fixed: * CVE-2021-47086: phonet/pep: refuse to enable an unbound pipe (bsc#1220952). * CVE-2021-47103: net: sock: preserve kabi for sock (bsc#1221010). * CVE-2021-47186: ipc: check for null after calling kmemdup (bsc#1222702). * CVE-2021-47546: Kabi fix for ipv6: fix memory leak in fib6_rule_suppress (bsc#1225504). * CVE-2021-47547: net: tulip: de4x5: fix the problem that the array 'lp->phy' may be out of bound (bsc#1225505). * CVE-2021-47588: sit: do not call ipip6_dev_free() from sit_init_net() (bsc#1226568). * CVE-2021-47590: mptcp: fix deadlock in __mptcp_push_pending() (bsc#1226565). * CVE-2021-47591: mptcp: remove tcp ulp setsockopt support (bsc#1226570). * CVE-2021-47593: mptcp: clear 'kern' flag from fallback sockets (bsc#1226551). * CVE-2021-47598: sch_cake: do not call cake_destroy() from cake_init() (bsc#1226574). * CVE-2021-47599: btrfs: use latest_dev in btrfs_show_devname (bsc#1226571) * CVE-2021-47606: net: netlink: af_netlink: Prevent empty skb by adding a check on len (bsc#1226555). * CVE-2021-47623: powerpc/fixmap: Fix VM debug warning on unmap (bsc#1227919). * CVE-2022-48785: ipv6: mcast: use rcu-safe version of ipv6_get_lladdr() (bsc#1227927) * CVE-2022-48810: ipmr,ip6mr: acquire RTNL before calling ip[6]mr_free_table() on failure path (bsc#1227936). * CVE-2022-48850: net-sysfs: add check for netdevice being present to speed_show (bsc#1228071) * CVE-2022-48855: sctp: fix kernel-infoleak for SCTP sockets (bsc#1228003). * CVE-2023-52435: net: prevent mss overflow in skb_segment() (bsc#1220138). * CVE-2023-52573: net: rds: Fix possible NULL-pointer dereference (bsc#1220869) * CVE-2023-52580: net/core: Fix ETH_P_1588 flow dissector (bsc#1220876). * CVE-2023-52751: smb: client: fix use-after-free in smb2_query_info_compound() (bsc#1225489). * CVE-2023-52775: net/smc: avoid data corruption caused by decline (bsc#1225088). * CVE-2023-52812: drm/amd: check num of link levels when update pcie param (bsc#1225564). * CVE-2023-52857: drm/mediatek: Fix coverity issue with unintentional integer overflow (bsc#1225581). * CVE-2023-52863: hwmon: (axi-fan-control) Fix possible NULL pointer dereference (bsc#1225586). * CVE-2024-26585: Fixed race between tx work scheduling and socket close (bsc#1220187). * CVE-2024-26615: net/smc: fix illegal rmb_desc access in SMC-D connection dump (bsc#1220942). * CVE-2024-26633: ip6_tunnel: fix NEXTHDR_FRAGMENT handling in ip6_tnl_parse_tlv_enc_lim() (bsc#1221647). * CVE-2024-26635: llc: Drop support for ETH_P_TR_802_2 (bsc#1221656). * CVE-2024-26636: llc: make llc_ui_sendmsg() more robust against bonding changes (bsc#1221659). * CVE-2024-26641: ip6_tunnel: make sure to pull inner header in __ip6_tnl_rcv() (bsc#1221654). * CVE-2024-26661: drm/amd/display: Add NULL test for 'timing generator' in (bsc#1222323) * CVE-2024-26663: tipc: Check the bearer type before calling tipc_udp_nl_bearer_add() (bsc#1222326). * CVE-2024-26665: tunnels: fix out of bounds access when building IPv6 PMTU error (bsc#1222328). * CVE-2024-26802: stmmac: Clear variable when destroying workqueue (bsc#1222799). * CVE-2024-26863: hsr: Fix uninit-value access in hsr_get_node() (bsc#1223021). * CVE-2024-26961: mac802154: fix llsec key resources release in mac802154_llsec_key_del (bsc#1223652). * CVE-2024-27015: netfilter: flowtable: incorrect pppoe tuple (bsc#1223806). * CVE-2024-27019: netfilter: nf_tables: Fix potential data-race in __nft_obj_type_get() (bsc#1223813) * CVE-2024-27020: netfilter: nf_tables: Fix potential data-race in __nft_expr_type_get() (bsc#1223815) * CVE-2024-27025: nbd: null check for nla_nest_start (bsc#1223778) * CVE-2024-27065: netfilter: nf_tables: do not compare internal table flags on updates (bsc#1223836). * CVE-2024-27402: phonet/pep: fix racy skb_queue_empty() use (bsc#1224414). * CVE-2024-27437: vfio/pci: Disable auto-enable of exclusive INTx IRQ (bsc#1222625). * CVE-2024-35805: dm snapshot: fix lockup in dm_exception_table_exit (bsc#1224743). * CVE-2024-35819: soc: fsl: qbman: Use raw spinlock for cgr_lock (bsc#1224683). * CVE-2024-35837: net: mvpp2: clear BM pool before initialization (bsc#1224500). * CVE-2024-35853: mlxsw: spectrum_acl_tcam: Fix memory leak during rehash (bsc#1224604). * CVE-2024-35889: idpf: fix kernel panic on unknown packet types (bsc#1224517). * CVE-2024-35890: gro: fix ownership transfer (bsc#1224516). * CVE-2024-35893: net/sched: act_skbmod: prevent kernel-infoleak (bsc#1224512) * CVE-2024-35899: netfilter: nf_tables: flush pending destroy work before exit_net release (bsc#1224499) * CVE-2024-35934: net/smc: reduce rtnl pressure in smc_pnet_create_pnetids_list() (bsc#1224641) * CVE-2024-35949: btrfs: make sure that WRITTEN is set on all metadata blocks (bsc#1224700) * CVE-2024-35961: net/mlx5: Restore mistakenly dropped parts in register devlink flow (bsc#1224585). * CVE-2024-35995: ACPI: CPPC: Fix access width used for PCC registers (bsc#1224557). * CVE-2024-36000: mm/hugetlb: fix missing hugetlb_lock for resv uncharge (bsc#1224548). * CVE-2024-36004: i40e: Do not use WQ_MEM_RECLAIM flag for workqueue (bsc#1224545) * CVE-2024-36901: ipv6: prevent NULL dereference in ip6_output() (bsc#1225711) * CVE-2024-36902: ipv6: fib6_rules: avoid possible NULL dereference in fib6_rule_action() (bsc#1225719). * CVE-2024-36909: Drivers: hv: vmbus: Do not free ring buffers that couldn't be re-encrypted (bsc#1225744). * CVE-2024-36910: uio_hv_generic: Do not free decrypted memory (bsc#1225717). * CVE-2024-36911: hv_netvsc: Do not free decrypted memory (bsc#1225745). * CVE-2024-36912: Drivers: hv: vmbus: Track decrypted status in vmbus_gpadl (bsc#1225752). * CVE-2024-36913: Drivers: hv: vmbus: Leak pages if set_memory_encrypted() fails (bsc#1225753). * CVE-2024-36914: drm/amd/display: Skip on writeback when it's not applicable (bsc#1225757). * CVE-2024-36919: scsi: bnx2fc: Remove spin_lock_bh while releasing resources after upload (bsc#1225767). * CVE-2024-36923: fs/9p: fix uninitialized values during inode evict (bsc#1225815). * CVE-2024-36939: nfs: Handle error of rpc_proc_register() in nfs_net_init() (bsc#1225838). * CVE-2024-36946: phonet: fix rtm_phonet_notify() skb allocation (bsc#1225851). * CVE-2024-36974: net/sched: taprio: always validate TCA_TAPRIO_ATTR_PRIOMAP (bsc#1226519). * CVE-2024-38555: net/mlx5: Discard command completions in internal error (bsc#1226607). * CVE-2024-38558: net: openvswitch: fix overwriting ct original tuple for ICMPv6 (bsc#1226783). * CVE-2024-38570: gfs2: Fix potential glock use-after-free on unmount (bsc#1226775). * CVE-2024-38586: r8169: Fix possible ring buffer corruption on fragmented Tx packets (bsc#1226750). * CVE-2024-38598: md: fix resync softlockup when bitmap size is less than array size (bsc#1226757). * CVE-2024-38628: usb: gadget: u_audio: Fix race condition use of controls after free during gadget unbind (bsc#1226911). * CVE-2024-39276: ext4: fix mb_cache_entry's e_refcnt leak in ext4_xattr_block_cache_find() (bsc#1226993). * CVE-2024-39371: io_uring: check for non-NULL file pointer in io_file_can_poll() (bsc#1226990). * CVE-2024-39463: 9p: add missing locking around taking dentry fid list (bsc#1227090). * CVE-2024-39472: xfs: fix log recovery buffer allocation for the legacy h_size fixup (bsc#1227432). * CVE-2024-39482: bcache: fix variable length array abuse in btree_iter (bsc#1227447). * CVE-2024-39487: bonding: Fix out-of-bounds read in bond_option_arp_ip_targets_set() (bsc#1227573) * CVE-2024-39490: ipv6: sr: fix missing sk_buff release in seg6_input_core (bsc#1227626). * CVE-2024-39493: crypto: qat - Fix ADF_DEV_RESET_SYNC memory leak (bsc#1227620). * CVE-2024-39494: ima: Fix use-after-free on a dentry's dname.name (bsc#1227716). * CVE-2024-39497: drm/shmem-helper: Fix BUG_ON() on mmap(PROT_WRITE, MAP_PRIVATE) (bsc#1227722) * CVE-2024-39502: ionic: fix use after netif_napi_del() (bsc#1227755). * CVE-2024-39506: liquidio: Adjust a NULL pointer handling path in lio_vf_rep_copy_packet (bsc#1227729). * CVE-2024-39507: net: hns3: fix kernel crash problem in concurrent scenario (bsc#1227730). * CVE-2024-39508: io_uring/io-wq: Use set_bit() and test_bit() at worker->flags (bsc#1227732). * CVE-2024-40901: scsi: mpt3sas: Avoid test/set_bit() operating in non- allocated memory (bsc#1227762). * CVE-2024-40906: net/mlx5: Always stop health timer during driver removal (bsc#1227763). * CVE-2024-40908: bpf: Set run context for rawtp test_run callback (bsc#1227783). * CVE-2024-40909: bpf: Fix a potential use-after-free in bpf_link_free() (bsc#1227798). * CVE-2024-40919: bnxt_en: Adjust logging of firmware messages in case of released token in __hwrm_send() (bsc#1227779). * CVE-2024-40923: vmxnet3: disable rx data ring on dma allocation failure (bsc#1227786). * CVE-2024-40931: mptcp: ensure snd_una is properly initialized on connect (bsc#1227780). * CVE-2024-40935: cachefiles: flush all requests after setting CACHEFILES_DEAD (bsc#1227797). * CVE-2024-40937: gve: Clear napi->skb before dev_kfree_skb_any() (bsc#1227836). * CVE-2024-40940: net/mlx5: Fix tainted pointer delete is case of flow rules creation fail (bsc#1227800). * CVE-2024-40943: ocfs2: fix races between hole punching and AIO+DIO (bsc#1227849). * CVE-2024-40953: KVM: Fix a data race on last_boosted_vcpu in kvm_vcpu_on_spin() (bsc#1227806). * CVE-2024-40954: net: do not leave a dangling sk pointer, when socket creation fails (bsc#1227808) * CVE-2024-40958: netns: Make get_net_ns() handle zero refcount net (bsc#1227812). * CVE-2024-40959: xfrm6: check ip6_dst_idev() return value in xfrm6_get_saddr() (bsc#1227884). * CVE-2024-40960: ipv6: prevent possible NULL dereference in rt6_probe() (bsc#1227813). * CVE-2024-40961: ipv6: prevent possible NULL deref in fib6_nh_init() (bsc#1227814). * CVE-2024-40966: kABI: tty: add the option to have a tty reject a new ldisc (bsc#1227886). * CVE-2024-40967: serial: imx: Introduce timeout when waiting on transmitter empty (bsc#1227891). * CVE-2024-40970: Avoid hw_desc array overrun in dw-axi-dmac (bsc#1227899). * CVE-2024-40972: ext4: fold quota accounting into ext4_xattr_inode_lookup_create() (bsc#1227910). * CVE-2024-40977: wifi: mt76: mt7921s: fix potential hung tasks during chip recovery (bsc#1227950). * CVE-2024-40982: ssb: Fix potential NULL pointer dereference in ssb_device_uevent() (bsc#1227865). * CVE-2024-40989: KVM: arm64: Disassociate vcpus from redistributor region on teardown (bsc#1227823). * CVE-2024-40994: ptp: fix integer overflow in max_vclocks_store (bsc#1227829). * CVE-2024-40998: ext4: fix uninitialized ratelimit_state->lock access in __ext4_fill_super() (bsc#1227866). * CVE-2024-40999: net: ena: Add validation for completion descriptors consistency (bsc#1227913). * CVE-2024-41006: netrom: Fix a memory leak in nr_heartbeat_expiry() (bsc#1227862). * CVE-2024-41009: selftests/bpf: Add more ring buffer test coverage (bsc#1228020). * CVE-2024-41012: filelock: Remove locks reliably when fcntl/close race is detected (bsc#1228247). * CVE-2024-41013: xfs: do not walk off the end of a directory data block (bsc#1228405). * CVE-2024-41014: xfs: add bounds checking to xlog_recover_process_data (bsc#1228408). * CVE-2024-41015: ocfs2: add bounds checking to ocfs2_check_dir_entry() (bsc#1228409). * CVE-2024-41016: ocfs2: add bounds checking to ocfs2_xattr_find_entry() (bsc#1228410). * CVE-2024-41017: jfs: do not walk off the end of ealist (bsc#1228403). * CVE-2024-41040: net/sched: Fix UAF when resolving a clash (bsc#1228518) * CVE-2024-41041: udp: Set SOCK_RCU_FREE earlier in udp_lib_get_port() (bsc#1228520) * CVE-2024-41044: ppp: reject claimed-as-LCP but actually malformed packets (bsc#1228530). * CVE-2024-41048: skmsg: Skip zero length skb in sk_msg_recvmsg (bsc#1228565) * CVE-2024-41057: cachefiles: fix slab-use-after-free in cachefiles_withdraw_cookie() (bsc#1228462). * CVE-2024-41058: cachefiles: fix slab-use-after-free in fscache_withdraw_volume() (bsc#1228459). * CVE-2024-41059: hfsplus: fix uninit-value in copy_name (bsc#1228561). * CVE-2024-41063: Bluetooth: hci_core: cancel all works upon hci_unregister_dev() (bsc#1228580) * CVE-2024-41064: powerpc/eeh: avoid possible crash when edev->pdev changes (bsc#1228599). * CVE-2024-41066: ibmvnic: Add tx check to prevent skb leak (bsc#1228640). * CVE-2024-41069: ASoC: topology: Fix route memory corruption (bsc#1228644). * CVE-2024-41070: KVM: PPC: Book3S HV: Prevent UAF in kvm_spapr_tce_attach_iommu_group() (bsc#1228581). * CVE-2024-41071: wifi: mac80211: Avoid address calculations via out of bounds array indexing (bsc#1228625). * CVE-2024-41078: btrfs: qgroup: fix quota root leak after quota disable failure (bsc#1228655). * CVE-2024-41081: ila: block BH in ila_output() (bsc#1228617) * CVE-2024-41090: tap: add missing verification for short frame (bsc#1228328). * CVE-2024-41091: tun: add missing verification for short frame (bsc#1228327). * CVE-2024-42070: netfilter: nf_tables: fully validate NFT_DATA_VALUE on store to data registers (bsc#1228470) * CVE-2024-42079: gfs2: Fix NULL pointer dereference in gfs2_log_flush (bsc#1228672). * CVE-2024-42093: net/dpaa2: Avoid explicit cpumask var allocation on stack (bsc#1228680). * CVE-2024-42096: x86: stop playing stack games in profile_pc() (bsc#1228633). * CVE-2024-42122: drm/amd/display: Add NULL pointer check for kzalloc (bsc#1228591) * CVE-2024-42124: scsi: qedf: Make qedf_execute_tmf() non-preemptible (bsc#1228705) * CVE-2024-42145: IB/core: Implement a limit on UMAD receive List (bsc#1228743) * CVE-2024-42161: bpf: Avoid uninitialized value in BPF_CORE_READ_BITFIELD (bsc#1228756). * CVE-2024-42224: net: dsa: mv88e6xxx: Correct check for empty list (bsc#1228723) * CVE-2024-42230: powerpc/pseries: Fix scv instruction crash with kexec (bsc#1194869). The following non-security bugs were fixed: * ACPI: EC: Abort address space access upon error (stable-fixes). * ACPI: EC: Avoid returning AE_OK on errors in address space handler (stable- fixes). * ACPI: processor_idle: Fix invalid comparison with insertion sort for latency (git-fixes). * ACPI: video: Add backlight=native quirk for Lenovo Slim 7 16ARH7 (stable- fixes). * ACPI: x86: Force StorageD3Enable on more products (stable-fixes). * ACPI: x86: utils: Add Picasso to the list for forcing StorageD3Enable (stable-fixes). * ALSA: dmaengine_pcm: terminate dmaengine before synchronize (stable-fixes). * ALSA: dmaengine: Synchronize dma channel after drop() (stable-fixes). * ALSA: emux: improve patch ioctl data validation (stable-fixes). * ALSA: hda: conexant: Fix headset auto detect fail in the polling mode (git- fixes). * ALSA: hda/realtek: Add more codec ID to no shutup pins list (stable-fixes). * ALSA: hda/realtek: add quirk for Clevo V5[46]0TU (stable-fixes). * ALSA: hda/realtek: Enable headset mic of JP-IK LEAP W502 with ALC897 (stable-fixes). * ALSA: hda/realtek: Enable headset mic on Positivo SU C1400 (stable-fixes). * ALSA: hda/realtek: Enable Mute LED on HP 250 G7 (stable-fixes). * ALSA: hda/realtek: fix mute/micmute LEDs do not work for EliteBook 645/665 G11 (stable-fixes). * ALSA: hda/realtek: Fix the speaker output on Samsung Galaxy Book Pro 360 (stable-fixes). * ALSA: hda/realtek: Limit mic boost on VAIO PRO PX (stable-fixes). * ALSA: hda/relatek: Enable Mute LED on HP Laptop 15-gw0xxx (stable-fixes). * ALSA: pcm_dmaengine: Do not synchronize DMA channel when DMA is paused (git- fixes). * ALSA: usb-audio: Add a quirk for Sonix HD USB Camera (stable-fixes). * ALSA: usb-audio: Correct surround channels in UAC1 channel map (git-fixes). * ALSA: usb-audio: Fix microphone sound on HD webcam (stable-fixes). * ALSA: usb-audio: Move HD Webcam quirk to the right place (git-fixes). * arm64: dts: allwinner: Pine H64: correctly remove reg_gmac_3v3 (git-fixes) * arm64: dts: hi3798cv200: fix the size of GICR (git-fixes) * arm64: dts: imx8qm-mek: fix gpio number for reg_usdhc2_vmmc (git-fixes) * arm64: dts: microchip: sparx5: fix mdio reg (git-fixes) * arm64: dts: rockchip: Add enable-strobe-pulldown to emmc phy on ROCK (git- fixes) * arm64: dts: rockchip: Add sound-dai-cells for RK3368 (git-fixes) * arm64: dts: rockchip: fix PMIC interrupt pin on ROCK Pi E (git-fixes) * arm64/io: add constant-argument check (bsc#1226502 git-fixes) * arm64/io: Provide a WC friendly __iowriteXX_copy() (bsc#1226502) * arm64: tegra: Correct Tegra132 I2C alias (git-fixes) * ASoC: amd: Adjust error handling in case of absent codec device (git-fixes). * ASoC: max98088: Check for clk_prepare_enable() error (git-fixes). * ASoC: ti: davinci-mcasp: Set min period size using FIFO config (stable- fixes). * ASoC: ti: omap-hdmi: Fix too long driver name (stable-fixes). * batman-adv: bypass empty buckets in batadv_purge_orig_ref() (stable-fixes). * blk-cgroup: dropping parent refcount after pd_free_fn() is done (bsc#1224573). * block: do not add partitions if GD_SUPPRESS_PART_SCAN is set (bsc#1227162). * block, loop: support partitions without scanning (bsc#1227162). * Bluetooth: ath3k: Fix multiple issues reported by checkpatch.pl (stable- fixes). * Bluetooth: btqca: use le32_to_cpu for ver.soc_id (stable-fixes). * Bluetooth: hci_core: cancel all works upon hci_unregister_dev() (stable- fixes). * Bluetooth: hci_qca: mark OF related data as maybe unused (stable-fixes). * Bluetooth: hci_sync: Fix suspending with wrong filter policy (git-fixes). * Bluetooth: qca: Fix BT enable failure again for QCA6390 after warm reboot (git-fixes). * bnxt_re: Fix imm_data endianness (git-fixes) * bpf: aggressively forget precise markings during state checkpointing (bsc#1225903). * bpf: allow precision tracking for programs with subprogs (bsc#1225903). * bpf: check bpf_func_state->callback_depth when pruning states (bsc#1225903). * bpf: clean up visit_insn()'s instruction processing (bsc#1225903). * bpf: correct loop detection for iterators convergence (bsc#1225903). * bpf: encapsulate precision backtracking bookkeeping (bsc#1225903). * bpf: ensure state checkpointing at iter_next() call sites (bsc#1225903). * bpf: exact states comparison for iterator convergence checks (bsc#1225903). * bpf: extract __check_reg_arg() utility function (bsc#1225903). * bpf: extract same_callsites() as utility function (bsc#1225903). * bpf: extract setup_func_entry() utility function (bsc#1225903). * bpf: fix calculation of subseq_idx during precision backtracking (bsc#1225903). * bpf: fix mark_all_scalars_precise use in mark_chain_precision (bsc#1225903). * bpf: Fix memory leaks in __check_func_call (bsc#1225903). * bpf: fix propagate_precision() logic for inner frames (bsc#1225903). * bpf: fix regs_exact() logic in regsafe() to remap IDs correctly (bsc#1225903). * bpf: Fix to preserve reg parent/live fields when copying range info (bsc#1225903). * bpf: generalize MAYBE_NULL vs non-MAYBE_NULL rule (bsc#1225903). * bpf: improve precision backtrack logging (bsc#1225903). * bpf: Improve verifier u32 scalar equality checking (bsc#1225903). * bpf: keep track of max number of bpf_loop callback iterations (bsc#1225903). * bpf: maintain bitmasks across all active frames in __mark_chain_precision (bsc#1225903). * bpf: mark relevant stack slots scratched for register read instructions (bsc#1225903). * bpf: move explored_state() closer to the beginning of verifier.c (bsc#1225903). * bpf: perform byte-by-byte comparison only when necessary in regsafe() (bsc#1225903). * bpf: print full verifier states on infinite loop detection (bsc#1225903). * bpf: regsafe() must not skip check_ids() (bsc#1225903). * bpf: reject non-exact register type matches in regsafe() (bsc#1225903). * bpf: Remove unused insn_cnt argument from visit_[func_call_]insn() (bsc#1225903). * bpf: reorganize struct bpf_reg_state fields (bsc#1225903). * bpf: Skip invalid kfunc call in backtrack_insn (bsc#1225903). * bpf: states_equal() must build idmap for all function frames (bsc#1225903). * bpf: stop setting precise in current state (bsc#1225903). * bpf: support precision propagation in the presence of subprogs (bsc#1225903). * bpf: take into account liveness when propagating precision (bsc#1225903). * bpf: teach refsafe() to take into account ID remapping (bsc#1225903). * bpf: unconditionally reset backtrack_state masks on global func exit (bsc#1225903). * bpf: use check_ids() for active_lock comparison (bsc#1225903). * bpf: Use scalar ids in mark_chain_precision() (bsc#1225903). * bpf: verify callbacks as if they are called unknown number of times (bsc#1225903). * bpf: Verify scalar ids mapping in regsafe() using check_ids() (bsc#1225903). * bpf: widening for callback iterators (bsc#1225903). * btrfs: add device major-minor info in the struct btrfs_device (bsc#1227162). * btrfs: harden identification of a stale device (bsc#1227162). * btrfs: match stale devices by dev_t (bsc#1227162). * btrfs: remove the cross file system checks from remap (bsc#1227157). * btrfs: use dev_t to match device in device_matched (bsc#1227162). * btrfs: validate device maj:min during open (bsc#1227162). * bytcr_rt5640 : inverse jack detect for Archos 101 cesium (stable-fixes). * cachefiles: add output string to cachefiles_obj_[get|put]_ondemand_fd (git- fixes). * can: kvaser_usb: Explicitly initialize family in leafimx driver_info struct (git-fixes). * can: kvaser_usb: fix return value for hif_usb_send_regout (stable-fixes). * ceph: fix incorrect kmalloc size of pagevec mempool (bsc#1228418). * cgroup/cpuset: Prevent UAF in proc_cpuset_show() (bsc#1228801). * crypto: aead,cipher - zeroize key buffer after use (stable-fixes). * crypto: ecdh - explicitly zeroize private_key (stable-fixes). * crypto: ecdsa - Fix the public key format description (git-fixes). * crypto: hisilicon/sec - Fix memory leak for sec resource release (stable- fixes). * csky: ftrace: Drop duplicate implementation of arch_check_ftrace_location() (git-fixes). * decompress_bunzip2: fix rare decompression failure (git-fixes). * devres: Fix devm_krealloc() wasting memory (git-fixes). * devres: Fix memory leakage caused by driver API devm_free_percpu() (git- fixes). * dma: fix call order in dmam_free_coherent (git-fixes). * docs: crypto: async-tx-api: fix broken code example (git-fixes). * docs: Fix formatting of literal sections in fanotify docs (stable-fixes). * drm/amd/amdgpu: Fix style errors in amdgpu_drv.c & amdgpu_device.c (stable- fixes). * drm/amd/display: Account for cursor prefetch BW in DML1 mode support (stable-fixes). * drm/amd/display: Check for NULL pointer (stable-fixes). * drm/amd/display: Check index msg_id before read or write (stable-fixes). * drm/amd/display: Check pipe offset before setting vblank (stable-fixes). * drm/amd/display: Skip finding free audio for unknown engine_id (stable- fixes). * drm/amdgpu/atomfirmware: fix parsing of vram_info (stable-fixes). * drm/amdgpu/atomfirmware: silence UBSAN warning (stable-fixes). * drm/amdgpu: avoid using null object of framebuffer (stable-fixes). * drm/amdgpu: Check if NBIO funcs are NULL in amdgpu_device_baco_exit (git- fixes). * drm/amdgpu: Fix pci state save during mode-1 reset (git-fixes). * drm/amdgpu: Fix signedness bug in sdma_v4_0_process_trap_irq() (git-fixes). * drm/amdgpu: fix uninitialized scalar variable warning (stable-fixes). * drm/amdgpu: Fix uninitialized variable warnings (stable-fixes). * drm/amdgpu: Initialize timestamp for some legacy SOCs (stable-fixes). * drm/amdgpu: Remove GC HW IP 9.3.0 from noretry=1 (git-fixes). * drm/amd/pm: Fix aldebaran pcie speed reporting (git-fixes). * drm/amd/pm: remove logically dead code for renoir (git-fixes). * drm/dp_mst: Fix all mstb marked as not probed after suspend/resume (git- fixes). * drm/etnaviv: do not block scheduler when GPU is still active (stable-fixes). * drm/etnaviv: fix DMA direction handling for cached RW buffers (git-fixes). * drm/gma500: fix null pointer dereference in cdv_intel_lvds_get_modes (git- fixes). * drm/gma500: fix null pointer dereference in psb_intel_lvds_get_modes (git- fixes). * drm/i915/gt: Do not consider preemption during execlists_dequeue for gen8 (git-fixes). * drm/lima: fix shared irq handling on driver remove (stable-fixes). * drm/lima: Mark simple_ondemand governor as softdep (git-fixes). * drm/mediatek: Add OVL compatible name for MT8195 (git-fixes). * drm/meson: fix canvas release in bind function (git-fixes). * drm/mgag200: Bind I2C lifetime to DRM device (git-fixes). * drm/mgag200: Set DDC timeout in milliseconds (git-fixes). * drm/mipi-dsi: Fix mipi_dsi_dcs_write_seq() macro definition format (stable- fixes). * drm/mipi-dsi: Fix theoretical int overflow in mipi_dsi_dcs_write_seq() (git- fixes). * drm/msm/dpu: drop validity checks for clear_pending_flush() ctl op (git- fixes). * drm/msm/mdp5: Remove MDP_CAP_SRC_SPLIT from msm8x53_config (git-fixes). * drm/nouveau/dispnv04: fix null pointer dereference in nv17_tv_get_hd_modes (stable-fixes). * drm/nouveau/dispnv04: fix null pointer dereference in nv17_tv_get_ld_modes (stable-fixes). * drm/nouveau: fix null pointer dereference in nouveau_connector_get_modes (git-fixes). * drm/nouveau: prime: fix refcount underflow (git-fixes). * drm/panel: boe-tv101wum-nl6: Check for errors on the NOP in prepare() (git- fixes). * drm/panel: boe-tv101wum-nl6: If prepare fails, disable GPIO before regulators (git-fixes). * drm/panel: ilitek-ili9881c: Fix warning with GPIO controllers that sleep (stable-fixes). * drm: panel-orientation-quirks: Add quirk for Valve Galileo (stable-fixes). * drm/panfrost: Mark simple_ondemand governor as softdep (git-fixes). * drm/qxl: Add check for drm_cvt_mode (git-fixes). * drm/radeon: check bo_va->bo is non-NULL before using it (stable-fixes). * drm/radeon/radeon_display: Decrease the size of allocated memory (stable- fixes). * drm/vmwgfx: Fix a deadlock in dma buf fence polling (git-fixes). * drm/vmwgfx: Fix missing HYPERVISOR_GUEST dependency (stable-fixes). * drm/vmwgfx: Fix overlay when using Screen Targets (git-fixes). * eeprom: digsy_mtc: Fix 93xx46 driver probe failure (git-fixes). * exfat: check if cluster num is valid (git-fixes). * exfat: simplify is_valid_cluster() (git-fixes). * filelock: add a new locks_inode_context accessor function (git-fixes). * firmware: cs_dsp: Fix overflow checking of wmfw header (git-fixes). * firmware: cs_dsp: Prevent buffer overrun when processing V2 alg headers (git-fixes). * firmware: cs_dsp: Return error if block header overflows file (git-fixes). * firmware: cs_dsp: Use strnlen() on name fields in V1 wmfw files (git-fixes). * firmware: cs_dsp: Validate payload length before processing block (git- fixes). * firmware: dmi: Stop decoding on broken entry (stable-fixes). * firmware: turris-mox-rwtm: Do not complete if there are no waiters (git- fixes). * firmware: turris-mox-rwtm: Fix checking return value of wait_for_completion_timeout() (git-fixes). * firmware: turris-mox-rwtm: Initialize completion before mailbox (git-fixes). * fix build warning * fs: allow cross-vfsmount reflink/dedupe (bsc#1227157). * ftrace: Fix possible use-after-free issue in ftrace_location() (git-fixes). * fuse: verify {g,u}id mount options correctly (bsc#1228191). * gpio: mc33880: Convert comma to semicolon (git-fixes). * hfsplus: fix to avoid false alarm of circular locking (git-fixes). * hfsplus: fix uninit-value in copy_name (git-fixes). * HID: Add quirk for Logitech Casa touchpad (stable-fixes). * HID: wacom: Modify pen IDs (git-fixes). * hpet: Support 32-bit userspace (git-fixes). * hwmon: (adt7475) Fix default duty on fan is disabled (git-fixes). * hwmon: (max6697) Fix swapped temp{1,8} critical alarms (git-fixes). * hwmon: (max6697) Fix underflow when writing limit attributes (git-fixes). * i2c: mark HostNotify target address as used (git-fixes). * i2c: rcar: bring hardware to known state when probing (git-fixes). * i2c: tegra: Fix failure during probe deferral cleanup (git-fixes) * i2c: tegra: Share same DMA channel for RX and TX (bsc#1227661) * i2c: testunit: avoid re-issued work after read message (git-fixes). * i2c: testunit: correct Kconfig description (git-fixes). * Input: elan_i2c - do not leave interrupt disabled on suspend failure (git- fixes). * Input: elantech - fix touchpad state on resume for Lenovo N24 (stable- fixes). * Input: ff-core - prefer struct_size over open coded arithmetic (stable- fixes). * Input: qt1050 - handle CHIP_ID reading error (git-fixes). * Input: silead - Always support 10 fingers (stable-fixes). * intel_th: pci: Add Granite Rapids SOC support (stable-fixes). * intel_th: pci: Add Granite Rapids support (stable-fixes). * intel_th: pci: Add Lunar Lake support (stable-fixes). * intel_th: pci: Add Meteor Lake-S support (stable-fixes). * intel_th: pci: Add Sapphire Rapids SOC support (stable-fixes). * iommu/arm-smmu-v3: Free MSIs in case of ENOMEM (git-fixes). * ionic: clean interrupt before enabling queue to avoid credit race (git- fixes). * jffs2: Fix potential illegal address access in jffs2_free_inode (git-fixes). * jfs: Fix array-index-out-of-bounds in diFree (git-fixes). * jfs: xattr: fix buffer overflow for invalid xattr (bsc#1227383). * kABI: bpf: bpf_reg_state reorganization kABI workaround (bsc#1225903). * kABI: bpf: callback fixes kABI workaround (bsc#1225903). * kABI: bpf: struct bpf_{idmap,idset} kABI workaround (bsc#1225903). * kABI: bpf: tmp_str_buf kABI workaround (bsc#1225903). * kABI: rtas: Workaround false positive due to lost definition (bsc#1227487). * kabi/severities: ignore kABI for FireWire sound local symbols (bsc#1208783) * kabi/severities: Ignore tpm_tis_core_init (bsc#1082555). * kabi/severity: add nvme common code The nvme common code is also allowed to change the data structures, there are only internal users. * kabi: Use __iowriteXX_copy_inlined for in-kernel modules (bsc#1226502) * kernel-binary: vdso: Own module_dir * kernel/sched: Remove dl_boosted flag comment (git fixes (sched)). * knfsd: LOOKUP can return an illegal error value (git-fixes). * kobject_uevent: Fix OOB access within zap_modalias_env() (git-fixes). * kprobes: Make arch_check_ftrace_location static (git-fixes). * KVM: nVMX: Clear EXIT_QUALIFICATION when injecting an EPT Misconfig (git- fixes). * KVM: PPC: Book3S HV: Fix "rm_exit" entry in debugfs timings (bsc#1194869). * KVM: PPC: Book3S HV: Fix the set_one_reg for MMCR3 (bsc#1194869). * KVM: PPC: Book3S HV Nested: L2 LPCR should inherit L1 LPES setting (bsc#1194869). * KVM: PPC: Book3S HV: remove extraneous asterisk from rm_host_ipi_action() comment (bsc#1194869). * KVM: PPC: Book3S: Suppress failed alloc warning in H_COPY_TOFROM_GUEST (bsc#1194869). * KVM: PPC: Book3S: Suppress warnings when allocating too big memory slots (bsc#1194869). * KVM: s390: fix LPSWEY handling (bsc#1227635 git-fixes). * KVM: SVM: Process ICR on AVIC IPI delivery failure due to invalid target (git-fixes). * KVM: VMX: Report up-to-date exit qualification to userspace (git-fixes). * KVM: x86: Add IBPB_BRTYPE support (bsc#1228079). * KVM: x86: Always sync PIR to IRR prior to scanning I/O APIC routes (git- fixes). * KVM: x86: Bail from kvm_recalculate_phys_map() if x2APIC ID is out-of-bounds (git-fixes). * KVM: x86: Disable APIC logical map if logical ID covers multiple MDAs (git- fixes). * KVM: x86: Disable APIC logical map if vCPUs are aliased in logical mode (git-fixes). * KVM: x86: Do not advertise guest.MAXPHYADDR as host.MAXPHYADDR in CPUID (git-fixes). * KVM: x86: Explicitly skip optimized logical map setup if vCPU's LDR==0 (git- fixes). * KVM: x86: Explicitly track all possibilities for APIC map's logical modes (git-fixes). * KVM: x86: Fix broken debugregs ABI for 32 bit kernels (git-fixes). * KVM: x86: Fix KVM_GET_MSRS stack info leak (git-fixes). * KVM: x86: Honor architectural behavior for aliased 8-bit APIC IDs (git- fixes). * KVM: x86: Purge "highest ISR" cache when updating APICv state (git-fixes). * KVM: x86: Save/restore all NMIs when multiple NMIs are pending (git-fixes). * KVM: x86: Skip redundant x2APIC logical mode optimized cluster setup (git- fixes). * leds: ss4200: Convert PCIBIOS_* return codes to errnos (git-fixes). * leds: triggers: Flush pending brightness before activating trigger (git- fixes). * leds: trigger: Unregister sysfs attributes before calling deactivate() (git- fixes). * libceph: fix race between delayed_work() and ceph_monc_stop() (bsc#1228190). * lib: objagg: Fix general protection fault (git-fixes). * lib: objagg: Fix spelling (git-fixes). * lib: test_objagg: Fix spelling (git-fixes). * lockd: set missing fl_flags field when retrieving args (git-fixes). * lockd: use locks_inode_context helper (git-fixes). * Make AMD_HSMP=m and mark it unsupported in supported.conf (jsc#PED-8582) * media: dvb: as102-fe: Fix as10x_register_addr packing (stable-fixes). * media: dvbdev: Initialize sbuf (stable-fixes). * media: dvb-frontends: tda10048: Fix integer overflow (stable-fixes). * media: dvb-frontends: tda18271c2dd: Remove casting during div (stable- fixes). * media: dvb-usb: dib0700_devices: Add missing release_firmware() (stable- fixes). * media: dvb-usb: Fix unexpected infinite loop in dvb_usb_read_remote_control() (git-fixes). * media: dw2102: Do not translate i2c read into write (stable-fixes). * media: dw2102: fix a potential buffer overflow (git-fixes). * media: imon: Fix race getting ictx->lock (git-fixes). * media: s2255: Use refcount_t instead of atomic_t for num_channels (stable- fixes). * media: uvcvideo: Fix integer overflow calculating timestamp (git-fixes). * media: uvcvideo: Override default flags (git-fixes). * media: venus: fix use after free in vdec_close (git-fixes). * media: venus: flush all buffers in output plane streamoff (git-fixes). * mei: demote client disconnect warning on suspend to debug (stable-fixes). * mfd: omap-usb-tll: Use struct_size to allocate tll (git-fixes). * mtd: partitions: redboot: Added conversion of operands to a larger type (stable-fixes). * net/dcb: check for detached device before executing callbacks (bsc#1215587). * netfilter: conntrack: ignore overly delayed tcp packets (bsc#1223180). * netfilter: conntrack: prepare tcp_in_window for ternary return value (bsc#1223180). * netfilter: conntrack: remove pr_debug callsites from tcp tracker (bsc#1223180). * netfilter: conntrack: work around exceeded receive window (bsc#1223180). * netfs, fscache: export fscache_put_volume() and add fscache_try_get_volume() (bsc#1228459 bsc#1228462). * net: mana: Fix possible double free in error handling path (git-fixes). * net: mana: Fix the extra HZ in mana_hwc_send_request (git-fixes). * net: usb: qmi_wwan: add Telit FN912 compositions (git-fixes). * net: usb: sr9700: fix uninitialized variable use in sr_mdio_read (git- fixes). * nfc/nci: Add the inconsistency check between the input data length and count (stable-fixes). * NFSD: Add an nfsd_file_fsync tracepoint (git-fixes). * NFSD: Add an NFSD_FILE_GC flag to enable nfsd_file garbage collection (git- fixes). * nfsd: Add errno mapping for EREMOTEIO (git-fixes). * NFSD: Add nfsd_file_lru_dispose_list() helper (git-fixes). * nfsd: add some comments to nfsd_file_do_acquire (git-fixes). * nfsd: allow nfsd_file_get to sanely handle a NULL pointer (git-fixes). * nfsd: allow reaping files still under writeback (git-fixes). * NFSD: Avoid calling fh_drop_write() twice in do_nfsd_create() (git-fixes). * NFSD: Clean up nfsd3_proc_create() (git-fixes). * nfsd: Clean up nfsd_file_put() (git-fixes). * NFSD: Clean up nfsd_open_verified() (git-fixes). * NFSD: Clean up unused code after rhashtable conversion (git-fixes). * NFSD: Convert filecache to rhltable (git-fixes). * NFSD: Convert the filecache to use rhashtable (git-fixes). * NFSD: De-duplicate hash bucket indexing (git-fixes). * nfsd: do not free files unconditionally in __nfsd_file_cache_purge (git- fixes). * nfsd: do not fsync nfsd_files on last close (git-fixes). * nfsd: do not hand out delegation on setuid files being opened for write (git-fixes). * nfsd: do not kill nfsd_files because of lease break error (git-fixes). * nfsd: Do not leave work of closing files to a work queue (bsc#1228140). * nfsd: do not take/put an extra reference when putting a file (git-fixes). * NFSD enforce filehandle check for source file in COPY (git-fixes). * NFSD: Ensure nf_inode is never dereferenced (git-fixes). * nfsd: fix handling of cached open files in nfsd4_open codepath (git-fixes). * NFSD: Fix licensing header in filecache.c (git-fixes). * nfsd: fix net-namespace logic in __nfsd_file_cache_purge (git-fixes). * nfsd: fix nfsd_file_unhash_and_dispose (git-fixes). * NFSD: Fix potential use-after-free in nfsd_file_put() (git-fixes). * NFSD: Fix problem of COMMIT and NFS4ERR_DELAY in infinite loop (git-fixes). * NFSD: Fix the filecache LRU shrinker (git-fixes). * nfsd: fix up the filecache laundrette scheduling (git-fixes). * nfsd: fix use-after-free in nfsd_file_do_acquire tracepoint (git-fixes). * NFSD: Flesh out a documenting comment for filecache.c (git-fixes). * NFSD: handle errors better in write_ports_addfd() (git-fixes). * NFSD: Instantiate a struct file when creating a regular NFSv4 file (git- fixes). * NFSD: Leave open files out of the filecache LRU (git-fixes). * nfsd: map EBADF (git-fixes). * NFSD: Move nfsd_file_trace_alloc() tracepoint (git-fixes). * NFSD: nfsd_file_hash_remove can compute hashval (git-fixes). * nfsd: NFSD_FILE_KEY_INODE only needs to find GC'ed entries (git-fixes). * NFSD: nfsd_file_put() can sleep (git-fixes). * NFSD: nfsd_file_unhash can compute hashval from nf->nf_inode (git-fixes). * NFSD: No longer record nf_hashval in the trace log (git-fixes). * NFSD: Pass the target nfsd_file to nfsd_commit() (git-fixes). * nfsd: put the export reference in nfsd4_verify_deleg_dentry (git-fixes). * NFSD: Record number of flush calls (git-fixes). * NFSD: Refactor nfsd_create_setattr() (git-fixes). * NFSD: Refactor __nfsd_file_close_inode() (git-fixes). * NFSD: Refactor nfsd_file_gc() (git-fixes). * NFSD: Refactor nfsd_file_lru_scan() (git-fixes). * NFSD: Refactor NFSv3 CREATE (git-fixes). * NFSD: Refactor NFSv4 OPEN(CREATE) (git-fixes). * NFSD: Remove do_nfsd_create() (git-fixes). * NFSD: Remove lockdep assertion from unhash_and_release_locked() (git-fixes). * NFSD: Remove nfsd_file::nf_hashval (git-fixes). * nfsd: remove the pages_flushed statistic from filecache (git-fixes). * nfsd: reorganize filecache.c (git-fixes). * NFSD: Replace the "init once" mechanism (git-fixes). * NFSD: Report average age of filecache items (git-fixes). * NFSD: Report count of calls to nfsd_file_acquire() (git-fixes). * NFSD: Report count of freed filecache items (git-fixes). * NFSD: Report filecache LRU size (git-fixes). * NFSD: Report the number of items evicted by the LRU walk (git-fixes). * nfsd: Retry once in nfsd_open on an -EOPENSTALE return (git-fixes). * nfsd: rework hashtable handling in nfsd_do_file_acquire (git-fixes). * nfsd: rework refcounting in filecache (git-fixes). * NFSD: Separate tracepoints for acquire and create (git-fixes). * NFSD: Set up an rhashtable for the filecache (git-fixes). * nfsd: silence extraneous printk on nfsd.ko insertion (git-fixes). * NFSD: simplify per-net file cache management (git-fixes). * nfsd: simplify test_bit return in NFSD_FILE_KEY_FULL comparator (git-fixes). * nfsd: simplify the delayed disposal list code (git-fixes). * NFSD: Trace filecache LRU activity (git-fixes). * NFSD: Trace filecache opens (git-fixes). * NFSD: verify the opened dentry after setting a delegation (git-fixes). * NFSD: WARN when freeing an item still linked via nf_lru (git-fixes). * NFSD: Write verifier might go backwards (git-fixes). * NFSD: Zero counters when the filecache is re-initialized (git-fixes). * NFS: Fix READ_PLUS when server does not support OP_READ_PLUS (git-fixes). * nfs: fix undefined behavior in nfs_block_bits() (git-fixes). * nfs: keep server info for remounts (git-fixes). * nfs: Leave pages in the pagecache if readpage failed (git-fixes). * NFSv4: Fixup smatch warning for ambiguous return (git-fixes). * NFSv4.x: by default serialize open/close operations (bsc#1223863 bsc#1227362) * nilfs2: add missing check for inode numbers on directory entries (git- fixes). * nilfs2: add missing check for inode numbers on directory entries (stable- fixes). * nilfs2: avoid undefined behavior in nilfs_cnt32_ge macro (git-fixes). * nilfs2: convert persistent object allocator to use kmap_local (git-fixes). * nilfs2: fix incorrect inode allocation from reserved inodes (git-fixes). * nilfs2: fix inode number range checks (git-fixes). * nilfs2: fix inode number range checks (stable-fixes). * nvme: adjust multiples of NVME_CTRL_PAGE_SIZE in offset (git-fixes). * nvme-auth: alloc nvme_dhchap_key as single buffer (git-fixes). * nvme-auth: allow mixing of secret and hash lengths (git-fixes). * nvme-auth: use transformed key size to create resp (git-fixes). * nvme: avoid double free special payload (git-fixes). * nvme: ensure reset state check ordering (bsc#1215492). * nvme: fixup comment for nvme RDMA Provider Type (git-fixes). * nvme-multipath: find NUMA path only for online numa-node (git-fixes). * nvme-pci: add missing condition check for existence of mapped data (git- fixes). * nvme-pci: Fix the instructions for disabling power management (git-fixes). * nvmet: always initialize cqe.result (git-fixes). * nvmet-auth: fix nvmet_auth hash error handling (git-fixes). * nvmet: fix a possible leak when destroy a ctrl during qp establishment (git- fixes). * nvme: use ctrl state accessor (bsc#1215492). * ocfs2: fix DIO failure due to insufficient transaction credits (bsc#1216834). * ocfs2: remove redundant assignment to variable free_space (bsc#1228409). * ocfs2: strict bound check before memcmp in ocfs2_xattr_find_entry() (bsc#1228410). * orangefs: fix out-of-bounds fsid access (git-fixes). * PCI: Add PCI_ERROR_RESPONSE and related definitions (stable-fixes). * PCI/DPC: Fix use-after-free on concurrent DPC and hot-removal (git-fixes). * PCI: Extend ACS configurability (bsc#1228090). * PCI: Fix resource double counting on remove & rescan (git-fixes). * PCI: hv: Return zero, not garbage, when reading PCI_INTERRUPT_PIN (git- fixes). * PCI: Introduce cleanup helpers for device reference counts and locks (git- fixes). * PCI: Introduce cleanup helpers for device reference counts and locks (stable-fixes). * PCI: keystone: Do not enable BAR 0 for AM654x (git-fixes). * PCI: keystone: Fix NULL pointer dereference in case of DT error in ks_pcie_setup_rc_app_regs() (git-fixes). * PCI: keystone: Relocate ks_pcie_set/clear_dbi_mode() (git-fixes). * PCI/PM: Avoid D3cold for HP Pavilion 17 PC/1972 PCIe Ports (git-fixes). * PCI/PM: Avoid D3cold for HP Pavilion 17 PC/1972 PCIe Ports (stable-fixes). * PCI: rockchip: Use GPIOD_OUT_LOW flag while requesting ep_gpio (git-fixes). * PCI: tegra194: Set EP alignment restriction for inbound ATU (git-fixes). * pinctrl: core: fix possible memory leak when pinctrl_enable() fails (git- fixes). * pinctrl: freescale: mxs: Fix refcount of child (git-fixes). * pinctrl: single: fix possible memory leak when pinctrl_enable() fails (git- fixes). * pinctrl: ti: ti-iodelay: fix possible memory leak when pinctrl_enable() fails (git-fixes). * platform/chrome: cros_ec_debugfs: fix wrong EC message version (git-fixes). * platform/chrome: cros_ec_proto: Lock device when updating MKBP version (git- fixes). * platform/x86: dell-smbios-base: Use sysfs_emit() (stable-fixes). * platform/x86: dell-smbios: Fix wrong token data in sysfs (git-fixes). * platform/x86: lg-laptop: Change ACPI device id (stable-fixes). * platform/x86: lg-laptop: Remove LGEX0815 hotkey handling (stable-fixes). * platform/x86: touchscreen_dmi: Add info for GlobalSpace SolT IVW 11.6" tablet (stable-fixes). * platform/x86: touchscreen_dmi: Add info for the EZpad 6s Pro (stable-fixes). * platform/x86: wireless-hotkey: Add support for LG Airplane Button (stable- fixes). * powerpc/cpuidle: Set CPUIDLE_FLAG_POLLING for snooze state (bsc#1227121 ltc#207129). * powerpc: fix a file leak in kvm_vcpu_ioctl_enable_cap() (bsc#1194869). * powerpc/kasan: Disable address sanitization in kexec paths (bsc#1194869). * powerpc/pseries: Fix scv instruction crash with kexec (bsc#1194869). * powerpc/rtas: clean up includes (bsc#1227487). * powerpc/rtas: Prevent Spectre v1 gadget construction in sys_rtas() (bsc#1227487). * power: supply: cros_usbpd: provide ID table for avoiding fallback match (stable-fixes). * pwm: stm32: Always do lazy disabling (git-fixes). * RDMA/cache: Release GID table even if leak is detected (git-fixes) * RDMA/device: Return error earlier if port in not valid (git-fixes) * RDMA/hns: Check atomic wr length (git-fixes) * RDMA/hns: Fix insufficient extend DB for VFs. (git-fixes) * RDMA/hns: Fix mbx timing out before CMD execution is completed (git-fixes) * RDMA/hns: Fix missing pagesize and alignment check in FRMR (git-fixes) * RDMA/hns: Fix shift-out-bounds when max_inline_data is 0 (git-fixes) * RDMA/hns: Fix soft lockup under heavy CEQE load (git-fixes) * RDMA/hns: Fix undifined behavior caused by invalid max_sge (git-fixes) * RDMA/hns: Fix unmatch exception handling when init eq table fails (git- fixes) * RDMA/iwcm: Fix a use-after-free related to destroying CM IDs (git-fixes) * RDMA/mana_ib: Ignore optional access flags for MRs (git-fixes). * RDMA/mlx4: Fix truncated output warning in alias_GUID.c (git-fixes) * RDMA/mlx4: Fix truncated output warning in mad.c (git-fixes) * RDMA/mlx5: Set mkeys for dmabuf at PAGE_SIZE (git-fixes) * RDMA/restrack: Fix potential invalid address access (git-fixes) * RDMA/rxe: Do not set BTH_ACK_MASK for UC or UD QPs (git-fixes) * regmap-i2c: Subtract reg size from max_write (stable-fixes). * Revert "ALSA: firewire-lib: obsolete workqueue for period update" (bsc#1208783). * Revert "ALSA: firewire-lib: operate for period elapse event in process context" (bsc#1208783). * Revert "leds: led-core: Fix refcount leak in of_led_get()" (git-fixes). * Revert "usb: musb: da8xx: Set phy in OTG mode by default" (stable-fixes). * rpcrdma: fix handling for RDMA_CM_EVENT_DEVICE_REMOVAL (git-fixes). * rtc: cmos: Fix return value of nvmem callbacks (git-fixes). * rtc: interface: Add RTC offset to alarm after fix-up (git-fixes). * rtc: isl1208: Fix return value of nvmem callbacks (git-fixes). * rtlwifi: rtl8192de: Style clean-ups (stable-fixes). * s390: Implement __iowrite32_copy() (bsc#1226502) * s390: Stop using weak symbols for __iowrite64_copy() (bsc#1226502) * saa7134: Unchecked i2c_transfer function result fixed (git-fixes). * sched/fair: Do not balance task to its current running CPU (git fixes (sched)). * sched: Fix stop_one_cpu_nowait() vs hotplug (git fixes (sched)). * scsi: lpfc: Allow DEVICE_RECOVERY mode after RSCN receipt if in PRLI_ISSUE state (bsc#1228857). * scsi: lpfc: Cancel ELS WQE instead of issuing abort when SLI port is inactive (bsc#1228857). * scsi: lpfc: Fix handling of fully recovered fabric node in dev_loss callbk (bsc#1228857). * scsi: lpfc: Fix incorrect request len mbox field when setting trunking via sysfs (bsc#1228857). * scsi: lpfc: Handle mailbox timeouts in lpfc_get_sfp_info (bsc#1228857). * scsi: lpfc: Relax PRLI issue conditions after GID_FT response (bsc#1228857). * scsi: lpfc: Revise lpfc_prep_embed_io routine with proper endian macro usages (bsc#1228857). * scsi: lpfc: Update lpfc version to 14.4.0.3 (bsc#1228857). * scsi: qla2xxx: Avoid possible run-time warning with long model_num (bsc#1228850). * scsi: qla2xxx: Complete command early within lock (bsc#1228850). * scsi: qla2xxx: Convert comma to semicolon (bsc#1228850). * scsi: qla2xxx: Drop driver owner assignment (bsc#1228850). * scsi: qla2xxx: During vport delete send async logout explicitly (bsc#1228850). * scsi: qla2xxx: Fix debugfs output for fw_resource_count (bsc#1228850). * scsi: qla2xxx: Fix flash read failure (bsc#1228850). * scsi: qla2xxx: Fix for possible memory corruption (bsc#1228850). * scsi: qla2xxx: Fix optrom version displayed in FDMI (bsc#1228850). * scsi: qla2xxx: Indent help text (bsc#1228850). * scsi: qla2xxx: Reduce fabric scan duplicate code (bsc#1228850). * scsi: qla2xxx: Remove unused struct 'scsi_dif_tuple' (bsc#1228850). * scsi: qla2xxx: Return ENOBUFS if sg_cnt is more than one for ELS cmds (bsc#1228850). * scsi: qla2xxx: Unable to act on RSCN for port online (bsc#1228850). * scsi: qla2xxx: Update version to 10.02.09.300-k (bsc#1228850). * scsi: qla2xxx: Use QP lock to search for bsg (bsc#1228850). * scsi: qla2xxx: validate nvme_local_port correctly (bsc#1228850). * selftests/bpf: Add a selftest for checking subreg equality (bsc#1225903). * selftests/bpf: add pre bpf_prog_test_run_opts() callback for test_loader (bsc#1225903). * selftests/bpf: add precision propagation tests in the presence of subprogs (bsc#1225903). * selftests/bpf: Add pruning test case for bpf_spin_lock (bsc#1225903). * selftests/bpf: Check if mark_chain_precision() follows scalar ids (bsc#1225903). * selftests/bpf: check if max number of bpf_loop iterations is tracked (bsc#1225903). * selftests/bpf: fix __retval() being always ignored (bsc#1225903). * selftests/bpf: fix unpriv_disabled check in test_verifier (bsc#1225903). * selftests/bpf: __imm_insn & __imm_const macro for bpf_misc.h (bsc#1225903). * selftests/bpf: make test_align selftest more robust (bsc#1225903). * selftests/bpf: populate map_array_ro map for verifier_array_access test (bsc#1225903). * selftests/bpf: prog_tests entry point for migrated test_verifier tests (bsc#1225903). * selftests/bpf: Report program name on parse_test_spec error (bsc#1225903). * selftests/bpf: Support custom per-test flags and multiple expected messages (bsc#1225903). * selftests/bpf: test case for callback_depth states pruning logic (bsc#1225903). * selftests/bpf: test case for relaxed prunning of active_lock.id (bsc#1225903). * selftests/bpf: test cases for regsafe() bug skipping check_id() (bsc#1225903). * selftests/bpf: Tests execution support for test_loader.c (bsc#1225903). * selftests/bpf: tests for iterating callbacks (bsc#1225903). * selftests/bpf: test widening for iterating callbacks (bsc#1225903). * selftests/bpf: track string payload offset as scalar in strobemeta (bsc#1225903). * selftests/bpf: Unprivileged tests for test_loader.c (bsc#1225903). * selftests/bpf: Verify copy_register_state() preserves parent/live fields (bsc#1225903). * selftests/bpf: verify states_equal() maintains idmap across all frames (bsc#1225903). * selftests/bpf: Verify that check_ids() is used for scalars in regsafe() (bsc#1225903). * selftests/sigaltstack: Fix ppc64 GCC build (git-fixes). * soc: ti: wkup_m3_ipc: Send NULL dummy message instead of pointer message (stable-fixes). * spi: imx: Do not expect DMA for i.MX{25,35,50,51,53} cspi devices (stable- fixes). * spi: mux: set ctlr->bits_per_word_mask (stable-fixes). * string.h: Introduce memtostr() and memtostr_pad() (bsc#1228850). * SUNRPC: avoid soft lockup when transmitting UDP to reachable server (bsc#1225272). * SUNRPC: Fix gss_free_in_token_pages() (git-fixes). * SUNRPC: Fix loop termination condition in gss_free_in_token_pages() (git- fixes). * sunrpc: fix NFSACL RPC retry on soft mount (git-fixes). * SUNRPC: return proper error from gss_wrap_req_priv (git-fixes). * supported.conf: * tpm: Allow system suspend to continue when TPM suspend fails (bsc#1082555). * tpm: Prevent hwrng from activating during resume (bsc#1082555). * tpm_tis: Resend command to recover from data transfer errors (bsc#1082555). * tpm_tis: Use tpm_chip_{start,stop} decoration inside tpm_tis_resume (bsc#1082555). * tpm, tpm: Implement usage counter for locality (bsc#1082555). * tpm, tpm_tis: Avoid cache incoherency in test for interrupts (bsc#1082555). * tpm, tpm_tis: Claim locality before writing interrupt registers (bsc#1082555). * tpm, tpm_tis: Claim locality in interrupt handler (bsc#1082555). * tpm, tpm_tis: Claim locality when interrupts are reenabled on resume (bsc#1082555). * tpm, tpm_tis: correct tpm_tis_flags enumeration values (bsc#1082555). * tpm, tpm_tis: Do not skip reset of original interrupt vector (bsc#1082555). * tpm, tpm_tis: Only handle supported interrupts (bsc#1082555). * tracing: Build event generation tests only as modules (git-fixes). * tracing/net_sched: NULL pointer dereference in perf_trace_qdisc_reset() (git-fixes). * tracing/osnoise: Add osnoise/options file (bsc#1228330) * tracing/osnoise: Add OSNOISE_WORKLOAD option (bsc#1228330) * tracing/osnoise: Do not follow tracing_cpumask (bsc#1228330) * tracing/osnoise: Fix notify new tracing_max_latency (bsc#1228330) * tracing/osnoise: Make osnoise_instances static (bsc#1228330) * tracing/osnoise: Split workload start from the tracer start (bsc#1228330) * tracing/osnoise: Support a list of trace_array *tr (bsc#1228330) * tracing/osnoise: Use built-in RCU list checking (bsc#1228330) * tracing/timerlat: Notify new max thread latency (bsc#1228330) * USB: Add USB_QUIRK_NO_SET_INTF quirk for START BP-850k (stable-fixes). * usb: cdns3: allocate TX FIFO size according to composite EP number (git- fixes). * usb: cdns3: fix incorrect calculation of ep_buf_size when more than one config (git-fixes). * usb: cdns3: fix iso transfer error when mult is not zero (git-fixes). * usb: cdns3: improve handling of unaligned address case (git-fixes). * usb: cdns3: optimize OUT transfer by copying only actual received data (git- fixes). * usb: cdns3: skip set TRB_IOC when usb_request: no_interrupt is true (git- fixes). * USB: core: Fix duplicate endpoint bug by clearing reserved bits in the descriptor (git-fixes). * usb: dwc3: gadget: Do not delay End Transfer on delayed_status (git-fixes). * usb: dwc3: gadget: Force sending delayed status during soft disconnect (git- fixes). * usb: dwc3: gadget: Synchronize IRQ between soft connect/disconnect (git- fixes). * usb: gadget: call usb_gadget_check_config() to verify UDC capability (git- fixes). * usb: gadget: configfs: Prevent OOB read/write in usb_string_copy() (stable- fixes). * usb: gadget: printer: SS+ support (stable-fixes). * usb: misc: uss720: check for incompatible versions of the Belkin F5U002 (stable-fixes). * USB: serial: mos7840: fix crash on resume (git-fixes). * USB: serial: option: add Fibocom FM350-GL (stable-fixes). * USB: serial: option: add Netprisma LCUK54 series modules (stable-fixes). * USB: serial: option: add Rolling RW350-GL variants (stable-fixes). * USB: serial: option: add support for Foxconn T99W651 (stable-fixes). * USB: serial: option: add Telit FN912 rmnet compositions (stable-fixes). * USB: serial: option: add Telit generic core-dump composition (stable-fixes). * usb: typec: tcpm: clear pd_event queue in PORT_RESET (git-fixes). * usb: xhci-plat: Do not include xhci.h (git-fixes). * USB: xhci-plat: fix legacy PHY double init (git-fixes). * wifi: ath11k: fix wrong handling of CCMP256 and GCMP ciphers (git-fixes). * wifi: brcmsmac: LCN PHY code is used for BCM4313 2G-only device (git-fixes). * wifi: cfg80211: fix typo in cfg80211_calculate_bitrate_he() (git-fixes). * wifi: cfg80211: handle 2x996 RU allocation in cfg80211_calculate_bitrate_he() (git-fixes). * wifi: cfg80211: restrict NL80211_ATTR_TXQ_QUANTUM values (git-fixes). * wifi: cfg80211: wext: add extra SIOCSIWSCAN data check (stable-fixes). * wifi: iwlwifi: mvm: d3: fix WoWLAN command version lookup (stable-fixes). * wifi: iwlwifi: mvm: Handle BIGTK cipher in kek_kck cmd (stable-fixes). * wifi: iwlwifi: mvm: properly set 6 GHz channel direct probe option (stable- fixes). * wifi: mac80211: disable softirqs for queued frame handling (git-fixes). * wifi: mac80211: fix UBSAN noise in ieee80211_prep_hw_scan() (stable-fixes). * wifi: mac80211: handle tasklet frames before stopping (stable-fixes). * wifi: mac80211: mesh: init nonpeer_pm to active by default in mesh sdata (stable-fixes). * wifi: mt76: replace skb_put with skb_put_zero (stable-fixes). * wifi: mwifiex: Fix interface type change (git-fixes). * wifi: rtw89: Fix array index mistake in rtw89_sta_info_get_iter() (git- fixes). * wifi: wilc1000: fix ies_len type in connect path (git-fixes). * workqueue: Improve scalability of workqueue watchdog touch (bsc#1193454). * workqueue: wq_watchdog_touch is always called with valid CPU (bsc#1193454). * x86/amd_nb: Use Family 19h Models 60h-7Fh Function 4 IDs (git-fixes). * x86/apic: Force native_apic_mem_read() to use the MOV instruction (git- fixes). * x86/bhi: Avoid warning in #DB handler due to BHI mitigation (git-fixes). * x86/bugs: Remove default case for fully switched enums (bsc#1227900). * x86/fpu: Fix AMD X86_BUG_FXSAVE_LEAK fixup (git-fixes). * x86/ibt,ftrace: Search for **fentry** location (git-fixes). * x86/Kconfig: Transmeta Crusoe is CPU family 5, not 6 (git-fixes). * x86/mm: Allow guest.enc_status_change_prepare() to fail (git-fixes). * x86/mm: Fix enc_status_change_finish_noop() (git-fixes). * x86/purgatory: Switch to the position-independent small code model (git- fixes). * x86/srso: Move retbleed IBPB check into existing 'has_microcode' code block (bsc#1227900). * x86/srso: Remove 'pred_cmd' label (bsc#1227900). * x86: Stop using weak symbols for __iowrite32_copy() (bsc#1226502) * x86/tdx: Fix race between set_memory_encrypted() and load_unaligned_zeropad() (git-fixes). * xfs: Add cond_resched to block unmap range and reflink remap path (bsc#1228226). * xhci: Apply broken streams quirk to Etron EJ188 xHCI host (stable-fixes). * xhci: Apply reset resume quirk to Etron EJ188 xHCI host (stable-fixes). * xhci: Set correct transferred length for cancelled bulk transfers (stable- fixes). ## Special Instructions and Notes: * Please reboot the system after installing this update. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.5 zypper in -t patch SUSE-2024-2947=1 openSUSE-SLE-15.5-2024-2947=1 * Public Cloud Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Public-Cloud-15-SP5-2024-2947=1 ## Package List: * openSUSE Leap 15.5 (aarch64 x86_64) * cluster-md-kmp-azure-5.14.21-150500.33.63.1 * ocfs2-kmp-azure-debuginfo-5.14.21-150500.33.63.1 * gfs2-kmp-azure-5.14.21-150500.33.63.1 * kernel-azure-optional-debuginfo-5.14.21-150500.33.63.1 * ocfs2-kmp-azure-5.14.21-150500.33.63.1 * kernel-azure-devel-5.14.21-150500.33.63.1 * reiserfs-kmp-azure-debuginfo-5.14.21-150500.33.63.1 * reiserfs-kmp-azure-5.14.21-150500.33.63.1 * dlm-kmp-azure-5.14.21-150500.33.63.1 * kernel-azure-extra-debuginfo-5.14.21-150500.33.63.1 * cluster-md-kmp-azure-debuginfo-5.14.21-150500.33.63.1 * kselftests-kmp-azure-debuginfo-5.14.21-150500.33.63.1 * dlm-kmp-azure-debuginfo-5.14.21-150500.33.63.1 * kernel-azure-devel-debuginfo-5.14.21-150500.33.63.1 * kselftests-kmp-azure-5.14.21-150500.33.63.1 * kernel-azure-optional-5.14.21-150500.33.63.1 * kernel-azure-extra-5.14.21-150500.33.63.1 * kernel-azure-debuginfo-5.14.21-150500.33.63.1 * kernel-azure-debugsource-5.14.21-150500.33.63.1 * kernel-syms-azure-5.14.21-150500.33.63.1 * gfs2-kmp-azure-debuginfo-5.14.21-150500.33.63.1 * kernel-azure-livepatch-devel-5.14.21-150500.33.63.1 * openSUSE Leap 15.5 (aarch64 nosrc x86_64) * kernel-azure-5.14.21-150500.33.63.1 * openSUSE Leap 15.5 (x86_64) * kernel-azure-vdso-debuginfo-5.14.21-150500.33.63.1 * kernel-azure-vdso-5.14.21-150500.33.63.1 * openSUSE Leap 15.5 (noarch) * kernel-source-azure-5.14.21-150500.33.63.1 * kernel-devel-azure-5.14.21-150500.33.63.1 * Public Cloud Module 15-SP5 (aarch64 nosrc x86_64) * kernel-azure-5.14.21-150500.33.63.1 * Public Cloud Module 15-SP5 (aarch64 x86_64) * kernel-azure-debuginfo-5.14.21-150500.33.63.1 * kernel-azure-debugsource-5.14.21-150500.33.63.1 * kernel-syms-azure-5.14.21-150500.33.63.1 * kernel-azure-devel-debuginfo-5.14.21-150500.33.63.1 * kernel-azure-devel-5.14.21-150500.33.63.1 * Public Cloud Module 15-SP5 (noarch) * kernel-source-azure-5.14.21-150500.33.63.1 * kernel-devel-azure-5.14.21-150500.33.63.1 ## References: * https://www.suse.com/security/cve/CVE-2021-47086.html * https://www.suse.com/security/cve/CVE-2021-47103.html * https://www.suse.com/security/cve/CVE-2021-47186.html * https://www.suse.com/security/cve/CVE-2021-47402.html * https://www.suse.com/security/cve/CVE-2021-47546.html * https://www.suse.com/security/cve/CVE-2021-47547.html * https://www.suse.com/security/cve/CVE-2021-47588.html * https://www.suse.com/security/cve/CVE-2021-47590.html * https://www.suse.com/security/cve/CVE-2021-47591.html * https://www.suse.com/security/cve/CVE-2021-47593.html * https://www.suse.com/security/cve/CVE-2021-47598.html * https://www.suse.com/security/cve/CVE-2021-47599.html * https://www.suse.com/security/cve/CVE-2021-47606.html * https://www.suse.com/security/cve/CVE-2021-47622.html * https://www.suse.com/security/cve/CVE-2021-47623.html * https://www.suse.com/security/cve/CVE-2021-47624.html * https://www.suse.com/security/cve/CVE-2022-48713.html * https://www.suse.com/security/cve/CVE-2022-48730.html * https://www.suse.com/security/cve/CVE-2022-48732.html * https://www.suse.com/security/cve/CVE-2022-48749.html * https://www.suse.com/security/cve/CVE-2022-48756.html * https://www.suse.com/security/cve/CVE-2022-48773.html * https://www.suse.com/security/cve/CVE-2022-48774.html * https://www.suse.com/security/cve/CVE-2022-48775.html * https://www.suse.com/security/cve/CVE-2022-48776.html * https://www.suse.com/security/cve/CVE-2022-48777.html * https://www.suse.com/security/cve/CVE-2022-48778.html * https://www.suse.com/security/cve/CVE-2022-48780.html * https://www.suse.com/security/cve/CVE-2022-48783.html * https://www.suse.com/security/cve/CVE-2022-48784.html * https://www.suse.com/security/cve/CVE-2022-48785.html * https://www.suse.com/security/cve/CVE-2022-48786.html * https://www.suse.com/security/cve/CVE-2022-48787.html * https://www.suse.com/security/cve/CVE-2022-48788.html * https://www.suse.com/security/cve/CVE-2022-48789.html * https://www.suse.com/security/cve/CVE-2022-48790.html * https://www.suse.com/security/cve/CVE-2022-48791.html * https://www.suse.com/security/cve/CVE-2022-48792.html * https://www.suse.com/security/cve/CVE-2022-48793.html * https://www.suse.com/security/cve/CVE-2022-48794.html * https://www.suse.com/security/cve/CVE-2022-48796.html * https://www.suse.com/security/cve/CVE-2022-48797.html * https://www.suse.com/security/cve/CVE-2022-48798.html * https://www.suse.com/security/cve/CVE-2022-48799.html * https://www.suse.com/security/cve/CVE-2022-48800.html * https://www.suse.com/security/cve/CVE-2022-48801.html * https://www.suse.com/security/cve/CVE-2022-48802.html * https://www.suse.com/security/cve/CVE-2022-48803.html * https://www.suse.com/security/cve/CVE-2022-48804.html * https://www.suse.com/security/cve/CVE-2022-48805.html * https://www.suse.com/security/cve/CVE-2022-48806.html * https://www.suse.com/security/cve/CVE-2022-48807.html * https://www.suse.com/security/cve/CVE-2022-48809.html * https://www.suse.com/security/cve/CVE-2022-48810.html * https://www.suse.com/security/cve/CVE-2022-48811.html * https://www.suse.com/security/cve/CVE-2022-48812.html * https://www.suse.com/security/cve/CVE-2022-48813.html * https://www.suse.com/security/cve/CVE-2022-48814.html * https://www.suse.com/security/cve/CVE-2022-48815.html * https://www.suse.com/security/cve/CVE-2022-48816.html * https://www.suse.com/security/cve/CVE-2022-48817.html * https://www.suse.com/security/cve/CVE-2022-48818.html * https://www.suse.com/security/cve/CVE-2022-48820.html * https://www.suse.com/security/cve/CVE-2022-48821.html * https://www.suse.com/security/cve/CVE-2022-48822.html * https://www.suse.com/security/cve/CVE-2022-48823.html * https://www.suse.com/security/cve/CVE-2022-48824.html * https://www.suse.com/security/cve/CVE-2022-48825.html * https://www.suse.com/security/cve/CVE-2022-48826.html * https://www.suse.com/security/cve/CVE-2022-48827.html * https://www.suse.com/security/cve/CVE-2022-48828.html * https://www.suse.com/security/cve/CVE-2022-48829.html * https://www.suse.com/security/cve/CVE-2022-48830.html * https://www.suse.com/security/cve/CVE-2022-48831.html * https://www.suse.com/security/cve/CVE-2022-48834.html * https://www.suse.com/security/cve/CVE-2022-48835.html * https://www.suse.com/security/cve/CVE-2022-48836.html * https://www.suse.com/security/cve/CVE-2022-48837.html * https://www.suse.com/security/cve/CVE-2022-48838.html * https://www.suse.com/security/cve/CVE-2022-48839.html * https://www.suse.com/security/cve/CVE-2022-48840.html * https://www.suse.com/security/cve/CVE-2022-48841.html * https://www.suse.com/security/cve/CVE-2022-48842.html * https://www.suse.com/security/cve/CVE-2022-48843.html * https://www.suse.com/security/cve/CVE-2022-48844.html * https://www.suse.com/security/cve/CVE-2022-48846.html * https://www.suse.com/security/cve/CVE-2022-48847.html * https://www.suse.com/security/cve/CVE-2022-48849.html * https://www.suse.com/security/cve/CVE-2022-48850.html * https://www.suse.com/security/cve/CVE-2022-48851.html * https://www.suse.com/security/cve/CVE-2022-48852.html * https://www.suse.com/security/cve/CVE-2022-48853.html * https://www.suse.com/security/cve/CVE-2022-48855.html * https://www.suse.com/security/cve/CVE-2022-48856.html * https://www.suse.com/security/cve/CVE-2022-48857.html * https://www.suse.com/security/cve/CVE-2022-48858.html * https://www.suse.com/security/cve/CVE-2022-48859.html * https://www.suse.com/security/cve/CVE-2022-48860.html * https://www.suse.com/security/cve/CVE-2022-48861.html * https://www.suse.com/security/cve/CVE-2022-48862.html * https://www.suse.com/security/cve/CVE-2022-48863.html * https://www.suse.com/security/cve/CVE-2022-48864.html * https://www.suse.com/security/cve/CVE-2022-48866.html * https://www.suse.com/security/cve/CVE-2023-1582.html * https://www.suse.com/security/cve/CVE-2023-37453.html * https://www.suse.com/security/cve/CVE-2023-52435.html * https://www.suse.com/security/cve/CVE-2023-52573.html * https://www.suse.com/security/cve/CVE-2023-52580.html * https://www.suse.com/security/cve/CVE-2023-52591.html * https://www.suse.com/security/cve/CVE-2023-52735.html * https://www.suse.com/security/cve/CVE-2023-52751.html * https://www.suse.com/security/cve/CVE-2023-52762.html * https://www.suse.com/security/cve/CVE-2023-52775.html * https://www.suse.com/security/cve/CVE-2023-52812.html * https://www.suse.com/security/cve/CVE-2023-52857.html * https://www.suse.com/security/cve/CVE-2023-52863.html * https://www.suse.com/security/cve/CVE-2023-52885.html * https://www.suse.com/security/cve/CVE-2023-52886.html * https://www.suse.com/security/cve/CVE-2024-25741.html * https://www.suse.com/security/cve/CVE-2024-26583.html * https://www.suse.com/security/cve/CVE-2024-26584.html * https://www.suse.com/security/cve/CVE-2024-26585.html * https://www.suse.com/security/cve/CVE-2024-26615.html * https://www.suse.com/security/cve/CVE-2024-26633.html * https://www.suse.com/security/cve/CVE-2024-26635.html * https://www.suse.com/security/cve/CVE-2024-26636.html * https://www.suse.com/security/cve/CVE-2024-26641.html * https://www.suse.com/security/cve/CVE-2024-26661.html * https://www.suse.com/security/cve/CVE-2024-26663.html * https://www.suse.com/security/cve/CVE-2024-26665.html * https://www.suse.com/security/cve/CVE-2024-26800.html * https://www.suse.com/security/cve/CVE-2024-26802.html * https://www.suse.com/security/cve/CVE-2024-26813.html * https://www.suse.com/security/cve/CVE-2024-26814.html * https://www.suse.com/security/cve/CVE-2024-26863.html * https://www.suse.com/security/cve/CVE-2024-26889.html * https://www.suse.com/security/cve/CVE-2024-26920.html * https://www.suse.com/security/cve/CVE-2024-26935.html * https://www.suse.com/security/cve/CVE-2024-269355.html * https://www.suse.com/security/cve/CVE-2024-26961.html * https://www.suse.com/security/cve/CVE-2024-26976.html * https://www.suse.com/security/cve/CVE-2024-27015.html * https://www.suse.com/security/cve/CVE-2024-27019.html * https://www.suse.com/security/cve/CVE-2024-27020.html * https://www.suse.com/security/cve/CVE-2024-27025.html * https://www.suse.com/security/cve/CVE-2024-27065.html * https://www.suse.com/security/cve/CVE-2024-27402.html * https://www.suse.com/security/cve/CVE-2024-27437.html * https://www.suse.com/security/cve/CVE-2024-35805.html * https://www.suse.com/security/cve/CVE-2024-35819.html * https://www.suse.com/security/cve/CVE-2024-35837.html * https://www.suse.com/security/cve/CVE-2024-35853.html * https://www.suse.com/security/cve/CVE-2024-35854.html * https://www.suse.com/security/cve/CVE-2024-35855.html * https://www.suse.com/security/cve/CVE-2024-35889.html * https://www.suse.com/security/cve/CVE-2024-35890.html * https://www.suse.com/security/cve/CVE-2024-35893.html * https://www.suse.com/security/cve/CVE-2024-35899.html * https://www.suse.com/security/cve/CVE-2024-35934.html * https://www.suse.com/security/cve/CVE-2024-35949.html * https://www.suse.com/security/cve/CVE-2024-35961.html * https://www.suse.com/security/cve/CVE-2024-35979.html * https://www.suse.com/security/cve/CVE-2024-35995.html * https://www.suse.com/security/cve/CVE-2024-36000.html * https://www.suse.com/security/cve/CVE-2024-36004.html * https://www.suse.com/security/cve/CVE-2024-36288.html * https://www.suse.com/security/cve/CVE-2024-36889.html * https://www.suse.com/security/cve/CVE-2024-36901.html * https://www.suse.com/security/cve/CVE-2024-36902.html * https://www.suse.com/security/cve/CVE-2024-36909.html * https://www.suse.com/security/cve/CVE-2024-36910.html * https://www.suse.com/security/cve/CVE-2024-36911.html * https://www.suse.com/security/cve/CVE-2024-36912.html * https://www.suse.com/security/cve/CVE-2024-36913.html * https://www.suse.com/security/cve/CVE-2024-36914.html * https://www.suse.com/security/cve/CVE-2024-36919.html * https://www.suse.com/security/cve/CVE-2024-36923.html * https://www.suse.com/security/cve/CVE-2024-36924.html * https://www.suse.com/security/cve/CVE-2024-36926.html * https://www.suse.com/security/cve/CVE-2024-36939.html * https://www.suse.com/security/cve/CVE-2024-36941.html * https://www.suse.com/security/cve/CVE-2024-36942.html * https://www.suse.com/security/cve/CVE-2024-36944.html * https://www.suse.com/security/cve/CVE-2024-36946.html * https://www.suse.com/security/cve/CVE-2024-36947.html * https://www.suse.com/security/cve/CVE-2024-36950.html * https://www.suse.com/security/cve/CVE-2024-36952.html * https://www.suse.com/security/cve/CVE-2024-36955.html * https://www.suse.com/security/cve/CVE-2024-36959.html * https://www.suse.com/security/cve/CVE-2024-36974.html * https://www.suse.com/security/cve/CVE-2024-38548.html * https://www.suse.com/security/cve/CVE-2024-38555.html * https://www.suse.com/security/cve/CVE-2024-38558.html * https://www.suse.com/security/cve/CVE-2024-38559.html * https://www.suse.com/security/cve/CVE-2024-38570.html * https://www.suse.com/security/cve/CVE-2024-38586.html * https://www.suse.com/security/cve/CVE-2024-38588.html * https://www.suse.com/security/cve/CVE-2024-38598.html * https://www.suse.com/security/cve/CVE-2024-38628.html * https://www.suse.com/security/cve/CVE-2024-39276.html * https://www.suse.com/security/cve/CVE-2024-39371.html * https://www.suse.com/security/cve/CVE-2024-39463.html * https://www.suse.com/security/cve/CVE-2024-39472.html * https://www.suse.com/security/cve/CVE-2024-39475.html * https://www.suse.com/security/cve/CVE-2024-39482.html * https://www.suse.com/security/cve/CVE-2024-39487.html * https://www.suse.com/security/cve/CVE-2024-39488.html * https://www.suse.com/security/cve/CVE-2024-39490.html * https://www.suse.com/security/cve/CVE-2024-39493.html * https://www.suse.com/security/cve/CVE-2024-39494.html * https://www.suse.com/security/cve/CVE-2024-39497.html * https://www.suse.com/security/cve/CVE-2024-39499.html * https://www.suse.com/security/cve/CVE-2024-39500.html * https://www.suse.com/security/cve/CVE-2024-39501.html * https://www.suse.com/security/cve/CVE-2024-39502.html * https://www.suse.com/security/cve/CVE-2024-39505.html * https://www.suse.com/security/cve/CVE-2024-39506.html * https://www.suse.com/security/cve/CVE-2024-39507.html * https://www.suse.com/security/cve/CVE-2024-39508.html * https://www.suse.com/security/cve/CVE-2024-39509.html * https://www.suse.com/security/cve/CVE-2024-40900.html * https://www.suse.com/security/cve/CVE-2024-40901.html * https://www.suse.com/security/cve/CVE-2024-40902.html * https://www.suse.com/security/cve/CVE-2024-40903.html * https://www.suse.com/security/cve/CVE-2024-40904.html * https://www.suse.com/security/cve/CVE-2024-40906.html * https://www.suse.com/security/cve/CVE-2024-40908.html * https://www.suse.com/security/cve/CVE-2024-40909.html * https://www.suse.com/security/cve/CVE-2024-40911.html * https://www.suse.com/security/cve/CVE-2024-40912.html * https://www.suse.com/security/cve/CVE-2024-40916.html * https://www.suse.com/security/cve/CVE-2024-40919.html * https://www.suse.com/security/cve/CVE-2024-40923.html * https://www.suse.com/security/cve/CVE-2024-40924.html * https://www.suse.com/security/cve/CVE-2024-40927.html * https://www.suse.com/security/cve/CVE-2024-40929.html * https://www.suse.com/security/cve/CVE-2024-40931.html * https://www.suse.com/security/cve/CVE-2024-40932.html * https://www.suse.com/security/cve/CVE-2024-40934.html * https://www.suse.com/security/cve/CVE-2024-40935.html * https://www.suse.com/security/cve/CVE-2024-40937.html * https://www.suse.com/security/cve/CVE-2024-40940.html * https://www.suse.com/security/cve/CVE-2024-40941.html * https://www.suse.com/security/cve/CVE-2024-40942.html * https://www.suse.com/security/cve/CVE-2024-40943.html * https://www.suse.com/security/cve/CVE-2024-40945.html * https://www.suse.com/security/cve/CVE-2024-40953.html * https://www.suse.com/security/cve/CVE-2024-40954.html * https://www.suse.com/security/cve/CVE-2024-40956.html * https://www.suse.com/security/cve/CVE-2024-40958.html * https://www.suse.com/security/cve/CVE-2024-40959.html * https://www.suse.com/security/cve/CVE-2024-40960.html * https://www.suse.com/security/cve/CVE-2024-40961.html * https://www.suse.com/security/cve/CVE-2024-40966.html * https://www.suse.com/security/cve/CVE-2024-40967.html * https://www.suse.com/security/cve/CVE-2024-40970.html * https://www.suse.com/security/cve/CVE-2024-40972.html * https://www.suse.com/security/cve/CVE-2024-40976.html * https://www.suse.com/security/cve/CVE-2024-40977.html * https://www.suse.com/security/cve/CVE-2024-40981.html * https://www.suse.com/security/cve/CVE-2024-40982.html * https://www.suse.com/security/cve/CVE-2024-40984.html * https://www.suse.com/security/cve/CVE-2024-40987.html * https://www.suse.com/security/cve/CVE-2024-40988.html * https://www.suse.com/security/cve/CVE-2024-40989.html * https://www.suse.com/security/cve/CVE-2024-40990.html * https://www.suse.com/security/cve/CVE-2024-40994.html * https://www.suse.com/security/cve/CVE-2024-40998.html * https://www.suse.com/security/cve/CVE-2024-40999.html * https://www.suse.com/security/cve/CVE-2024-41002.html * https://www.suse.com/security/cve/CVE-2024-41004.html * https://www.suse.com/security/cve/CVE-2024-41006.html * https://www.suse.com/security/cve/CVE-2024-41009.html * https://www.suse.com/security/cve/CVE-2024-41011.html * https://www.suse.com/security/cve/CVE-2024-41012.html * https://www.suse.com/security/cve/CVE-2024-41013.html * https://www.suse.com/security/cve/CVE-2024-41014.html * https://www.suse.com/security/cve/CVE-2024-41015.html * https://www.suse.com/security/cve/CVE-2024-41016.html * https://www.suse.com/security/cve/CVE-2024-41017.html * https://www.suse.com/security/cve/CVE-2024-41040.html * https://www.suse.com/security/cve/CVE-2024-41041.html * https://www.suse.com/security/cve/CVE-2024-41044.html * https://www.suse.com/security/cve/CVE-2024-41048.html * https://www.suse.com/security/cve/CVE-2024-41057.html * https://www.suse.com/security/cve/CVE-2024-41058.html * https://www.suse.com/security/cve/CVE-2024-41059.html * https://www.suse.com/security/cve/CVE-2024-41063.html * https://www.suse.com/security/cve/CVE-2024-41064.html * https://www.suse.com/security/cve/CVE-2024-41066.html * https://www.suse.com/security/cve/CVE-2024-41069.html * https://www.suse.com/security/cve/CVE-2024-41070.html * https://www.suse.com/security/cve/CVE-2024-41071.html * https://www.suse.com/security/cve/CVE-2024-41072.html * https://www.suse.com/security/cve/CVE-2024-41076.html * https://www.suse.com/security/cve/CVE-2024-41078.html * https://www.suse.com/security/cve/CVE-2024-41081.html * https://www.suse.com/security/cve/CVE-2024-41087.html * https://www.suse.com/security/cve/CVE-2024-41090.html * https://www.suse.com/security/cve/CVE-2024-41091.html * https://www.suse.com/security/cve/CVE-2024-42070.html * https://www.suse.com/security/cve/CVE-2024-42079.html * https://www.suse.com/security/cve/CVE-2024-42093.html * https://www.suse.com/security/cve/CVE-2024-42096.html * https://www.suse.com/security/cve/CVE-2024-42105.html * https://www.suse.com/security/cve/CVE-2024-42122.html * https://www.suse.com/security/cve/CVE-2024-42124.html * https://www.suse.com/security/cve/CVE-2024-42145.html * https://www.suse.com/security/cve/CVE-2024-42161.html * https://www.suse.com/security/cve/CVE-2024-42224.html * https://www.suse.com/security/cve/CVE-2024-42230.html * https://bugzilla.suse.com/show_bug.cgi?id=1082555 * https://bugzilla.suse.com/show_bug.cgi?id=1193454 * https://bugzilla.suse.com/show_bug.cgi?id=1193554 * https://bugzilla.suse.com/show_bug.cgi?id=1193787 * https://bugzilla.suse.com/show_bug.cgi?id=1194324 * https://bugzilla.suse.com/show_bug.cgi?id=1194869 * https://bugzilla.suse.com/show_bug.cgi?id=1195357 * https://bugzilla.suse.com/show_bug.cgi?id=1195668 * https://bugzilla.suse.com/show_bug.cgi?id=1195927 * https://bugzilla.suse.com/show_bug.cgi?id=1195957 * https://bugzilla.suse.com/show_bug.cgi?id=1196018 * https://bugzilla.suse.com/show_bug.cgi?id=1196823 * https://bugzilla.suse.com/show_bug.cgi?id=1197146 * https://bugzilla.suse.com/show_bug.cgi?id=1197246 * https://bugzilla.suse.com/show_bug.cgi?id=1197762 * https://bugzilla.suse.com/show_bug.cgi?id=1202346 * https://bugzilla.suse.com/show_bug.cgi?id=1202686 * https://bugzilla.suse.com/show_bug.cgi?id=1208783 * https://bugzilla.suse.com/show_bug.cgi?id=1209636 * https://bugzilla.suse.com/show_bug.cgi?id=1213123 * https://bugzilla.suse.com/show_bug.cgi?id=1215492 * https://bugzilla.suse.com/show_bug.cgi?id=1215587 * https://bugzilla.suse.com/show_bug.cgi?id=1216834 * https://bugzilla.suse.com/show_bug.cgi?id=1219832 * https://bugzilla.suse.com/show_bug.cgi?id=1220138 * https://bugzilla.suse.com/show_bug.cgi?id=1220185 * https://bugzilla.suse.com/show_bug.cgi?id=1220186 * https://bugzilla.suse.com/show_bug.cgi?id=1220187 * https://bugzilla.suse.com/show_bug.cgi?id=1220869 * https://bugzilla.suse.com/show_bug.cgi?id=1220876 * https://bugzilla.suse.com/show_bug.cgi?id=1220942 * https://bugzilla.suse.com/show_bug.cgi?id=1220952 * https://bugzilla.suse.com/show_bug.cgi?id=1221010 * https://bugzilla.suse.com/show_bug.cgi?id=1221044 * https://bugzilla.suse.com/show_bug.cgi?id=1221647 * https://bugzilla.suse.com/show_bug.cgi?id=1221654 * https://bugzilla.suse.com/show_bug.cgi?id=1221656 * https://bugzilla.suse.com/show_bug.cgi?id=1221659 * https://bugzilla.suse.com/show_bug.cgi?id=1221777 * https://bugzilla.suse.com/show_bug.cgi?id=1222011 * https://bugzilla.suse.com/show_bug.cgi?id=1222323 * https://bugzilla.suse.com/show_bug.cgi?id=1222326 * https://bugzilla.suse.com/show_bug.cgi?id=1222328 * https://bugzilla.suse.com/show_bug.cgi?id=1222625 * https://bugzilla.suse.com/show_bug.cgi?id=1222702 * https://bugzilla.suse.com/show_bug.cgi?id=1222728 * https://bugzilla.suse.com/show_bug.cgi?id=1222799 * https://bugzilla.suse.com/show_bug.cgi?id=1222809 * https://bugzilla.suse.com/show_bug.cgi?id=1222810 * https://bugzilla.suse.com/show_bug.cgi?id=1223021 * https://bugzilla.suse.com/show_bug.cgi?id=1223180 * https://bugzilla.suse.com/show_bug.cgi?id=1223635 * https://bugzilla.suse.com/show_bug.cgi?id=1223652 * https://bugzilla.suse.com/show_bug.cgi?id=1223675 * https://bugzilla.suse.com/show_bug.cgi?id=1223778 * https://bugzilla.suse.com/show_bug.cgi?id=1223806 * https://bugzilla.suse.com/show_bug.cgi?id=1223813 * https://bugzilla.suse.com/show_bug.cgi?id=1223815 * https://bugzilla.suse.com/show_bug.cgi?id=1223836 * https://bugzilla.suse.com/show_bug.cgi?id=1223863 * https://bugzilla.suse.com/show_bug.cgi?id=1224414 * https://bugzilla.suse.com/show_bug.cgi?id=1224499 * https://bugzilla.suse.com/show_bug.cgi?id=1224500 * https://bugzilla.suse.com/show_bug.cgi?id=1224512 * https://bugzilla.suse.com/show_bug.cgi?id=1224516 * https://bugzilla.suse.com/show_bug.cgi?id=1224517 * https://bugzilla.suse.com/show_bug.cgi?id=1224545 * https://bugzilla.suse.com/show_bug.cgi?id=1224548 * https://bugzilla.suse.com/show_bug.cgi?id=1224557 * https://bugzilla.suse.com/show_bug.cgi?id=1224572 * https://bugzilla.suse.com/show_bug.cgi?id=1224573 * https://bugzilla.suse.com/show_bug.cgi?id=1224585 * https://bugzilla.suse.com/show_bug.cgi?id=1224604 * https://bugzilla.suse.com/show_bug.cgi?id=1224636 * https://bugzilla.suse.com/show_bug.cgi?id=1224641 * https://bugzilla.suse.com/show_bug.cgi?id=1224683 * https://bugzilla.suse.com/show_bug.cgi?id=1224694 * https://bugzilla.suse.com/show_bug.cgi?id=1224700 * https://bugzilla.suse.com/show_bug.cgi?id=1224743 * https://bugzilla.suse.com/show_bug.cgi?id=1225088 * https://bugzilla.suse.com/show_bug.cgi?id=1225272 * https://bugzilla.suse.com/show_bug.cgi?id=1225301 * https://bugzilla.suse.com/show_bug.cgi?id=1225475 * https://bugzilla.suse.com/show_bug.cgi?id=1225489 * https://bugzilla.suse.com/show_bug.cgi?id=1225504 * https://bugzilla.suse.com/show_bug.cgi?id=1225505 * https://bugzilla.suse.com/show_bug.cgi?id=1225564 * https://bugzilla.suse.com/show_bug.cgi?id=1225573 * https://bugzilla.suse.com/show_bug.cgi?id=1225581 * https://bugzilla.suse.com/show_bug.cgi?id=1225586 * https://bugzilla.suse.com/show_bug.cgi?id=1225711 * https://bugzilla.suse.com/show_bug.cgi?id=1225717 * https://bugzilla.suse.com/show_bug.cgi?id=1225719 * https://bugzilla.suse.com/show_bug.cgi?id=1225744 * https://bugzilla.suse.com/show_bug.cgi?id=1225745 * https://bugzilla.suse.com/show_bug.cgi?id=1225746 * https://bugzilla.suse.com/show_bug.cgi?id=1225752 * https://bugzilla.suse.com/show_bug.cgi?id=1225753 * https://bugzilla.suse.com/show_bug.cgi?id=1225757 * https://bugzilla.suse.com/show_bug.cgi?id=1225767 * https://bugzilla.suse.com/show_bug.cgi?id=1225810 * https://bugzilla.suse.com/show_bug.cgi?id=1225815 * https://bugzilla.suse.com/show_bug.cgi?id=1225820 * https://bugzilla.suse.com/show_bug.cgi?id=1225829 * https://bugzilla.suse.com/show_bug.cgi?id=1225835 * https://bugzilla.suse.com/show_bug.cgi?id=1225838 * https://bugzilla.suse.com/show_bug.cgi?id=1225839 * https://bugzilla.suse.com/show_bug.cgi?id=1225843 * https://bugzilla.suse.com/show_bug.cgi?id=1225847 * https://bugzilla.suse.com/show_bug.cgi?id=1225851 * https://bugzilla.suse.com/show_bug.cgi?id=1225856 * https://bugzilla.suse.com/show_bug.cgi?id=1225895 * https://bugzilla.suse.com/show_bug.cgi?id=1225898 * https://bugzilla.suse.com/show_bug.cgi?id=1225903 * https://bugzilla.suse.com/show_bug.cgi?id=1226202 * https://bugzilla.suse.com/show_bug.cgi?id=1226502 * https://bugzilla.suse.com/show_bug.cgi?id=1226519 * https://bugzilla.suse.com/show_bug.cgi?id=1226551 * https://bugzilla.suse.com/show_bug.cgi?id=1226555 * https://bugzilla.suse.com/show_bug.cgi?id=1226565 * https://bugzilla.suse.com/show_bug.cgi?id=1226568 * https://bugzilla.suse.com/show_bug.cgi?id=1226570 * https://bugzilla.suse.com/show_bug.cgi?id=1226571 * https://bugzilla.suse.com/show_bug.cgi?id=1226574 * https://bugzilla.suse.com/show_bug.cgi?id=1226588 * https://bugzilla.suse.com/show_bug.cgi?id=1226607 * https://bugzilla.suse.com/show_bug.cgi?id=1226650 * https://bugzilla.suse.com/show_bug.cgi?id=1226698 * https://bugzilla.suse.com/show_bug.cgi?id=1226713 * https://bugzilla.suse.com/show_bug.cgi?id=1226716 * https://bugzilla.suse.com/show_bug.cgi?id=1226750 * https://bugzilla.suse.com/show_bug.cgi?id=1226757 * https://bugzilla.suse.com/show_bug.cgi?id=1226758 * https://bugzilla.suse.com/show_bug.cgi?id=1226775 * https://bugzilla.suse.com/show_bug.cgi?id=1226783 * https://bugzilla.suse.com/show_bug.cgi?id=1226785 * https://bugzilla.suse.com/show_bug.cgi?id=1226834 * https://bugzilla.suse.com/show_bug.cgi?id=1226837 * https://bugzilla.suse.com/show_bug.cgi?id=1226911 * https://bugzilla.suse.com/show_bug.cgi?id=1226990 * https://bugzilla.suse.com/show_bug.cgi?id=1226993 * https://bugzilla.suse.com/show_bug.cgi?id=1227090 * https://bugzilla.suse.com/show_bug.cgi?id=1227121 * https://bugzilla.suse.com/show_bug.cgi?id=1227157 * https://bugzilla.suse.com/show_bug.cgi?id=1227162 * https://bugzilla.suse.com/show_bug.cgi?id=1227362 * https://bugzilla.suse.com/show_bug.cgi?id=1227383 * https://bugzilla.suse.com/show_bug.cgi?id=1227432 * https://bugzilla.suse.com/show_bug.cgi?id=1227435 * https://bugzilla.suse.com/show_bug.cgi?id=1227447 * https://bugzilla.suse.com/show_bug.cgi?id=1227487 * https://bugzilla.suse.com/show_bug.cgi?id=1227549 * https://bugzilla.suse.com/show_bug.cgi?id=1227573 * https://bugzilla.suse.com/show_bug.cgi?id=1227618 * https://bugzilla.suse.com/show_bug.cgi?id=1227620 * https://bugzilla.suse.com/show_bug.cgi?id=1227626 * https://bugzilla.suse.com/show_bug.cgi?id=1227635 * https://bugzilla.suse.com/show_bug.cgi?id=1227661 * https://bugzilla.suse.com/show_bug.cgi?id=1227716 * https://bugzilla.suse.com/show_bug.cgi?id=1227722 * https://bugzilla.suse.com/show_bug.cgi?id=1227724 * https://bugzilla.suse.com/show_bug.cgi?id=1227725 * https://bugzilla.suse.com/show_bug.cgi?id=1227728 * https://bugzilla.suse.com/show_bug.cgi?id=1227729 * https://bugzilla.suse.com/show_bug.cgi?id=1227730 * https://bugzilla.suse.com/show_bug.cgi?id=1227732 * https://bugzilla.suse.com/show_bug.cgi?id=1227733 * https://bugzilla.suse.com/show_bug.cgi?id=1227750 * https://bugzilla.suse.com/show_bug.cgi?id=1227754 * https://bugzilla.suse.com/show_bug.cgi?id=1227755 * https://bugzilla.suse.com/show_bug.cgi?id=1227760 * https://bugzilla.suse.com/show_bug.cgi?id=1227762 * https://bugzilla.suse.com/show_bug.cgi?id=1227763 * https://bugzilla.suse.com/show_bug.cgi?id=1227764 * https://bugzilla.suse.com/show_bug.cgi?id=1227766 * https://bugzilla.suse.com/show_bug.cgi?id=1227770 * https://bugzilla.suse.com/show_bug.cgi?id=1227771 * https://bugzilla.suse.com/show_bug.cgi?id=1227772 * https://bugzilla.suse.com/show_bug.cgi?id=1227774 * https://bugzilla.suse.com/show_bug.cgi?id=1227779 * https://bugzilla.suse.com/show_bug.cgi?id=1227780 * https://bugzilla.suse.com/show_bug.cgi?id=1227783 * https://bugzilla.suse.com/show_bug.cgi?id=1227786 * https://bugzilla.suse.com/show_bug.cgi?id=1227787 * https://bugzilla.suse.com/show_bug.cgi?id=1227790 * https://bugzilla.suse.com/show_bug.cgi?id=1227792 * https://bugzilla.suse.com/show_bug.cgi?id=1227796 * https://bugzilla.suse.com/show_bug.cgi?id=1227797 * https://bugzilla.suse.com/show_bug.cgi?id=1227798 * https://bugzilla.suse.com/show_bug.cgi?id=1227800 * https://bugzilla.suse.com/show_bug.cgi?id=1227802 * https://bugzilla.suse.com/show_bug.cgi?id=1227806 * https://bugzilla.suse.com/show_bug.cgi?id=1227808 * https://bugzilla.suse.com/show_bug.cgi?id=1227810 * https://bugzilla.suse.com/show_bug.cgi?id=1227812 * https://bugzilla.suse.com/show_bug.cgi?id=1227813 * https://bugzilla.suse.com/show_bug.cgi?id=1227814 * https://bugzilla.suse.com/show_bug.cgi?id=1227816 * https://bugzilla.suse.com/show_bug.cgi?id=1227820 * https://bugzilla.suse.com/show_bug.cgi?id=1227823 * https://bugzilla.suse.com/show_bug.cgi?id=1227824 * https://bugzilla.suse.com/show_bug.cgi?id=1227828 * https://bugzilla.suse.com/show_bug.cgi?id=1227829 * https://bugzilla.suse.com/show_bug.cgi?id=1227836 * https://bugzilla.suse.com/show_bug.cgi?id=1227846 * https://bugzilla.suse.com/show_bug.cgi?id=1227849 * https://bugzilla.suse.com/show_bug.cgi?id=1227851 * https://bugzilla.suse.com/show_bug.cgi?id=1227862 * https://bugzilla.suse.com/show_bug.cgi?id=1227864 * https://bugzilla.suse.com/show_bug.cgi?id=1227865 * https://bugzilla.suse.com/show_bug.cgi?id=1227866 * https://bugzilla.suse.com/show_bug.cgi?id=1227870 * https://bugzilla.suse.com/show_bug.cgi?id=1227884 * https://bugzilla.suse.com/show_bug.cgi?id=1227886 * https://bugzilla.suse.com/show_bug.cgi?id=1227891 * https://bugzilla.suse.com/show_bug.cgi?id=1227893 * https://bugzilla.suse.com/show_bug.cgi?id=1227899 * https://bugzilla.suse.com/show_bug.cgi?id=1227900 * https://bugzilla.suse.com/show_bug.cgi?id=1227910 * https://bugzilla.suse.com/show_bug.cgi?id=1227913 * https://bugzilla.suse.com/show_bug.cgi?id=1227917 * https://bugzilla.suse.com/show_bug.cgi?id=1227919 * https://bugzilla.suse.com/show_bug.cgi?id=1227920 * https://bugzilla.suse.com/show_bug.cgi?id=1227921 * https://bugzilla.suse.com/show_bug.cgi?id=1227922 * https://bugzilla.suse.com/show_bug.cgi?id=1227923 * https://bugzilla.suse.com/show_bug.cgi?id=1227924 * https://bugzilla.suse.com/show_bug.cgi?id=1227925 * https://bugzilla.suse.com/show_bug.cgi?id=1227927 * https://bugzilla.suse.com/show_bug.cgi?id=1227928 * https://bugzilla.suse.com/show_bug.cgi?id=1227931 * https://bugzilla.suse.com/show_bug.cgi?id=1227932 * https://bugzilla.suse.com/show_bug.cgi?id=1227933 * https://bugzilla.suse.com/show_bug.cgi?id=1227935 * https://bugzilla.suse.com/show_bug.cgi?id=1227936 * https://bugzilla.suse.com/show_bug.cgi?id=1227938 * https://bugzilla.suse.com/show_bug.cgi?id=1227941 * https://bugzilla.suse.com/show_bug.cgi?id=1227942 * https://bugzilla.suse.com/show_bug.cgi?id=1227944 * https://bugzilla.suse.com/show_bug.cgi?id=1227945 * https://bugzilla.suse.com/show_bug.cgi?id=1227947 * https://bugzilla.suse.com/show_bug.cgi?id=1227948 * https://bugzilla.suse.com/show_bug.cgi?id=1227949 * https://bugzilla.suse.com/show_bug.cgi?id=1227950 * https://bugzilla.suse.com/show_bug.cgi?id=1227952 * https://bugzilla.suse.com/show_bug.cgi?id=1227953 * https://bugzilla.suse.com/show_bug.cgi?id=1227954 * https://bugzilla.suse.com/show_bug.cgi?id=1227956 * https://bugzilla.suse.com/show_bug.cgi?id=1227957 * https://bugzilla.suse.com/show_bug.cgi?id=1227963 * https://bugzilla.suse.com/show_bug.cgi?id=1227964 * https://bugzilla.suse.com/show_bug.cgi?id=1227965 * https://bugzilla.suse.com/show_bug.cgi?id=1227968 * https://bugzilla.suse.com/show_bug.cgi?id=1227969 * https://bugzilla.suse.com/show_bug.cgi?id=1227970 * https://bugzilla.suse.com/show_bug.cgi?id=1227971 * https://bugzilla.suse.com/show_bug.cgi?id=1227972 * https://bugzilla.suse.com/show_bug.cgi?id=1227975 * https://bugzilla.suse.com/show_bug.cgi?id=1227976 * https://bugzilla.suse.com/show_bug.cgi?id=1227981 * https://bugzilla.suse.com/show_bug.cgi?id=1227982 * https://bugzilla.suse.com/show_bug.cgi?id=1227985 * https://bugzilla.suse.com/show_bug.cgi?id=1227986 * https://bugzilla.suse.com/show_bug.cgi?id=1227987 * https://bugzilla.suse.com/show_bug.cgi?id=1227988 * https://bugzilla.suse.com/show_bug.cgi?id=1227989 * https://bugzilla.suse.com/show_bug.cgi?id=1227990 * https://bugzilla.suse.com/show_bug.cgi?id=1227991 * https://bugzilla.suse.com/show_bug.cgi?id=1227992 * https://bugzilla.suse.com/show_bug.cgi?id=1227993 * https://bugzilla.suse.com/show_bug.cgi?id=1227995 * https://bugzilla.suse.com/show_bug.cgi?id=1227996 * https://bugzilla.suse.com/show_bug.cgi?id=1227997 * https://bugzilla.suse.com/show_bug.cgi?id=1228000 * https://bugzilla.suse.com/show_bug.cgi?id=1228002 * https://bugzilla.suse.com/show_bug.cgi?id=1228003 * https://bugzilla.suse.com/show_bug.cgi?id=1228004 * https://bugzilla.suse.com/show_bug.cgi?id=1228005 * https://bugzilla.suse.com/show_bug.cgi?id=1228006 * https://bugzilla.suse.com/show_bug.cgi?id=1228007 * https://bugzilla.suse.com/show_bug.cgi?id=1228008 * https://bugzilla.suse.com/show_bug.cgi?id=1228009 * https://bugzilla.suse.com/show_bug.cgi?id=1228010 * https://bugzilla.suse.com/show_bug.cgi?id=1228011 * https://bugzilla.suse.com/show_bug.cgi?id=1228013 * https://bugzilla.suse.com/show_bug.cgi?id=1228014 * https://bugzilla.suse.com/show_bug.cgi?id=1228015 * https://bugzilla.suse.com/show_bug.cgi?id=1228019 * https://bugzilla.suse.com/show_bug.cgi?id=1228020 * https://bugzilla.suse.com/show_bug.cgi?id=1228025 * https://bugzilla.suse.com/show_bug.cgi?id=1228028 * https://bugzilla.suse.com/show_bug.cgi?id=1228035 * https://bugzilla.suse.com/show_bug.cgi?id=1228037 * https://bugzilla.suse.com/show_bug.cgi?id=1228038 * https://bugzilla.suse.com/show_bug.cgi?id=1228039 * https://bugzilla.suse.com/show_bug.cgi?id=1228040 * https://bugzilla.suse.com/show_bug.cgi?id=1228045 * https://bugzilla.suse.com/show_bug.cgi?id=1228054 * https://bugzilla.suse.com/show_bug.cgi?id=1228055 * https://bugzilla.suse.com/show_bug.cgi?id=1228056 * https://bugzilla.suse.com/show_bug.cgi?id=1228060 * https://bugzilla.suse.com/show_bug.cgi?id=1228061 * https://bugzilla.suse.com/show_bug.cgi?id=1228062 * https://bugzilla.suse.com/show_bug.cgi?id=1228063 * https://bugzilla.suse.com/show_bug.cgi?id=1228064 * https://bugzilla.suse.com/show_bug.cgi?id=1228066 * https://bugzilla.suse.com/show_bug.cgi?id=1228067 * https://bugzilla.suse.com/show_bug.cgi?id=1228068 * https://bugzilla.suse.com/show_bug.cgi?id=1228071 * https://bugzilla.suse.com/show_bug.cgi?id=1228079 * https://bugzilla.suse.com/show_bug.cgi?id=1228090 * https://bugzilla.suse.com/show_bug.cgi?id=1228114 * https://bugzilla.suse.com/show_bug.cgi?id=1228140 * https://bugzilla.suse.com/show_bug.cgi?id=1228190 * https://bugzilla.suse.com/show_bug.cgi?id=1228191 * https://bugzilla.suse.com/show_bug.cgi?id=1228195 * https://bugzilla.suse.com/show_bug.cgi?id=1228202 * https://bugzilla.suse.com/show_bug.cgi?id=1228226 * https://bugzilla.suse.com/show_bug.cgi?id=1228235 * https://bugzilla.suse.com/show_bug.cgi?id=1228237 * https://bugzilla.suse.com/show_bug.cgi?id=1228247 * https://bugzilla.suse.com/show_bug.cgi?id=1228327 * https://bugzilla.suse.com/show_bug.cgi?id=1228328 * https://bugzilla.suse.com/show_bug.cgi?id=1228330 * https://bugzilla.suse.com/show_bug.cgi?id=1228403 * https://bugzilla.suse.com/show_bug.cgi?id=1228405 * https://bugzilla.suse.com/show_bug.cgi?id=1228408 * https://bugzilla.suse.com/show_bug.cgi?id=1228409 * https://bugzilla.suse.com/show_bug.cgi?id=1228410 * https://bugzilla.suse.com/show_bug.cgi?id=1228418 * https://bugzilla.suse.com/show_bug.cgi?id=1228440 * https://bugzilla.suse.com/show_bug.cgi?id=1228459 * https://bugzilla.suse.com/show_bug.cgi?id=1228462 * https://bugzilla.suse.com/show_bug.cgi?id=1228470 * https://bugzilla.suse.com/show_bug.cgi?id=1228518 * https://bugzilla.suse.com/show_bug.cgi?id=1228520 * https://bugzilla.suse.com/show_bug.cgi?id=1228530 * https://bugzilla.suse.com/show_bug.cgi?id=1228561 * https://bugzilla.suse.com/show_bug.cgi?id=1228565 * https://bugzilla.suse.com/show_bug.cgi?id=1228580 * https://bugzilla.suse.com/show_bug.cgi?id=1228581 * https://bugzilla.suse.com/show_bug.cgi?id=1228591 * https://bugzilla.suse.com/show_bug.cgi?id=1228599 * https://bugzilla.suse.com/show_bug.cgi?id=1228617 * https://bugzilla.suse.com/show_bug.cgi?id=1228625 * https://bugzilla.suse.com/show_bug.cgi?id=1228626 * https://bugzilla.suse.com/show_bug.cgi?id=1228633 * https://bugzilla.suse.com/show_bug.cgi?id=1228640 * https://bugzilla.suse.com/show_bug.cgi?id=1228644 * https://bugzilla.suse.com/show_bug.cgi?id=1228649 * https://bugzilla.suse.com/show_bug.cgi?id=1228655 * https://bugzilla.suse.com/show_bug.cgi?id=1228665 * https://bugzilla.suse.com/show_bug.cgi?id=1228672 * https://bugzilla.suse.com/show_bug.cgi?id=1228680 * https://bugzilla.suse.com/show_bug.cgi?id=1228705 * https://bugzilla.suse.com/show_bug.cgi?id=1228723 * https://bugzilla.suse.com/show_bug.cgi?id=1228743 * https://bugzilla.suse.com/show_bug.cgi?id=1228756 * https://bugzilla.suse.com/show_bug.cgi?id=1228801 * https://bugzilla.suse.com/show_bug.cgi?id=1228850 * https://bugzilla.suse.com/show_bug.cgi?id=1228857 * https://jira.suse.com/browse/PED-8582 * https://jira.suse.com/browse/PED-8690 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 19 08:30:05 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 19 Aug 2024 08:30:05 -0000 Subject: SUSE-SU-2024:2953-1: moderate: Security update for openssl-1_1 Message-ID: <172405620535.31254.15012434232089248829@smelt2.prg2.suse.org> # Security update for openssl-1_1 Announcement ID: SUSE-SU-2024:2953-1 Rating: moderate References: * bsc#1222548 * bsc#1227138 Cross-References: * CVE-2024-2511 * CVE-2024-5535 CVSS scores: * CVE-2024-2511 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-5535 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 * SUSE Linux Enterprise Software Development Kit 12 SP5 An update that solves two vulnerabilities can now be installed. ## Description: This update for openssl-1_1 fixes the following issues: * CVE-2024-2511: Fixed a denial of service due to unbounded memory growth with session handling in TLSv1.3 (bsc#1222548) * CVE-2024-5535: Fixed a buffer overread in function SSL_select_next_proto() with an empty supported client protocols buffer (bsc#1227138) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Software Development Kit 12 SP5 zypper in -t patch SUSE-SLE-SDK-12-SP5-2024-2953=1 * SUSE Linux Enterprise High Performance Computing 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-2953=1 * SUSE Linux Enterprise Server 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-2953=1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-2953=1 ## Package List: * SUSE Linux Enterprise Software Development Kit 12 SP5 (aarch64 ppc64le s390x x86_64) * libopenssl-1_1-devel-1.1.1d-2.110.2 * openssl-1_1-debugsource-1.1.1d-2.110.2 * openssl-1_1-debuginfo-1.1.1d-2.110.2 * SUSE Linux Enterprise Software Development Kit 12 SP5 (s390x x86_64) * libopenssl-1_1-devel-32bit-1.1.1d-2.110.2 * SUSE Linux Enterprise High Performance Computing 12 SP5 (aarch64 x86_64) * openssl-1_1-debugsource-1.1.1d-2.110.2 * openssl-1_1-1.1.1d-2.110.2 * libopenssl1_1-debuginfo-1.1.1d-2.110.2 * openssl-1_1-debuginfo-1.1.1d-2.110.2 * libopenssl1_1-1.1.1d-2.110.2 * libopenssl1_1-hmac-1.1.1d-2.110.2 * SUSE Linux Enterprise High Performance Computing 12 SP5 (x86_64) * libopenssl1_1-debuginfo-32bit-1.1.1d-2.110.2 * libopenssl1_1-32bit-1.1.1d-2.110.2 * libopenssl1_1-hmac-32bit-1.1.1d-2.110.2 * SUSE Linux Enterprise Server 12 SP5 (aarch64 ppc64le s390x x86_64) * openssl-1_1-debugsource-1.1.1d-2.110.2 * openssl-1_1-1.1.1d-2.110.2 * libopenssl1_1-debuginfo-1.1.1d-2.110.2 * openssl-1_1-debuginfo-1.1.1d-2.110.2 * libopenssl1_1-1.1.1d-2.110.2 * libopenssl1_1-hmac-1.1.1d-2.110.2 * SUSE Linux Enterprise Server 12 SP5 (s390x x86_64) * libopenssl1_1-debuginfo-32bit-1.1.1d-2.110.2 * libopenssl1_1-32bit-1.1.1d-2.110.2 * libopenssl1_1-hmac-32bit-1.1.1d-2.110.2 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 (ppc64le x86_64) * openssl-1_1-debugsource-1.1.1d-2.110.2 * openssl-1_1-1.1.1d-2.110.2 * libopenssl1_1-debuginfo-1.1.1d-2.110.2 * openssl-1_1-debuginfo-1.1.1d-2.110.2 * libopenssl1_1-1.1.1d-2.110.2 * libopenssl1_1-hmac-1.1.1d-2.110.2 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 (x86_64) * libopenssl1_1-debuginfo-32bit-1.1.1d-2.110.2 * libopenssl1_1-32bit-1.1.1d-2.110.2 * libopenssl1_1-hmac-32bit-1.1.1d-2.110.2 ## References: * https://www.suse.com/security/cve/CVE-2024-2511.html * https://www.suse.com/security/cve/CVE-2024-5535.html * https://bugzilla.suse.com/show_bug.cgi?id=1222548 * https://bugzilla.suse.com/show_bug.cgi?id=1227138 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 19 09:55:50 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 19 Aug 2024 09:55:50 -0000 Subject: SUSE-SU-2024:2776-1: moderate: Security update for dri3proto, presentproto, wayland-protocols, xwayland Message-ID: <172406135044.27155.18201040912466943961@smelt2.prg2.suse.org> # Security update for dri3proto, presentproto, wayland-protocols, xwayland Announcement ID: SUSE-SU-2024:2776-1 Rating: moderate References: * bsc#1219892 * bsc#1222309 * bsc#1222310 * bsc#1222312 * bsc#1222442 * jsc#PED-9498 Cross-References: * CVE-2024-31080 * CVE-2024-31081 * CVE-2024-31083 CVSS scores: * CVE-2024-31080 ( SUSE ): 7.6 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2024-31081 ( SUSE ): 7.6 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2024-31083 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * Development Tools Module 15-SP5 * Development Tools Module 15-SP6 * openSUSE Leap 15.5 * openSUSE Leap 15.6 * SUSE Linux Enterprise Desktop 15 SP5 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Linux Enterprise Workstation Extension 15 SP6 * SUSE Package Hub 15 15-SP6 An update that solves three vulnerabilities, contains one feature and has two security fixes can now be installed. ## Description: This update for dri3proto, presentproto, wayland-protocols, xwayland fixes the following issues: Changes in presentproto: * update to version 1.4 (patch generated from xorgproto-2024.1 sources) Changes in wayland-protocols: * Update to version 1.36: * xdg-dialog: fix missing namespace in protocol name * Changes from version 1.35: * cursor-shape-v1: Does not advertises the list of supported cursors * xdg-shell: add missing enum attribute to set_constraint_adjustment * xdg-shell: recommend against drawing decorations when tiled * tablet-v2: mark as stable * staging: add alpha-modifier protocol * Update to 1.36 * Fix to the xdg dialog protocol * tablet-v2 protocol is now stable * alpha-modifier: new protocol * Bug fix to the cursor shape documentation * The xdg-shell protocol now also explicitly recommends against drawing decorations outside of the window geometry when tiled * Update to 1.34: * xdg-dialog: new protocol * xdg-toplevel-drag: new protocol * Fix typo in ext-foreign-toplevel-list-v1 * tablet-v2: clarify that name/id events are optional * linux-drm-syncobj-v1: new protocol * linux-explicit-synchronization-v1: add linux-drm-syncobj note * Update to version 1.33: * xdg-shell: Clarify what a toplevel by default includes * linux-dmabuf: sync changes from unstable to stable * linux-dmabuf: require all planes to use the same modifier * presentation-time: stop referring to Linux/glibc * security-context-v1: Make sandbox engine names use reverse-DNS * xdg-decoration: remove ambiguous wording in configure event * xdg-decoration: fix configure event summary * linux-dmabuf: mark as stable * linux-dmabuf: add note about implicit sync * security-context-v1: Document what can be done with the open sockets * security-context-v1: Document out of band metadata for flatpak Changes in dri3proto: * update to version 1.4 (patch generated from xorgproto-2024.1 sources) Changes in xwayland: * Update to bugfix release 24.1.1 for the current stable 24.1 branch of Xwayland * xwayland: fix segment fault in `xwl_glamor_gbm_init_main_dev` * os: Explicitly include X11/Xmd.h for CARD32 definition to fix building on i686 * present: On *BSD, epoll-shim is needed to emulate eventfd() * xwayland: Stop on first unmapped child * xwayland/window-buffers: Promote xwl_window_buffer * xwayland/window-buffers: Add xwl_window_buffer_release() * xwayland/glamor/gbm: Copy explicit sync code to GLAMOR/GBM * xwayland/window-buffers: Use synchronization from GLAMOR/GBM * xwayland/window-buffers: Do not always set syncpnts * xwayland/window-buffers: Move code to submit pixmaps * xwayland/window-buffers: Set syncpnts for all pixmaps * xwayland: Move xwl_window disposal to its own function * xwayland: Make sure we do not leak xwl_window on destroy * wayland/window-buffers: Move buffer disposal to its own function * xwayland/window-buffers: optionally force disposal * wayland: Force disposal of windows buffers for root on destroy * xwayland: Check for pointer in xwl_seat_leave_ptr() * xwayland: remove includedir from pkgconfig * disable DPMS on sle15 due to missing proto package * Update to feature release 24.1.0 * This fixes a couple of regressions introduced in the previous release candidate versions along with a fix for XTEST emulation with EI. * xwayland: Send ei_device_frame on device_scroll_discrete * xwayland: Restore the ResizeWindow handler * xwayland: Handle rootful resize in ResizeWindow * xwayland: Move XRandR emulation to the ResizeWindow hook * xwayland: Use correct xwl_window lookup function in xwl_set_shape * eglstreams has been dropped * Update to bug fix relesae 23.2.7 * m4: drop autoconf leftovers * xwayland: Send ei_device_frame on device_scroll_discrete * xwayland: Call drmFreeDevice for dma-buf default feedback * xwayland: Use drmDevicesEqual in xwl_dmabuf_feedback_tranche_done * dri3: Free formats in cache_formats_and_modifiers * xwayland/glamor: Handle depth 15 in gbm_format_for_depth * Revert "xwayland/glamor: Avoid implicit redirection with depth 32 parent windows" * xwayland: Check for outputs before lease devices * xwayland: Do not remove output on withdraw if leased * Update to 23.2.6 * This is a quick bug fix release to address a regression introduced by the fix for CVE-2024-31083 in xwayland-23.2.5. * Security update 23.2.5 This release contains the 3 security fixes that actually apply to Xwayland reported in the security advisory of April 3rd 2024 * CVE-2024-31080 * CVE-2024-31081 * CVE-2024-31083 Additionally, it also contains a couple of other fixes, a copy/paste error in the DeviceStateNotify event and a fix to enable buttons with pointer gestures for backward compatibility with legacy X11 clients. * Don't provide xorg-x11-server-source * xwayland sources are not meant for a generic server. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch SUSE-2024-2776=1 openSUSE-SLE-15.6-2024-2776=1 * openSUSE Leap 15.5 zypper in -t patch openSUSE-SLE-15.5-2024-2776=1 * Development Tools Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Development-Tools-15-SP5-2024-2776=1 * Development Tools Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Development-Tools-15-SP6-2024-2776=1 * SUSE Package Hub 15 15-SP6 zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP6-2024-2776=1 * SUSE Linux Enterprise Workstation Extension 15 SP6 zypper in -t patch SUSE-SLE-Product-WE-15-SP6-2024-2776=1 ## Package List: * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64 i586) * xwayland-devel-24.1.1-150600.5.3.1 * xwayland-debuginfo-24.1.1-150600.5.3.1 * xwayland-debugsource-24.1.1-150600.5.3.1 * xwayland-24.1.1-150600.5.3.1 * presentproto-devel-1.3-150600.3.3.1 * openSUSE Leap 15.6 (noarch) * wayland-protocols-devel-1.36-150600.4.3.1 * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64) * dri3proto-devel-1.2-150100.6.3.1 * openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64) * dri3proto-devel-1.2-150100.6.3.1 * Development Tools Module 15-SP5 (aarch64 ppc64le s390x x86_64) * dri3proto-devel-1.2-150100.6.3.1 * Development Tools Module 15-SP6 (aarch64 ppc64le s390x x86_64) * dri3proto-devel-1.2-150100.6.3.1 * presentproto-devel-1.3-150600.3.3.1 * SUSE Package Hub 15 15-SP6 (noarch) * wayland-protocols-devel-1.36-150600.4.3.1 * SUSE Linux Enterprise Workstation Extension 15 SP6 (x86_64) * xwayland-debugsource-24.1.1-150600.5.3.1 * xwayland-24.1.1-150600.5.3.1 * xwayland-debuginfo-24.1.1-150600.5.3.1 ## References: * https://www.suse.com/security/cve/CVE-2024-31080.html * https://www.suse.com/security/cve/CVE-2024-31081.html * https://www.suse.com/security/cve/CVE-2024-31083.html * https://bugzilla.suse.com/show_bug.cgi?id=1219892 * https://bugzilla.suse.com/show_bug.cgi?id=1222309 * https://bugzilla.suse.com/show_bug.cgi?id=1222310 * https://bugzilla.suse.com/show_bug.cgi?id=1222312 * https://bugzilla.suse.com/show_bug.cgi?id=1222442 * https://jira.suse.com/browse/PED-9498 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 19 12:30:14 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 19 Aug 2024 12:30:14 -0000 Subject: SUSE-SU-2024:2959-1: low: Security update for python3 Message-ID: <172407061406.18977.8178200743995210061@smelt2.prg2.suse.org> # Security update for python3 Announcement ID: SUSE-SU-2024:2959-1 Rating: low References: * bsc#1226448 * bsc#1227378 Cross-References: * CVE-2024-4032 CVSS scores: * CVE-2024-4032 ( SUSE ): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L Affected Products: * SUSE Linux Enterprise High Performance Computing 12 SP2 * SUSE Linux Enterprise High Performance Computing 12 SP3 * SUSE Linux Enterprise High Performance Computing 12 SP4 * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise Server 12 * SUSE Linux Enterprise Server 12 SP1 * SUSE Linux Enterprise Server 12 SP2 * SUSE Linux Enterprise Server 12 SP3 * SUSE Linux Enterprise Server 12 SP4 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server for SAP Applications 12 * SUSE Linux Enterprise Server for SAP Applications 12 SP1 * SUSE Linux Enterprise Server for SAP Applications 12 SP2 * SUSE Linux Enterprise Server for SAP Applications 12 SP3 * SUSE Linux Enterprise Server for SAP Applications 12 SP4 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 * SUSE Linux Enterprise Software Development Kit 12 SP5 * Web and Scripting Module 12 An update that solves one vulnerability and has one security fix can now be installed. ## Description: This update for python3 fixes the following issues: * CVE-2024-4032: Fixed incorrect IPv4 and IPv6 private ranges (bsc#1226448). * Stop using %%defattr, it seems to be breaking proper executable attributes on /usr/bin/ scripts (bsc#1227378). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * Web and Scripting Module 12 zypper in -t patch SUSE-SLE-Module-Web-Scripting-12-2024-2959=1 * SUSE Linux Enterprise Software Development Kit 12 SP5 zypper in -t patch SUSE-SLE-SDK-12-SP5-2024-2959=1 * SUSE Linux Enterprise High Performance Computing 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-2959=1 * SUSE Linux Enterprise Server 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-2959=1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-2959=1 ## Package List: * Web and Scripting Module 12 (aarch64 ppc64le s390x x86_64) * python3-base-3.4.10-25.133.1 * python3-curses-3.4.10-25.133.1 * libpython3_4m1_0-3.4.10-25.133.1 * python3-base-debugsource-3.4.10-25.133.1 * libpython3_4m1_0-debuginfo-3.4.10-25.133.1 * python3-debuginfo-3.4.10-25.133.1 * python3-debugsource-3.4.10-25.133.1 * python3-3.4.10-25.133.1 * python3-base-debuginfo-3.4.10-25.133.1 * SUSE Linux Enterprise Software Development Kit 12 SP5 (aarch64 ppc64le s390x x86_64) * python3-dbm-debuginfo-3.4.10-25.133.1 * python3-base-debugsource-3.4.10-25.133.1 * python3-debuginfo-3.4.10-25.133.1 * python3-dbm-3.4.10-25.133.1 * python3-devel-3.4.10-25.133.1 * python3-debugsource-3.4.10-25.133.1 * python3-base-debuginfo-3.4.10-25.133.1 * SUSE Linux Enterprise Software Development Kit 12 SP5 (ppc64le s390x x86_64) * python3-devel-debuginfo-3.4.10-25.133.1 * SUSE Linux Enterprise High Performance Computing 12 SP5 (aarch64 x86_64) * python3-base-3.4.10-25.133.1 * python3-curses-3.4.10-25.133.1 * libpython3_4m1_0-3.4.10-25.133.1 * python3-curses-debuginfo-3.4.10-25.133.1 * python3-tk-3.4.10-25.133.1 * python3-base-debugsource-3.4.10-25.133.1 * python3-tk-debuginfo-3.4.10-25.133.1 * libpython3_4m1_0-debuginfo-3.4.10-25.133.1 * python3-debuginfo-3.4.10-25.133.1 * python3-devel-3.4.10-25.133.1 * python3-debugsource-3.4.10-25.133.1 * python3-3.4.10-25.133.1 * python3-base-debuginfo-3.4.10-25.133.1 * SUSE Linux Enterprise High Performance Computing 12 SP5 (x86_64) * python3-base-debuginfo-32bit-3.4.10-25.133.1 * libpython3_4m1_0-32bit-3.4.10-25.133.1 * libpython3_4m1_0-debuginfo-32bit-3.4.10-25.133.1 * python3-devel-debuginfo-3.4.10-25.133.1 * SUSE Linux Enterprise Server 12 SP5 (aarch64 ppc64le s390x x86_64) * python3-base-3.4.10-25.133.1 * python3-curses-3.4.10-25.133.1 * libpython3_4m1_0-3.4.10-25.133.1 * python3-curses-debuginfo-3.4.10-25.133.1 * python3-tk-3.4.10-25.133.1 * python3-base-debugsource-3.4.10-25.133.1 * python3-tk-debuginfo-3.4.10-25.133.1 * libpython3_4m1_0-debuginfo-3.4.10-25.133.1 * python3-debuginfo-3.4.10-25.133.1 * python3-devel-3.4.10-25.133.1 * python3-debugsource-3.4.10-25.133.1 * python3-3.4.10-25.133.1 * python3-base-debuginfo-3.4.10-25.133.1 * SUSE Linux Enterprise Server 12 SP5 (ppc64le s390x x86_64) * python3-devel-debuginfo-3.4.10-25.133.1 * SUSE Linux Enterprise Server 12 SP5 (s390x x86_64) * python3-base-debuginfo-32bit-3.4.10-25.133.1 * libpython3_4m1_0-32bit-3.4.10-25.133.1 * libpython3_4m1_0-debuginfo-32bit-3.4.10-25.133.1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 (ppc64le x86_64) * python3-base-3.4.10-25.133.1 * python3-curses-3.4.10-25.133.1 * libpython3_4m1_0-3.4.10-25.133.1 * python3-curses-debuginfo-3.4.10-25.133.1 * python3-devel-debuginfo-3.4.10-25.133.1 * python3-tk-3.4.10-25.133.1 * python3-base-debugsource-3.4.10-25.133.1 * python3-tk-debuginfo-3.4.10-25.133.1 * libpython3_4m1_0-debuginfo-3.4.10-25.133.1 * python3-debuginfo-3.4.10-25.133.1 * python3-devel-3.4.10-25.133.1 * python3-debugsource-3.4.10-25.133.1 * python3-3.4.10-25.133.1 * python3-base-debuginfo-3.4.10-25.133.1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 (x86_64) * python3-base-debuginfo-32bit-3.4.10-25.133.1 * libpython3_4m1_0-32bit-3.4.10-25.133.1 * libpython3_4m1_0-debuginfo-32bit-3.4.10-25.133.1 ## References: * https://www.suse.com/security/cve/CVE-2024-4032.html * https://bugzilla.suse.com/show_bug.cgi?id=1226448 * https://bugzilla.suse.com/show_bug.cgi?id=1227378 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 19 12:30:37 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 19 Aug 2024 12:30:37 -0000 Subject: SUSE-SU-2024:2453-1: moderate: Security update for libX11 Message-ID: <172407063709.18977.3702804620638524525@smelt2.prg2.suse.org> # Security update for libX11 Announcement ID: SUSE-SU-2024:2453-1 Rating: moderate References: * bsc#1215683 * bsc#1215684 * bsc#1215685 Cross-References: * CVE-2023-43785 * CVE-2023-43786 * CVE-2023-43787 CVSS scores: * CVE-2023-43785 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L * CVE-2023-43785 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2023-43786 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-43786 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-43787 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L * CVE-2023-43787 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * SUSE Linux Enterprise Micro 5.5 An update that solves three vulnerabilities can now be installed. ## Description: This update for libX11 fixes the following issues: * CVE-2023-43786: Fixed stack exhaustion from infinite recursion in PutSubImage() (bsc#1215684). * CVE-2023-43787: Fixed integer overflow in XCreateImage() leading to a heap overflow (bsc#1215685). * CVE-2023-43785: Fixed out-of-bounds memory access in _XkbReadKeySyms() (bsc#1215683). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2024-2453=1 ## Package List: * SUSE Linux Enterprise Micro 5.5 (ppc64le) * libX11-6-1.6.5-150000.3.33.1 * libX11-6-debuginfo-1.6.5-150000.3.33.1 * libX11-xcb1-debuginfo-1.6.5-150000.3.33.1 * libX11-debugsource-1.6.5-150000.3.33.1 * libX11-xcb1-1.6.5-150000.3.33.1 * SUSE Linux Enterprise Micro 5.5 (noarch) * libX11-data-1.6.5-150000.3.33.1 ## References: * https://www.suse.com/security/cve/CVE-2023-43785.html * https://www.suse.com/security/cve/CVE-2023-43786.html * https://www.suse.com/security/cve/CVE-2023-43787.html * https://bugzilla.suse.com/show_bug.cgi?id=1215683 * https://bugzilla.suse.com/show_bug.cgi?id=1215684 * https://bugzilla.suse.com/show_bug.cgi?id=1215685 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 19 12:30:47 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 19 Aug 2024 12:30:47 -0000 Subject: SUSE-SU-2024:1882-2: important: Security update for gstreamer-plugins-base Message-ID: <172407064783.18977.9980213137329236615@smelt2.prg2.suse.org> # Security update for gstreamer-plugins-base Announcement ID: SUSE-SU-2024:1882-2 Rating: important References: * bsc#1224806 Cross-References: * CVE-2024-4453 CVSS scores: * CVE-2024-4453 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Affected Products: * SUSE Linux Enterprise Micro 5.5 An update that solves one vulnerability can now be installed. ## Description: This update for gstreamer-plugins-base fixes the following issues: * CVE-2024-4453: Fixed lack of proper validation of user-supplied data when parsing EXIF metadata (bsc#1224806) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2024-1882=1 ## Package List: * SUSE Linux Enterprise Micro 5.5 (aarch64 ppc64le s390x x86_64) * libgsttag-1_0-0-debuginfo-1.22.0-150500.3.8.2 * libgstpbutils-1_0-0-debuginfo-1.22.0-150500.3.8.2 * libgsttag-1_0-0-1.22.0-150500.3.8.2 * gstreamer-plugins-base-debugsource-1.22.0-150500.3.8.2 * libgstaudio-1_0-0-1.22.0-150500.3.8.2 * libgstapp-1_0-0-1.22.0-150500.3.8.2 * libgstriff-1_0-0-debuginfo-1.22.0-150500.3.8.2 * libgstvideo-1_0-0-1.22.0-150500.3.8.2 * libgstvideo-1_0-0-debuginfo-1.22.0-150500.3.8.2 * libgstgl-1_0-0-debuginfo-1.22.0-150500.3.8.2 * gstreamer-plugins-base-debuginfo-1.22.0-150500.3.8.2 * libgstapp-1_0-0-debuginfo-1.22.0-150500.3.8.2 * gstreamer-plugins-base-1.22.0-150500.3.8.2 * libgstallocators-1_0-0-1.22.0-150500.3.8.2 * libgstaudio-1_0-0-debuginfo-1.22.0-150500.3.8.2 * libgstpbutils-1_0-0-1.22.0-150500.3.8.2 * libgstriff-1_0-0-1.22.0-150500.3.8.2 * libgstallocators-1_0-0-debuginfo-1.22.0-150500.3.8.2 * libgstgl-1_0-0-1.22.0-150500.3.8.2 ## References: * https://www.suse.com/security/cve/CVE-2024-4453.html * https://bugzilla.suse.com/show_bug.cgi?id=1224806 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 19 12:30:51 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 19 Aug 2024 12:30:51 -0000 Subject: SUSE-SU-2024:2436-1: important: Security update for apache2 Message-ID: <172407065175.18977.1659542405703875936@smelt2.prg2.suse.org> # Security update for apache2 Announcement ID: SUSE-SU-2024:2436-1 Rating: important References: * bsc#1226217 * bsc#1227268 * bsc#1227270 * bsc#1227271 Cross-References: * CVE-2024-38475 * CVE-2024-38477 * CVE-2024-39573 CVSS scores: * CVE-2024-38475 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N * CVE-2024-38477 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39573 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:H/A:N Affected Products: * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 * SUSE Linux Enterprise Software Development Kit 12 SP5 An update that solves three vulnerabilities and has one security fix can now be installed. ## Description: This update for apache2 fixes the following issues: Security fixes: * CVE-2024-38477: Fixed null pointer dereference in mod_proxy (bsc#1227270) * CVE-2024-39573: Fixed potential SSRF in mod_rewrite (bsc#1227271) * CVE-2024-38475: Fixed improper escaping of output in mod_rewrite (bsc#1227268) Other fixes: * Fixed regression of security fix (bsc#1226217) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Software Development Kit 12 SP5 zypper in -t patch SUSE-SLE-SDK-12-SP5-2024-2436=1 * SUSE Linux Enterprise High Performance Computing 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-2436=1 * SUSE Linux Enterprise Server 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-2436=1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-2436=1 ## Package List: * SUSE Linux Enterprise Software Development Kit 12 SP5 (aarch64 ppc64le s390x x86_64) * apache2-tls13-devel-2.4.51-35.51.1 * apache2-debuginfo-2.4.51-35.51.1 * apache2-debugsource-2.4.51-35.51.1 * apache2-devel-2.4.51-35.51.1 * apache2-tls13-debugsource-2.4.51-35.51.1 * apache2-tls13-debuginfo-2.4.51-35.51.1 * SUSE Linux Enterprise High Performance Computing 12 SP5 (aarch64 x86_64) * apache2-worker-debuginfo-2.4.51-35.51.1 * apache2-tls13-prefork-2.4.51-35.51.1 * apache2-debuginfo-2.4.51-35.51.1 * apache2-example-pages-2.4.51-35.51.1 * apache2-prefork-debuginfo-2.4.51-35.51.1 * apache2-tls13-2.4.51-35.51.1 * apache2-tls13-utils-2.4.51-35.51.1 * apache2-tls13-worker-2.4.51-35.51.1 * apache2-prefork-2.4.51-35.51.1 * apache2-utils-2.4.51-35.51.1 * apache2-utils-debuginfo-2.4.51-35.51.1 * apache2-worker-2.4.51-35.51.1 * apache2-debugsource-2.4.51-35.51.1 * apache2-tls13-worker-debuginfo-2.4.51-35.51.1 * apache2-tls13-prefork-debuginfo-2.4.51-35.51.1 * apache2-tls13-utils-debuginfo-2.4.51-35.51.1 * apache2-tls13-example-pages-2.4.51-35.51.1 * apache2-2.4.51-35.51.1 * apache2-tls13-debugsource-2.4.51-35.51.1 * apache2-tls13-debuginfo-2.4.51-35.51.1 * SUSE Linux Enterprise High Performance Computing 12 SP5 (noarch) * apache2-doc-2.4.51-35.51.1 * apache2-tls13-doc-2.4.51-35.51.1 * SUSE Linux Enterprise Server 12 SP5 (aarch64 ppc64le s390x x86_64) * apache2-worker-debuginfo-2.4.51-35.51.1 * apache2-tls13-prefork-2.4.51-35.51.1 * apache2-debuginfo-2.4.51-35.51.1 * apache2-example-pages-2.4.51-35.51.1 * apache2-prefork-debuginfo-2.4.51-35.51.1 * apache2-tls13-2.4.51-35.51.1 * apache2-tls13-utils-2.4.51-35.51.1 * apache2-tls13-worker-2.4.51-35.51.1 * apache2-prefork-2.4.51-35.51.1 * apache2-utils-2.4.51-35.51.1 * apache2-utils-debuginfo-2.4.51-35.51.1 * apache2-worker-2.4.51-35.51.1 * apache2-debugsource-2.4.51-35.51.1 * apache2-tls13-worker-debuginfo-2.4.51-35.51.1 * apache2-tls13-prefork-debuginfo-2.4.51-35.51.1 * apache2-tls13-utils-debuginfo-2.4.51-35.51.1 * apache2-tls13-example-pages-2.4.51-35.51.1 * apache2-2.4.51-35.51.1 * apache2-tls13-debugsource-2.4.51-35.51.1 * apache2-tls13-debuginfo-2.4.51-35.51.1 * SUSE Linux Enterprise Server 12 SP5 (noarch) * apache2-doc-2.4.51-35.51.1 * apache2-tls13-doc-2.4.51-35.51.1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 (ppc64le x86_64) * apache2-worker-debuginfo-2.4.51-35.51.1 * apache2-tls13-prefork-2.4.51-35.51.1 * apache2-debuginfo-2.4.51-35.51.1 * apache2-example-pages-2.4.51-35.51.1 * apache2-prefork-debuginfo-2.4.51-35.51.1 * apache2-tls13-2.4.51-35.51.1 * apache2-tls13-utils-2.4.51-35.51.1 * apache2-tls13-worker-2.4.51-35.51.1 * apache2-prefork-2.4.51-35.51.1 * apache2-utils-2.4.51-35.51.1 * apache2-utils-debuginfo-2.4.51-35.51.1 * apache2-worker-2.4.51-35.51.1 * apache2-debugsource-2.4.51-35.51.1 * apache2-tls13-worker-debuginfo-2.4.51-35.51.1 * apache2-tls13-prefork-debuginfo-2.4.51-35.51.1 * apache2-tls13-utils-debuginfo-2.4.51-35.51.1 * apache2-tls13-example-pages-2.4.51-35.51.1 * apache2-2.4.51-35.51.1 * apache2-tls13-debugsource-2.4.51-35.51.1 * apache2-tls13-debuginfo-2.4.51-35.51.1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 (noarch) * apache2-doc-2.4.51-35.51.1 * apache2-tls13-doc-2.4.51-35.51.1 ## References: * https://www.suse.com/security/cve/CVE-2024-38475.html * https://www.suse.com/security/cve/CVE-2024-38477.html * https://www.suse.com/security/cve/CVE-2024-39573.html * https://bugzilla.suse.com/show_bug.cgi?id=1226217 * https://bugzilla.suse.com/show_bug.cgi?id=1227268 * https://bugzilla.suse.com/show_bug.cgi?id=1227270 * https://bugzilla.suse.com/show_bug.cgi?id=1227271 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 19 12:30:53 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 19 Aug 2024 12:30:53 -0000 Subject: SUSE-SU-2024:0764-2: important: Security update for wpa_supplicant Message-ID: <172407065399.18977.5852454439059501652@smelt2.prg2.suse.org> # Security update for wpa_supplicant Announcement ID: SUSE-SU-2024:0764-2 Rating: important References: * bsc#1219975 Cross-References: * CVE-2023-52160 CVSS scores: * CVE-2023-52160 ( SUSE ): 6.5 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2023-52160 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N Affected Products: * SUSE Linux Enterprise Micro 5.5 An update that solves one vulnerability can now be installed. ## Description: This update for wpa_supplicant fixes the following issues: * CVE-2023-52160: Bypassing WiFi Authentication (bsc#1219975). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2024-764=1 ## Package List: * SUSE Linux Enterprise Micro 5.5 (aarch64 ppc64le s390x x86_64) * wpa_supplicant-debuginfo-2.10-150500.3.3.1 * wpa_supplicant-debugsource-2.10-150500.3.3.1 * wpa_supplicant-2.10-150500.3.3.1 ## References: * https://www.suse.com/security/cve/CVE-2023-52160.html * https://bugzilla.suse.com/show_bug.cgi?id=1219975 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 19 12:31:09 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 19 Aug 2024 12:31:09 -0000 Subject: SUSE-SU-2024:0876-2: important: Security update for sudo Message-ID: <172407066982.18977.5532783530522587140@smelt2.prg2.suse.org> # Security update for sudo Announcement ID: SUSE-SU-2024:0876-2 Rating: important References: * bsc#1221134 * bsc#1221151 Cross-References: * CVE-2023-42465 CVSS scores: * CVE-2023-42465 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-42465 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * SUSE Linux Enterprise Micro 5.5 An update that solves one vulnerability and has one security fix can now be installed. ## Description: This update for sudo fixes the following issues: * CVE-2023-42465: Fixed issues introduced by first patches (bsc#1221151, bsc#1221134). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2024-876=1 ## Package List: * SUSE Linux Enterprise Micro 5.5 (aarch64 ppc64le s390x x86_64) * sudo-debuginfo-1.9.12p1-150500.7.10.1 * sudo-debugsource-1.9.12p1-150500.7.10.1 * sudo-1.9.12p1-150500.7.10.1 ## References: * https://www.suse.com/security/cve/CVE-2023-42465.html * https://bugzilla.suse.com/show_bug.cgi?id=1221134 * https://bugzilla.suse.com/show_bug.cgi?id=1221151 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 19 12:31:19 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 19 Aug 2024 12:31:19 -0000 Subject: SUSE-SU-2024:2435-1: moderate: Security update for python3-setuptools Message-ID: <172407067980.18977.17862484036663408602@smelt2.prg2.suse.org> # Security update for python3-setuptools Announcement ID: SUSE-SU-2024:2435-1 Rating: moderate References: * bsc#1206667 Cross-References: * CVE-2022-40897 CVSS scores: * CVE-2022-40897 ( SUSE ): 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L * CVE-2022-40897 ( NVD ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * SUSE Linux Enterprise Micro 5.5 An update that solves one vulnerability can now be installed. ## Description: This update for python3-setuptools fixes the following issues: * CVE-2022-40897: Fixed Regular Expression Denial of Service (ReDoS) in package_index.py (bsc#1206667). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2024-2435=1 ## Package List: * SUSE Linux Enterprise Micro 5.5 (noarch) * python3-setuptools-44.1.1-150400.9.6.1 ## References: * https://www.suse.com/security/cve/CVE-2022-40897.html * https://bugzilla.suse.com/show_bug.cgi?id=1206667 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 19 12:31:27 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 19 Aug 2024 12:31:27 -0000 Subject: SUSE-SU-2024:1762-2: important: Security update for perl Message-ID: <172407068793.18977.15209903944289036318@smelt2.prg2.suse.org> # Security update for perl Announcement ID: SUSE-SU-2024:1762-2 Rating: important References: * bsc#1082216 * bsc#1082233 * bsc#1213638 Cross-References: * CVE-2018-6798 * CVE-2018-6913 CVSS scores: * CVE-2018-6798 ( NVD ): 7.5 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2018-6913 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2018-6913 ( NVD ): 9.8 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Affected Products: * SUSE Linux Enterprise Micro 5.5 An update that solves two vulnerabilities and has one security fix can now be installed. ## Description: This update for perl fixes the following issues: Security issues fixed: * CVE-2018-6913: Fixed space calculation issues in pp_pack.c (bsc#1082216) * CVE-2018-6798: Fixed heap buffer overflow in regexec.c (bsc#1082233) Non-security issue fixed: * make Net::FTP work with TLS 1.3 (bsc#1213638) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2024-1762=1 ## Package List: * SUSE Linux Enterprise Micro 5.5 (aarch64 ppc64le s390x x86_64) * perl-5.26.1-150300.17.17.1 * perl-debuginfo-5.26.1-150300.17.17.1 * perl-debugsource-5.26.1-150300.17.17.1 * perl-base-5.26.1-150300.17.17.1 * perl-base-debuginfo-5.26.1-150300.17.17.1 ## References: * https://www.suse.com/security/cve/CVE-2018-6798.html * https://www.suse.com/security/cve/CVE-2018-6913.html * https://bugzilla.suse.com/show_bug.cgi?id=1082216 * https://bugzilla.suse.com/show_bug.cgi?id=1082233 * https://bugzilla.suse.com/show_bug.cgi?id=1213638 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 19 12:31:38 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 19 Aug 2024 12:31:38 -0000 Subject: SUSE-SU-2024:1007-2: moderate: Security update for shadow Message-ID: <172407069868.18977.6290758017514876987@smelt2.prg2.suse.org> # Security update for shadow Announcement ID: SUSE-SU-2024:1007-2 Rating: moderate References: * bsc#1144060 * bsc#1176006 * bsc#1188307 * bsc#1203823 * bsc#1205502 * bsc#1206627 * bsc#1210507 * bsc#1213189 * bsc#1214806 Cross-References: * CVE-2023-29383 * CVE-2023-4641 CVSS scores: * CVE-2023-29383 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-29383 ( NVD ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N * CVE-2023-4641 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2023-4641 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * SUSE Linux Enterprise Micro 5.5 An update that solves two vulnerabilities and has seven security fixes can now be installed. ## Description: This update for shadow fixes the following issues: * CVE-2023-29383: Fixed apparent /etc/shadow manipulation via chfn (bsc#1210507). * CVE-2023-4641: Fixed possible password leak during passwd(1) change (bsc#1214806). The following non-security bugs were fixed: * bsc#1176006: Fix chage date miscalculation * bsc#1188307: Fix passwd segfault * bsc#1203823: Remove pam_keyinit from PAM config files * bsc#1213189: Change lock mechanism to file locking to prevent lock files after power interruptions * bsc#1206627: Add --prefix support to passwd, chpasswd and chage * bsc#1205502: useradd audit event user id field cannot be interpretedd ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2024-1007=1 ## Package List: * SUSE Linux Enterprise Micro 5.5 (noarch) * login_defs-4.8.1-150500.3.3.1 * SUSE Linux Enterprise Micro 5.5 (aarch64 ppc64le s390x x86_64) * shadow-4.8.1-150500.3.3.1 * shadow-debugsource-4.8.1-150500.3.3.1 * shadow-debuginfo-4.8.1-150500.3.3.1 ## References: * https://www.suse.com/security/cve/CVE-2023-29383.html * https://www.suse.com/security/cve/CVE-2023-4641.html * https://bugzilla.suse.com/show_bug.cgi?id=1144060 * https://bugzilla.suse.com/show_bug.cgi?id=1176006 * https://bugzilla.suse.com/show_bug.cgi?id=1188307 * https://bugzilla.suse.com/show_bug.cgi?id=1203823 * https://bugzilla.suse.com/show_bug.cgi?id=1205502 * https://bugzilla.suse.com/show_bug.cgi?id=1206627 * https://bugzilla.suse.com/show_bug.cgi?id=1210507 * https://bugzilla.suse.com/show_bug.cgi?id=1213189 * https://bugzilla.suse.com/show_bug.cgi?id=1214806 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 19 12:31:40 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 19 Aug 2024 12:31:40 -0000 Subject: SUSE-SU-2024:2432-1: important: Security update for zchunk Message-ID: <172407070072.18977.2338577970374586964@smelt2.prg2.suse.org> # Security update for zchunk Announcement ID: SUSE-SU-2024:2432-1 Rating: important References: * bsc#1216268 Cross-References: * CVE-2023-46228 CVSS scores: * CVE-2023-46228 ( SUSE ): 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2023-46228 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Affected Products: * SUSE Linux Enterprise Micro 5.5 An update that solves one vulnerability can now be installed. ## Description: This update for zchunk fixes the following issues: * CVE-2023-46228: Fixed a handle overflow errors in malformed zchunk files. (bsc#1216268) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2024-2432=1 ## Package List: * SUSE Linux Enterprise Micro 5.5 (ppc64le) * zchunk-debugsource-1.1.16-150400.3.7.1 * libzck1-1.1.16-150400.3.7.1 * libzck1-debuginfo-1.1.16-150400.3.7.1 * zchunk-debuginfo-1.1.16-150400.3.7.1 ## References: * https://www.suse.com/security/cve/CVE-2023-46228.html * https://bugzilla.suse.com/show_bug.cgi?id=1216268 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 19 12:31:42 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 19 Aug 2024 12:31:42 -0000 Subject: SUSE-SU-2024:2431-1: moderate: Security update for zlib Message-ID: <172407070277.18977.4267023819331671740@smelt2.prg2.suse.org> # Security update for zlib Announcement ID: SUSE-SU-2024:2431-1 Rating: moderate References: * bsc#1216378 Cross-References: * CVE-2023-45853 CVSS scores: * CVE-2023-45853 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L * CVE-2023-45853 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Affected Products: * SUSE Linux Enterprise Micro 5.5 An update that solves one vulnerability can now be installed. ## Description: This update for zlib fixes the following issues: * CVE-2023-45853: Fixed an integer overflow that would lead to a buffer overflow in the minizip subcomponent (bsc#1216378). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2024-2431=1 ## Package List: * SUSE Linux Enterprise Micro 5.5 (ppc64le) * zlib-devel-1.2.13-150500.4.3.1 * libz1-debuginfo-1.2.13-150500.4.3.1 * zlib-debugsource-1.2.13-150500.4.3.1 * libz1-1.2.13-150500.4.3.1 ## References: * https://www.suse.com/security/cve/CVE-2023-45853.html * https://bugzilla.suse.com/show_bug.cgi?id=1216378 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 19 12:31:50 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 19 Aug 2024 12:31:50 -0000 Subject: SUSE-SU-2024:2429-1: important: Security update for sqlite3 Message-ID: <172407071056.18977.10283829875729941531@smelt2.prg2.suse.org> # Security update for sqlite3 Announcement ID: SUSE-SU-2024:2429-1 Rating: important References: * bsc#1210660 Cross-References: * CVE-2023-2137 CVSS scores: * CVE-2023-2137 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2023-2137 ( NVD ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Affected Products: * SUSE Linux Enterprise Micro 5.5 An update that solves one vulnerability can now be installed. ## Description: This update for sqlite3 fixes the following issues: * CVE-2023-2137: Fixed heap buffer overflow (bsc#1210660). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2024-2429=1 ## Package List: * SUSE Linux Enterprise Micro 5.5 (ppc64le) * sqlite3-tcl-debuginfo-3.44.0-150000.3.23.1 * sqlite3-debuginfo-3.44.0-150000.3.23.1 * sqlite3-debugsource-3.44.0-150000.3.23.1 * sqlite3-tcl-3.44.0-150000.3.23.1 * libsqlite3-0-3.44.0-150000.3.23.1 * libsqlite3-0-debuginfo-3.44.0-150000.3.23.1 ## References: * https://www.suse.com/security/cve/CVE-2023-2137.html * https://bugzilla.suse.com/show_bug.cgi?id=1210660 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 19 12:31:53 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 19 Aug 2024 12:31:53 -0000 Subject: SUSE-SU-2024:2051-2: important: Security update for openssl-1_1 Message-ID: <172407071386.18977.1981576809932069205@smelt2.prg2.suse.org> # Security update for openssl-1_1 Announcement ID: SUSE-SU-2024:2051-2 Rating: important References: * bsc#1225551 Cross-References: * CVE-2024-4741 CVSS scores: * CVE-2024-4741 ( SUSE ): 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H Affected Products: * SUSE Linux Enterprise Micro 5.5 An update that solves one vulnerability can now be installed. ## Description: This update for openssl-1_1 fixes the following issues: * CVE-2024-4741: Fixed a use-after-free with SSL_free_buffers. (bsc#1225551) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2024-2051=1 ## Package List: * SUSE Linux Enterprise Micro 5.5 (aarch64 ppc64le s390x x86_64) * openssl-1_1-1.1.1l-150500.17.31.1 * libopenssl1_1-1.1.1l-150500.17.31.1 * libopenssl-1_1-devel-1.1.1l-150500.17.31.1 * openssl-1_1-debugsource-1.1.1l-150500.17.31.1 * libopenssl1_1-debuginfo-1.1.1l-150500.17.31.1 * libopenssl1_1-hmac-1.1.1l-150500.17.31.1 * openssl-1_1-debuginfo-1.1.1l-150500.17.31.1 ## References: * https://www.suse.com/security/cve/CVE-2024-4741.html * https://bugzilla.suse.com/show_bug.cgi?id=1225551 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 19 12:31:55 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 19 Aug 2024 12:31:55 -0000 Subject: SUSE-SU-2024:1133-2: moderate: Security update for ncurses Message-ID: <172407071581.18977.4740301633000797627@smelt2.prg2.suse.org> # Security update for ncurses Announcement ID: SUSE-SU-2024:1133-2 Rating: moderate References: * bsc#1220061 Cross-References: * CVE-2023-45918 CVSS scores: * CVE-2023-45918 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L Affected Products: * SUSE Linux Enterprise Micro 5.5 An update that solves one vulnerability can now be installed. ## Description: This update for ncurses fixes the following issues: * CVE-2023-45918: Fixed NULL pointer dereference via corrupted xterm-256color file (bsc#1220061). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2024-1133=1 ## Package List: * SUSE Linux Enterprise Micro 5.5 (aarch64 ppc64le s390x x86_64) * terminfo-6.1-150000.5.24.1 * terminfo-base-6.1-150000.5.24.1 * libncurses6-debuginfo-6.1-150000.5.24.1 * ncurses-utils-debuginfo-6.1-150000.5.24.1 * ncurses-utils-6.1-150000.5.24.1 * ncurses-debugsource-6.1-150000.5.24.1 * libncurses6-6.1-150000.5.24.1 ## References: * https://www.suse.com/security/cve/CVE-2023-45918.html * https://bugzilla.suse.com/show_bug.cgi?id=1220061 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 19 12:32:06 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 19 Aug 2024 12:32:06 -0000 Subject: SUSE-SU-2024:1129-2: important: Security update for expat Message-ID: <172407072623.18977.13384474034505004129@smelt2.prg2.suse.org> # Security update for expat Announcement ID: SUSE-SU-2024:1129-2 Rating: important References: * bsc#1219559 * bsc#1221289 Cross-References: * CVE-2023-52425 * CVE-2024-28757 CVSS scores: * CVE-2023-52425 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52425 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-28757 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * SUSE Linux Enterprise Micro 5.5 An update that solves two vulnerabilities can now be installed. ## Description: This update for expat fixes the following issues: * CVE-2023-52425: Fixed a DoS caused by processing large tokens. (bsc#1219559) * CVE-2024-28757: Fixed an XML Entity Expansion. (bsc#1221289) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2024-1129=1 ## Package List: * SUSE Linux Enterprise Micro 5.5 (aarch64 ppc64le s390x x86_64) * libexpat1-debuginfo-2.4.4-150400.3.17.1 * expat-debuginfo-2.4.4-150400.3.17.1 * expat-debugsource-2.4.4-150400.3.17.1 * libexpat1-2.4.4-150400.3.17.1 ## References: * https://www.suse.com/security/cve/CVE-2023-52425.html * https://www.suse.com/security/cve/CVE-2024-28757.html * https://bugzilla.suse.com/show_bug.cgi?id=1219559 * https://bugzilla.suse.com/show_bug.cgi?id=1221289 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 19 12:32:08 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 19 Aug 2024 12:32:08 -0000 Subject: SUSE-SU-2024:2426-1: important: Security update for libeconf Message-ID: <172407072858.18977.10833422390524584106@smelt2.prg2.suse.org> # Security update for libeconf Announcement ID: SUSE-SU-2024:2426-1 Rating: important References: * bsc#1211078 Cross-References: * CVE-2023-22652 * CVE-2023-30078 * CVE-2023-30079 * CVE-2023-32181 CVSS scores: * CVE-2023-22652 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-22652 ( NVD ): 3.3 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L * CVE-2023-30078 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2023-30078 ( NVD ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2023-30079 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2023-30079 ( NVD ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2023-32181 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-32181 ( NVD ): 3.3 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L Affected Products: * SUSE Linux Enterprise Micro 5.5 An update that solves four vulnerabilities can now be installed. ## Description: This update for libeconf fixes the following issues: Update to version 0.5.2. * CVE-2023-30078, CVE-2023-32181: Fixed a stack-buffer-overflow vulnerability in "econf_writeFile" function (bsc#1211078). * CVE-2023-30079, CVE-2023-22652: Fixed a stack-buffer-overflow vulnerability in "read_file" function. (bsc#1211078) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2024-2426=1 ## Package List: * SUSE Linux Enterprise Micro 5.5 (ppc64le) * libeconf0-debuginfo-0.5.2-150400.3.6.1 * libeconf0-0.5.2-150400.3.6.1 * libeconf-debugsource-0.5.2-150400.3.6.1 ## References: * https://www.suse.com/security/cve/CVE-2023-22652.html * https://www.suse.com/security/cve/CVE-2023-30078.html * https://www.suse.com/security/cve/CVE-2023-30079.html * https://www.suse.com/security/cve/CVE-2023-32181.html * https://bugzilla.suse.com/show_bug.cgi?id=1211078 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 19 12:32:25 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 19 Aug 2024 12:32:25 -0000 Subject: SUSE-SU-2024:1830-2: low: Security update for glib2 Message-ID: <172407074528.18977.6172894213166643381@smelt2.prg2.suse.org> # Security update for glib2 Announcement ID: SUSE-SU-2024:1830-2 Rating: low References: * bsc#1224044 Cross-References: * CVE-2024-34397 CVSS scores: * CVE-2024-34397 ( SUSE ): 3.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:N Affected Products: * SUSE Linux Enterprise Micro 5.5 An update that solves one vulnerability can now be installed. ## Description: This update for glib2 fixes the following issues: * CVE-2024-34397: Fixed signal subscription unicast spoofing vulnerability (bsc#1224044). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2024-1830=1 ## Package List: * SUSE Linux Enterprise Micro 5.5 (aarch64 ppc64le s390x x86_64) * glib2-debugsource-2.70.5-150400.3.11.1 * libgobject-2_0-0-debuginfo-2.70.5-150400.3.11.1 * glib2-tools-debuginfo-2.70.5-150400.3.11.1 * libgmodule-2_0-0-debuginfo-2.70.5-150400.3.11.1 * libglib-2_0-0-2.70.5-150400.3.11.1 * libgio-2_0-0-2.70.5-150400.3.11.1 * libgobject-2_0-0-2.70.5-150400.3.11.1 * libgmodule-2_0-0-2.70.5-150400.3.11.1 * glib2-tools-2.70.5-150400.3.11.1 * libglib-2_0-0-debuginfo-2.70.5-150400.3.11.1 * libgio-2_0-0-debuginfo-2.70.5-150400.3.11.1 ## References: * https://www.suse.com/security/cve/CVE-2024-34397.html * https://bugzilla.suse.com/show_bug.cgi?id=1224044 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 19 12:32:36 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 19 Aug 2024 12:32:36 -0000 Subject: SUSE-SU-2024:1151-3: moderate: Security update for curl Message-ID: <172407075632.18977.16474662324711368593@smelt2.prg2.suse.org> # Security update for curl Announcement ID: SUSE-SU-2024:1151-3 Rating: moderate References: * bsc#1221665 * bsc#1221667 Cross-References: * CVE-2024-2004 * CVE-2024-2398 CVSS scores: * CVE-2024-2004 ( SUSE ): 3.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:N * CVE-2024-2398 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H Affected Products: * SUSE Linux Enterprise Micro 5.5 An update that solves two vulnerabilities can now be installed. ## Description: This update for curl fixes the following issues: * CVE-2024-2004: Fix the uUsage of disabled protocol logic. (bsc#1221665) * CVE-2024-2398: Fix HTTP/2 push headers memory-leak. (bsc#1221667) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2024-1151=1 ## Package List: * SUSE Linux Enterprise Micro 5.5 (aarch64 ppc64le s390x x86_64) * curl-8.0.1-150400.5.44.1 * curl-debugsource-8.0.1-150400.5.44.1 * curl-debuginfo-8.0.1-150400.5.44.1 * libcurl4-8.0.1-150400.5.44.1 * libcurl4-debuginfo-8.0.1-150400.5.44.1 ## References: * https://www.suse.com/security/cve/CVE-2024-2004.html * https://www.suse.com/security/cve/CVE-2024-2398.html * https://bugzilla.suse.com/show_bug.cgi?id=1221665 * https://bugzilla.suse.com/show_bug.cgi?id=1221667 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 19 12:32:41 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 19 Aug 2024 12:32:41 -0000 Subject: SUSE-SU-2024:0305-3: moderate: Security update for cpio Message-ID: <172407076148.18977.10935062621504376840@smelt2.prg2.suse.org> # Security update for cpio Announcement ID: SUSE-SU-2024:0305-3 Rating: moderate References: * bsc#1218571 * bsc#1219238 Cross-References: * CVE-2023-7207 CVSS scores: * CVE-2023-7207 ( SUSE ): 4.0 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N Affected Products: * SUSE Linux Enterprise Micro 5.5 An update that solves one vulnerability and has one security fix can now be installed. ## Description: This update for cpio fixes the following issues: * Fixed cpio not extracting correctly when using --no-absolute-filenames option the security fix for CVE-2023-7207 (bsc#1218571, bsc#1219238) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2024-305=1 ## Package List: * SUSE Linux Enterprise Micro 5.5 (aarch64 ppc64le s390x x86_64) * cpio-debuginfo-2.13-150400.3.6.1 * cpio-2.13-150400.3.6.1 * cpio-debugsource-2.13-150400.3.6.1 ## References: * https://www.suse.com/security/cve/CVE-2023-7207.html * https://bugzilla.suse.com/show_bug.cgi?id=1218571 * https://bugzilla.suse.com/show_bug.cgi?id=1219238 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 19 12:32:48 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 19 Aug 2024 12:32:48 -0000 Subject: SUSE-SU-2024:2422-1: important: Security update for cni-plugins Message-ID: <172407076858.18977.16149086821731801971@smelt2.prg2.suse.org> # Security update for cni-plugins Announcement ID: SUSE-SU-2024:2422-1 Rating: important References: * bsc#1212475 * bsc#1216006 Affected Products: * SUSE Linux Enterprise Micro 5.5 An update that has two security fixes can now be installed. ## Description: This update of cni-plugins fixes the following issues: * rebuild the package with the go 1.21 security release (bsc#1212475). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2024-2422=1 ## Package List: * SUSE Linux Enterprise Micro 5.5 (ppc64le) * cni-plugins-debuginfo-1.1.1-150500.3.2.1 * cni-plugins-1.1.1-150500.3.2.1 ## References: * https://bugzilla.suse.com/show_bug.cgi?id=1212475 * https://bugzilla.suse.com/show_bug.cgi?id=1216006 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 19 12:32:51 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 19 Aug 2024 12:32:51 -0000 Subject: SUSE-SU-2024:2421-1: important: Security update for cni Message-ID: <172407077142.18977.29675138559300933@smelt2.prg2.suse.org> # Security update for cni Announcement ID: SUSE-SU-2024:2421-1 Rating: important References: * bsc#1212475 * bsc#1216006 Affected Products: * SUSE Linux Enterprise Micro 5.5 An update that has two security fixes can now be installed. ## Description: This update of cni fixes the following issues: * rebuild the package with the go 1.21 security release (bsc#1212475). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2024-2421=1 ## Package List: * SUSE Linux Enterprise Micro 5.5 (ppc64le) * cni-1.1.2-150500.3.2.1 * cni-debuginfo-1.1.2-150500.3.2.1 ## References: * https://bugzilla.suse.com/show_bug.cgi?id=1212475 * https://bugzilla.suse.com/show_bug.cgi?id=1216006 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 19 12:38:58 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 19 Aug 2024 12:38:58 -0000 Subject: SUSE-SU-2024:2203-1: important: Security update for the Linux Kernel Message-ID: <172407113824.18977.5465631518056670100@smelt2.prg2.suse.org> # Security update for the Linux Kernel Announcement ID: SUSE-SU-2024:2203-1 Rating: important References: * bsc#1012628 * bsc#1065729 * bsc#1181674 * bsc#1187716 * bsc#1193599 * bsc#1194869 * bsc#1207948 * bsc#1208593 * bsc#1209657 * bsc#1213573 * bsc#1214852 * bsc#1215199 * bsc#1216196 * bsc#1216358 * bsc#1216702 * bsc#1217169 * bsc#1217384 * bsc#1217408 * bsc#1217489 * bsc#1217750 * bsc#1217959 * bsc#1218205 * bsc#1218336 * bsc#1218447 * bsc#1218779 * bsc#1218917 * bsc#1219104 * bsc#1219170 * bsc#1219596 * bsc#1219623 * bsc#1219834 * bsc#1220021 * bsc#1220045 * bsc#1220120 * bsc#1220148 * bsc#1220328 * bsc#1220342 * bsc#1220428 * bsc#1220430 * bsc#1220569 * bsc#1220587 * bsc#1220783 * bsc#1220915 * bsc#1221044 * bsc#1221293 * bsc#1221303 * bsc#1221504 * bsc#1221612 * bsc#1221615 * bsc#1221635 * bsc#1221645 * bsc#1221649 * bsc#1221765 * bsc#1221777 * bsc#1221783 * bsc#1221816 * bsc#1221829 * bsc#1221830 * bsc#1221858 * bsc#1222048 * bsc#1222173 * bsc#1222264 * bsc#1222273 * bsc#1222294 * bsc#1222301 * bsc#1222303 * bsc#1222304 * bsc#1222307 * bsc#1222357 * bsc#1222366 * bsc#1222368 * bsc#1222371 * bsc#1222378 * bsc#1222385 * bsc#1222422 * bsc#1222426 * bsc#1222428 * bsc#1222437 * bsc#1222445 * bsc#1222459 * bsc#1222464 * bsc#1222489 * bsc#1222522 * bsc#1222525 * bsc#1222532 * bsc#1222557 * bsc#1222559 * bsc#1222563 * bsc#1222585 * bsc#1222596 * bsc#1222606 * bsc#1222608 * bsc#1222613 * bsc#1222615 * bsc#1222618 * bsc#1222622 * bsc#1222624 * bsc#1222627 * bsc#1222630 * bsc#1222635 * bsc#1222721 * bsc#1222727 * bsc#1222769 * bsc#1222771 * bsc#1222775 * bsc#1222777 * bsc#1222780 * bsc#1222782 * bsc#1222793 * bsc#1222799 * bsc#1222801 * bsc#1222968 * bsc#1223007 * bsc#1223011 * bsc#1223015 * bsc#1223020 * bsc#1223023 * bsc#1223024 * bsc#1223033 * bsc#1223034 * bsc#1223035 * bsc#1223038 * bsc#1223039 * bsc#1223041 * bsc#1223045 * bsc#1223046 * bsc#1223051 * bsc#1223052 * bsc#1223058 * bsc#1223060 * bsc#1223061 * bsc#1223076 * bsc#1223077 * bsc#1223111 * bsc#1223113 * bsc#1223138 * bsc#1223143 * bsc#1223187 * bsc#1223189 * bsc#1223190 * bsc#1223191 * bsc#1223198 * bsc#1223202 * bsc#1223285 * bsc#1223315 * bsc#1223338 * bsc#1223369 * bsc#1223380 * bsc#1223384 * bsc#1223390 * bsc#1223439 * bsc#1223462 * bsc#1223532 * bsc#1223539 * bsc#1223575 * bsc#1223590 * bsc#1223591 * bsc#1223592 * bsc#1223593 * bsc#1223625 * bsc#1223629 * bsc#1223633 * bsc#1223634 * bsc#1223637 * bsc#1223641 * bsc#1223643 * bsc#1223649 * bsc#1223650 * bsc#1223651 * bsc#1223652 * bsc#1223653 * bsc#1223654 * bsc#1223655 * bsc#1223660 * bsc#1223661 * bsc#1223664 * bsc#1223665 * bsc#1223666 * bsc#1223668 * bsc#1223669 * bsc#1223670 * bsc#1223671 * bsc#1223675 * bsc#1223677 * bsc#1223678 * bsc#1223686 * bsc#1223692 * bsc#1223693 * bsc#1223695 * bsc#1223696 * bsc#1223698 * bsc#1223705 * bsc#1223712 * bsc#1223718 * bsc#1223728 * bsc#1223732 * bsc#1223735 * bsc#1223739 * bsc#1223741 * bsc#1223744 * bsc#1223745 * bsc#1223747 * bsc#1223748 * bsc#1223749 * bsc#1223750 * bsc#1223752 * bsc#1223754 * bsc#1223757 * bsc#1223759 * bsc#1223761 * bsc#1223762 * bsc#1223774 * bsc#1223782 * bsc#1223787 * bsc#1223788 * bsc#1223789 * bsc#1223790 * bsc#1223802 * bsc#1223805 * bsc#1223810 * bsc#1223822 * bsc#1223827 * bsc#1223831 * bsc#1223834 * bsc#1223838 * bsc#1223869 * bsc#1223870 * bsc#1223871 * bsc#1223872 * bsc#1223874 * bsc#1223944 * bsc#1223945 * bsc#1223946 * bsc#1223991 * bsc#1224076 * bsc#1224096 * bsc#1224098 * bsc#1224099 * bsc#1224137 * bsc#1224166 * bsc#1224174 * bsc#1224177 * bsc#1224180 * bsc#1224181 * bsc#1224331 * bsc#1224423 * bsc#1224429 * bsc#1224430 * bsc#1224432 * bsc#1224433 * bsc#1224437 * bsc#1224438 * bsc#1224442 * bsc#1224443 * bsc#1224445 * bsc#1224449 * bsc#1224477 * bsc#1224479 * bsc#1224480 * bsc#1224481 * bsc#1224482 * bsc#1224486 * bsc#1224487 * bsc#1224488 * bsc#1224491 * bsc#1224492 * bsc#1224493 * bsc#1224494 * bsc#1224495 * bsc#1224500 * bsc#1224501 * bsc#1224502 * bsc#1224504 * bsc#1224505 * bsc#1224506 * bsc#1224507 * bsc#1224508 * bsc#1224509 * bsc#1224511 * bsc#1224513 * bsc#1224517 * bsc#1224519 * bsc#1224521 * bsc#1224524 * bsc#1224525 * bsc#1224526 * bsc#1224530 * bsc#1224531 * bsc#1224534 * bsc#1224537 * bsc#1224541 * bsc#1224542 * bsc#1224543 * bsc#1224546 * bsc#1224550 * bsc#1224552 * bsc#1224553 * bsc#1224555 * bsc#1224557 * bsc#1224558 * bsc#1224559 * bsc#1224562 * bsc#1224565 * bsc#1224566 * bsc#1224567 * bsc#1224568 * bsc#1224569 * bsc#1224571 * bsc#1224573 * bsc#1224576 * bsc#1224577 * bsc#1224578 * bsc#1224579 * bsc#1224580 * bsc#1224581 * bsc#1224582 * bsc#1224585 * bsc#1224586 * bsc#1224587 * bsc#1224588 * bsc#1224592 * bsc#1224596 * bsc#1224598 * bsc#1224600 * bsc#1224601 * bsc#1224602 * bsc#1224603 * bsc#1224605 * bsc#1224607 * bsc#1224608 * bsc#1224609 * bsc#1224611 * bsc#1224613 * bsc#1224615 * bsc#1224617 * bsc#1224618 * bsc#1224620 * bsc#1224621 * bsc#1224622 * bsc#1224623 * bsc#1224624 * bsc#1224626 * bsc#1224627 * bsc#1224628 * bsc#1224629 * bsc#1224630 * bsc#1224632 * bsc#1224633 * bsc#1224634 * bsc#1224636 * bsc#1224637 * bsc#1224638 * bsc#1224639 * bsc#1224640 * bsc#1224643 * bsc#1224644 * bsc#1224645 * bsc#1224646 * bsc#1224647 * bsc#1224648 * bsc#1224649 * bsc#1224650 * bsc#1224651 * bsc#1224652 * bsc#1224653 * bsc#1224654 * bsc#1224657 * bsc#1224660 * bsc#1224663 * bsc#1224664 * bsc#1224665 * bsc#1224666 * bsc#1224667 * bsc#1224668 * bsc#1224671 * bsc#1224672 * bsc#1224674 * bsc#1224675 * bsc#1224676 * bsc#1224677 * bsc#1224678 * bsc#1224679 * bsc#1224680 * bsc#1224681 * bsc#1224682 * bsc#1224683 * bsc#1224685 * bsc#1224686 * bsc#1224687 * bsc#1224688 * bsc#1224692 * bsc#1224696 * bsc#1224697 * bsc#1224699 * bsc#1224701 * bsc#1224703 * bsc#1224704 * bsc#1224705 * bsc#1224706 * bsc#1224707 * bsc#1224709 * bsc#1224710 * bsc#1224712 * bsc#1224714 * bsc#1224716 * bsc#1224717 * bsc#1224718 * bsc#1224719 * bsc#1224720 * bsc#1224721 * bsc#1224722 * bsc#1224723 * bsc#1224725 * bsc#1224727 * bsc#1224728 * bsc#1224729 * bsc#1224730 * bsc#1224731 * bsc#1224732 * bsc#1224733 * bsc#1224736 * bsc#1224738 * bsc#1224739 * bsc#1224740 * bsc#1224741 * bsc#1224742 * bsc#1224747 * bsc#1224749 * bsc#1224763 * bsc#1224764 * bsc#1224765 * bsc#1224766 * bsc#1224790 * bsc#1224792 * bsc#1224793 * bsc#1224803 * bsc#1224804 * bsc#1224866 * bsc#1224936 * bsc#1224989 * bsc#1225007 * bsc#1225053 * bsc#1225133 * bsc#1225134 * bsc#1225136 * bsc#1225172 * bsc#1225502 * bsc#1225578 * bsc#1225579 * bsc#1225580 * bsc#1225593 * bsc#1225605 * bsc#1225607 * bsc#1225610 * bsc#1225616 * bsc#1225618 * bsc#1225640 * bsc#1225642 * bsc#1225692 * bsc#1225694 * bsc#1225695 * bsc#1225696 * bsc#1225698 * bsc#1225699 * bsc#1225704 * bsc#1225705 * bsc#1225708 * bsc#1225710 * bsc#1225712 * bsc#1225714 * bsc#1225715 * bsc#1225720 * bsc#1225722 * bsc#1225728 * bsc#1225734 * bsc#1225735 * bsc#1225736 * bsc#1225747 * bsc#1225748 * bsc#1225749 * bsc#1225750 * bsc#1225756 * bsc#1225765 * bsc#1225766 * bsc#1225769 * bsc#1225773 * bsc#1225775 * bsc#1225842 * bsc#1225945 * bsc#1226158 * jsc#PED-8111 * jsc#PED-8240 Cross-References: * CVE-2023-0160 * CVE-2023-52434 * CVE-2023-52458 * CVE-2023-52472 * CVE-2023-52503 * CVE-2023-52616 * CVE-2023-52618 * CVE-2023-52631 * CVE-2023-52635 * CVE-2023-52640 * CVE-2023-52641 * CVE-2023-52645 * CVE-2023-52652 * CVE-2023-52653 * CVE-2023-52654 * CVE-2023-52655 * CVE-2023-52657 * CVE-2023-52658 * CVE-2023-52659 * CVE-2023-52660 * CVE-2023-52661 * CVE-2023-52662 * CVE-2023-52663 * CVE-2023-52664 * CVE-2023-52667 * CVE-2023-52669 * CVE-2023-52670 * CVE-2023-52671 * CVE-2023-52673 * CVE-2023-52674 * CVE-2023-52675 * CVE-2023-52676 * CVE-2023-52678 * CVE-2023-52679 * CVE-2023-52680 * CVE-2023-52681 * CVE-2023-52683 * CVE-2023-52685 * CVE-2023-52686 * CVE-2023-52687 * CVE-2023-52690 * CVE-2023-52691 * CVE-2023-52692 * CVE-2023-52693 * CVE-2023-52694 * CVE-2023-52695 * CVE-2023-52696 * CVE-2023-52697 * CVE-2023-52698 * CVE-2023-52771 * CVE-2023-52772 * CVE-2023-52860 * CVE-2023-52882 * CVE-2023-6238 * CVE-2023-7042 * CVE-2024-0639 * CVE-2024-21823 * CVE-2024-22099 * CVE-2024-23848 * CVE-2024-24861 * CVE-2024-25739 * CVE-2024-26601 * CVE-2024-26611 * CVE-2024-26614 * CVE-2024-26632 * CVE-2024-26638 * CVE-2024-26642 * CVE-2024-26643 * CVE-2024-26650 * CVE-2024-26654 * CVE-2024-26656 * CVE-2024-26657 * CVE-2024-26671 * CVE-2024-26673 * CVE-2024-26674 * CVE-2024-26679 * CVE-2024-26684 * CVE-2024-26685 * CVE-2024-26692 * CVE-2024-26704 * CVE-2024-26714 * CVE-2024-26726 * CVE-2024-26731 * CVE-2024-26733 * CVE-2024-26737 * CVE-2024-26739 * CVE-2024-26740 * CVE-2024-26742 * CVE-2024-26760 * CVE-2024-267600 * CVE-2024-26761 * CVE-2024-26764 * CVE-2024-26769 * CVE-2024-26772 * CVE-2024-26773 * CVE-2024-26774 * CVE-2024-26775 * CVE-2024-26783 * CVE-2024-26786 * CVE-2024-26791 * CVE-2024-26793 * CVE-2024-26794 * CVE-2024-26802 * CVE-2024-26805 * CVE-2024-26807 * CVE-2024-26815 * CVE-2024-26816 * CVE-2024-26822 * CVE-2024-26832 * CVE-2024-26836 * CVE-2024-26844 * CVE-2024-26846 * CVE-2024-26853 * CVE-2024-26854 * CVE-2024-26855 * CVE-2024-26856 * CVE-2024-26857 * CVE-2024-26858 * CVE-2024-26860 * CVE-2024-26861 * CVE-2024-26862 * CVE-2024-26866 * CVE-2024-26868 * CVE-2024-26870 * CVE-2024-26878 * CVE-2024-26881 * CVE-2024-26882 * CVE-2024-26883 * CVE-2024-26884 * CVE-2024-26885 * CVE-2024-26899 * CVE-2024-26900 * CVE-2024-26901 * CVE-2024-26903 * CVE-2024-26906 * CVE-2024-26909 * CVE-2024-26921 * CVE-2024-26922 * CVE-2024-26923 * CVE-2024-26925 * CVE-2024-26928 * CVE-2024-26932 * CVE-2024-26933 * CVE-2024-26934 * CVE-2024-26935 * CVE-2024-26937 * CVE-2024-26938 * CVE-2024-26940 * CVE-2024-26943 * CVE-2024-26945 * CVE-2024-26946 * CVE-2024-26948 * CVE-2024-26949 * CVE-2024-26950 * CVE-2024-26951 * CVE-2024-26957 * CVE-2024-26958 * CVE-2024-26960 * CVE-2024-26961 * CVE-2024-26962 * CVE-2024-26963 * CVE-2024-26964 * CVE-2024-26972 * CVE-2024-26973 * CVE-2024-26978 * CVE-2024-26981 * CVE-2024-26982 * CVE-2024-26983 * CVE-2024-26984 * CVE-2024-26986 * CVE-2024-26988 * CVE-2024-26989 * CVE-2024-26990 * CVE-2024-26991 * CVE-2024-26992 * CVE-2024-26993 * CVE-2024-26994 * CVE-2024-26995 * CVE-2024-26996 * CVE-2024-26997 * CVE-2024-26999 * CVE-2024-27000 * CVE-2024-27001 * CVE-2024-27002 * CVE-2024-27003 * CVE-2024-27004 * CVE-2024-27008 * CVE-2024-27013 * CVE-2024-27014 * CVE-2024-27022 * CVE-2024-27027 * CVE-2024-27028 * CVE-2024-27029 * CVE-2024-27030 * CVE-2024-27031 * CVE-2024-27036 * CVE-2024-27046 * CVE-2024-27056 * CVE-2024-27057 * CVE-2024-27062 * CVE-2024-27067 * CVE-2024-27080 * CVE-2024-27388 * CVE-2024-27389 * CVE-2024-27393 * CVE-2024-27395 * CVE-2024-27396 * CVE-2024-27398 * CVE-2024-27399 * CVE-2024-27400 * CVE-2024-27401 * CVE-2024-27405 * CVE-2024-27408 * CVE-2024-27410 * CVE-2024-27411 * CVE-2024-27412 * CVE-2024-27413 * CVE-2024-27416 * CVE-2024-27417 * CVE-2024-27418 * CVE-2024-27431 * CVE-2024-27432 * CVE-2024-27434 * CVE-2024-27435 * CVE-2024-27436 * CVE-2024-35784 * CVE-2024-35786 * CVE-2024-35788 * CVE-2024-35789 * CVE-2024-35790 * CVE-2024-35791 * CVE-2024-35794 * CVE-2024-35795 * CVE-2024-35796 * CVE-2024-35799 * CVE-2024-35800 * CVE-2024-35801 * CVE-2024-35803 * CVE-2024-35804 * CVE-2024-35806 * CVE-2024-35808 * CVE-2024-35809 * CVE-2024-35810 * CVE-2024-35811 * CVE-2024-35812 * CVE-2024-35813 * CVE-2024-35814 * CVE-2024-35815 * CVE-2024-35817 * CVE-2024-35819 * CVE-2024-35821 * CVE-2024-35822 * CVE-2024-35823 * CVE-2024-35824 * CVE-2024-35825 * CVE-2024-35828 * CVE-2024-35829 * CVE-2024-35830 * CVE-2024-35833 * CVE-2024-35834 * CVE-2024-35835 * CVE-2024-35836 * CVE-2024-35837 * CVE-2024-35838 * CVE-2024-35841 * CVE-2024-35842 * CVE-2024-35845 * CVE-2024-35847 * CVE-2024-35849 * CVE-2024-35850 * CVE-2024-35851 * CVE-2024-35852 * CVE-2024-35854 * CVE-2024-35860 * CVE-2024-35861 * CVE-2024-35862 * CVE-2024-35863 * CVE-2024-35864 * CVE-2024-35865 * CVE-2024-35866 * CVE-2024-35867 * CVE-2024-35868 * CVE-2024-35869 * CVE-2024-35870 * CVE-2024-35872 * CVE-2024-35875 * CVE-2024-35877 * CVE-2024-35878 * CVE-2024-35879 * CVE-2024-35883 * CVE-2024-35885 * CVE-2024-35887 * CVE-2024-35889 * CVE-2024-35891 * CVE-2024-35895 * CVE-2024-35901 * CVE-2024-35903 * CVE-2024-35904 * CVE-2024-35905 * CVE-2024-35907 * CVE-2024-35909 * CVE-2024-35911 * CVE-2024-35912 * CVE-2024-35914 * CVE-2024-35915 * CVE-2024-35916 * CVE-2024-35917 * CVE-2024-35921 * CVE-2024-35922 * CVE-2024-35924 * CVE-2024-35927 * CVE-2024-35928 * CVE-2024-35930 * CVE-2024-35931 * CVE-2024-35932 * CVE-2024-35933 * CVE-2024-35935 * CVE-2024-35936 * CVE-2024-35937 * CVE-2024-35938 * CVE-2024-35940 * CVE-2024-35943 * CVE-2024-35944 * CVE-2024-35945 * CVE-2024-35946 * CVE-2024-35947 * CVE-2024-35950 * CVE-2024-35951 * CVE-2024-35952 * CVE-2024-35953 * CVE-2024-35954 * CVE-2024-35955 * CVE-2024-35956 * CVE-2024-35958 * CVE-2024-35959 * CVE-2024-35960 * CVE-2024-35961 * CVE-2024-35963 * CVE-2024-35964 * CVE-2024-35965 * CVE-2024-35966 * CVE-2024-35967 * CVE-2024-35969 * CVE-2024-35971 * CVE-2024-35972 * CVE-2024-35973 * CVE-2024-35974 * CVE-2024-35975 * CVE-2024-35977 * CVE-2024-35978 * CVE-2024-35981 * CVE-2024-35982 * CVE-2024-35984 * CVE-2024-35986 * CVE-2024-35989 * CVE-2024-35990 * CVE-2024-35991 * CVE-2024-35992 * CVE-2024-35995 * CVE-2024-35997 * CVE-2024-35999 * CVE-2024-36002 * CVE-2024-36006 * CVE-2024-36007 * CVE-2024-36009 * CVE-2024-36011 * CVE-2024-36012 * CVE-2024-36013 * CVE-2024-36014 * CVE-2024-36015 * CVE-2024-36016 * CVE-2024-36018 * CVE-2024-36019 * CVE-2024-36020 * CVE-2024-36021 * CVE-2024-36025 * CVE-2024-36026 * CVE-2024-36029 * CVE-2024-36030 * CVE-2024-36032 * CVE-2024-36880 * CVE-2024-36885 * CVE-2024-36890 * CVE-2024-36891 * CVE-2024-36893 * CVE-2024-36894 * CVE-2024-36895 * CVE-2024-36896 * CVE-2024-36897 * CVE-2024-36898 * CVE-2024-36906 * CVE-2024-36918 * CVE-2024-36921 * CVE-2024-36922 * CVE-2024-36928 * CVE-2024-36930 * CVE-2024-36931 * CVE-2024-36936 * CVE-2024-36940 * CVE-2024-36941 * CVE-2024-36942 * CVE-2024-36944 * CVE-2024-36947 * CVE-2024-36949 * CVE-2024-36950 * CVE-2024-36951 * CVE-2024-36955 * CVE-2024-36959 CVSS scores: * CVE-2023-0160 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-0160 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52434 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2023-52434 ( NVD ): 8.0 CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-52458 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52458 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52472 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2023-52472 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52503 ( SUSE ): 4.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2023-52616 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52618 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N * CVE-2023-52631 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52635 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52640 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52641 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52645 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52645 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52652 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2023-52653 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2023-52654 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52655 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2023-52657 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52658 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52659 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52660 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52661 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N * CVE-2023-52662 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L * CVE-2023-52663 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52664 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52667 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52669 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52670 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52671 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2023-52673 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52674 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52675 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52676 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-52678 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52679 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52680 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52681 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52683 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52685 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52686 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52687 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52690 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52691 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52692 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52693 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52694 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52695 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52696 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52697 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52698 ( SUSE ): 3.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:L * CVE-2023-52771 ( SUSE ): 4.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52772 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-52772 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-52860 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52882 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-6238 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2023-6238 ( NVD ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2023-7042 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2023-7042 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-0639 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-0639 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-21823 ( SUSE ): 6.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2024-22099 ( SUSE ): 5.3 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-22099 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-23848 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2024-23848 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-24861 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2024-24861 ( NVD ): 6.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2024-25739 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-25739 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26601 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26601 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26611 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26614 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26632 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26638 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2024-26642 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26643 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26650 ( SUSE ): 0.0 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:N * CVE-2024-26654 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26656 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26657 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26671 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26673 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26674 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26679 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26684 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26685 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26692 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26704 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26714 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26726 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26731 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26733 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26737 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26739 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26740 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26742 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26760 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26764 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-26769 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26772 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26773 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26774 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26775 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26783 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26786 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26791 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26793 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26794 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26802 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26805 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26807 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26815 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26816 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2024-26822 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26832 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26836 ( SUSE ): 4.3 CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2024-26844 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-26846 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26853 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26854 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26855 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26856 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26857 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26858 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26860 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26861 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26862 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2024-26866 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26868 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26870 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26878 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26881 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26881 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26882 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26882 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26883 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26883 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26884 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26884 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26885 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26885 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26899 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26899 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26900 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26900 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26901 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2024-26901 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26903 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26903 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26906 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26909 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26909 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26921 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26922 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26923 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26925 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26928 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26932 ( SUSE ): 6.6 CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26932 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26933 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26933 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26934 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26934 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26935 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-26937 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-26938 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-26940 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26943 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26945 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26946 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26948 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26949 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26949 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26950 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26951 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26957 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26958 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26960 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26961 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26962 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26963 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26964 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26972 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26973 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26978 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26978 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26981 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26982 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26983 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26984 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26986 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26986 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26988 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2024-26989 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26990 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N * CVE-2024-26991 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26992 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2024-26993 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L * CVE-2024-26994 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26995 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26996 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26997 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26999 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27000 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-27001 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27002 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27003 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-27004 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-27008 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2024-27013 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27013 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27014 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27014 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27022 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27022 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-27027 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L * CVE-2024-27028 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27029 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-27030 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2024-27031 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27036 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N * CVE-2024-27046 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27056 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27057 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27062 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27067 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27080 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2024-27388 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27389 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27393 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27395 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27396 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27398 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-27399 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27400 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27401 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2024-27405 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-27408 ( SUSE ): 2.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N * CVE-2024-27410 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27411 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27412 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27413 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-27416 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27417 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27418 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27431 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27432 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27434 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27435 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27436 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35784 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35786 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35788 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35789 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35790 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35791 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35794 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35795 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35796 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35799 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35800 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35801 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35803 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35804 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35806 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35808 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35809 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35810 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35811 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35812 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35813 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35814 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35815 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35817 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35819 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35821 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35822 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-35823 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35824 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35825 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35828 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35829 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35830 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35833 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35834 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35835 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35836 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35837 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35838 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35841 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35842 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35845 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35847 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35849 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2024-35850 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35851 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35852 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35854 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35860 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35861 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35862 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35863 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35864 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35865 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35866 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35867 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35868 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35869 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35870 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35872 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35875 ( SUSE ): 5.6 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N * CVE-2024-35877 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35878 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35879 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35883 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35885 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35887 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35889 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35891 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35895 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35901 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35903 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35904 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35905 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35907 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35909 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35911 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35912 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35914 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35915 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35916 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35917 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35921 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35922 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35924 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2024-35927 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35928 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35930 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35931 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35932 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35933 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35935 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35936 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35937 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2024-35938 ( SUSE ): 2.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-35940 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-35943 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35944 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:L * CVE-2024-35945 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35946 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35947 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35950 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35951 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35952 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35953 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35954 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35955 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35956 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35958 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35959 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35960 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35961 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35963 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-35964 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35965 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35966 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35967 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35969 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35971 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35972 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35972 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35973 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35974 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35975 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35977 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35978 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35978 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35981 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35982 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35982 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35984 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35984 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35986 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35989 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35990 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35990 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35991 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35992 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35992 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35995 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2024-35997 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35997 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35999 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:L * CVE-2024-36002 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36006 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36007 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36009 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36011 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36012 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2024-36013 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36014 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36015 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36016 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2024-36018 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2024-36019 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L * CVE-2024-36020 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36021 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36025 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:L * CVE-2024-36026 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36029 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36030 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-36032 ( SUSE ): 2.3 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N * CVE-2024-36880 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:L * CVE-2024-36885 ( SUSE ): 2.3 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:L * CVE-2024-36890 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36891 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36891 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36893 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36893 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36894 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-36895 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-36896 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36897 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36897 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36898 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L * CVE-2024-36906 ( SUSE ): 0.0 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N * CVE-2024-36918 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36921 ( SUSE ): 8.0 CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2024-36922 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36928 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36930 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36930 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36931 ( SUSE ): 5.1 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:L * CVE-2024-36936 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-36940 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2024-36941 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36942 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L * CVE-2024-36944 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36947 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2024-36949 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36950 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36951 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36955 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-36959 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H Affected Products: * Basesystem Module 15-SP6 * Development Tools Module 15-SP6 * Legacy Module 15-SP6 * openSUSE Leap 15.6 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise High Availability Extension 15 SP6 * SUSE Linux Enterprise Live Patching 15-SP6 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Linux Enterprise Workstation Extension 15 SP6 An update that solves 408 vulnerabilities, contains two features and has 82 security fixes can now be installed. ## Description: The SUSE Linux Enterprise 15 SP6 kernel was updated to receive various security bugfixes. The following security bugs were fixed: * CVE-2023-0160: Fixed deadlock flaw in BPF that could allow a local user to potentially crash the system (bsc#1209657). * CVE-2023-52434: Fixed potential OOBs in smb2_parse_contexts() (bsc#1220148). * CVE-2023-52458: Fixed check that partition length needs to be aligned with block size (bsc#1220428). * CVE-2023-52503: Fixed tee/amdtee use-after-free vulnerability in amdtee_close_session (bsc#1220915). * CVE-2023-52618: Fixed string overflow in block/rnbd-srv (bsc#1221615). * CVE-2023-52631: Fixed an NULL dereference bug (bsc#1222264 CVE-2023-52631). * CVE-2023-52635: Fixed PM/devfreq to synchronize devfreq_monitor_[start/stop] (bsc#1222294). * CVE-2023-52640: Fixed out-of-bounds in ntfs_listxattr (bsc#1222301). * CVE-2023-52641: Fixed NULL ptr dereference checking at the end of attr_allocate_frame() (bsc#1222303) * CVE-2023-52645: Fixed pmdomain/mediatek race conditions with genpd (bsc#1223033). * CVE-2023-52652: Fixed NTB for possible name leak in ntb_register_device() (bsc#1223686). * CVE-2023-52659: Fixed to pfn_to_kaddr() not treated as a 64-bit type (bsc#1224442). * CVE-2023-52674: Add clamp() in scarlett2_mixer_ctl_put() (bsc#1224727). * CVE-2023-52680: Fixed missing error checks to *_ctl_get() (bsc#1224608). * CVE-2023-52692: Fixed missing error check to scarlett2_usb_set_config() (bsc#1224628). * CVE-2023-52698: Fixed memory leak in netlbl_calipso_add_pass() (CVE-2023-52698 bsc#1224621) * CVE-2023-52771: Fixed delete_endpoint() vs parent unregistration race (bsc#1225007). * CVE-2023-52772: Fixed use-after-free in unix_stream_read_actor() (bsc#1224989). * CVE-2023-52860: Fixed null pointer dereference in hisi_hns3 (bsc#1224936). * CVE-2023-6238: Fixed kcalloc() arguments order (bsc#1217384). * CVE-2023-7042: Fixed a null-pointer-dereference in ath10k_wmi_tlv_op_pull_mgmt_tx_compl_ev() (bsc#1218336). * CVE-2024-0639: Fixed a denial-of-service vulnerability due to a deadlock found in sctp_auto_asconf_init in net/sctp/socket.c (bsc#1218917). * CVE-2024-21823: Fixed safety flag to struct ends (bsc#1223625). * CVE-2024-22099: Fixed a null-pointer-dereference in rfcomm_check_security (bsc#1219170). * CVE-2024-23848: Fixed media/cec for possible use-after-free in cec_queue_msg_fh (bsc#1219104). * CVE-2024-24861: Fixed an overflow due to race condition in media/xc4000 device driver in xc4000 xc4000_get_frequency() function (bsc#1219623). * CVE-2024-25739: Fixed possible crash in create_empty_lvol() in drivers/mtd/ubi/vtbl.c (bsc#1219834). * CVE-2024-26601: Fixed ext4 buddy bitmap corruption via fast commit replay (bsc#1220342). * CVE-2024-26614: Fixed the initialization of accept_queue's spinlocks (bsc#1221293). * CVE-2024-26632: Fixed iterating over an empty bio with bio_for_each_folio_all (bsc#1221635). * CVE-2024-26638: Fixed uninitialize struct msghdr completely (bsc#1221649 CVE-2024-26638). * CVE-2024-26642: Fixed the set of anonymous timeout flag in netfilter nf_tables (bsc#1221830). * CVE-2024-26643: Fixed mark set as dead when unbinding anonymous set with timeout (bsc#1221829). * CVE-2024-26654: Fixed use after free in ALSA/sh/aica (bsc#1222304). * CVE-2024-26656: Fixed drm/amdgpu use-after-free bug (bsc#1222307). * CVE-2024-26671: Fixed blk-mq IO hang from sbitmap wakeup race (bsc#1222357). * CVE-2024-26673: Fixed netfilter/nft_ct layer 3 and 4 protocol sanitization (bsc#1222368). * CVE-2024-26674: Revert to _ASM_EXTABLE_UA() for {get,put}_user() fixups (bsc#1222378). * CVE-2024-26679: Fixed read sk->sk_family once in inet_recv_error() (bsc#1222385). * CVE-2024-26684: Fixed net/stmmac/xgmac handling of DPP safety error for DMA channels (bsc#1222445). * CVE-2024-26685: Fixed nilfs2 potential bug in end_buffer_async_write (bsc#1222437). * CVE-2024-26692: Fixed regression in writes when non-standard maximum write size negotiated (bsc#1222464). * CVE-2024-26704: Fixed a double-free of blocks due to wrong extents moved_len in ext4 (bsc#1222422). * CVE-2024-26726: Fixed invalid drop extent_map for free space inode on write error (bsc#1222532) * CVE-2024-26731: Fixed NULL pointer dereference in sk_psock_verdict_data_ready() (bsc#1222371). * CVE-2024-26733: Fixed an overflow in arp_req_get() in arp (bsc#1222585). * CVE-2024-26737: Fixed selftests/bpf racing between bpf_timer_cancel_and_free and bpf_timer_cancel (bsc#1222557). * CVE-2024-26740: Fixed use the backlog for mirred ingress (bsc#1222563). * CVE-2024-26760: Fixed bio_put() for error case (bsc#1222596 cve-2024-267600). * CVE-2024-26760: Fixed scsi/target/pscsi bio_put() for error case (bsc#1222596). * CVE-2024-26764: Fixed IOCB_AIO_RW check in fs/aio before the struct aio_kiocb conversion (bsc#1222721). * CVE-2024-26772: Fixed ext4 to avoid allocating blocks from corrupted group in ext4_mb_find_by_goal() (bsc#1222613). * CVE-2024-26773: Fixed ext4 block allocation from corrupted group in ext4_mb_try_best_found() (bsc#1222618). * CVE-2024-26774: Fixed dividing by 0 in mb_update_avg_fragment_size() when block bitmap corrupt (bsc#1222622). * CVE-2024-26775: Fixed potential deadlock at set_capacity (bsc#1222627). * CVE-2024-26783: Fixed mm/vmscan bug when calling wakeup_kswapd() with a wrong zone index (bsc#1222615). * CVE-2024-26791: Fixed properly validate device names in btrfs (bsc#1222793) * CVE-2024-26793: Fixed an use-after-free and null-ptr-deref in gtp_newlink() in gtp (bsc#1222428). * CVE-2024-26805: Fixed a kernel-infoleak-after-free in __skb_datagram_iter in netlink (bsc#1222630). * CVE-2024-26807: Fixed spi/cadence-qspi NULL pointer reference in runtime PM hooks (bsc#1222801). * CVE-2024-26815: Fixed improper TCA_TAPRIO_TC_ENTRY_INDEX check (bsc#1222635). * CVE-2024-26816: Fixed relocations in .notes section when building with CONFIG_XEN_PV=y (bsc#1222624). * CVE-2024-26822: Set correct id, uid and cruid for multiuser automounts (bsc#1223011). * CVE-2024-26832: Fixed missing folio cleanup in writeback race path (bsc#1223007). * CVE-2024-26836: Fixed platform/x86/think-lmi password opcode ordering for workstations (bsc#1222968). * CVE-2024-26844: Fixed WARNING in _copy_from_iter (bsc#1223015). * CVE-2024-26853: Fixed igc returning frame twice in XDP_REDIRECT (bsc#1223061). * CVE-2024-26855: Fixed net/ice potential NULL pointer dereference in ice_bridge_setlink() (bsc#1223051). * CVE-2024-26856: Fixed use-after-free inside sparx5_del_mact_entry (bsc#1223052). * CVE-2024-26857: Fixed geneve to make sure to pull inner header in geneve_rx() (bsc#1223058). * CVE-2024-26860: Fixed a memory leak when rechecking the data (bsc#1223077). * CVE-2024-26861: Fixed wireguard/receive annotate data-race around receiving_counter.counter (bsc#1223076). * CVE-2024-26862: Fixed packet annotate data-races around ignore_outgoing (bsc#1223111). * CVE-2024-26866: Fixed spi/spi-fsl-lpspi by removing redundant spi_controller_put call (bsc#1223024). * CVE-2024-26878: Fixed quota for potential NULL pointer dereference (bsc#1223060). * CVE-2024-26881: Fixed net/hns3 kernel crash when 1588 is received on HIP08 devices (bsc#1223041). * CVE-2024-26882: Fixed net/ip_tunnel to make sure to pull inner header in ip_tunnel_rcv() (bsc#1223034). * CVE-2024-26883: Fixed bpf stackmap overflow check on 32-bit arches (bsc#1223035). * CVE-2024-26884: Fixed bpf hashtab overflow check on 32-bit arches (bsc#1223189). * CVE-2024-26885: Fixed bpf DEVMAP_HASH overflow check on 32-bit arches (bsc#1223190). * CVE-2024-26899: Fixed deadlock between bd_link_disk_holder and partition scan (bsc#1223045). * CVE-2024-26901: Fixed do_sys_name_to_handle() to use kzalloc() to prevent kernel-infoleak (bsc#1223198). * CVE-2024-26906: Fixed invalid vsyscall page read for copy_from_kernel_nofault() (bsc#1223202). * CVE-2024-26909: Fixed drm bridge use-after-free (bsc#1223143). * CVE-2024-26921: Preserve kabi for sk_buff (bsc#1223138). * CVE-2024-26923: Fixed false-positive lockdep splat for spin_lock() in __unix_gc() (bsc#1223384). * CVE-2024-26925: Release mutex after nft_gc_seq_end from abort path (bsc#1223390). * CVE-2024-26928: Fix potential UAF in cifs_debug_files_proc_show() (bsc#1223532). * CVE-2024-26945: Fixed nr_cpus < nr_iaa case (bsc#1223732). * CVE-2024-26946: Fixed copy_from_kernel_nofault() to read from unsafe address (bsc#1223669). * CVE-2024-26948: Fixed drm/amd/display by adding dc_state NULL check in dc_state_release (bsc#1223664). * CVE-2024-26950: Fixed wireguard/netlink to access device through ctx instead of peer (bsc#1223661). * CVE-2024-26951: Fixed wireguard/netlink check for dangling peer via is_dead instead of empty list (bsc#1223660). * CVE-2024-26958: Fixed UAF in direct writes (bsc#1223653). * CVE-2024-26960: Fixed mm/swap race between free_swap_and_cache() and swapoff() (bsc#1223655). * CVE-2024-26982: Fixed Squashfs inode number check not to be an invalid value of zero (bsc#1223634). * CVE-2024-26991: Fixed overflow lpage_info when checking attributes (bsc#1223695). * CVE-2024-26993: Fixed fs/sysfs reference leak in sysfs_break_active_protection() (bsc#1223693). * CVE-2024-27013: Fixed tun limit printing rate when illegal packet received by tun device (bsc#1223745). * CVE-2024-27014: Fixed net/mlx5e to prevent deadlock while disabling aRFS (bsc#1223735). * CVE-2024-27022: Fixed linking file vma until vma is fully initialized (bsc#1223774). * CVE-2024-27030: Fixed octeontx2-af to use separate handlers for interrupts (bsc#1223790). * CVE-2024-27036: Fixed writeback data corruption (bsc#1223810). * CVE-2024-27046: Fixed nfp/flower handling acti_netdevs allocation failure (bsc#1223827). * CVE-2024-27056: Fixed wifi/iwlwifi/mvm to ensure offloading TID queue exists (bsc#1223822). * CVE-2024-27062: Fixed nouveau lock inside client object tree (bsc#1223834). * CVE-2024-27389: Fixed pstore inode handling with d_invalidate() (bsc#1223705). * CVE-2024-27395: Fixed Use-After-Free in ovs_ct_exit (bsc#1224098). * CVE-2024-27396: Fixed Use-After-Free in gtp_dellink (bsc#1224096). * CVE-2024-27401: Fixed user_length taken into account when fetching packet contents (bsc#1224181). * CVE-2024-27408: Fixed race condition in dmaengine w-edma/eDMA (bsc#1224430). * CVE-2024-27417: Fixed potential "struct net" leak in inet6_rtm_getaddr() (bsc#1224721) * CVE-2024-27418: Fixed memory leak in mctp_local_output (bsc#1224720) * CVE-2024-27431: Fixed Zero-initialise xdp_rxq_info struct before running XDP program (bsc#1224718). * CVE-2024-35852: Fixed memory leak when canceling rehash work (bsc#1224502). * CVE-2024-35854: Fixed possible use-after-free during rehash (bsc#1224636). * CVE-2024-35860: struct bpf_link and bpf_link_ops kABI workaround (bsc#1224531). * CVE-2024-35861: Fixed potential UAF in cifs_signal_cifsd_for_reconnect() (bsc#1224766). * CVE-2024-35862: Fixed potential UAF in smb2_is_network_name_deleted() (bsc#1224764). * CVE-2024-35863: Fixed potential UAF in is_valid_oplock_break() (bsc#1224763). * CVE-2024-35864: Fixed potential UAF in smb2_is_valid_lease_break() (bsc#1224765). * CVE-2024-35865: Fixed potential UAF in smb2_is_valid_oplock_break() (bsc#1224668). * CVE-2024-35866: Fixed potential UAF in cifs_dump_full_key() (bsc#1224667). * CVE-2024-35867: Fixed potential UAF in cifs_stats_proc_show() (bsc#1224664). * CVE-2024-35868: Fixed potential UAF in cifs_stats_proc_write() (bsc#1224678). * CVE-2024-35869: Guarantee refcounted children from parent session (bsc#1224679). * CVE-2024-35870: Fixed UAF in smb2_reconnect_server() (bsc#1224672). * CVE-2024-35872: Fixed GUP-fast succeeding on secretmem folios (bsc#1224530). * CVE-2024-35877: Fixed VM_PAT handling in COW mappings (bsc#1224525). * CVE-2024-35895: Fixed lock inversion deadlock in map delete elem (bsc#1224511). * CVE-2024-35903: Fixed IP after emitting call depth accounting (bsc#1224493). * CVE-2024-35905: Fixed int overflow for stack access size (bsc#1224488). * CVE-2024-35917: Fixed Fix bpf_plt pointer arithmetic (bsc#1224481). * CVE-2024-35921: Fixed oops when HEVC init fails (bsc#1224477). * CVE-2024-35931: Fixed PCI error slot reset during RAS recovery (bsc#1224652). * CVE-2024-35943: Fixed a null pointer dereference in omap_prm_domain_init (bsc#1224649). * CVE-2024-35944: Fixed memcpy() run-time warning in dg_dispatch_as_host() (bsc#1224648). * CVE-2024-35956: Fixed qgroup prealloc rsv leak in subvolume operations (bsc#1224674) * CVE-2024-35964: Fixed not validating setsockopt user input (bsc#1224581). * CVE-2024-35969: Fixed race condition between ipv6_get_ifaddr and ipv6_del_addr (bsc#1224580). * CVE-2024-35991: Fixed kABI workaround for struct idxd_evl (bsc#1224553). * CVE-2024-35999: Fixed missing lock when picking channel (bsc#1224550). * CVE-2024-36006: Fixed incorrect list API usage (bsc#1224541). * CVE-2024-36007: Fixed warning during rehash (bsc#1224543). * CVE-2024-36030: Fixed the double free in rvu_npc_freemem() (bsc#1225712) The following non-security bugs were fixed: * 9p: add missing locking around taking dentry fid list (git-fixes) * accel/ivpu: Fix deadlock in context_xa (git-fixes). * ACPI: bus: Indicate support for IRQ ResourceSource thru _OSC (git-fixes). * ACPI: bus: Indicate support for _TFP thru _OSC (git-fixes). * ACPI: bus: Indicate support for the Generic Event Device thru _OSC (git- fixes). * ACPICA: debugger: check status of acpi_evaluate_object() in acpi_db_walk_for_fields() (git-fixes). * ACPI: CPPC: Fix access width used for PCC registers (git-fixes). * ACPI: CPPC: Fix bit_offset shift in MASK_VAL() macro (git-fixes). * ACPI: CPPC: Use access_width over bit_width for system memory accesses (stable-fixes). * ACPI: disable -Wstringop-truncation (git-fixes). * ACPI: Fix Generic Initiator Affinity _OSC bit (git-fixes). * ACPI: LPSS: Advertise number of chip selects via property (git-fixes). * ACPI: resource: Add Infinity laptops to irq1_edge_low_force_override (stable-fixes). * ACPI: resource: Do IRQ override on Lunnen Ground laptops (stable-fixes). * ACPI: scan: Do not increase dep_unmet for already met dependencies (git- fixes). * ACPI: video: Add backlight=native quirk for Lenovo Slim 7 16ARH7 (bsc#1217750). * ACPI: x86: Move acpi_quirk_skip_serdev_enumeration() out of CONFIG_X86_ANDROID_TABLETS (stable-fixes). * Add alt-commit to a nouveau patch * Add reference to L3 bsc#1225765 in BPF control flow graph and precision backtrack fixes (bsc#1225756) The L3 bsc#1225765 was created seperately since our customer requires PTF. * admin-guide/hw-vuln/core-scheduling: fix return type of PR_SCHED_CORE_GET (git-fixes). * ahci: asm1064: asm1166: do not limit reported ports (git-fixes). * ahci: asm1064: correct count of reported ports (stable-fixes). * ALSA: aoa: avoid false-positive format truncation warning (git-fixes). * ALSA: core: Fix NULL module pointer assignment at card init (git-fixes). * ALSA: core: Remove debugfs at disconnection (git-fixes). * ALSA: firewire-lib: handle quirk to calculate payload quadlets as data block counter (stable-fixes). * ALSA: Fix deadlocks with kctl removals at disconnection (stable-fixes). * ALSA: hda: Add Intel BMG PCI ID and HDMI codec vid (stable-fixes). * ALSA: hda: clarify Copyright information (stable-fixes). * ALSA: hda: cs35l41: Add support for ASUS ROG 2024 Laptops (stable-fixes). * ALSA: hda: cs35l41: Ignore errors when configuring IRQs (stable-fixes). * ALSA: hda: cs35l41: Remove redundant argument to cs35l41_request_firmware_file() (stable-fixes). * ALSA: hda: cs35l41: Remove Speaker ID for Lenovo Legion slim 7 16ARHA7 (git- fixes). * ALSA: hda: cs35l41: Set the max PCM Gain using tuning setting (stable- fixes). * ALSA: hda: cs35l41: Support HP Omen models without _DSD (stable-fixes). * ALSA: hda: cs35l41: Support Lenovo 13X laptop without _DSD (stable-fixes). * ALSA: hda: cs35l41: Update DSP1RX5/6 Sources for DSP config (stable-fixes). * ALSA: hda: cs35l56: Add ACPI device match tables (git-fixes). * ALSA: hda: cs35l56: Exit cache-only after cs35l56_wait_for_firmware_boot() (stable-fixes). * ALSA: hda: cs35l56: Fix lifetime of cs_dsp instance (git-fixes). * ALSA: hda: cs35l56: Set the init_done flag before component_add() (git- fixes). * ALSA: hda/cs_dsp_ctl: Use private_free for control cleanup (git-fixes). * ALSA: hda: hda_cs_dsp_ctl: Remove notification of driver write (stable- fixes). * ALSA: hda: intel-dsp-config: harden I2C/I2S codec detection (stable-fixes). * ALSA/hda: intel-dsp-config: reduce log verbosity (git-fixes). * ALSA: hda: intel-sdw-acpi: fix usage of device_get_named_child_node() (git- fixes). * ALSA: hda/realtek: Add quirk for HP SnowWhite laptops (stable-fixes). * ALSA: hda/realtek: Add quirk for HP Spectre x360 14 eu0000 (stable-fixes). * ALSA: hda/realtek: Add quirks for ASUS Laptops using CS35L56 (stable-fixes). * ALSA: hda/realtek: Add quirks for HP Omen models using CS35L41 (stable- fixes). * ALSA: hda/realtek: Add quirks for Huawei Matebook D14 NBLB-WAX9N (stable- fixes). * ALSA: hda/realtek: Add quirks for Lenovo 13X (stable-fixes). * ALSA: hda/realtek: Add quirks for some Clevo laptops (stable-fixes). * ALSA: hda/realtek: Add sound quirks for Lenovo Legion slim 7 16ARHA7 models (stable-fixes). * ALSA: hda/realtek: Add support for ASUS Zenbook 2024 HN7306W (stable-fixes). * ALSA: hda/realtek: Adjust G814JZR to use SPI init for amp (git-fixes). * ALSA: hda/realtek: cs35l41: Support ASUS ROG G634JYR (stable-fixes). * ALSA: hda/realtek: Drop doubly quirk entry for 103c:8a2e (git-fixes). * ALSA: hda/realtek - Enable audio jacks of Haier Boyue G42 with ALC269VC (stable-fixes). * ALSA: hda/realtek: Enable headset mic of JP-IK LEAP W502 with ALC897 (stable-fixes). * ALSA: hda/realtek: Fix build error without CONFIG_PM (stable-fixes). * ALSA: hda/realtek: Fix conflicting PCI SSID 17aa:386f for Lenovo Legion models (bsc#1223462). * ALSA: hda/realtek - fixed headset Mic not show (stable-fixes). * ALSA: hda/realtek: Fixes for Asus GU605M and GA403U sound (stable-fixes). * ALSA: hda/realtek - Fix inactive headset mic jack (stable-fixes). * ALSA: hda/realtek: Fix internal speakers for Legion Y9000X 2022 IAH7 (stable-fixes). * ALSA: hda/realtek: Fix mute led of HP Laptop 15-da3001TU (stable-fixes). * ALSA: hda/realtek: fix mute/micmute LEDs do not work for ProBook 440/460 G11 (stable-fixes). * ALSA: hda/realtek: fix the hp playback volume issue for LG machines (stable- fixes). * ALSA: hda/realtek: Fix volumn control of ThinkBook 16P Gen4 (git-fixes). * ALSA: hda/realtek - Set GPIO3 to default at S4 state for Thinkpad with ALC1318 (stable-fixes). * ALSA: hda/realtek: Update Panasonic CF-SZ6 quirk to support headset with microphone (git-fixes). * ALSA: hda/tas2781: add locks to kcontrols (git-fixes). * ALSA: hda/tas2781: Add new vendor_id and subsystem_id to support ThinkPad ICE-1 (stable-fixes). * ALSA: hda/tas2781: correct the register for pow calibrated data (git-fixes). * ALSA: hda/tas2781: remove digital gain kcontrol (git-fixes). * ALSA: line6: Zero-initialize message buffers (stable-fixes). * ALSA: scarlett2: Add Focusrite Clarett+ 2Pre and 4Pre support (stable- fixes). * ALSA: scarlett2: Add Focusrite Clarett 2Pre and 4Pre USB support (stable- fixes). * ALSA: scarlett2: Add missing error check to scarlett2_config_save() (git- fixes). * ALSA: scarlett2: Add support for Clarett 8Pre USB (stable-fixes). * ALSA: scarlett2: Default mixer driver to enabled (stable-fixes). * ALSA: scarlett2: Move USB IDs out from device_info struct (stable-fixes). * ALSA: seq: Do not clear bank selection at event -> UMP MIDI2 conversion (git-fixes). * ALSA: seq: Fix incorrect UMP type for system messages (git-fixes). * ALSA: seq: Fix missing bank setup between MIDI1/MIDI2 UMP conversion (git- fixes). * ALSA: seq: Fix yet another spot for system message conversion (git-fixes). * ALSA: seq: ump: Fix conversion from MIDI2 to MIDI1 UMP messages (git-fixes). * ALSA: seq: ump: Fix swapped song position pointer data (git-fixes). * ALSA: sh: aica: reorder cleanup operations to avoid UAF bugs (git-fixes). * ALSA: timer: Set lower bound of start tick time (stable-fixes). * ALSA: ump: Do not accept an invalid UMP protocol number (git-fixes). * ALSA: ump: Do not clear bank selection after sending a program change (git- fixes). * ALSA: ump: Set default protocol when not given explicitly (git-fixes). * ALSA: usb-audio: Add sampling rates support for Mbox3 (stable-fixes). * ALSA: usb-audio: Fix for sampling rates support for Mbox3 (stable-fixes). * amd/amdkfd: sync all devices to wait all processes being evicted (stable- fixes). * amdkfd: use calloc instead of kzalloc to avoid integer overflow (stable- fixes). * arm64: bpf: fix 32bit unconditional bswap (git-fixes). * arm64: dts: allwinner: h616: Fix I2C0 pins (git-fixes) * arm64: dts: allwinner: Pine H64: correctly remove reg_gmac_3v3 (git-fixes) * arm64: dts: broadcom: bcmbca: bcm4908: drop invalid switch cells (git-fixes) * arm64: dts: Fix dtc interrupt_provider warnings (git-fixes) * arm64: dts: hi3798cv200: fix the size of GICR (git-fixes) * arm64: dts: imx8qm-ss-dma: fix can lpcg indices (git-fixes) * arm64: dts: imx8-ss-conn: fix usb lpcg indices (git-fixes) * arm64: dts: imx8-ss-conn: fix usdhc wrong lpcg clock order (git-fixes) * arm64: dts: imx8-ss-dma: fix adc lpcg indices (git-fixes) * arm64: dts: imx8-ss-dma: fix can lpcg indices (git-fixes) * arm64: dts: imx8-ss-dma: fix spi lpcg indices (git-fixes) * arm64: dts: imx8-ss-lsio: fix pwm lpcg indices (git-fixes) * arm64: dts: marvell: reorder crypto interrupts on Armada SoCs (git-fixes) * arm64: dts: microchip: sparx5: fix mdio reg (git-fixes) * arm64: dts: rockchip: Add enable-strobe-pulldown to emmc phy on ROCK (git- fixes) * arm64: dts: rockchip: enable internal pull-up for Q7_THRM# on RK3399 (git- fixes) * arm64: dts: rockchip: enable internal pull-up on PCIE_WAKE# for (git-fixes) * arm64: dts: rockchip: enable internal pull-up on Q7_USB_ID for RK3399 (git- fixes) * arm64: dts: rockchip: fix rk3328 hdmi ports node (git-fixes) * arm64: dts: rockchip: fix rk3399 hdmi ports node (git-fixes) * arm64: dts: rockchip: regulator for sd needs to be always on for (git-fixes) * arm64: dts: rockchip: Remove unsupported node from the Pinebook Pro (git- fixes) * arm64: dts: rockchip: set PHY address of MT7531 switch to 0x1f (git-fixes) * arm64/head: Disable MMU at EL2 before clearing HCR_EL2.E2H (git-fixes). * arm64: hibernate: Fix level3 translation fault in swsusp_save() (git-fixes). * arm64/ptrace: Use saved floating point state type to determine SVE (git- fixes) * arm64/sve: Lower the maximum allocation for the SVE ptrace regset (git- fixes) * arm64: tegra: Correct Tegra132 I2C alias (git-fixes) * arm64: tegra: Set the correct PHY mode for MGBE (git-fixes) * ARM: 9381/1: kasan: clear stale stack poison (git-fixes). * ARM: imx: Check return value of devm_kasprintf in imx_mmdc_perf_init (git- fixes). * ARM: imx_v6_v7_defconfig: Restore CONFIG_BACKLIGHT_CLASS_DEVICE (git-fixes). * ARM: OMAP2+: fix N810 MMC gpiod table (git-fixes). * ARM: OMAP2+: fix USB regression on Nokia N8x0 (git-fixes). * arm_pmu: acpi: Add a representative platform device for TRBE (bsc#1220587) * arm_pmu: acpi: Refactor arm_spe_acpi_register_device() (bsc#1220587) * ARM: prctl: reject PR_SET_MDWE on pre-ARMv6 (stable-fixes). * ARM: s5pv210: fix pm.c kernel-doc warning (git-fixes). * asm-generic: make sparse happy with odd-sized put_unaligned_*() (stable- fixes). * ASoC: acp: Support microphone from device Acer 315-24p (git-fixes). * ASoC: amd: acp: fix for acp_init function error handling (git-fixes). * ASoC: amd: yc: Add Lenovo ThinkBook 21J0 into DMI quirk table (stable- fixes). * ASoC: amd: yc: Fix non-functional mic on ASUS M7600RE (stable-fixes). * ASoC: amd: yc: Fix non-functional mic on Lenovo 21J2 (stable-fixes). * ASoC: amd: yc: Revert "Fix non-functional mic on Lenovo 21J2" (stable- fixes). * ASoC: codecs: wsa881x: set clk_stop_mode1 flag (git-fixes). * ASoC: cs35l56: Fix unintended bus access while resetting amp (git-fixes). * ASoC: cs35l56: Prevent overwriting firmware ASP config (git-fixes). * ASoC: da7219-aad: fix usage of device_get_named_child_node() (git-fixes). * ASoC: Intel: avs: Fix ASRC module initialization (git-fixes). * ASoC: Intel: avs: Fix potential integer overflow (git-fixes). * ASoC: Intel: avs: Populate board selection with new I2S entries (stable- fixes). * ASoC: Intel: avs: Set name of control as in topology (git-fixes). * ASoC: Intel: avs: ssm4567: Do not ignore route checks (git-fixes). * ASoC: Intel: avs: Test result of avs_get_module_entry() (git-fixes). * ASoC: Intel: bytcr_rt5640: Apply Asus T100TA quirk to Asus T100TAM too (git- fixes). * ASoC: Intel: common: DMI remap for rebranded Intel NUC M15 (LAPRC710) laptops (stable-fixes). * ASoC: Intel: Disable route checks for Skylake boards (git-fixes). * ASoC: kirkwood: Fix potential NULL dereference (git-fixes). * ASoC: mediatek: Assign dummy when codec not specified for a DAI link (git- fixes). * ASoC: mediatek: mt8192: fix register configuration for tdm (git-fixes). * ASoC: meson: axg-card: make links nonatomic (git-fixes). * ASoC: meson: axg-fifo: use FIELD helpers (stable-fixes). * ASoC: meson: axg-fifo: use threaded irq to check periods (git-fixes). * ASoC: meson: axg-tdm-interface: manage formatters in trigger (git-fixes). * ASoC: meson: cards: select SND_DYNAMIC_MINORS (git-fixes). * ASoC: ops: Fix wraparound for mask in snd_soc_get_volsw (git-fixes). * ASoC: rockchip: i2s-tdm: Fix inaccurate sampling rates (git-fixes). * ASoC: rt5645: Fix the electric noise due to the CBJ contacts floating (git- fixes). * ASoC: rt5645: Make LattePanda board DMI match more precise (stable-fixes). * ASoC: rt5682-sdw: fix locking sequence (git-fixes). * ASoC: rt711-sdca: fix locking sequence (git-fixes). * ASoC: rt711-sdw: fix locking sequence (git-fixes). * ASoC: rt712-sdca-sdw: fix locking sequence (git-fixes). * ASoC: rt715: add vendor clear control register (git-fixes). * ASoC: rt715-sdca: volume step modification (git-fixes). * ASoC: rt722-sdca: add headset microphone vrefo setting (git-fixes). * ASoC: rt722-sdca: modify channel number to support 4 channels (git-fixes). * ASoC: rt722-sdca-sdw: fix locking sequence (git-fixes). * ASoC: soc-core.c: Skip dummy codec when adding platforms (stable-fixes). * ASoC: SOF: amd: Optimize quirk for Valve Galileo (stable-fixes). * ASoC: SOF: Intel: add default firmware library path for LNL (git-fixes). * ASoC: SOF: Intel: hda-dsp: Skip IMR boot on ACE platforms in case of S3 suspend (stable-fixes). * ASoC: SOF: Intel: lnl: Correct rom_status_reg (git-fixes). * ASoC: SOF: Intel: mtl: call dsp dump when boot retry fails (stable-fixes). * ASoC: SOF: Intel: mtl: Correct rom_status_reg (git-fixes). * ASoC: SOF: Intel: mtl: Disable interrupts when firmware boot failed (git- fixes). * ASoC: SOF: Intel: mtl: Implement firmware boot state check (git-fixes). * ASoC: SOF: ipc4-pcm: Workaround for crashed firmware on system suspend (stable-fixes). * ASoC: SOF: ipc4-topology: Fix input format query of process modules without base extension (git-fixes). * ASoC: tas2552: Add TX path for capturing AUDIO-OUT data (git-fixes). * ASoC: tas2781: Fix a warning reported by robot kernel test (git-fixes). * ASoC: tas2781: Fix wrong loading calibrated data sequence (git-fixes). * ASoC: tas2781: mark dvc_tlv with __maybe_unused (git-fixes). * ASoC: tegra: Fix DSPK 16-bit playback (git-fixes). * ASoC: ti: Convert Pandora ASoC to GPIO descriptors (stable-fixes). * ASoC: ti: davinci-mcasp: Fix race condition during probe (git-fixes). * ASoC: tlv320adc3xxx: Do not strip remove function when driver is builtin (git-fixes). * ASoC: tracing: Export SND_SOC_DAPM_DIR_OUT to its value (git-fixes). * ASoC: wm_adsp: Add missing MODULE_DESCRIPTION() (git-fixes). * ASoC: wm_adsp: Fix missing mutex_lock in wm_adsp_write_ctl() (git-fixes). * ata: libata-core: Allow command duration limits detection for ACS-4 drives (git-fixes). * ata: pata_legacy: make legacy_exit() work again (git-fixes). * ata: sata_gemini: Check clk_enable() result (stable-fixes). * ata: sata_mv: Fix PCI device ID table declaration compilation warning (git- fixes). * ata: sata_sx4: fix pdc20621_get_from_dimm() on 64-bit (git-fixes). * autofs: use wake_up() instead of wake_up_interruptible(() (bsc#1224166). * ax25: Fix netdev refcount issue (git-fixes). * ax25: Fix reference count leak issue of net_device (git-fixes). * ax25: Fix reference count leak issues of ax25_dev (git-fixes). * ax25: fix use-after-free bugs caused by ax25_ds_del_timer (git-fixes). * batman-adv: Avoid infinite loop trying to resize local TT (git-fixes). * bitops: add missing prototype check (git-fixes). * blk-cgroup: fix list corruption from reorder of WRITE ->lqueued (bsc#1225605). * blk-cgroup: fix list corruption from resetting io stat (bsc#1225605). * block: fix q->blkg_list corruption during disk rebind (bsc#1223591). * Bluetooth: Add new quirk for broken read key length on ATS2851 (stable- fixes). * Bluetooth: add quirk for broken address properties (git-fixes). * Bluetooth: btintel: Fixe build regression (git-fixes). * Bluetooth: btintel: Fix null ptr deref in btintel_read_version (stable- fixes). * Bluetooth: btusb: Add Realtek RTL8852BE support ID 0x0bda:0x4853 (stable- fixes). * Bluetooth: btusb: Fix triggering coredump implementation for QCA (git- fixes). * Bluetooth: Fix memory leak in hci_req_sync_complete() (git-fixes). * Bluetooth: Fix TOCTOU in HCI debugfs implementation (git-fixes). * Bluetooth: Fix type of len in {l2cap,sco}_sock_getsockopt_old() (stable- fixes). * Bluetooth: Fix use-after-free bugs caused by sco_sock_timeout (git-fixes). * Bluetooth: hci_core: Cancel request on command timeout (stable-fixes). * Bluetooth: hci_event: Fix sending HCI_OP_READ_ENC_KEY_SIZE (git-fixes). * Bluetooth: hci_event: set the conn encrypted before conn establishes (stable-fixes). * Bluetooth: HCI: Fix potential null-ptr-deref (git-fixes). * Bluetooth: hci_sock: Fix not validating setsockopt user input (git-fixes). * Bluetooth: hci_sync: Fix not checking error on hci_cmd_sync_cancel_sync (git-fixes). * Bluetooth: hci_sync: Fix using the same interval and window for Coded PHY (git-fixes). * Bluetooth: hci_sync: Use QoS to determine which PHY to scan (stable-fixes). * Bluetooth: ISO: Align broadcast sync_timeout with connection timeout (stable-fixes). * Bluetooth: ISO: Do not reject BT_ISO_QOS if parameters are unset (git- fixes). * Bluetooth: l2cap: Do not double set the HCI_CONN_MGMT_CONNECTED bit (git- fixes). * Bluetooth: L2CAP: Fix not validating setsockopt user input (git-fixes). * Bluetooth: l2cap: fix null-ptr-deref in l2cap_chan_timeout (git-fixes). * Bluetooth: L2CAP: Fix slab-use-after-free in l2cap_connect() (git-fixes). * Bluetooth: MGMT: Fix failing to MGMT_OP_ADD_UUID/MGMT_OP_REMOVE_UUID (bsc#1221504). * Bluetooth: mgmt: Fix limited discoverable off timeout (stable-fixes). * Bluetooth: msft: fix slab-use-after-free in msft_do_close() (git-fixes). * Bluetooth: qca: add missing firmware sanity checks (git-fixes). * Bluetooth: qca: fix device-address endianness (git-fixes). * Bluetooth: qca: Fix error code in qca_read_fw_build_info() (git-fixes). * Bluetooth: qca: fix firmware check error path (git-fixes). * Bluetooth: qca: fix info leak when fetching fw build id (git-fixes). * Bluetooth: qca: fix NULL-deref on non-serdev setup (git-fixes). * Bluetooth: qca: fix NULL-deref on non-serdev suspend (git-fixes). * Bluetooth: qca: fix NVM configuration parsing (git-fixes). * Bluetooth: RFCOMM: Fix not validating setsockopt user input (git-fixes). * Bluetooth: SCO: Fix not validating setsockopt user input (git-fixes). * bnx2x: Fix firmware version string character counts (git-fixes). * bnxt_en: Fix error recovery for RoCE ulp client (git-fixes). * bnxt_en: Fix possible memory leak in bnxt_rdma_aux_device_init() (git- fixes). * bnxt_en: Reset PTP tx_avail after possible firmware reset (git-fixes). * bnxt_re: avoid shift undefined behavior in bnxt_qplib_alloc_init_hwq (git- fixes) * bootconfig: Fix the kerneldoc of _xbc_exit() (git-fixes). * bootconfig: use memblock_free_late to free xbc memory to buddy (git-fixes). * bootmem: use kmemleak_free_part_phys in free_bootmem_page (git-fixes). * bootmem: use kmemleak_free_part_phys in put_page_bootmem (git-fixes). * bpf, arm64: fix bug in BPF_LDX_MEMSX (git-fixes) * bpf, arm64: Fix incorrect runtime stats (git-fixes) * bpf: fix precision backtracking instruction iteration (bsc#1225756). * bpf: Fix precision tracking for BPF_ALU | BPF_TO_BE | BPF_END (git-fixes). * bpf: handle ldimm64 properly in check_cfg() (bsc#1225756). * bpf, scripts: Correct GPL license name (git-fixes). * btrfs: add a helper to read the superblock metadata_uuid (git-fixes) * btrfs: add and use helper to check if block group is used (bsc#1220120). * btrfs: add missing mutex_unlock in btrfs_relocate_sys_chunks() (git-fixes) * btrfs: add new unused block groups to the list of unused block groups (bsc#1220120). * btrfs: allow to run delayed refs by bytes to be released instead of count (bsc#1220120). * btrfs: always print transaction aborted messages with an error level (git- fixes) * btrfs: always reserve space for delayed refs when starting transaction (bsc#1220120). * btrfs: assert correct lock is held at btrfs_select_ref_head() (bsc#1220120). * btrfs: assert delayed node locked when removing delayed item (git-fixes) * btrfs: avoid starting and committing empty transaction when flushing space (bsc#1220120). * btrfs: avoid starting new transaction when flushing delayed items and refs (bsc#1220120). * btrfs: check for BTRFS_FS_ERROR in pending ordered assert (git-fixes) * btrfs: compare the correct fsid/metadata_uuid in btrfs_validate_super (git- fixes) * btrfs: defrag: avoid unnecessary defrag caused by incorrect extent size (git-fixes) * btrfs: defrag: reject unknown flags of btrfs_ioctl_defrag_range_args (git- fixes) * btrfs: do not allow non subvolume root targets for snapshot (git-fixes) * btrfs: do not arbitrarily slow down delalloc if we're committing (git-fixes) * btrfs: do not delete unused block group if it may be used soon (bsc#1220120). * btrfs: do not refill whole delayed refs block reserve when starting transaction (bsc#1220120). * btrfs: do not start transaction when joining with TRANS_JOIN_NOSTART (git- fixes) * btrfs: do not steal space from global rsv after a transaction abort (bsc#1220120). * btrfs: do not warn if discard range is not aligned to sector (git-fixes) * btrfs: ensure fiemap does not race with writes when FIEMAP_FLAG_SYNC is given (bsc#1223285). * btrfs: error out when COWing block using a stale transaction (git-fixes) * btrfs: error out when reallocating block for defrag using a stale transaction (git-fixes) * btrfs: error when COWing block from a root that is being deleted (git-fixes) * btrfs: export: handle invalid inode or root reference in btrfs_get_parent() (git-fixes) * btrfs: fail priority metadata ticket with real fs error (bsc#1220120). * btrfs: file_remove_privs needs an exclusive lock in direct io write (git- fixes) * btrfs: fix 64bit compat send ioctl arguments not initializing version member (git-fixes) * btrfs: fix deadlock with fiemap and extent locking (bsc#1223285). * btrfs: fix information leak in btrfs_ioctl_logical_to_ino() (git-fixes) * btrfs: fix kvcalloc() arguments order in btrfs_ioctl_send() (git-fixes) * btrfs: fix lockdep splat and potential deadlock after failure running delayed items (git-fixes) * btrfs: fix off-by-one chunk length calculation at contains_pending_extent() (git-fixes) * btrfs: fix off-by-one when checking chunk map includes logical address (git- fixes) * btrfs: fix race between ordered extent completion and fiemap (bsc#1223285). * btrfs: fix race when detecting delalloc ranges during fiemap (bsc#1223285). * btrfs: fix race when refilling delayed refs block reserve (git-fixes) * btrfs: fix start transaction qgroup rsv double free (git-fixes) * btrfs: fix stripe length calculation for non-zoned data chunk allocation (bsc#1217489). * btrfs: fix wrong block_start calculation for btrfs_drop_extent_map_range() (git-fixes) Dropped hunk in selftests (test_case_7), 92e1229b204d6. * btrfs: free qgroup rsv on io failure (git-fixes) * btrfs: free the allocated memory if btrfs_alloc_page_array() fails (git- fixes) * btrfs: get rid of label and goto at insert_delayed_ref() (bsc#1220120). * btrfs: handle chunk tree lookup error in btrfs_relocate_sys_chunks() (git- fixes) * btrfs: handle errors properly in update_inline_extent_backref() (git-fixes) * btrfs: initialize key where it's used when running delayed data ref (bsc#1220120). * btrfs: log message if extent item not found when running delayed extent op (bsc#1220120). * btrfs: make btrfs_cleanup_fs_roots() static (bsc#1220120). * btrfs: make btrfs_destroy_delayed_refs() return void (bsc#1220120). * btrfs: make btrfs_destroy_marked_extents() return void (bsc#1220120). * btrfs: make btrfs_destroy_pinned_extent() return void (bsc#1220120). * btrfs: make error messages more clear when getting a chunk map (git-fixes) * btrfs: make find_first_extent_bit() return a boolean (bsc#1220120). * btrfs: make find_free_dev_extent() static (bsc#1220120). * btrfs: make insert_delayed_ref() return a bool instead of an int (bsc#1220120). * btrfs: merge find_free_dev_extent() and find_free_dev_extent_start() (bsc#1220120). * btrfs: move btrfs_free_excluded_extents() into block-group.c (bsc#1220120). * btrfs: open code trivial btrfs_add_excluded_extent() (bsc#1220120). * btrfs: output extra debug info if we failed to find an inline backref (git- fixes) * btrfs: pass a space_info argument to btrfs_reserve_metadata_bytes() (bsc#1220120). * btrfs: prevent transaction block reserve underflow when starting transaction (git-fixes) * btrfs: print available space across all block groups when dumping space info (bsc#1220120). * btrfs: print available space for a block group when dumping a space info (bsc#1220120). * btrfs: print block group super and delalloc bytes when dumping space info (bsc#1220120). * btrfs: print target number of bytes when dumping free space (bsc#1220120). * btrfs: qgroup: always free reserved space for extent records (bsc#1216196). * btrfs: qgroup: convert PREALLOC to PERTRANS after record_root_in_trans (git- fixes) * btrfs: record delayed inode root in transaction (git-fixes) * btrfs: reject encoded write if inode has nodatasum flag set (git-fixes) * btrfs: release path before inode lookup during the ino lookup ioctl (git- fixes) * btrfs: remove pointless initialization at btrfs_delayed_refs_rsv_release() (bsc#1220120). * btrfs: remove pointless in_tree field from struct btrfs_delayed_ref_node (bsc#1220120). * btrfs: remove pointless 'ref_root' variable from run_delayed_data_ref() (bsc#1220120). * btrfs: remove redundant BUG_ON() from __btrfs_inc_extent_ref() (bsc#1220120). * btrfs: remove refs_to_add argument from __btrfs_inc_extent_ref() (bsc#1220120). * btrfs: remove refs_to_drop argument from __btrfs_free_extent() (bsc#1220120). * btrfs: remove the refcount warning/check at btrfs_put_delayed_ref() (bsc#1220120). * btrfs: remove unnecessary logic when running new delayed references (bsc#1220120). * btrfs: remove unnecessary prototype declarations at disk-io.c (bsc#1220120). * btrfs: remove unused is_head field from struct btrfs_delayed_ref_node (bsc#1220120). * btrfs: rename add_new_free_space() to btrfs_add_new_free_space() (bsc#1220120). * btrfs: reorder some members of struct btrfs_delayed_ref_head (bsc#1220120). * btrfs: reserve space for delayed refs on a per ref basis (bsc#1220120). * btrfs: reset destination buffer when read_extent_buffer() gets invalid range (git-fixes) * btrfs: return -EUCLEAN for delayed tree ref with a ref count not equals to 1 (git-fixes) * btrfs: return -EUCLEAN if extent item is missing when searching inline backref (bsc#1220120). * btrfs: return real error when orphan cleanup fails due to a transaction abort (bsc#1220120). * btrfs: send: do not issue unnecessary zero writes for trailing hole (bsc#1222459). * btrfs: send: ensure send_fd is writable (git-fixes) * btrfs: send: handle path ref underflow in header iterate_inode_ref() (git- fixes) * btrfs: send: return EOPNOTSUPP on unknown flags (git-fixes) * btrfs: set page extent mapped after read_folio in relocate_one_page (git- fixes) * btrfs: simplify check for extent item overrun at lookup_inline_extent_backref() (bsc#1220120). * btrfs: stop doing excessive space reservation for csum deletion (bsc#1220120). * btrfs: store the error that turned the fs into error state (bsc#1220120). * btrfs: sysfs: validate scrub_speed_max value (git-fixes) * btrfs: tree-checker: fix inline ref size in error messages (git-fixes) * btrfs: update comment for btrfs_join_transaction_nostart() (bsc#1220120). * btrfs: update documentation for add_new_free_space() (bsc#1220120). * btrfs: use a bool to track qgroup record insertion when adding ref head (bsc#1220120). * btrfs: use a single switch statement when initializing delayed ref head (bsc#1220120). * btrfs: use a single variable for return value at lookup_inline_extent_backref() (bsc#1220120). * btrfs: use a single variable for return value at run_delayed_extent_op() (bsc#1220120). * btrfs: use bool type for delayed ref head fields that are used as booleans (bsc#1220120). * btrfs: use the correct superblock to compare fsid in btrfs_validate_super (git-fixes) * btrfs: use u64 for buffer sizes in the tree search ioctls (git-fixes) * btrfs: zoned: do not skip block groups with 100% zone unusable (bsc#1220120). * bus: mhi: ep: check the correct variable in mhi_ep_register_controller() (git-fixes). * ceph: redirty page before returning AOP_WRITEPAGE_ACTIVATE (bsc#1224866). * ceph: stop copying to iter at EOF on sync reads (bsc#1222606). * certs: Add ECDSA signature verification self-test (bsc#1222777). * certs: Move RSA self-test data to separate file (bsc#1222777). * cifs: account for primary channel in the interface list (bsc#1225172). * cifs: cifs_chan_is_iface_active should be called with chan_lock held (bsc#1225172). * cifs: distribute channels across interfaces based on speed (bsc#1225172).++ kernel-source.spec (revision 4)%define git_commit 596cd3fdbd0fb5902e80279485ad8596f4e82397Release: <RELEASE>.g596cd3f * cifs: do not pass cifs_sb when trying to add channels (bsc#1225172). * cifs: Do not use certain unnecessary folio_*() functions (bsc#1225172). * cifs: failure to add channel on iface should bump up weight (git-fixes, bsc#1225172). * cifs: fix charset issue in reconnection (bsc#1225172). * cifs: fix leak of iface for primary channel (git-fixes, bsc#1225172). * cifs: handle cases where a channel is closed (bsc#1225172). * cifs: handle cases where multiple sessions share connection (bsc#1225172). * cifs: reconnect work should have reference on server struct (bsc#1225172). * clk: Do not hold prepare_lock when calling kref_put() (stable-fixes). * clk: Get runtime PM before walking tree during disable_unused (git-fixes). * clk: Get runtime PM before walking tree for clk_summary (git-fixes). * clk: Initialize struct clk_core kref earlier (stable-fixes). * clk: mediatek: Do a runtime PM get on controllers during probe (git-fixes). * clk: mediatek: mt8365-mm: fix DPI0 parent (git-fixes). * clk: mediatek: pllfh: Do not log error for missing fhctl node (git-fixes). * clk: qcom: clk-alpha-pll: fix rate setting for Stromer PLLs (git-fixes). * clk: qcom: clk-alpha-pll: remove invalid Stromer register offset (git- fixes). * clk: qcom: dispcc-sm6350: fix DisplayPort clocks (git-fixes). * clk: qcom: dispcc-sm8450: fix DisplayPort clocks (git-fixes). * clk: qcom: dispcc-sm8550: fix DisplayPort clocks (git-fixes). * clk: qcom: mmcc-msm8998: fix venus clock issue (git-fixes). * clk: qcom: reset: Commonize the de/assert functions (stable-fixes). * clk: qcom: reset: Ensure write completion on reset de/assertion (git-fixes). * clk: Remove prepare_lock hold assertion in __clk_release() (git-fixes). * clk: renesas: r8a779a0: Fix CANFD parent clock (git-fixes). * clk: renesas: r9a07g043: Add clock and reset entry for PLIC (git-fixes). * clk: rs9: fix wrong default value for clock amplitude (git-fixes). * clk: samsung: exynosautov9: fix wrong pll clock id value (git-fixes). * clk: Show active consumers of clocks in debugfs (stable-fixes). * clk: sunxi-ng: h6: Reparent CPUX during PLL CPUX rate change (git-fixes). * clocksource/drivers/arm_global_timer: Fix maximum prescaler value (git- fixes). * clocksource/drivers/imx: Fix -Wunused-but-set-variable warning (git-fixes). * comedi: vmk80xx: fix incomplete endpoint checking (git-fixes). * coresight: trbe: Add a representative coresight_platform_data for (bsc#1220587) * coresight: trbe: Allocate platform data per device (bsc#1220587) * coresight: trbe: Enable ACPI based TRBE devices (bsc#1220587) * counter: linux/counter.h: fix Excess kernel-doc description warning (git- fixes). * cppc_cpufreq: Fix possible null pointer dereference (git-fixes). * cpufreq: brcmstb-avs-cpufreq: ISO C90 forbids mixed declarations (git- fixes). * cpufreq: exit() callback is optional (git-fixes). * cpumask: Add for_each_cpu_from() (bsc#1225053). * crypto: bcm - Fix pointer arithmetic (git-fixes). * crypto: ccp - Add support for PCI device 0x156E (bsc#1223338). * crypto: ccp - Add support for PCI device 0x17E0 (bsc#1223338). * crypto: ccp - drop platform ifdef checks (git-fixes). * crypto: ecc - update ecc_gen_privkey for FIPS 186-5 (bsc#1222782). * crypto: ecdsa - Fix module auto-load on add-key (git-fixes). * crypto: lib/mpi - Fix unexpected pointer access in mpi_ec_init (git-fixes). * crypto: qat - Fix ADF_DEV_RESET_SYNC memory leak (git-fixes). * crypto: qat - fix ring to service map for dcc in 4xxx (git-fixes). * crypto: qat - improve error logging to be consistent across features (git- fixes). * crypto: qat - relocate and rename get_service_enabled() (stable-fixes). * crypto: qat - specify firmware files for 402xx (git-fixes). * crypto: rsa - add a check for allocation failure (bsc#1222775). * crypto: rsa - allow only odd e and restrict value in FIPS mode (bsc#1222775). * crypto: testmgr - remove unused xts4096 and xts512 algorithms from testmgr.c (bsc#1222769). * crypto: x86/nh-avx2 - add missing vzeroupper (git-fixes). * crypto: x86/sha256-avx2 - add missing vzeroupper (git-fixes). * crypto: x86/sha512-avx2 - add missing vzeroupper (git-fixes). * cxl/acpi: Fix load failures due to single window creation failure (git- fixes). * cxl/pci: Fix disabling memory if DVSEC CXL Range does not match a CFMWS window (git-fixes). * cxl/trace: Properly initialize cxl_poison region name (git-fixes). * dax: alloc_dax() return ERR_PTR(-EOPNOTSUPP) for CONFIG_DAX=n (jsc#PED-5853). * dax/bus.c: replace driver-core lock usage by a local rwsem (jsc#PED-5853). * dax/bus.c: replace several sprintf() with sysfs_emit() (jsc#PED-5853). * device-dax: make dax_bus_type const (jsc#PED-5853). * dlm: fix user space lkb refcounting (git-fixes). * dma-buf: Fix NULL pointer dereference in sanitycheck() (git-fixes). * dma-buf/sw-sync: do not enable IRQ from sync_print_obj() (git-fixes). * dmaengine: axi-dmac: fix possible race in remove() (git-fixes). * dmaengine: idma64: Add check for dma_set_max_seg_size (git-fixes). * dmaengine: idxd: Avoid unnecessary destruction of file_ida (git-fixes). * dmaengine: idxd: Fix oops during rmmod on single-CPU platforms (git-fixes). * dmaengine: owl: fix register access functions (git-fixes). * dmaengine: tegra186: Fix residual calculation (git-fixes). * dma-mapping: benchmark: fix node id validation (git-fixes). * dma-mapping: benchmark: handle NUMA_NO_NODE correctly (git-fixes). * dm/amd/pm: Fix problems with reboot/shutdown for some SMU 13.0.4/13.0.11 users (git-fixes). * dma: xilinx_dpdma: Fix locking (git-fixes). * dm crypt: remove redundant state settings after waking up (jsc#PED-7542). * dm-integrity: set max_integrity_segments in dm_integrity_io_hints (jsc#PED-7542). * dm-multipath: dont't attempt SG_IO on non-SCSI-disks (bsc#1223575). * dm-raid: add a new helper prepare_suspend() in md_personality (jsc#PED-7542). * dm-raid: really frozen sync_thread during suspend (jsc#PED-7542). * dm thin: add braces around conditional code that spans lines (jsc#PED-7542). * dm: update relevant MODULE_AUTHOR entries to latest dm-devel mailing list (jsc#PED-7542). * dm verity: set DM_TARGET_SINGLETON feature flag (jsc#PED-7542). * Docs/admin-guide/mm/damon/usage: fix wrong example of DAMOS filter matching sysfs file (git-fixes). * docs: kernel_include.py: Cope with docutils 0.21 (stable-fixes). * docs: netdev: Fix typo in Signed-off-by tag (git-fixes). * docs: Restore "smart quotes" for quotes (stable-fixes). * driver core: Introduce device_link_wait_removal() (stable-fixes). * drivers/nvme: Add quirks for device 126f:2262 (git-fixes). * drm: add drm_gem_object_is_shared_for_memory_stats() helper (stable-fixes). * drm/amd/amdgpu: Fix potential ioremap() memory leaks in amdgpu_device_init() (stable-fixes). * drm/amd/display: Add dml2 copy functions (stable-fixes). * drm/amd/display: Allow dirty rects to be sent to dmub when abm is active (stable-fixes). * drm/amd/display: Atom Integrated System Info v2_2 for DCN35 (stable-fixes). * drm/amd/display: Change default size for dummy plane in DML2 (stable-fixes). * drm/amd/display: Do not recursively call manual trigger programming (stable- fixes). * drm/amd/display: Enable colorspace property for MST connectors (git-fixes). * drm/amd/display: Fix bounds check for dcn35 DcfClocks (git-fixes). * drm/amd/display: fix disable otg wa logic in DCN316 (stable-fixes). * drm/amd/display: Fix division by zero in setup_dsc_config (stable-fixes). * drm/amd/display: Fix idle check for shared firmware state (stable-fixes). * drm/amd/display: Fix incorrect DSC instance for MST (stable-fixes). * drm/amd/display: fix input states translation error for dcn35 & dcn351 (stable-fixes). * drm/amd/display: Fix nanosec stat overflow (stable-fixes). * drm/amd/display: Fix noise issue on HDMI AV mute (stable-fixes). * drm/amd/display: Fix potential index out of bounds in color transformation function (git-fixes). * drm/amd/display: handle range offsets in VRR ranges (stable-fixes). * drm/amd/display: Handle Y carry-over in VCP X.Y calculation (stable-fixes). * drm/amd/display: Init DPPCLK from SMU on dcn32 (stable-fixes). * drm/amd/display: Override min required DCFCLK in dml1_validate (stable- fixes). * drm/amd/display: Prevent crash when disable stream (stable-fixes). * drm/amd/display: Program VSC SDP colorimetry for all DP sinks >= 1.4 (stable-fixes). * drm/amd/display: Remove MPC rate control logic from DCN30 and above (stable- fixes). * drm/amd/display: Remove redundant condition in dcn35_calc_blocks_to_gate() (git-fixes). * drm/amd/display: Return the correct HDCP error code (stable-fixes). * drm/amd/display: Set DCN351 BB and IP the same as DCN35 (stable-fixes). * drm/amd/display: Set VSC SDP Colorimetry same way for MST and SST (stable- fixes). * drm/amd/display: Use freesync when `DRM_EDID_FEATURE_CONTINUOUS_FREQ` found (stable-fixes). * drm/amd: Flush GFXOFF requests in prepare stage (git-fixes). * drm/amdgpu: always force full reset for SOC21 (stable-fixes). * drm/amdgpu: amdgpu_ttm_gart_bind set gtt bound flag (stable-fixes). * drm/amdgpu: Assign correct bits for SDMA HDP flush (stable-fixes). * drm/amdgpu/display: Address kdoc for 'is_psr_su' in 'fill_dc_dirty_rects' (git-fixes). * drm/amdgpu: drop setting buffer funcs in sdma442 (git-fixes). * drm/amdgpu: Fix comparison in amdgpu_res_cpu_visible (git-fixes). * drm/amdgpu: fix deadlock while reading mqd from debugfs (git-fixes). * drm/amdgpu: fix doorbell regression (git-fixes). * drm/amdgpu: fix incorrect number of active RBs for gfx11 (stable-fixes). * drm/amdgpu: Fix leak when GPU memory allocation fails (stable-fixes). * drm/amdgpu: fix mmhub client id out-of-bounds access (git-fixes). * drm/amdgpu: fix use-after-free bug (stable-fixes). * drm/amdgpu: Fix VCN allocation in CPX partition (stable-fixes). * drm/amdgpu: fix visible VRAM handling during faults (git-fixes). * drm/amdgpu: implement IRQ_STATE_ENABLE for SDMA v4.4.2 (stable-fixes). * drm/amdgpu: make damage clips support configurable (stable-fixes). * drm/amdgpu: once more fix the call oder in amdgpu_ttm_move() v2 (git-fixes). * drm/amdgpu/pm: Check the validity of overdiver power limit (git-fixes). * drm/amdgpu/pm: Fix NULL pointer dereference when get power limit (git- fixes). * drm/amdgpu/pm: Fix the error of pwm1_enable setting (stable-fixes). * drm/amdgpu: Refine IB schedule error logging (stable-fixes). * drm/amdgpu: remove invalid resource->start check v2 (git-fixes). * drm/amdgpu: Reset dGPU if suspend got aborted (stable-fixes). * drm/amdgpu/sdma5.2: use legacy HDP flush for SDMA2/3 (stable-fixes). * drm/amdgpu: validate the parameters of bo mapping operations more clearly (git-fixes). * drm/amdkfd: Check cgroup when returning DMABuf info (stable-fixes). * drm/amdkfd: do not allow mapping the MMIO HDP page with large pages (git- fixes). * drm/amdkfd: Fix memory leak in create_process failure (git-fixes). * drm/amdkfd: fix TLB flush after unmap for GFX9.4.2 (stable-fixes). * drm/amdkfd: range check cp bad op exception interrupts (stable-fixes). * drm/amdkfd: Reset GPU on queue preemption failure (stable-fixes). * drm/amd/pm: fixes a random hang in S4 for SMU v13.0.4/11 (stable-fixes). * drm/amd/swsmu: modify the gfx activity scaling (stable-fixes). * drm/arm/malidp: fix a possible null pointer dereference (git-fixes). * drm/ast: Fix soft lockup (git-fixes). * drm/bridge: anx7625: Do not log an error when DSI host can't be found (git- fixes). * drm: bridge: cdns-mhdp8546: Fix possible null pointer dereference (git- fixes). * drm/bridge: dpc3433: Do not log an error when DSI host can't be found (git- fixes). * drm/bridge: Fix improper bridge init order with pre_enable_prev_first (git- fixes). * drm/bridge: icn6211: Do not log an error when DSI host can't be found (git- fixes). * drm/bridge: lt8912b: Do not log an error when DSI host can't be found (git- fixes). * drm/bridge: lt9611: Do not log an error when DSI host can't be found (git- fixes). * drm/bridge: lt9611uxc: Do not log an error when DSI host can't be found (git-fixes). * drm/bridge: tc358775: Do not log an error when DSI host can't be found (git- fixes). * drm/bridge: tc358775: fix support for jeida-18 and jeida-24 (git-fixes). * drm/buddy: check range allocation matches alignment (stable-fixes). * drm: Check output polling initialized before disabling (stable-fixes). * drm: Check polling initialized before enabling in drm_helper_probe_single_connector_modes (stable-fixes). * drm/client: Fully protect modes[] with dev->mode_config.mutex (stable- fixes). * drm/connector: Add \n to message about demoting connector force-probes (git- fixes). * drm/display: fix typo (git-fixes). * drm/exynos: do not return negative values from .get_modes() (stable-fixes). * drm/fbdev-generic: Do not set physical framebuffer address (git-fixes). * drm: Fix drm_fixp2int_round() making it add 0.5 (git-fixes). * drm/gma500: Remove lid code (git-fixes). * drm/i915/audio: Fix audio time stamp programming for DP (stable-fixes). * drm/i915/bios: Fix parsing backlight BDB data (git-fixes). * drm/i915/bios: Tolerate devdata==NULL in intel_bios_encoder_supports_dp_dual_mode() (stable-fixes). * drm/i915/cdclk: Fix CDCLK programming order when pipes are active (git- fixes). * drm/i915: Disable live M/N updates when using bigjoiner (stable-fixes). * drm/i915: Disable port sync when bigjoiner is used (stable-fixes). * drm/i915/display: Use i915_gem_object_get_dma_address to get dma address (stable-fixes). * drm/i915: Do not match JSL in ehl_combo_pll_div_frac_wa_needed() (git- fixes). * drm/i915/dp: Fix the computation for compressed_bpp for DISPLAY < 13 (git-fixes). * drm/i915/dp: Remove support for UHBR13.5 (git-fixes). * drm/i915/dpt: Make DPT object unshrinkable (git-fixes). * drm/i915/dsb: Fix DSB vblank waits when using VRR (git-fixes). * drm/i915/dsi: Go back to the previous INIT_OTP/DISPLAY_ON order, mostly (git-fixes). * drm/i915: Fix audio component initialization (git-fixes). * drm/i915/gt: Automate CCS Mode setting during engine resets (git-fixes). * drm/i915/gt: Disable HW load balancing for CCS (git-fixes). * drm/i915/gt: Disarm breadcrumbs if engines are already idle (git-fixes). * drm/i915/gt: Do not generate the command streamer for all the CCS (git- fixes). * drm/i915/gt: Enable only one CCS for compute workload (git-fixes). * drm/i915/gt: Fix CCS id's calculation for CCS mode setting (git-fixes). * drm/i915/gt: Reset queue_priority_hint on parking (git-fixes). * drm/i915/guc: avoid FIELD_PREP warning (git-fixes). * drm/i915/hwmon: Fix locking inversion in sysfs getter (git-fixes). * drm/i915: Include the PLL name in the debug messages (stable-fixes). * drm/i915/lspcon: Separate function to set expected mode (bsc#1193599). * drm/i915/lspcon: Separate lspcon probe and lspcon init (bsc#1193599). * drm/i915/mst: Limit MST+DSC to TGL+ (git-fixes). * drm/i915/mst: Reject FEC+MST on ICL (git-fixes). * drm/i915: Pre-populate the cursor physical dma address (git-fixes). * drm/i915: Replace a memset() with zero initialization (stable-fixes). * drm/i915: Stop printing pipe name as hex (stable-fixes). * drm/i915: Suppress old PLL pipe_mask checks for MG/TC/TBT PLLs (stable- fixes). * drm/i915: Try to preserve the current shared_dpll for fastset on type-c ports (stable-fixes). * drm/i915: Use named initializers for DPLL info (stable-fixes). * drm/i915/vrr: Disable VRR when using bigjoiner (stable-fixes). * drm/i915/vrr: Generate VRR "safe window" for DSB (git-fixes). * drm/imx/ipuv3: do not return negative values from .get_modes() (stable- fixes). * drm/lcdif: Do not disable clocks on already suspended hardware (git-fixes). * drm/mediatek: Add 0 size check to mtk_drm_gem_obj (git-fixes). * drm/mediatek: dp: Fix mtk_dp_aux_transfer return value (git-fixes). * drm/mediatek: Init `ddp_comp` with devm_kcalloc() (git-fixes). * drm/meson: dw-hdmi: add bandgap setting for g12 (git-fixes). * drm/meson: dw-hdmi: power up phy on device init (git-fixes). * drm/meson: gate px_clk when setting rate (git-fixes). * drm/meson: vclk: fix calculation of 59.94 fractional rates (git-fixes). * drm/msm/a6xx: Avoid a nullptr dereference when speedbin setting fails (git- fixes). * drm/msm: Add newlines to some debug prints (git-fixes). * drm/msm/adreno: fix CP cycles stat retrieval on a7xx (git-fixes). * drm/msm/dp: allow voltage swing / pre emphasis of 3 (git-fixes). * drm/msm/dp: Avoid a long timeout for AUX transfer if nothing connected (git- fixes). * drm/msm/dp: fix typo in dp_display_handle_port_status_changed() (git-fixes). * drm/msm/dpu: Add callback function pointer check before its call (git- fixes). * drm/msm/dpu: Allow configuring multiple active DSC blocks (git-fixes). * drm/msm/dpu: Always flush the slave INTF on the CTL (git-fixes). * drm/msm/dpu: do not allow overriding data from catalog (git-fixes). * drm/msm/dpu: make error messages at dpu_core_irq_register_callback() more sensible (git-fixes). * drm/msm/dpu: use devres-managed allocation for MDP TOP (stable-fixes). * drm/msm/dsi: Print dual-DSI-adjusted pclk instead of original mode pclk (git-fixes). * drm/nouveau/disp: Fix missing backlight control on Macbook 5, 1 (bsc#1223838). * drm/nouveau/dp: Do not probe eDP ports twice harder (stable-fixes). * drm/nouveau/dp: Fix incorrect return code in r535_dp_aux_xfer() (git-fixes). * drm/nouveau/firmware: Fix SG_DEBUG error with nvkm_firmware_ctor() (stable- fixes). * drm/nouveau: use tile_mode and pte_kind for VM_BIND bo allocations (git- fixes). * drm: nv04: Fix out of bounds access (git-fixes). * drm/omapdrm: Fix console by implementing fb_dirty (git-fixes). * drm/panel: do not return negative error codes from drm_panel_get_modes() (stable-fixes). * drm/panel: ili9341: Respect deferred probe (git-fixes). * drm/panel: ili9341: Use predefined error codes (git-fixes). * drm/panel: ltk050h3146w: add MIPI_DSI_MODE_VIDEO to LTK050H3148W flags (git- fixes). * drm/panel: ltk050h3146w: drop duplicate commands from LTK050H3148W init (git-fixes). * drm/panel: novatek-nt35950: Do not log an error when DSI host can't be found (git-fixes). * drm: panel-orientation-quirks: Add quirk for GPD Win Mini (stable-fixes). * drm/panel: simple: Add missing Innolux G121X1-L03 format, flags, connector (git-fixes). * drm/panel: sitronix-st7789v: fix display size for jt240mhqs_hwt_ek_e3 panel (git-fixes). * drm/panel: sitronix-st7789v: fix timing for jt240mhqs_hwt_ek_e3 panel (git- fixes). * drm/panel: sitronix-st7789v: tweak timing for jt240mhqs_hwt_ek_e3 panel (git-fixes). * drm/panel: visionox-rm69299: do not unregister DSI device (git-fixes). * drm/panfrost: fix power transition timeout warnings (git-fixes). * drm/panfrost: Fix the error path in panfrost_mmu_map_fault_addr() (git- fixes). * drm/prime: Unbreak virtgpu dma-buf export (git-fixes). * drm/probe-helper: warn about negative .get_modes() (stable-fixes). * drm/qxl: remove unused `count` variable from `qxl_surface_id_alloc()` (git- fixes). * drm/qxl: remove unused variable from `qxl_process_single_command()` (git- fixes). * drm/radeon: make -fstrict-flex-arrays=3 happy (git-fixes). * drm/radeon: silence UBSAN warning (v3) (stable-fixes). * drm/rockchip: vop2: Do not divide height twice for YUV (git-fixes). * drm/rockchip: vop2: Remove AR30 and AB30 format support (git-fixes). * drm/sched: fix null-ptr-deref in init entity (git-fixes). * drm/shmem-helper: Fix BUG_ON() on mmap(PROT_WRITE, MAP_PRIVATE) (git-fixes). * drm/ttm: return ENOSPC from ttm_bo_mem_space v3 (stable-fixes). * drm/ttm: stop pooling cached NUMA pages v2 (git-fixes). * drm/vc4: do not check if plane->state->fb == state->fb (stable-fixes). * drm: vc4: Fix possible null pointer dereference (git-fixes). * drm/vc4: hdmi: do not return negative values from .get_modes() (stable- fixes). * drm/vmwgfx: Create debugfs ttm_resource_manager entry only if needed (git- fixes). * drm/vmwgfx: Enable DMA mappings with SEV (git-fixes). * drm/vmwgfx: Fix crtc's atomic check conditional (git-fixes). * drm/vmwgfx: Fix invalid reads in fence signaled events (git-fixes). * drm/vmwgfx: Fix Legacy Display Unit (git-fixes). * drm/vmwgfx: Fix prime import/export (git-fixes). * drm/vmwgfx: Sort primary plane formats by order of preference (git-fixes). * drm: zynqmp_dpsub: Always register bridge (git-fixes). * dt-bindings: clock: qcom: Add missing UFS QREF clocks (git-fixes) * dump_stack: Do not get cpu_sync for panic CPU (bsc#1225607). * dyndbg: fix old BUG_ON in >control parser (stable-fixes). * e1000e: Minor flow correction in e1000_shutdown function (git-fixes). * e1000e: move force SMBUS from enable ulp function to avoid PHY loss issue (git-fixes). * e1000e: Workaround for sporadic MDI error on Meteor Lake systems (git- fixes). * ecryptfs: Fix buffer size for tag 66 packet (git-fixes) * ecryptfs: Reject casefold directory inodes (git-fixes) * EDAC/synopsys: Fix ECC status and IRQ control race condition (git-fixes). * Edit "amdkfd: use calloc instead of kzalloc to avoid integer overflow" Reference CVE and bug numbers. * efi: disable mirror feature during crashkernel (stable-fixes). * efi: fix panic in kdump kernel (git-fixes). * efi: libstub: only free priv.runtime_map when allocated (git-fixes). * efi/unaccepted: do not let /proc/vmcore try to access unaccepted memory (git-fixes). * efi/unaccepted: touch soft lockup during memory accept (git-fixes). * Enable CONFIG_FIPS_SIGNATURE_SELFTEST (bsc#1222771) * Enable new CONFIG_FIPS_SIGNATURE_SELFTEST_ECDSA. * Enable new CONFIG_FIPS_SIGNATURE_SELFTEST_RSA. * extcon: max8997: select IRQ_DOMAIN instead of depending on it (git-fixes). * fast_dput(): handle underflows gracefully (git-fixes) * fat: fix uninitialized field in nostale filehandles (git-fixes) * fbdev: fix incorrect address computation in deferred IO (git-fixes). * fbdev: savage: Handle err return when savagefb_check_var failed (git-fixes). * fbdev: sh7760fb: allow modular build (git-fixes). * fbdev: shmobile: fix snprintf truncation (git-fixes). * fbdev: sisfb: hide unused variables (git-fixes). * fbdev: viafb: fix typo in hw_bitblt_1 and hw_bitblt_2 (stable-fixes). * fbmon: prevent division by zero in fb_videomode_from_videomode() (stable- fixes). * firewire: core: use long bus reset on gap count error (stable-fixes). * firewire: ohci: mask bus reset interrupts between ISR and bottom half (stable-fixes). * firmware: arm_scmi: Make raw debugfs entries non-seekable (git-fixes). * firmware: dmi-id: add a release callback function (git-fixes). * firmware: raspberrypi: Use correct device for DMA mappings (git-fixes). * firmware: tegra: bpmp: Return directly after a failed kzalloc() in get_filename() (stable-fixes). * Fix a potential infinite loop in extract_user_to_sg() (git-fixes). * Fix build errors due to new UIO_MEM_DMA_COHERENT mess (git-fixes). * fs/9p: only translate RWX permissions for plain 9P2000 (git-fixes) * fs/9p: translate O_TRUNC into OTRUNC (git-fixes) * fs: Fix error checking for d_hash_and_lookup() (git-fixes) * fs: indicate request originates from old mount API (git-fixes) * fs: relax mount_setattr() permission checks (git-fixes) * fsverity: skip PKCS#7 parser when keyring is empty (git-fixes) * ftrace: Fix possible use-after-free issue in ftrace_location() (git-fixes). * fuse: do not unhash root (bsc#1223946). * fuse: fix root lookup with nonzero generation (bsc#1223945). * geneve: fix header validation in geneve[6]_xmit_skb (git-fixes). * geneve: make sure to pull inner header in geneve_rx() (git-fixes). * gpio: cdev: check for NULL labels when sanitizing them for irqs (git-fixes). * gpio: cdev: fix missed label sanitizing in debounce_setup() (git-fixes). * gpio: cdev: sanitize the label before requesting the interrupt (stable- fixes). * gpio: crystalcove: Use -ENOTSUPP consistently (stable-fixes). * gpiolib: cdev: fix uninitialised kfifo (git-fixes). * gpiolib: cdev: relocate debounce_period_us from struct gpio_desc (stable- fixes). * gpiolib: swnode: Remove wrong header inclusion (git-fixes). * gpio: tangier: Use correct type for the IRQ chip data (git-fixes). * gpio: tegra186: Fix tegra186_gpio_is_accessible() check (git-fixes). * gpio: wcove: Use -ENOTSUPP consistently (stable-fixes). * gpu: host1x: Do not setup DMA for virtual devices (stable-fixes). * gtp: fix use-after-free and null-ptr-deref in gtp_newlink() (git-fixes). * HID: amd_sfh: Handle "no sensors" in PM operations (git-fixes). * HID: i2c-hid: remove I2C_HID_READ_PENDING flag to prevent lock-up (git- fixes). * HID: input: avoid polling stylus battery on Chromebook Pompom (stable- fixes). * HID: intel-ish-hid: ipc: Add check for pci_alloc_irq_vectors (git-fixes). * HID: intel-ish-hid: ipc: Fix dev_err usage with uninitialized dev->devc (git-fixes). * HID: logitech-dj: allow mice to use all types of reports (git-fixes). * HID: multitouch: Add required quirk for Synaptics 0xcddc device (stable- fixes). * hwmon: (amc6821) add of_match table (stable-fixes). * hwmon: (corsair-cpro) Protect ccp->wait_input_report with a spinlock (git- fixes). * hwmon: (corsair-cpro) Use a separate buffer for sending commands (git- fixes). * hwmon: (corsair-cpro) Use complete_all() instead of complete() in ccp_raw_event() (git-fixes). * hwmon: (intel-m10-bmc-hwmon) Fix multiplier for N6000 board power sensor (git-fixes). * hwmon: (lm70) fix links in doc and comments (git-fixes). * hwmon: (pmbus/ucd9000) Increase delay from 250 to 500us (git-fixes). * hwmon: (shtc1) Fix property misspelling (git-fixes). * hwtracing: hisi_ptt: Move type check to the beginning of hisi_ptt_pmu_event_init() (git-fixes). * i2c: acpi: Unbind mux adapters before delete (git-fixes). * i2c: cadence: Avoid fifo clear after start (git-fixes). * i2c: pxa: hide unused icr_bits[] variable (git-fixes). * i2c: smbus: fix NULL function pointer dereference (git-fixes). * i2c: synquacer: Fix an error handling path in synquacer_i2c_probe() (git- fixes). * i3c: master: svc: change ENXIO to EAGAIN when IBI occurs during start frame (git-fixes). * i3c: master: svc: fix invalidate IBI type and miss call client IBI handler (git-fixes). * i40e: disable NAPI right after disabling irqs when handling xsk_pool (git- fixes). * i40e: Enforce software interrupt during busy-poll exit (git-fixes). * i40e: Fix firmware version comparison function (git-fixes). * i40e: fix i40e_count_filters() to count only active/new filters (git-fixes). * i40e: Fix VF MAC filter removal (git-fixes). * i40e: fix vf may be used uninitialized in this function warning (git-fixes). * i915: make inject_virtual_interrupt() void (stable-fixes). * IB/mlx5: Use __iowrite64_copy() for write combining stores (git-fixes) * ice: fix enabling RX VLAN filtering (git-fixes). * ice: fix memory corruption bug with suspend and rebuild (git-fixes). * ice: fix stats being updated by way too large values (git-fixes). * ice: fix typo in assignment (git-fixes). * ice: fix uninitialized dplls mutex usage (git-fixes). * ice: reconfig host after changing MSI-X on VF (git-fixes). * ice: Refactor FW data type and fix bitmap casting issue (git-fixes). * ice: reorder disabling IRQ and NAPI in ice_qp_dis (git-fixes). * ice: use relative VSI index for VFs instead of PF VSI number (git-fixes). * ice: virtchnl: stop pretending to support RSS over AQ or registers (git- fixes). * ida: make 'ida_dump' static (git-fixes). * idma64: Do not try to serve interrupts when device is powered off (git- fixes). * idpf: disable local BH when scheduling napi for marker packets (git-fixes). * idpf: extend tx watchdog timeout (bsc#1224137). * idpf: fix kernel panic on unknown packet types (git-fixes). * igb: extend PTP timestamp adjustments to i211 (git-fixes). * igb: Fix missing time sync events (git-fixes). * igc: avoid returning frame twice in XDP_REDIRECT (git-fixes). * igc: Fix missing time sync events (git-fixes). * igc: Remove stale comment about Tx timestamping (git-fixes). * iio: accel: mxc4005: Interrupt handling fixes (git-fixes). * iio: adc: stm32: Fixing err code to not indicate success (git-fixes). * iio: core: Leave private pointer NULL when no private data supplied (git- fixes). * iio: dummy_evgen: remove Excess kernel-doc comments (git-fixes). * iio: gts-helper: Fix division loop (git-fixes). * iio:imu: adis16475: Fix sync mode setting (git-fixes). * iio: pressure: dps310: support negative temperature values (git-fixes). * iio: pressure: Fixes BME280 SPI driver data (git-fixes). * inet_diag: annotate data-races around inet_diag_table[] (git-fixes). * inet: frags: eliminate kernel-doc warning (git-fixes). * init/main.c: Fix potential static_command_line memory overflow (git-fixes). * init: open /initrd.image with O_LARGEFILE (stable-fixes). * Input: allocate keycode for Display refresh rate toggle (stable-fixes). * Input: cyapa - add missing input core locking to suspend/resume functions (git-fixes). * Input: gpio_keys_polled - suppress deferred probe error for gpio (stable- fixes). * Input: imagis - use FIELD_GET where applicable (stable-fixes). * Input: ims-pcu - fix printf string overflow (git-fixes). * Input: pm8xxx-vibrator - correct VIB_MAX_LEVELS calculation (git-fixes). * Input: synaptics-rmi4 - fail probing if memory allocation for "phys" fails (stable-fixes). * input/touchscreen: imagis: Correct the maximum touch area value (stable- fixes). * Input: xpad - add additional HyperX Controller Identifiers (stable-fixes). * Input: xpad - add support for Snakebyte GAMEPADs (stable-fixes). * intel: legacy: Partial revert of field get conversion (git-fixes). * interconnect: qcom: osm-l3: Replace custom implementation of COUNT_ARGS() (git-fixes). * interconnect: qcom: qcm2290: Fix mas_snoc_bimc QoS port assignment (git- fixes). * interconnect: qcom: sc8180x: Mark CO0 BCM keepalive (git-fixes). * interconnect: qcom: sm8550: Enable sync_state (git-fixes). * iomap: clear the per-folio dirty bits on all writeback failures (git-fixes) * iommu/arm-smmu-v3: Check that the RID domain is S1 in SVA (git-fixes). * iommu/dma: Force swiotlb_max_mapping_size on an untrusted device (bsc#1224331) * iommu/dma: Trace bounce buffer usage when mapping buffers (git-fixes). * iommufd: Add missing IOMMUFD_DRIVER kconfig for the selftest (git-fixes). * iommufd: Fix iopt_access_list_id overwrite bug (git-fixes). * iommufd/iova_bitmap: Bounds check mapped::pages access (git-fixes). * iommufd/iova_bitmap: Consider page offset for the pages to be pinned (git- fixes). * iommufd/iova_bitmap: Switch iova_bitmap::bitmap to an u8 array (git-fixes). * iommufd: Reject non-zero data_type if no data_len is provided (git-fixes). * iommu: Map reserved memory as cacheable if device is coherent (git-fixes). * iommu/vt-d: Allocate local memory for page request queue (git-fixes). * iommu/vt-d: Fix wrong use of pasid config (git-fixes). * iommu/vt-d: Set SSADE when attaching to a parent with dirty tracking (git- fixes). * iommu/vt-d: Update iotlb in nested domain attach (git-fixes). * ionic: set adminq irq affinity (git-fixes). * io_uring: kabi cookie remove (bsc#1217384). * ipv4: annotate data-races around fi->fib_dead (git-fixes). * irqchip/alpine-msi: Fix off-by-one in allocation error path (git-fixes). * irqchip/armada-370-xp: Suppress unused-function warning (git-fixes). * irqchip/gic-v3-its: Do not assume vPE tables are preallocated (git-fixes). * irqchip/gic-v3-its: Fix VSYNC referencing an unmapped VPE on GIC v4.1 (git- fixes). * irqchip/gic-v3-its: Prevent double free on error (git-fixes). * irqchip/loongson-pch-msi: Fix off-by-one on allocation error path (git- fixes). * irqchip/mbigen: Do not use bus_get_dev_root() to find the parent (git- fixes). * irqchip/renesas-rzg2l: Add macro to retrieve TITSR register offset based on register's index (stable-fixes). * irqchip/renesas-rzg2l: Flush posted write in irq_eoi() (git-fixes). * irqchip/renesas-rzg2l: Implement restriction when writing ISCR register (stable-fixes). * irqchip/renesas-rzg2l: Prevent spurious interrupts when setting trigger type (git-fixes). * irqchip/renesas-rzg2l: Rename rzg2l_irq_eoi() (stable-fixes). * irqchip/renesas-rzg2l: Rename rzg2l_tint_eoi() (stable-fixes). * ixgbe: avoid sleeping allocation in ixgbe_ipsec_vf_add_sa() (git-fixes). * ixgbe: {dis, en}able irqs in ixgbe_txrx_ring_{dis, en}able (git-fixes). * jffs2: prevent xattr node from overflowing the eraseblock (git-fixes). * kABI: Adjust trace_iterator.wait_index (git-fixes). * kABI fix of KVM: x86/pmu: Allow programming events that match unsupported arch events (bsc#1225696). * kABI fix of KVM: x86: Snapshot if a vCPU's vendor model is AMD vs. Intel compatible (git-fixes). * kabi fix of perf/x86/intel: Expose existence of callback support to KVM (git fixes). * kabi/severities: ignore brcmfmac-specific local symbols * kabi/severities: ignore IMS functions They were dropped in previous patches. Noone is supposed to use them. * kabi/severities: ignore TAS2781 symbol drop, it's only locally used * kabi/severities: ignore Wangxun ethernet driver local symbols * kabi/severities: Remove mitigation-related symbols Those are used by the core kernel to implement CPU vulnerabilities mitigation and are not expected to be consumed by 3rd party users. * kABI workaround for cs35l56 (git-fixes). * kABI workaround for of driver changes (git-fixes). * kasan: disable kasan_non_canonical_hook() for HW tags (git-fixes). * kasan, fortify: properly rename memintrinsics (git-fixes). * kasan: print the original fault addr when access invalid shadow (git-fixes). * kasan/test: avoid gcc warning for intentional overflow (git-fixes). * kbuild: Move -Wenum-{compare-conditional,enum-conversion} into W=1 (stable- fixes). * kconfig: fix infinite loop when expanding a macro at the end of file (git- fixes). * kexec: do syscore_shutdown() in kernel_kexec (git-fixes). * KEYS: trusted: Do not use WARN when encode fails (git-fixes). * KEYS: trusted: Fix memory leak in tpm2_key_encode() (git-fixes). * kprobes: Fix possible use-after-free issue on kprobe registration (git- fixes). * kselftest: Add a ksft_perror() helper (stable-fixes). * kunit/fortify: Fix mismatched kvalloc()/vfree() usage (git-fixes). * KVM: nVMX: Clear EXIT_QUALIFICATION when injecting an EPT Misconfig (git- fixes). * KVM: s390: Check kvm pointer when testing KVM_CAP_S390_HPAGE_1M (git-fixes bsc#1224790). * KVM: SVM: Add support for allowing zero SEV ASIDs (git-fixes). * KVM: SVM: Flush pages under kvm->lock to fix UAF in svm_register_enc_region() (git-fixes). * KVM: SVM: Use unsigned integers when dealing with ASIDs (git-fixes). * KVM: VMX: Disable LBR virtualization if the CPU does not support LBR callstacks (git-fixes). * KVM: VMX: Report up-to-date exit qualification to userspace (git-fixes). * KVM: x86: Allow, do not ignore, same-value writes to immutable MSRs (git- fixes). * KVM: x86: Fix broken debugregs ABI for 32 bit kernels (git-fixes). * KVM: x86: Fully re-initialize supported_mce_cap on vendor module load (git- fixes). * KVM: x86: Introduce __kvm_get_hypervisor_cpuid() helper (git-fixes). * KVM: x86: Mark target gfn of emulated atomic instruction as dirty (git- fixes). * KVM: x86/mmu: Do not force emulation of L2 accesses to non-APIC internal slots (git-fixes). * KVM: x86/mmu: Move private vs. shared check above slot validity checks (git- fixes). * KVM: x86/mmu: Restrict KVM_SW_PROTECTED_VM to the TDP MMU (git-fixes). * KVM: x86/mmu: Write-protect L2 SPTEs in TDP MMU when clearing dirty status (git-fixes). * KVM: x86: Only set APICV_INHIBIT_REASON_ABSENT if APICv is enabled (git- fixes). * KVM: x86/pmu: Allow programming events that match unsupported arch events (git-fixes). * KVM: x86/pmu: Always treat Fixed counters as available when supported (git- fixes). * KVM: x86/pmu: Apply "fast" RDPMC only to Intel PMUs (git-fixes). * KVM: x86/pmu: Disable support for adaptive PEBS (git-fixes). * KVM: x86/pmu: Disallow "fast" RDPMC for architectural Intel PMUs (git- fixes). * KVM: x86/pmu: Do not ignore bits 31:30 for RDPMC index on AMD (git-fixes). * KVM: x86/pmu: Do not mask LVTPC when handling a PMI on AMD platforms (git- fixes). * KVM: x86/pmu: Explicitly check NMI from guest to reducee false positives (git-fixes). * KVM: x86/pmu: Prioritize VMX interception over #GP on RDPMC due to bad index (git-fixes). * KVM: x86/pmu: Set enable bits for GP counters in PERF_GLOBAL_CTRL at "RESET" (git-fixes). * KVM: x86/pmu: Zero out PMU metadata on AMD if PMU is disabled (git-fixes). * KVM: x86: Snapshot if a vCPU's vendor model is AMD vs. Intel compatible (git-fixes). * KVM: x86: Update KVM_SW_PROTECTED_VM docs to make it clear they're a WIP (git-fixes). * KVM: x86: Use actual kvm_cpuid.base for clearing KVM_FEATURE_PV_UNHALT (git- fixes). * KVM: x86/xen: fix recursive deadlock in timer injection (git-fixes). * KVM: x86/xen: improve accuracy of Xen timers (git-fixes). * KVM: x86/xen: inject vCPU upcall vector when local APIC is enabled (git- fixes). * KVM: x86/xen: remove WARN_ON_ONCE() with false positives in evtchn delivery (git-fixes). * leds: pwm: Disable PWM when going to suspend (git-fixes). * libnvdimm: Fix ACPI_NFIT in BLK_DEV_PMEM help (jsc#PED-5853). * libperf evlist: Avoid out-of-bounds access (git-fixes). * libsubcmd: Fix parse-options memory leak (git-fixes). * lib/test_hmm.c: handle src_pfns and dst_pfns allocation failure (git-fixes). * livepatch: Fix missing newline character in klp_resolve_symbols() (bsc#1223539). * locks: fix KASAN: use-after-free in trace_event_raw_event_filelock_lock (git-fixes) * lsm: fix the logic in security_inode_getsecctx() (git-fixes). * mac802154: fix llsec key resources release in mac802154_llsec_key_del (git- fixes). * maple_tree: fix mas_empty_area_rev() null pointer dereference (git-fixes). * md: add a new helper rdev_has_badblock() (jsc#PED-7542). * md: add a new helper reshape_interrupted() (jsc#PED-7542). * md: changed the switch of RAID_VERSION to if (jsc#PED-7542). * md: check mddev->pers before calling md_set_readonly() (jsc#PED-7542). * md: clean up invalid BUG_ON in md_ioctl (jsc#PED-7542). * md: clean up openers check in do_md_stop() and md_set_readonly() (jsc#PED-7542). * md/dm-raid: do not call md_reap_sync_thread() directly (jsc#PED-7542). * md: Do not clear MD_CLOSING when the raid is about to stop (jsc#PED-7542). * md: do not clear MD_RECOVERY_FROZEN for new dm-raid until resume (jsc#PED-7542). * md: export helper md_is_rdwr() (jsc#PED-7542). * md: export helpers to stop sync_thread (jsc#PED-7542). * md: factor out a helper to sync mddev (jsc#PED-7542). * md: fix kmemleak of rdev->serial (jsc#PED-7542). * md: get rdev->mddev with READ_ONCE() (jsc#PED-7542). * md: merge the check of capabilities into md_ioctl_valid() (jsc#PED-7542). * md: preserve KABI in struct md_personality (jsc#PED-7542). * md/raid1-10: add a helper raid1_check_read_range() (jsc#PED-7542). * md/raid1-10: factor out a new helper raid1_should_read_first() (jsc#PED-7542). * md/raid1: factor out choose_bb_rdev() from read_balance() (jsc#PED-7542). * md/raid1: factor out choose_slow_rdev() from read_balance() (jsc#PED-7542). * md/raid1: factor out helpers to add rdev to conf (jsc#PED-7542). * md/raid1: factor out helpers to choose the best rdev from read_balance() (jsc#PED-7542). * md/raid1: factor out read_first_rdev() from read_balance() (jsc#PED-7542). * md/raid1: factor out the code to manage sequential IO (jsc#PED-7542). * md/raid1: fix choose next idle in read_balance() (jsc#PED-7542). * md/raid1: record nonrot rdevs while adding/removing rdevs to conf (jsc#PED-7542). * md: remove redundant check of 'mddev->sync_thread' (jsc#PED-7542). * md: remove redundant md_wakeup_thread() (jsc#PED-7542). * md: return directly before setting did_set_md_closing (jsc#PED-7542). * md: sync blockdev before stopping raid or setting readonly (jsc#PED-7542). * md: use RCU lock to protect traversal in md_spares_need_change() (jsc#PED-7542). * media: atomisp: ssh_css: Fix a null-pointer dereference in load_video_binaries (git-fixes). * media: cadence: csi2rx: use match fwnode for media link (git-fixes). * media: cec: core: remove length check of Timer Status (stable-fixes). * media: dt-bindings: ovti,ov2680: Fix the power supply names (git-fixes). * media: flexcop-usb: fix sanity check of bNumEndpoints (git-fixes). * media: i2c: et8ek8: Do not strip remove function when driver is builtin (git-fixes). * media: ipu3-cio2: Request IRQ earlier (git-fixes). * media: mc: Fix flags handling when creating pad links (stable-fixes). * media: mc: Fix graph walk in media_pipeline_start (git-fixes). * media: mc: mark the media devnode as registered from the, start (git-fixes). * media: mc: Rename pad variable to clarify intent (stable-fixes). * media: ngene: Add dvb_ca_en50221_init return value check (git-fixes). * media: rcar-vin: work around -Wenum-compare-conditional warning (git-fixes). * media: rkisp1: Fix IRQ handling due to shared interrupts (stable-fixes). * media: sta2x11: fix irq handler cast (stable-fixes). * media: stk1160: fix bounds checking in stk1160_copy_video() (git-fixes). * media: sunxi: a83-mips-csi2: also select GENERIC_PHY (git-fixes). * media: uvcvideo: Add quirk for Logitech Rally Bar (git-fixes). * media: v4l2-subdev: Fix stream handling for crop API (git-fixes). * media: v4l: Do not turn on privacy LED if streamon fails (git-fixes). * mei: me: add arrow lake point H DID (stable-fixes). * mei: me: add arrow lake point S DID (stable-fixes). * mei: me: add lunar lake point M DID (stable-fixes). * mei: me: disable RPL-S on SPS and IGN firmwares (git-fixes). * mlxbf_gige: call request_irq() after NAPI initialized (git-fixes). * mlxbf_gige: stop interface during shutdown (git-fixes). * mlxbf_gige: stop PHY during open() error paths (git-fixes). * mlxsw: Use refcount_t for reference counting (git-fixes). * mmc: core: Add HS400 tuning in HS400es initialization (stable-fixes). * mmc: core: Avoid negative index with array access (git-fixes). * mmc: core: Initialize mmc_blk_ioc_data (git-fixes). * mmc: davinci: Do not strip remove function when driver is builtin (git- fixes). * mmc: omap: fix broken slot switch lookup (git-fixes). * mmc: omap: fix deferred probe (git-fixes). * mmc: omap: restore original power up/down steps (git-fixes). * mmc: sdhci_am654: Add ITAPDLYSEL in sdhci_j721e_4bit_set_clock (git-fixes). * mmc: sdhci_am654: Add OTAP/ITAP delay enable (git-fixes). * mmc: sdhci_am654: Add tuning algorithm for delay chain (git-fixes). * mmc: sdhci_am654: Fix ITAPDLY for HS400 timing (git-fixes). * mmc: sdhci_am654: Write ITAPDLY for DDR52 timing (git-fixes). * mmc: sdhci-msm: pervent access to suspended controller (git-fixes). * mmc: sdhci-omap: re-tuning is needed after a pm transition to support emmc HS200 mode (git-fixes). * mm_init kABI workaround (git-fixes). * mm: memcg: do not periodically flush stats when memcg is disabled (bsc#1222525). * mm: memcg: use larger batches for proactive reclaim (bsc#1222522). * mm,page_owner: check for null stack_record before bumping its refcount (bsc#1222366). * mm,page_owner: Defer enablement of static branch (bsc#1222366). * mm,page_owner: drop unnecessary check (bsc#1222366). * mm,page_owner: Fix accounting of pages when migrating (bsc#1222366). * mm,page_owner: Fix printing of stack records (bsc#1222366). * mm,page_owner: fix recursion (bsc#1222366). * mm,page_owner: Fix refcount imbalance (bsc#1222366). * mm: page_owner: fix wrong information in dump_page_owner (git-fixes). * mm,page_owner: Update metadata for tail pages (bsc#1222366). * mm/slab: make __free(kfree) accept error pointers (git-fixes). * modpost: Add '.ltext' and '.ltext.*' to TEXT_SECTIONS (stable-fixes). * mptcp: annotate data-races around msk->rmem_fwd_alloc (git-fixes). * mptcp: fix bogus receive window shrinkage with multiple subflows (git- fixes). * mptcp: move __mptcp_error_report in protocol.c (git-fixes). * mptcp: process pending subflow error on close (git-fixes). * mptcp: Remove unnecessary test for __mptcp_init_sock() (git-fixes). * mtd: core: Report error if first mtd_otp_size() call fails in mtd_otp_nvmem_add() (git-fixes). * mtd: diskonchip: work around ubsan link failure (stable-fixes). * mtd: rawnand: hynix: fixed typo (git-fixes). * mtd: spinand: Add support for 5-byte IDs (stable-fixes). * net: add netdev_lockdep_set_classes() to virtual drivers (git-fixes). * net: annotate data-races around sk->sk_bind_phc (git-fixes). * net: annotate data-races around sk->sk_forward_alloc (git-fixes). * net: annotate data-races around sk->sk_lingertime (git-fixes). * net: annotate data-races around sk->sk_tsflags (git-fixes). * net: bonding: remove kernel-doc comment marker (git-fixes). * net: cfg802154: fix kernel-doc notation warnings (git-fixes). * net: dsa: microchip: fix register write order in ksz8_ind_write8() (git- fixes). * net: dsa: mt7530: fix handling of all link-local frames (git-fixes). * net: dsa: mt7530: fix link-local frames that ingress vlan filtering ports (git-fixes). * net: dsa: mt7530: prevent possible incorrect XTAL frequency selection (git- fixes). * net: dsa: mt7530: trap link-local frames regardless of ST Port State (git- fixes). * net: dsa: sja1105: Fix parameters order in sja1110_pcs_mdio_write_c45() (git-fixes). * net: ena: Fix incorrect descriptor free behavior (git-fixes). * net: ena: Fix potential sign extension issue (git-fixes). * net: ena: Move XDP code to its new files (git-fixes). * net: ena: Pass ena_adapter instead of net_device to ena_xmit_common() (git- fixes). * net: ena: Remove ena_select_queue (git-fixes). * net: ena: Set tx_info->xdpf value to NULL (git-fixes). * net: ena: Use tx_ring instead of xdp_ring for XDP channel TX (git-fixes). * net: ena: Wrong missing IO completions check order (git-fixes). * net: ethernet: mtk_eth_soc: fix PPE hanging issue (git-fixes). * net: ethernet: ti: cpsw: enable mac_managed_pm to fix mdio (git-fixes). * net: fec: Set mac_managed_pm during probe (git-fixes). * netfilter: nf_tables: disable toggling dormant table state more than once (git-fixes). * netfilter: nf_tables: uapi: Describe NFTA_RULE_CHAIN_ID (git-fixes). * netfilter: nft_ct: fix l3num expectations with inet pseudo family (git- fixes). * netfilter: nft_set_rbtree: use read spinlock to avoid datapath contention (git-fixes). * net: hns3: fix index limit to support all queue stats (git-fixes). * net: hns3: fix kernel crash when 1588 is received on HIP08 devices (git- fixes). * net: hns3: fix kernel crash when devlink reload during pf initialization (git-fixes). * net: hns3: fix port duplex configure error in IMP reset (git-fixes). * net: hns3: fix wrong judgment condition issue (git-fixes). * net: hns3: mark unexcuted loopback test result as UNEXECUTED (git-fixes). * net: hns3: tracing: fix hclgevf trace event strings (git-fixes). * net: ice: Fix potential NULL pointer dereference in ice_bridge_setlink() (git-fixes). * net: ks8851: Handle softirqs at the end of IRQ thread to fix hang (git- fixes). * net: ks8851: Inline ks8851_rx_skb() (git-fixes). * net: ks8851: Queue RX packets in IRQ handler instead of disabling BHs (git- fixes). * net: lan743x: Add set RFE read fifo threshold for PCI1x1x chips (git-fixes). * net: libwx: fix memory leak on free page (git-fixes). * net: llc: fix kernel-doc notation warnings (git-fixes). * net: ll_temac: platform_get_resource replaced by wrong function (git-fixes). * net: mana: Fix Rx DMA datasize and skb_over_panic (git-fixes). * net: mediatek: mtk_eth_soc: clear MAC_MCR_FORCE_LINK only when MAC is up (git-fixes). * net/mlx5: Correctly compare pkt reformat ids (git-fixes). * net/mlx5e: Change the warning when ignore_flow_level is not supported (git- fixes). * net/mlx5e: Do not produce metadata freelist entries in Tx port ts WQE xmit (git-fixes). * net/mlx5e: Fix MACsec state loss upon state update in offload path (git- fixes). * net/mlx5e: Fix mlx5e_priv_init() cleanup flow (git-fixes). * net/mlx5e: HTB, Fix inconsistencies with QoS SQs number (git-fixes). * net/mlx5e: RSS, Block changing channels number when RXFH is configured (git- fixes). * net/mlx5e: RSS, Block XOR hash with over 128 channels (git-fixes). * net/mlx5: E-switch, Change flow rule destination checking (git-fixes). * net/mlx5: E-switch, store eswitch pointer before registering devlink_param (git-fixes). * net/mlx5e: Switch to using _bh variant of of spinlock API in port timestamping NAPI poll context (git-fixes). * net/mlx5e: Use a memory barrier to enforce PTP WQ xmit submission tracking occurs after populating the metadata_map (git-fixes). * net/mlx5: Fix fw reporter diagnose output (git-fixes). * net/mlx5: Fix peer devlink set for SF representor devlink port (git-fixes). * net/mlx5: Lag, restore buckets number to default after hash LAG deactivation (git-fixes). * net/mlx5: offset comp irq index in name by one (git-fixes). * net/mlx5: Properly link new fs rules into the tree (git-fixes). * net/mlx5: Register devlink first under devlink lock (git-fixes). * net/mlx5: Restore mistakenly dropped parts in register devlink flow (git- fixes). * net/mlx5: SF, Stop waiting for FW as teardown was called (git-fixes). * net: nfc: remove inappropriate attrs check (stable-fixes). * net: NSH: fix kernel-doc notation warning (git-fixes). * net: pcs: xpcs: Return EINVAL in the internal methods (git-fixes). * net: phy: fix phy_read_poll_timeout argument type in genphy_loopback (git- fixes). * net: phy: micrel: Fix potential null pointer dereference (git-fixes). * net: phy: micrel: lan8814: Fix when enabling/disabling 1-step timestamping (git-fixes). * net: phy: micrel: set soft_reset callback to genphy_soft_reset for KSZ8061 (git-fixes). * net: phy: phy_device: Prevent nullptr exceptions on ISR (git-fixes). * net: phy: phy_device: Prevent nullptr exceptions on ISR (stable-fixes). * net: ravb: Always process TX descriptor ring (git-fixes). * net: ravb: Let IP-specific receive function to interrogate descriptors (git- fixes). * net/smc: bugfix for smcr v2 server connect success statistic (git-fixes). * net/smc: fix documentation of buffer sizes (git-fixes). * net/smc: use smc_lgr_list.lock to protect smc_lgr_list.list iterate in smcr_port_add (git-fixes). * net: smsc95xx: add support for SYS TEC USB-SPEmodule1 (git-fixes). * net: sparx5: Fix use after free inside sparx5_del_mact_entry (git-fixes). * net: sparx5: fix wrong config being used when reconfiguring PCS (git-fixes). * net: sparx5: flower: fix fragment flags handling (git-fixes). * net: stmmac: dwmac-starfive: Add support for JH7100 SoC (git-fixes). * net: stmmac: Fix incorrect dereference in interrupt handlers (git-fixes). * net: stmmac: fix rx queue priority assignment (git-fixes). * net: sunrpc: Fix an off by one in rpc_sockaddr2uaddr() (git-fixes). * net: tcp: fix unexcepted socket die when snd_wnd is 0 (git-fixes). * net: tls: fix returned read length with async decrypt (bsc#1221858). * net: tls: fix use-after-free with partial reads and async (bsc#1221858). * net: tls, fix WARNIING in __sk_msg_free (bsc#1221858). * net: usb: ax88179_178a: avoid the interface always configured as random address (git-fixes). * net: usb: ax88179_178a: avoid writing the mac address before first reading (git-fixes). * net: usb: ax88179_178a: fix link status when link is set to down/up (git- fixes). * net: usb: ax88179_178a: stop lying about skb->truesize (git-fixes). * net:usb:qmi_wwan: support Rolling modules (stable-fixes). * net: usb: smsc95xx: stop lying about skb->truesize (git-fixes). * net: usb: sr9700: stop lying about skb->truesize (git-fixes). * net: Use sockaddr_storage for getsockopt(SO_PEERNAME) (git-fixes). * net: veth: do not manipulate GRO when using XDP (git-fixes). * net: wwan: t7xx: Split 64bit accesses to fix alignment issues (git-fixes). * net/x25: fix incorrect parameter validation in the x25_getsockopt() function (git-fixes). * nfc: nci: Fix handling of zero-length payload packets in nci_rx_work() (git- fixes). * nfc: nci: Fix kcov check in nci_rx_work() (git-fixes). * nfc: nci: Fix uninit-value in nci_dev_up and nci_ntf_packet (git-fixes). * nfc: nci: Fix uninit-value in nci_rx_work (git-fixes). * nf_conntrack: fix -Wunused-const-variable= (git-fixes). * NFC: trf7970a: disable all regulators on removal (git-fixes). * nfp: flower: handle acti_netdevs allocation failure (git-fixes). * NFSD: change LISTXATTRS cookie encoding to big-endian (git-fixes). * NFSD: Convert the callback workqueue to use delayed_work (git-fixes). * nfsd: do not call locks_release_private() twice concurrently (git-fixes). * nfsd: Fix a regression in nfsd_setattr() (git-fixes). * NFSD: fix LISTXATTRS returning a short list with eof=TRUE (git-fixes). * NFSD: fix LISTXATTRS returning more bytes than maxcount (git-fixes). * NFSD: fix nfsd4_listxattr_validate_cookie (git-fixes). * NFSD: Fix nfsd_clid_class use of __string_len() macro (git-fixes). * NFSD: Reschedule CB operations when backchannel rpc_clnt is shut down (git- fixes). * NFSD: Reset cb_seq_status after NFS4ERR_DELAY (git-fixes). * NFSD: Retransmit callbacks after client reconnects (git-fixes). * nfsd: use __fput_sync() to avoid delayed closing of files (bsc#1223380 bsc#1217408). * NFS: Fix an off by one in root_nfs_cat() (git-fixes). * NFS: Fix nfs_netfs_issue_read() xarray locking for writeback interrupt (git- fixes). * nfs: fix panic when nfs4_ff_layout_prepare_ds() fails (git-fixes). * NFS: Read unlock folio on nfs_page_create_from_folio() error (git-fixes). * NFSv4.1/pnfs: fix NFS with TLS in pnfs (git-fixes). * NFSv4.2: fix listxattr maximum XDR buffer size (git-fixes). * NFSv4.2: fix nfs4_listxattr kernel BUG at mm/usercopy.c:102 (git-fixes). * nilfs2: fix OOB in nilfs_set_de_type (git-fixes). * nilfs2: fix out-of-range warning (git-fixes). * nilfs2: fix potential bug in end_buffer_async_write (git-fixes). * nilfs2: fix unexpected freezing of nilfs_segctor_sync() (git-fixes). * nilfs2: fix use-after-free of timer for log writer thread (git-fixes). * nilfs2: make superblock data array index computation sparse friendly (git- fixes). * nouveau/dmem: handle kcalloc() allocation failure (git-fixes). * nouveau: fix devinit paths to only handle display on GSP (git-fixes). * nouveau: fix function cast warning (git-fixes). * nouveau: fix instmem race condition around ptr stores (git-fixes). * nouveau/gsp: do not check devinit disable on GSP (git-fixes). * nouveau: lock the client object tree (stable-fixes). * nouveau: reset the bo resource bus info after an eviction (git-fixes). * nouveau/uvmm: fix addr/range calcs for remap operations (git-fixes). * nvdimm: make nvdimm_bus_type const (jsc#PED-5853). * nvdimm/pmem: fix leak on dax_add_host() failure (jsc#PED-5853). * nvdimm/pmem: Treat alloc_dax() -EOPNOTSUPP failure as non-fatal (jsc#PED-5853). * nvme-fc: do not wait in vain when unloading module (git-fixes). * nvme: fix multipath batched completion accounting (git-fixes). * nvme: fix reconnection fail due to reserved tag allocation (git-fixes). * nvme: fix warn output about shared namespaces without CONFIG_NVME_MULTIPATH (git-fixes). * nvme-multipath: fix io accounting on failover (git-fixes). * nvme-pci: Add quirk for broken MSIs (git-fixes). * nvme-tcp: strict pdu pacing to avoid send stalls on TLS (bsc#1221858). * nvmet-fc: abort command when there is no binding (git-fixes). * nvmet-fc: avoid deadlock on delete association path (git-fixes). * nvmet-fc: defer cleanup using RCU properly (git-fixes). * nvmet-fc: hold reference on hostport match (git-fixes). * nvmet-fcloop: swap the list_add_tail arguments (git-fixes). * nvmet-fc: release reference on target port (git-fixes). * nvmet-fc: take ref count on tgtport before delete assoc (git-fixes). * nvmet: fix ns enable/disable possible hang (git-fixes). * nvmet-tcp: fix nvme tcp ida memory leak (git-fixes). * octeontx2-af: Add array index check (git-fixes). * octeontx2-af: Fix devlink params (git-fixes). * octeontx2-af: Fix issue with loading coalesced KPU profiles (git-fixes). * octeontx2-af: Fix NIX SQ mode and BP config (git-fixes). * Octeontx2-af: fix pause frame configuration in GMP mode (git-fixes). * octeontx2-af: Use matching wake_up API variant in CGX command interface (git-fixes). * octeontx2-af: Use separate handlers for interrupts (git-fixes). * octeontx2: Detect the mbox up or down message via register (git-fixes). * octeontx2-pf: check negative error code in otx2_open() (git-fixes). * octeontx2-pf: fix FLOW_DIS_IS_FRAGMENT implementation (git-fixes). * octeontx2-pf: Fix transmit scheduler resource leak (git-fixes). * octeontx2-pf: Send UP messages to VF only when VF is up (git-fixes). * octeontx2-pf: Use default max_active works instead of one (git-fixes). * octeontx2-pf: Wait till detach_resources msg is complete (git-fixes). * of: dynamic: Synchronize of_changeset_destroy() with the devlink removals (git-fixes). * of: module: add buffer overflow check in of_modalias() (git-fixes). * of: module: prevent NULL pointer dereference in vsnprintf() (stable-fixes). * of: property: Add in-ports/out-ports support to of_graph_get_port_parent() (stable-fixes). * of: property: fix typo in io-channels (git-fixes). * of: property: fw_devlink: Fix stupid bug in remote-endpoint parsing (git- fixes). * of: property: Improve finding the consumer of a remote-endpoint property (git-fixes). * of: property: Improve finding the supplier of a remote-endpoint property (git-fixes). * of: unittest: Fix compile in the non-dynamic case (git-fixes). * overflow: Allow non-type arg to type_max() and type_min() (stable-fixes). * PCI/AER: Block runtime suspend when handling errors (stable-fixes). * PCI/ASPM: Use RMW accessors for changing LNKCTL (git-fixes). * PCI: Delay after FLR of Solidigm P44 Pro NVMe (stable-fixes). * PCI: Disable D3cold on Asus B1400 PCI-NVMe bridge (stable-fixes). * PCI/DPC: Quirk PIO log size for Intel Raptor Lake Root Ports (stable-fixes). * PCI/DPC: Use FIELD_GET() (stable-fixes). * PCI: dwc: ep: Fix DBI access failure for drivers requiring refclk from host (git-fixes). * PCI/EDR: Align EDR_PORT_DPC_ENABLE_DSM with PCI Firmware r3.3 (git-fixes). * PCI/EDR: Align EDR_PORT_LOCATE_DSM with PCI Firmware r3.3 (git-fixes). * PCI: Execute quirk_enable_clear_retrain_link() earlier (stable-fixes). * PCI: Fix typos in docs and comments (stable-fixes). * PCI: hv: Fix ring buffer size calculation (git-fixes). * PCI: Make link retraining use RMW accessors for changing LNKCTL (git-fixes). * PCI/PM: Drain runtime-idle callbacks before driver removal (stable-fixes). * PCI: qcom: Add support for sa8775p SoC (git-fixes). * PCI: qcom: Disable ASPM L0s for sc8280xp, sa8540p and sa8295p (git-fixes). * PCI: rockchip-ep: Remove wrong mask on subsys_vendor_id (git-fixes). * PCI: rpaphp: Error out on busy status from get-sensor-state (bsc#1223369 ltc#205888). * PCI: Simplify pcie_capability_clear_and_set_word() to ..._clear_word() (stable-fixes). * PCI: switchtec: Add support for PCIe Gen5 devices (stable-fixes). * PCI: switchtec: Use normal comment style (stable-fixes). * PCI: tegra194: Fix probe path for Endpoint mode (git-fixes). * peci: linux/peci.h: fix Excess kernel-doc description warning (git-fixes). * perf annotate: Fix annotation_calc_lines() to pass correct address to get_srcline() (git-fixes). * perf annotate: Get rid of duplicate --group option item (git-fixes). * perf auxtrace: Fix multiple use of --itrace option (git-fixes). * perf bench internals inject-build-id: Fix trap divide when collecting just one DSO (git-fixes). * perf bench uprobe: Remove lib64 from libc.so.6 binary path (git-fixes). * perf bpf: Clean up the generated/copied vmlinux.h (git-fixes). * perf daemon: Fix file leak in daemon_session__control (git-fixes). * perf docs: Document bpf event modifier (git-fixes). * perf evsel: Fix duplicate initialization of data->id in evsel__parse_sample() (git-fixes). * perf expr: Fix "has_event" function for metric style events (git-fixes). * perf intel-pt: Fix unassigned instruction op (discovered by MemorySanitizer) (git-fixes). * perf jevents: Drop or simplify small integer values (git-fixes). * perf list: fix short description for some cache events (git-fixes). * perf lock contention: Add a missing NULL check (git-fixes). * perf metric: Do not remove scale from counts (git-fixes). * perf pmu: Count sys and cpuid JSON events separately (git fixes). * perf pmu: Fix a potential memory leak in perf_pmu__lookup() (git-fixes). * perf pmu: Treat the msr pmu as software (git-fixes). * perf print-events: make is_event_supported() more robust (git-fixes). * perf probe: Add missing libgen.h header needed for using basename() (git- fixes). * perf record: Check conflict between '\--timestamp-filename' option and pipe mode before recording (git-fixes). * perf record: Fix debug message placement for test consumption (git-fixes). * perf record: Fix possible incorrect free in record__switch_output() (git- fixes). * perf report: Avoid SEGV in report__setup_sample_type() (git-fixes). * perf sched timehist: Fix -g/--call-graph option failure (git-fixes). * perf script: Show also errors for --insn-trace option (git-fixes). * perf srcline: Add missed addr2line closes (git-fixes). * perf stat: Avoid metric-only segv (git-fixes). * perf stat: Do not display metric header for non-leader uncore events (git- fixes). * perf stat: Do not fail on metrics on s390 z/VM systems (git-fixes). * perf symbols: Fix ownership of string in dso__load_vmlinux() (git-fixes). * perf tests: Apply attributes to all events in object code reading test (git- fixes). * perf test shell arm_coresight: Increase buffer size for Coresight basic tests (git-fixes). * perf tests: Make data symbol test wait for perf to start (bsc#1220045). * perf tests: Make "test data symbol" more robust on Neoverse N1 (git-fixes). * perf tests: Skip data symbol test if buf1 symbol is missing (bsc#1220045). * perf thread: Fixes to thread__new() related to initializing comm (git- fixes). * perf thread_map: Free strlist on normal path in thread_map__new_by_tid_str() (git-fixes). * perf top: Uniform the event name for the hybrid machine (git-fixes). * perf top: Use evsel's cpus to replace user_requested_cpus (git-fixes). * perf ui browser: Avoid SEGV on title (git fixes). * perf ui browser: Do not save pointer to stack memory (git-fixes). * perf vendor events amd: Add Zen 4 memory controller events (git-fixes). * perf vendor events amd: Fix Zen 4 cache latency events (git-fixes). * perf/x86/amd/core: Avoid register reset when CPU is dead (git-fixes). * perf/x86/amd/lbr: Discard erroneous branch entries (git-fixes). * perf/x86/amd/lbr: Use freeze based on availability (git-fixes). * perf/x86: Fix out of range data (git-fixes). * perf/x86/intel/ds: Do not clear ->pebs_data_cfg for the last PEBS event (git-fixes). * perf/x86/intel: Expose existence of callback support to KVM (git-fixes). * phy: freescale: imx8m-pcie: fix pcie link-up instability (git-fixes). * phy: marvell: a3700-comphy: Fix hardcoded array size (git-fixes). * phy: marvell: a3700-comphy: Fix out of bounds read (git-fixes). * phy: rockchip: naneng-combphy: Fix mux on rk3588 (git-fixes). * phy: rockchip-snps-pcie3: fix bifurcation on rk3588 (git-fixes). * phy: rockchip-snps-pcie3: fix clearing PHP_GRF_PCIESEL_CON bits (git-fixes). * phy: ti: tusb1210: Resolve charger-det crash if charger psy is unregistered (git-fixes). * pinctrl: armada-37xx: remove an unused variable (git-fixes). * pinctrl: baytrail: Fix selecting gpio pinctrl state (git-fixes). * pinctrl: core: delete incorrect free in pinctrl_enable() (git-fixes). * pinctrl: devicetree: fix refcount leak in pinctrl_dt_to_map() (git-fixes). * pinctrl: mediatek: paris: Fix PIN_CONFIG_INPUT_SCHMITT_ENABLE readback (git- fixes). * pinctrl: mediatek: paris: Rework support for PIN_CONFIG_{INPUT,OUTPUT}_ENABLE (git-fixes). * pinctrl/meson: fix typo in PDM's pin name (git-fixes). * pinctrl: pinctrl-aspeed-g6: Fix register offset for pinconf of GPIOR-T (git- fixes). * pinctrl: qcom: pinctrl-sm7150: Fix sdc1 and ufs special pins regs (git- fixes). * pinctrl: renesas: checker: Limit cfg reg enum checks to provided IDs (stable-fixes). * platform/chrome: cros_ec_uart: properly fix race condition (git-fixes). * platform/x86/amd/pmc: Extend Framework 13 quirk to more BIOSes (stable- fixes). * platform/x86/intel-uncore-freq: Do not present root domain on error (git- fixes). * platform/x86: intel-vbtn: Update tablet mode switch at end of probe (git- fixes). * platform/x86: ISST: Add Granite Rapids-D to HPM CPU list (stable-fixes). * platform/x86: touchscreen_dmi: Add an extra entry for a variant of the Chuwi Vi8 tablet (stable-fixes). * platform/x86: x86-android-tablets: Fix acer_b1_750_goodix_gpios name (stable-fixes). * platform/x86: xiaomi-wmi: Fix race condition when reporting key events (git- fixes). * PM / devfreq: Synchronize devfreq_monitor_[start/stop] (stable-fixes). * PM: s2idle: Make sure CPUs will wakeup directly on resume (git-fixes). * Port "certs: Add ECDSA signature verification self-test". * Port "certs: Move RSA self-test data to separate file". * powerpc: Avoid nmi_enter/nmi_exit in real mode interrupt (bsc#1221645 ltc#205739 bsc#1223191). * powerpc/crypto/chacha-p10: Fix failure on non Power10 (bsc#1218205). * powerpc/eeh: Permanently disable the removed device (bsc#1223991 ltc#205740). * powerpc/hv-gpci: Fix the H_GET_PERF_COUNTER_INFO hcall return value checks (git-fixes). * powerpc/pseries/lparcfg: drop error message from guest name lookup (bsc#1187716 ltc#193451 git-fixes). * powerpc/pseries: make max polling consistent for longer H_CALLs (bsc#1215199). * powerpc/pseries/vio: Do not return ENODEV if node or compatible missing (bsc#1220783). * powerpc/uaccess: Fix build errors seen with GCC 13/14 (bsc#1194869). * powerpc/uaccess: Use YZ asm constraint for ld (bsc#1194869). * power: rt9455: hide unused rt9455_boost_voltage_values (git-fixes). * power: supply: mt6360_charger: Fix of_match for usb-otg-vbus regulator (git- fixes). * ppdev: Add an error check in register_device (git-fixes). * prctl: generalize PR_SET_MDWE support check to be per-arch (bsc#1225610). * printk: Add this_cpu_in_panic() (bsc#1225607). * printk: Adjust mapping for 32bit seq macros (bsc#1225607). * printk: Avoid non-panic CPUs writing to ringbuffer (bsc#1225607). * printk: Consolidate console deferred printing (bsc#1225607). * printk: Disable passing console lock owner completely during panic() (bsc#1225607). * printk: Do not take console lock for console_flush_on_panic() (bsc#1225607). * printk: For @suppress_panic_printk check for other CPU in panic (bsc#1225607). * printk: Keep non-panic-CPUs out of console lock (bsc#1225607). * printk: Let no_printk() use _printk() (bsc#1225618). * printk: nbcon: Relocate 32bit seq macros (bsc#1225607). * printk: Reduce console_unblank() usage in unsafe scenarios (bsc#1225607). * printk: Rename abandon_console_lock_in_panic() to other_cpu_in_panic() (bsc#1225607). * printk: ringbuffer: Clarify special lpos values (bsc#1225607). * printk: ringbuffer: Cleanup reader terminology (bsc#1225607). * printk: ringbuffer: Do not skip non-finalized records with prb_next_seq() (bsc#1225607). * printk: ringbuffer: Skip non-finalized records in panic (bsc#1225607). * printk: Update @console_may_schedule in console_trylock_spinning() (bsc#1225616). * printk: Use prb_first_seq() as base for 32bit seq macros (bsc#1225607). * printk: Wait for all reserved records with pr_flush() (bsc#1225607). * proc/kcore: do not try to access unaccepted memory (git-fixes). * pstore: inode: Convert mutex usage to guard(mutex) (stable-fixes). * pstore: inode: Only d_invalidate() is needed (git-fixes). * pstore/zone: Add a null pointer check to the psz_kmsg_read (stable-fixes). * pwm: img: fix pwm clock lookup (git-fixes). * qibfs: fix dentry leak (git-fixes) * r8169: fix issue caused by buggy BIOS on certain boards with RTL8168d (git- fixes). * r8169: skip DASH fw status checks when DASH is disabled (git-fixes). * random: handle creditable entropy from atomic process context (git-fixes). * RAS/AMD/FMPM: Avoid NULL ptr deref in get_saved_records() (jsc#PED-7619). * RAS/AMD/FMPM: Fix build when debugfs is not enabled (jsc#PED-7619). * RAS/AMD/FMPM: Safely handle saved records of various sizes (jsc#PED-7619). * RDMA/cm: add timeout to cm_destroy_id wait (git-fixes) * RDMA/cma: Fix kmemleak in rdma_core observed during blktests nvme/rdma use siw (git-fixes) * RDMA/cm: Print the old state when cm_destroy_id gets timeout (git-fixes) * RDMA/hns: Add max_ah and cq moderation capacities in query_device() (git- fixes) * RDMA/hns: Fix deadlock on SRQ async events. (git-fixes) * RDMA/hns: Fix GMV table pagesize (git-fixes) * RDMA/hns: Fix return value in hns_roce_map_mr_sg (git-fixes) * RDMA/hns: Fix UAF for cq async event (git-fixes) * RDMA/hns: Modify the print level of CQE error (git-fixes) * RDMA/hns: Use complete parentheses in macros (git-fixes) * RDMA/IPoIB: Fix format truncation compilation errors (git-fixes) * RDMA/mana_ib: Fix bug in creation of dma regions (git-fixes). * RDMA/mlx5: Adding remote atomic access flag to updatable flags (git-fixes) * RDMA/mlx5: Change check for cacheable mkeys (git-fixes) * RDMA/mlx5: Fix port number for counter query in multi-port configuration (git-fixes) * RDMA/mlx5: Uncacheable mkey has neither rb_key or cache_ent (git-fixes) * RDMA/rxe: Allow good work requests to be executed (git-fixes) * RDMA/rxe: Fix incorrect rxe_put in error path (git-fixes) * RDMA/rxe: Fix seg fault in rxe_comp_queue_pkt (git-fixes) * RDMA/rxe: Fix the problem "mutex_destroy missing" (git-fixes) * README.BRANCH: Remove copy of branch name * Reapply "drm/qxl: simplify qxl_fence_wait" (stable-fixes). * regmap: Add regmap_read_bypassed() (git-fixes). * regmap: kunit: Ensure that changed bytes are actually different (stable- fixes). * regmap: maple: Fix cache corruption in regcache_maple_drop() (git-fixes). * regmap: maple: Fix uninitialized symbol 'ret' warnings (git-fixes). * regulator: bd71828: Do not overwrite runtime voltages (git-fixes). * regulator: change devm_regulator_get_enable_optional() stub to return Ok (git-fixes). * regulator: change stubbed devm_regulator_get_enable to return Ok (git- fixes). * regulator: core: fix debugfs creation regression (git-fixes). * regulator: mt6360: De-capitalize devicetree regulator subnodes (git-fixes). * regulator: tps65132: Add of_match table (stable-fixes). * remoteproc: k3-r5: Do not allow core1 to power up before core0 via sysfs (git-fixes). * remoteproc: k3-r5: Jump to error handling labels in start/stop errors (git- fixes). * remoteproc: k3-r5: Wait for core0 power-up before powering up core1 (git- fixes). * remoteproc: mediatek: Make sure IPI buffer fits in L2TCM (git-fixes). * remoteproc: stm32: Fix incorrect type assignment returned by stm32_rproc_get_loaded_rsc_tablef (git-fixes). * remoteproc: virtio: Fix wdg cannot recovery remote processor (git-fixes). * Remove NTFSv3 from configs (bsc#1224429) References: bsc#1224429 comment#3 We only support fuse version of the NTFS-3g driver. Disable NTFSv3 from all configs. This was enabled in d016c04d731 ("Bump to 6.4 kernel (jsc#PED-4593)") * Revert "ACPI: PM: Block ASUS B1400CEAE from suspend to idle by default" (stable-fixes). * Revert "ASoC: SOF: Intel: hda-dai-ops: only allocate/release streams for first CPU DAI" (stable-fixes). * Revert "ASoC: SOF: Intel: hda-dai-ops: reset device count for SoundWire DAIs" (stable-fixes). * Revert "cifs: reconnect work should have reference on server struct" (git- fixes, bsc#1225172). * Revert "drm/amd/amdgpu: Fix potential ioremap() memory leaks in amdgpu_device_init()" (stable-fixes). * Revert "drm/amd/display: Fix sending VSC (+ colorimetry) packets for DP/eDP displays without PSR" (stable-fixes). * Revert "drm/amdkfd: fix gfx_target_version for certain 11.0.3 devices" (stable-fixes). * Revert "drm/bridge: ti-sn65dsi83: Fix enable error path" (git-fixes). * Revert "drm/nouveau/firmware: Fix SG_DEBUG error with nvkm_firmware_ctor()" (stable-fixes). * Revert "drm/qxl: simplify qxl_fence_wait" (git-fixes). * Revert "iommu/amd: Enable PCI/IMS" (git-fixes). * Revert "iommu/vt-d: Enable PCI/IMS" (git-fixes). * Revert "net/mlx5: Block entering switchdev mode with ns inconsistency" (git- fixes). * Revert "net/mlx5e: Check the number of elements before walk TC rhashtable" (git-fixes). * Revert "PCI/MSI: Provide IMS (Interrupt Message Store) support" (git-fixes). * Revert "PCI/MSI: Provide pci_ims_alloc/free_irq()" (git-fixes). * Revert "PCI/MSI: Provide stubs for IMS functions" (git-fixes). * Revert "selinux: introduce an initial SID for early boot processes" (bsc#1208593) It caused a regression on ALP-current branch, kernel-obs-qa build failed. * Revert "usb: cdc-wdm: close race between read and workqueue" (git-fixes). * Revert "usb: phy: generic: Get the vbus supply" (git-fixes). * ring-buffer: Do not set shortest_full when full target is hit (git-fixes). * ring-buffer: Fix a race between readers and resize checks (git-fixes). * ring-buffer: Fix full_waiters_pending in poll (git-fixes). * ring-buffer: Fix resetting of shortest_full (git-fixes). * ring-buffer: Fix waking up ring buffer readers (git-fixes). * ring-buffer: Make wake once of ring_buffer_wait() more robust (git-fixes). * ring-buffer: use READ_ONCE() to read cpu_buffer->commit_page in concurrent environment (git-fixes). * ring-buffer: Use wait_event_interruptible() in ring_buffer_wait() (git- fixes). * rtc: mt6397: select IRQ_DOMAIN instead of depending on it (git-fixes). * s390/bpf: Emit a barrier for BPF_FETCH instructions (git-fixes bsc#1224792). * s390/cio: Ensure the copied buf is NUL terminated (git-fixes bsc#1223869). * s390/cio: fix tracepoint subchannel type field (git-fixes bsc#1224793). * s390/cpacf: Split and rework cpacf query functions (git-fixes bsc#1225133). * s390/ipl: Fix incorrect initialization of len fields in nvme reipl block (git-fixes bsc#1225136). * s390/ipl: Fix incorrect initialization of nvme dump block (git-fixes bsc#1225134). * s390/ism: Properly fix receive message buffer allocation (git-fixes bsc#1223590). * s390/mm: Fix clearing storage keys for huge pages (git-fixes bsc#1223871). * s390/mm: Fix storage key clearing for guest huge pages (git-fixes bsc#1223872). * s390/qeth: Fix kernel panic after setting hsuid (git-fixes bsc#1223874). * s390/vdso: Add CFI for RA register to asm macro vdso_func (git-fixes bsc#1223870). * s390/vdso: drop '-fPIC' from LDFLAGS (git-fixes bsc#1223593). * s390/vtime: fix average steal time calculation (git-fixes bsc#1221783). * s390/zcrypt: fix reference counting on zcrypt card objects (git-fixes bsc#1223592). * sched/balancing: Rename newidle_balance() => sched_balance_newidle() (bsc#1222173). * sched/fair: Check root_domain::overload value before update (bsc#1222173). * sched/fair: Use helper functions to access root_domain::overload (bsc#1222173). * sched/psi: Select KERNFS as needed (git-fixes). * sched/topology: Optimize topology_span_sane() (bsc#1225053). * scsi: bfa: Fix function pointer type mismatch for hcb_qe->cbfn (git-fixes). * scsi: core: Consult supported VPD page list prior to fetching page (git- fixes). * scsi: core: Fix unremoved procfs host directory regression (git-fixes). * scsi: csiostor: Avoid function pointer casts (git-fixes). * scsi: hisi_sas: Modify the deadline for ata_wait_after_reset() (git-fixes). * scsi: libsas: Add a helper sas_get_sas_addr_and_dev_type() (git-fixes). * scsi: libsas: Fix disk not being scanned in after being removed (git-fixes). * scsi: lpfc: Add support for 32 byte CDBs (bsc#1225842). * scsi: lpfc: Change default logging level for unsolicited CT MIB commands (bsc#1225842). * scsi: lpfc: Change lpfc_hba hba_flag member into a bitmask (bsc#1225842). Refresh: - patches.suse/lpfc-reintroduce-old-irq-probe-logic.patch * scsi: lpfc: Clear deferred RSCN processing flag when driver is unloading (bsc#1225842). * scsi: lpfc: Copyright updates for 14.4.0.1 patches (bsc#1221777). * scsi: lpfc: Copyright updates for 14.4.0.2 patches (bsc#1225842). * scsi: lpfc: Correct size for cmdwqe/rspwqe for memset() (bsc#1221777). * scsi: lpfc: Correct size for wqe for memset() (bsc#1221777). * scsi: lpfc: Define lpfc_dmabuf type for ctx_buf ptr (bsc#1221777). * scsi: lpfc: Define lpfc_nodelist type for ctx_ndlp ptr (bsc#1221777). * scsi: lpfc: Define types in a union for generic void *context3 ptr (bsc#1221777). * scsi: lpfc: Introduce rrq_list_lock to protect active_rrq_list (bsc#1225842). * scsi: lpfc: Move NPIV's transport unregistration to after resource clean up (bsc#1221777). * scsi: lpfc: Release hbalock before calling lpfc_worker_wake_up() (bsc#1221777). * scsi: lpfc: Remove IRQF_ONESHOT flag from threaded IRQ handling (bsc#1221777 bsc#1217959). * scsi: lpfc: Remove unnecessary log message in queuecommand path (bsc#1221777). * scsi: lpfc: Replace hbalock with ndlp lock in lpfc_nvme_unregister_port() (bsc#1221777). * scsi: lpfc: Update logging of protection type for T10 DIF I/O (bsc#1225842). * scsi: lpfc: Update lpfc_ramp_down_queue_handler() logic (bsc#1221777). * scsi: lpfc: Update lpfc version to 14.4.0.1 (bsc#1221777). * scsi: lpfc: Update lpfc version to 14.4.0.2 (bsc#1225842). * scsi: lpfc: Use a dedicated lock for ras_fwlog state (bsc#1221777). * scsi: mpt3sas: Prevent sending diag_reset when the controller is ready (git- fixes). * scsi: mylex: Fix sysfs buffer lengths (git-fixes). * scsi: qla2xxx: Change debug message during driver unload (bsc1221816). * scsi: qla2xxx: Delay I/O Abort on PCI error (bsc1221816). * scsi: qla2xxx: Fix command flush on cable pull (bsc1221816). * scsi: qla2xxx: Fix double free of fcport (bsc1221816). * scsi: qla2xxx: Fix double free of the ha->vp_map pointer (bsc1221816). * scsi: qla2xxx: Fix N2N stuck connection (bsc1221816). * scsi: qla2xxx: Fix off by one in qla_edif_app_getstats() (git-fixes). * scsi: qla2xxx: NVME|FCP prefer flag not being honored (bsc1221816). * scsi: qla2xxx: Prevent command send on chip reset (bsc1221816). * scsi: qla2xxx: Split FCE|EFT trace control (bsc1221816). * scsi: qla2xxx: Update manufacturer detail (bsc1221816). * scsi: qla2xxx: Update version to 10.02.09.200-k (bsc1221816). * scsi: sd: Unregister device if device_add_disk() failed in sd_probe() (git- fixes). * scsi: sg: Avoid race in error handling & drop bogus warn (git-fixes). * scsi: sg: Avoid sg device teardown race (git-fixes). * scsi: smartpqi: Fix disable_managed_interrupts (git-fixes). * sctp: annotate data-races around sk->sk_wmem_queued (git-fixes). * sdhci-of-dwcmshc: disable PM runtime in dwcmshc_remove() (git-fixes). * selftests/binderfs: use the Makefile's rules, not Make's implicit rules (git-fixes). * selftests/bpf: add edge case backtracking logic test (bsc#1225756). * selftests/bpf: precision tracking test for BPF_NEG and BPF_END (bsc#1225756). * selftests: default to host arch for LLVM builds (git-fixes). * selftests: forwarding: Fix ping failure due to short timeout (git-fixes). * selftests/ftrace: Fix event filter target_func selection (stable-fixes). * selftests/ftrace: Limit length in subsystem-enable tests (git-fixes). * selftests/kcmp: remove unused open mode (git-fixes). * selftests: kselftest: Fix build failure with NOLIBC (git-fixes). * selftests: kselftest: Mark functions that unconditionally call exit() as __noreturn (git-fixes). * selftests: net: bridge: increase IGMP/MLD exclude timeout membership interval (git-fixes). * selftests/net: convert test_bridge_neigh_suppress.sh to run it in unique namespace (stable-fixes). * selftests: net: kill smcrouted in the cleanup logic in amt.sh (git-fixes). * selftests: net: move amt to socat for better compatibility (git-fixes). * selftests/pidfd: Fix config for pidfd_setns_test (git-fixes). * selftests/powerpc/dexcr: Add -no-pie to hashchk tests (git-fixes). * selftests/powerpc/papr-vpd: Fix missing variable initialization (jsc#PED-4486 git-fixes). * selftests/resctrl: fix clang build failure: use LOCAL_HDRS (git-fixes). * selftests: test_bridge_neigh_suppress.sh: Fix failures due to duplicate MAC (git-fixes). * selftests: timers: Convert posix_timers test to generate KTAP output (stable-fixes). * selftests: timers: Fix abs() warning in posix_timers test (git-fixes). * selftests: timers: Fix posix_timers ksft_print_msg() warning (git-fixes). * selftests: timers: Fix valid-adjtimex signed left-shift undefined behavior (stable-fixes). * selftests/timers/posix_timers: Reimplement check_timer_distribution() (git- fixes). * selftests: vxlan_mdb: Fix failures with old libnet (git-fixes). * selinux: avoid dereference of garbage after mount failure (git-fixes). * selinux: introduce an initial SID for early boot processes (bsc#1208593). * serial: 8250_bcm7271: use default_mux_rate if possible (git-fixes). * serial: 8250_dw: Revert: Do not reclock if already at correct rate (git- fixes). * serial: 8250_exar: Do not remove GPIO device on suspend (git-fixes). * serial: 8520_mtk: Set RTS on shutdown for Rx in-band wakeup (git-fixes). * serial: core: Fix atomicity violation in uart_tiocmget (git-fixes). * serial: core: only stop transmit when HW fifo is empty (git-fixes). * serial: kgdboc: Fix NMI-safety problems from keyboard reset code (stable- fixes). * serial: Lock console when calling into driver before registration (git- fixes). * serial: max3100: Fix bitwise types (git-fixes). * serial: max3100: Lock port->lock when calling uart_handle_cts_change() (git- fixes). * serial: max310x: fix NULL pointer dereference in I2C instantiation (git- fixes). * serial: max310x: fix syntax error in IRQ error message (git-fixes). * serial: mxs-auart: add spinlock around changing cts state (git-fixes). * serial/pmac_zilog: Remove flawed mitigation for rx irq flood (git-fixes). * serial: sc16is7xx: add proper sched.h include for sched_set_fifo() (git- fixes). * serial: sc16is7xx: fix bug in sc16is7xx_set_baud() when using prescaler (git-fixes). * serial: sh-sci: protect invalidating RXDMA on shutdown (git-fixes). * serial: stm32: Reset .throttled state in .startup() (git-fixes). * series.conf: cleanup Fix subsection header to silence series_insert error. * SEV: disable SEV-ES DebugSwap by default (git-fixes). * slimbus: core: Remove usage of the deprecated ida_simple_xx() API (git- fixes). * slimbus: qcom-ngd-ctrl: Add timeout for wait operation (git-fixes). * smb3: show beginning time for per share stats (bsc#1225172). * smb: client: ensure to try all targets when finding nested links (bsc#1225172). * smb: client: fix mount when dns_resolver key is not available (git-fixes, bsc#1225172). * smb: client: fix parsing of SMB3.1.1 POSIX create context (git-fixes, bsc#1225172). * smb: client: get rid of dfs code dep in namespace.c (bsc#1225172). * smb: client: get rid of dfs naming in automount code (bsc#1225172). * smb: client: introduce DFS_CACHE_TGT_LIST() (bsc#1225172). * smb: client: reduce stack usage in cifs_try_adding_channels() (bsc#1225172). * smb: client: remove extra @chan_count check in __cifs_put_smb_ses() (bsc#1225172). * smb: client: rename cifs_dfs_ref.c to namespace.c (bsc#1225172). * soc: fsl: qbman: Always disable interrupts when taking cgr_lock (git-fixes). * soc: fsl: qbman: Use raw spinlock for cgr_lock (git-fixes). * sock_diag: annotate data-races around sock_diag_handlers[family] (git- fixes). * soc: mediatek: cmdq: Fix typo of CMDQ_JUMP_RELATIVE (git-fixes). * soc: microchip: Fix POLARFIRE_SOC_SYS_CTRL input prompt (stable-fixes). * soc: qcom: pmic_glink: do not traverse clients list without a lock (git- fixes). * soc: qcom: pmic_glink: Make client-lock non-sleeping (git-fixes). * soc: qcom: pmic_glink: notify clients about the current state (git-fixes). * soc: qcom: rpmh-rsc: Enhance check for VRM in-flight request (git-fixes). * soundwire: amd: fix for wake interrupt handling for clockstop mode (git- fixes). * speakup: Avoid crash on very long word (git-fixes). * speakup: Fix 8bit characters from direct synth (git-fixes). * speakup: Fix sizeof() vs ARRAY_SIZE() bug (git-fixes). * spi: Do not mark message DMA mapped when no transfer in it is (git-fixes). * spi: fix null pointer dereference within spi_sync (git-fixes). * spi: intel-pci: Add support for Lunar Lake-M SPI serial flash (stable- fixes). * spi: lm70llp: fix links in doc and comments (git-fixes). * spi: lpspi: Avoid potential use-after-free in probe() (git-fixes). * spi: mchp-pci1xxx: Fix a possible null pointer dereference in pci1xxx_spi_probe (git-fixes). * spi: microchip-core-qspi: fix setting spi bus clock rate (git-fixes). * spi: spi-fsl-lpspi: remove redundant spi_controller_put call (git-fixes). * spi: spi-mt65xx: Fix NULL pointer access in interrupt handler (git-fixes). * spi: stm32: Do not warn about spurious interrupts (git-fixes). * spi: xilinx: Fix kernel documentation in the xilinx_spi.h (git-fixes). * spmi: hisi-spmi-controller: Do not override device identifier (git-fixes). * staging: vc04_services: changen strncpy() to strscpy_pad() (stable-fixes). * staging: vc04_services: fix information leak in create_component() (git- fixes). * staging: vt6655: Remove unused declaration of RFbAL7230SelectChannelPostProcess() (git-fixes). * stmmac: Clear variable when destroying workqueue (git-fixes). * SUNRPC: fix a memleak in gss_import_v2_context (git-fixes). * SUNRPC: fix some memleaks in gssx_dec_option_array (git-fixes). * supported.conf: support tcp_dctcp module (jsc#PED-8111) * swiotlb: extend buffer pre-padding to alloc_align_mask if necessary (bsc#1224331) * swiotlb: Fix alignment checks when both allocation and DMA masks are (bsc#1224331) * swiotlb: Fix double-allocation of slots due to broken alignment (bsc#1224331) * swiotlb: Honour dma_alloc_coherent() alignment in swiotlb_alloc() (bsc#1224331) * swiotlb: use the calculated number of areas (git-fixes). * Temporarily drop KVM patch that caused a regression (bsc#1226158). * thermal: devfreq_cooling: Fix perf state when calculate dfc res_util (git- fixes). * thermal/drivers/qcom/lmh: Check for SCM availability at probe (git-fixes). * thermal/drivers/tsens: Fix null pointer dereference (git-fixes). * thermal/of: Assume polling-delay(-passive) 0 when absent (stable-fixes). * thunderbolt: Avoid notify PM core about runtime PM resume (stable-fixes). * thunderbolt: Do not create DisplayPort tunnels on adapters of the same router (git-fixes). * thunderbolt: Fix wake configurations after device unplug (stable-fixes). * thunderbolt: Introduce tb_path_deactivate_hop() (stable-fixes). * thunderbolt: Introduce tb_port_reset() (stable-fixes). * thunderbolt: Make tb_switch_reset() support Thunderbolt 2, 3 and USB4 routers (stable-fixes). * thunderbolt: Reset only non-USB4 host routers in resume (git-fixes). * tls: break out of main loop when PEEK gets a non-data record (bsc#1221858). * tls: do not skip over different type records from the rx_list (bsc#1221858). * tls: fix peeking with sync+async decryption (bsc#1221858). * tls: stop recv() if initial process_rx_list gave us non-DATA (bsc#1221858). * tools/arch/x86/intel_sdsi: Fix maximum meter bundle length (git-fixes). * tools/arch/x86/intel_sdsi: Fix meter_certificate decoding (git-fixes). * tools/arch/x86/intel_sdsi: Fix meter_show display (git-fixes). * tools/latency-collector: Fix -Wformat-security compile warns (git-fixes). * tools/power turbostat: Expand probe_intel_uncore_frequency() (bsc#1221765). * tools/power/turbostat: Fix uncore frequency file string (bsc#1221765). * tpm_tis_spi: Account for SPI header when allocating TPM SPI xfer buffer (git-fixes). * tracing: Add MODULE_DESCRIPTION() to preemptirq_delay_test (git-fixes). * tracing: Have saved_cmdlines arrays all in one allocation (git-fixes). * tracing: hide unused ftrace_event_id_fops (git-fixes). * tracing/net_sched: Fix tracepoints that save qdisc_dev() as a string (git- fixes). * tracing: Remove precision vsnprintf() check from print event (git-fixes). * tracing/ring-buffer: Fix wait_on_pipe() race (git-fixes). * tracing: Use .flush() call to wake up readers (git-fixes). * tty: n_gsm: fix missing receive state reset after mode switch (git-fixes). * tty: n_gsm: fix possible out-of-bounds in gsm0_receive() (git-fixes). * tty: serial: samsung: fix tx_empty() to return TIOCSER_TEMT (git-fixes). * tty: vt: fix 20 vs 0x20 typo in EScsiignore (git-fixes). * ubifs: dbg_check_idx_size: Fix kmemleak if loading znode failed (git-fixes). * ubifs: fix sort function prototype (git-fixes). * ubifs: Queue up space reservation tasks if retrying many times (git-fixes). * ubifs: Remove unreachable code in dbg_check_ltab_lnum (git-fixes). * ubifs: Set page uptodate in the correct place (git-fixes). * Update config files. Disable N_GSM (jsc#PED-8240). * Update patches.suse/nvme-ensure-disabling-pairs-with-unquiesce.patch (jsc#PED-6252 jsc#PED-5728 jsc#PED-5062 jsc#PED-3535 bsc#1224534). * usb: aqc111: stop lying about skb->truesize (git-fixes). * usb: audio-v2: Correct comments for struct uac_clock_selector_descriptor (git-fixes). * usb: cdc-wdm: close race between read and workqueue (git-fixes). * USB: core: Add hub_get() and hub_put() routines (stable-fixes). * USB: core: Fix access violation during port device removal (git-fixes). * USB: core: Fix deadlock in port "disable" sysfs attribute (stable-fixes). * USB: core: Fix deadlock in usb_deauthorize_interface() (git-fixes). * usb: Disable USB3 LPM at shutdown (stable-fixes). * usb: dwc2: gadget: Fix exiting from clock gating (git-fixes). * usb: dwc2: gadget: LPM flow fix (git-fixes). * usb: dwc2: host: Fix dereference issue in DDMA completion flow (git-fixes). * usb: dwc2: host: Fix hibernation flow (git-fixes). * usb: dwc2: host: Fix ISOC flow in DDMA mode (git-fixes). * usb: dwc2: host: Fix remote wakeup from hibernation (git-fixes). * usb: dwc3-am62: Disable wakeup at remove (git-fixes). * usb: dwc3-am62: fix module unload/reload behavior (git-fixes). * usb: dwc3-am62: Rename private data (git-fixes). * usb: dwc3: core: Prevent phy suspend during init (Git-fixes). * usb: dwc3: pci: Drop duplicate ID (git-fixes). * usb: dwc3: Properly set system wakeup (git-fixes). * usb: dwc3: Wait unconditionally after issuing EndXfer command (git-fixes). * usb: Fix regression caused by invalid ep0 maxpacket in virtual SuperSpeed device (bsc#1220569). * usb: fotg210: Add missing kernel doc description (git-fixes). * usb: gadget: composite: fix OS descriptors w_value logic (git-fixes). * usb: gadget: f_fs: Fix a race condition when processing setup packets (git- fixes). * usb: gadget: f_fs: Fix race between aio_cancel() and AIO request complete (git-fixes). * usb: gadget: f_ncm: Fix UAF ncm object at re-bind after usb ep transport error (stable-fixes). * usb: gadget: net2272: Use irqflags in the call to net2272_probe_fin (git- fixes). * usb: gadget: u_audio: Clear uac pointer when freed (git-fixes). * usb: gadget: u_audio: Fix race condition use of controls after free during gadget unbind (git-fixes). * usb: gadget: uvc: mark incomplete frames with UVC_STREAM_ERR (stable-fixes). * usb: gadget: uvc: use correct buffer size when parsing configfs lists (git- fixes). * usb: ohci: Prevent missed ohci interrupts (git-fixes). * usb: phy: generic: Get the vbus supply (git-fixes). * USB: serial: add device ID for VeriFone adapter (stable-fixes). * USB: serial: cp210x: add ID for MGP Instruments PDS100 (stable-fixes). * USB: serial: cp210x: add pid/vid for TDK NC0110013M and MM0110113M (stable- fixes). * USB: serial: ftdi_sio: add support for GMC Z216C Adapter IR-USB (stable- fixes). * USB: serial: option: add Fibocom FM135-GL variants (stable-fixes). * USB: serial: option: add Lonsung U8300/U9300 product (stable-fixes). * USB: serial: option: add MeiG Smart SLM320 product (stable-fixes). * USB: serial: option: add Rolling RW101-GL and RW135-GL support (stable- fixes). * USB: serial: option: add support for Fibocom FM650/FG650 (stable-fixes). * USB: serial: option: add Telit FN920C04 rmnet compositions (stable-fixes). * USB: serial: option: support Quectel EM060K sub-models (stable-fixes). * usb: sl811-hcd: only defined function checkdone if QUIRK2 is defined (stable-fixes). * usb: typec: Return size of buffer if pd_set operation succeeds (git-fixes). * usb: typec: tcpci: add generic tcpci fallback compatible (stable-fixes). * usb: typec: tcpm: Check for port partner validity before consuming it (git- fixes). * usb: typec: tcpm: clear pd_event queue in PORT_RESET (git-fixes). * usb: typec: tcpm: Correct port source pdo array in pd_set callback (git- fixes). * usb: typec: tcpm: Correct the PDO counting in pd_set (git-fixes). * usb: typec: tcpm: fix double-free issue in tcpm_port_unregister_pd() (git- fixes). * usb: typec: tcpm: unregister existing source caps before re-registration (git-fixes). * usb: typec: tipd: fix event checking for tps6598x (git-fixes). * usb: typec: ucsi: Ack unsupported commands (stable-fixes). * usb: typec: ucsi_acpi: Refactor and fix DELL quirk (git-fixes). * usb: typec: ucsi: always register a link to USB PD device (git-fixes). * usb: typec: ucsi: Check for notifications after init (git-fixes). * usb: typec: ucsi: Clean up UCSI_CABLE_PROP macros (git-fixes). * usb: typec: ucsi: Clear EVENT_PENDING under PPM lock (git-fixes). * usb: typec: ucsi: Clear UCSI_CCI_RESET_COMPLETE before reset (stable-fixes). * usb: typec: ucsi: displayport: Fix potential deadlock (git-fixes). * usb: typec: ucsi: Fix connector check on init (git-fixes). * usb: typec: ucsi: Fix race between typec_switch and role_switch (git-fixes). * usb: typec: ucsi: Limit read size on v1.2 (stable-fixes). * usb: typec: ucsi: simplify partner's PD caps registration (git-fixes). * USB: UAS: return ENODEV when submit urbs fail with device not attached (stable-fixes). * usb: udc: remove warning when queue disabled ep (stable-fixes). * usb: xhci: Add error handling in xhci_map_urb_for_dma (git-fixes). * usb: xhci: correct return value in case of STS_HCE (git-fixes). * usb: xhci: Implement xhci_handshake_check_state() helper. * usb: xhci-plat: Do not include xhci.h (stable-fixes). * vboxsf: Avoid an spurious warning if load_nls_xxx() fails (git-fixes). * vboxsf: explicitly deny setlease attempts (stable-fixes). * vdpa/mlx5: Allow CVQ size changes (git-fixes). * vdpa_sim: reset must not run (git-fixes). * veth: try harder when allocating queue memory (git-fixes). * vhost: Add smp_rmb() in vhost_enable_notify() (git-fixes). * vhost: Add smp_rmb() in vhost_vq_avail_empty() (git-fixes). * virtio-blk: Ensure no requests in virtqueues before deleting vqs (git- fixes). * virtio_net: Do not send RSS key if it is not supported (git-fixes). * virtio: treat alloc_dax() -EOPNOTSUPP failure as non-fatal (bsc#1223944). * VMCI: Fix an error handling path in vmci_guest_probe_device() (git-fixes). * VMCI: Fix possible memcpy() run-time warning in vmci_datagram_invoke_guest_handler() (stable-fixes). * vmci: prevent speculation leaks by sanitizing event in event_deliver() (git- fixes). * vsock/virtio: fix packet delivery to tap device (git-fixes). * watchdog: bd9576: Drop "always-running" property (git-fixes). * watchdog: cpu5wdt.c: Fix use-after-free bug caused by cpu5wdt_trigger (git- fixes). * watchdog: rti_wdt: Set min_hw_heartbeat_ms to accommodate a safety margin (git-fixes). * watchdog: sa1100: Fix PTR_ERR_OR_ZERO() vs NULL check in sa1100dog_probe() (git-fixes). * wifi: ar5523: enable proper endpoint verification (git-fixes). * wifi: ath10k: Fix an error code problem in ath10k_dbg_sta_write_peer_debug_trigger() (git-fixes). * wifi: ath10k: poll service ready message before failing (git-fixes). * wifi: ath10k: populate board data for WCN3990 (git-fixes). * wifi: ath11k: decrease MHI channel buffer length to 8KB (bsc#1207948). * wifi: ath11k: do not force enable power save on non-running vdevs (git- fixes). * wifi: ath12k: fix out-of-bound access of qmi_invoke_handler() (git-fixes). * wifi: ath9k: fix LNA selection in ath_ant_try_scan() (stable-fixes). * wifi: brcmfmac: Add DMI nvram filename quirk for ACEPC W5 Pro (stable- fixes). * wifi: brcmfmac: add per-vendor feature detection callback (stable-fixes). * wifi: brcmfmac: cfg80211: Use WSEC to set SAE password (stable-fixes). * wifi: brcmfmac: Demote vendor-specific attach/detach messages to info (git- fixes). * wifi: brcmfmac: pcie: handle randbuf allocation failure (git-fixes). * wifi: carl9170: add a proper sanity check for endpoints (git-fixes). * wifi: carl9170: re-fix fortified-memset warning (git-fixes). * wifi: cfg80211: check A-MSDU format more carefully (stable-fixes). * wifi: cfg80211: fix rdev_dump_mpp() arguments order (stable-fixes). * wifi: ieee80211: fix ieee80211_mle_basic_sta_prof_size_ok() (git-fixes). * wifi: iwlwifi: fw: do not always use FW dump trig (git-fixes). * wifi: iwlwifi: fw: fix compile w/o CONFIG_ACPI (git-fixes). * wifi: iwlwifi: mvm: allocate STA links only for active links (git-fixes). * wifi: iwlwifi: mvm: fix active link counting during recovery (git-fixes). * wifi: iwlwifi: mvm: fix check in iwl_mvm_sta_fw_id_mask (git-fixes). * wifi: iwlwifi: mvm: guard against invalid STA ID on removal (stable-fixes). * wifi: iwlwifi: mvm: include link ID when releasing frames (git-fixes). * wifi: iwlwifi: mvm: init vif works only once (git-fixes). * wifi: iwlwifi: mvm: remove old PASN station when adding a new one (git- fixes). * wifi: iwlwifi: mvm: return uid from iwl_mvm_build_scan_cmd (git-fixes). * wifi: iwlwifi: mvm: rfi: fix potential response leaks (git-fixes). * wifi: iwlwifi: mvm: select STA mask only for active links (git-fixes). * wifi: iwlwifi: mvm: use correct address 3 in A-MSDU (stable-fixes). * wifi: iwlwifi: pcie: Add the PCI device id for new hardware (stable-fixes). * wifi: iwlwifi: pcie: fix RB status reading (stable-fixes). * wifi: iwlwifi: read txq->read_ptr under lock (stable-fixes). * wifi: iwlwifi: reconfigure TLC during HW restart (git-fixes). * wifi: mac80211: check/clear fast rx for non-4addr sta VLAN changes (stable- fixes). * wifi: mac80211: clean up assignments to pointer cache (stable-fixes). * wifi: mac80211: fix ieee80211_bss_*_flags kernel-doc (stable-fixes). * wifi: mac80211: fix prep_connection error path (stable-fixes). * wifi: mac80211: fix unaligned le16 access (git-fixes). * wifi: mac80211_hwsim: init peer measurement result (git-fixes). * wifi: mac80211: only call drv_sta_rc_update for uploaded stations (stable- fixes). * wifi: mac80211: remove link before AP (git-fixes). * wifi: mt76: mt7603: add wpdma tx eof flag for PSE client reset (git-fixes). * wifi: mt76: mt7603: fix tx queue of loopback packets (git-fixes). * wifi: mt76: mt7915: workaround too long expansion sparse warnings (git- fixes). * wifi: mt76: mt7996: add locking for accessing mapped registers (stable- fixes). * wifi: mt76: mt7996: disable AMSDU for non-data frames (stable-fixes). * wifi: mwl8k: initialize cmd->addr[] properly (git-fixes). * wifi: nl80211: do not free NULL coalescing rule (git-fixes). * wifi: rtw88: 8821cu: Fix connection failure (stable-fixes). * wifi: rtw88: Add missing VID/PIDs for 8811CU and 8821CU (stable-fixes). * wifi: rtw89: fix null pointer access when abort scan (stable-fixes). * wifi: rtw89: pci: correct TX resource checking for PCI DMA channel of firmware command (git-fixes). * wifi: rtw89: pci: enlarge RX DMA buffer to consider size of RX descriptor (stable-fixes). * wireguard: netlink: access device through ctx instead of peer (git-fixes). * wireguard: netlink: check for dangling peer via is_dead instead of empty list (git-fixes). * wireguard: receive: annotate data-race around receiving_counter.counter (git-fixes). * Workaround broken chacha crypto fallback (bsc#1218205). * x86/bugs: Fix BHI retpoline check (git-fixes). * x86/bugs: Fix the SRSO mitigation on Zen3/4 (git-fixes). * x86/bugs: Remove default case for fully switched enums (git-fixes). * x86/calldepth: Rename __x86_return_skl() to call_depth_return_thunk() (git- fixes). * x86/coco: Require seeding RNG with RDRAND on CoCo systems (git-fixes). * x86/cpu: Add model number for Intel Arrow Lake mobile processor (git-fixes). * x86/CPU/AMD: Add models 0x10-0x1f to the Zen5 range (git-fixes). * x86/CPU/AMD: Update the Zenbleed microcode revisions (git-fixes). * x86/cpufeatures: Fix dependencies for GFNI, VAES, and VPCLMULQDQ (git- fixes). * x86/efistub: Add missing boot_params for mixed mode compat entry (git- fixes). * x86/efistub: Call mixed mode boot services on the firmware's stack (git- fixes). * x86/fpu: Keep xfd_state in sync with MSR_IA32_XFD (git-fixes). * x86/hyperv: Allow 15-bit APIC IDs for VTL platforms (git-fixes). * x86/hyperv: Use per cpu initial stack for vtl context (git-fixes). * x86/Kconfig: Remove CONFIG_AMD_MEM_ENCRYPT_ACTIVE_BY_DEFAULT (git-fixes). * x86/kconfig: Select ARCH_WANT_FRAME_POINTERS again when UNWINDER_FRAME_POINTER=y (git-fixes). * x86/kvm/Kconfig: Have KVM_AMD_SEV select ARCH_HAS_CC_PLATFORM (git-fixes). * x86/mce: Make sure to grab mce_sysfs_mutex in set_bank() (git-fixes). * x86/nmi: Fix the inverse "in NMI handler" check (git-fixes). * x86/nospec: Refactor UNTRAIN_RET[_*] (git-fixes). * x86/pm: Work around false positive kmemleak report in msr_build_context() (git-fixes). * x86/purgatory: Switch to the position-independent small code model (git- fixes). * x86/rethunk: Use SYM_CODE_START[_LOCAL]_NOALIGN macros (git-fixes). * x86/retpoline: Add NOENDBR annotation to the SRSO dummy return thunk (git- fixes). * x86/retpoline: Do the necessary fixup to the Zen3/4 srso return thunk for !SRSO (git-fixes). * x86/srso: Disentangle rethunk-dependent options (git-fixes). * x86/srso: Fix unret validation dependencies (git-fixes). * x86/srso: Improve i-cache locality for alias mitigation (git-fixes). * x86/srso: Print actual mitigation if requested mitigation isn't possible (git-fixes). * x86/srso: Remove 'pred_cmd' label (git-fixes). * x86/srso: Unexport untraining functions (git-fixes). * x86/xen: Add some null pointer checking to smp.c (git-fixes). * x86/xen: attempt to inflate the memory balloon on PVH (git-fixes). * xdp, bonding: Fix feature flags when there are no slave devs anymore (git- fixes). * xen/events: drop xen_allocate_irqs_dynamic() (git-fixes). * xen/events: fix error code in xen_bind_pirq_msi_to_irq() (git-fixes). * xen/events: increment refcnt only if event channel is refcounted (git- fixes). * xen/events: modify internal [un]bind interfaces (git-fixes). * xen/events: reduce externally visible helper functions (git-fixes). * xen/events: remove some simple helpers from events_base.c (git-fixes). * xen: evtchn: Allow shared registration of IRQ handers (git-fixes). * xen/evtchn: avoid WARN() when unbinding an event channel (git-fixes). * xen-netfront: Add missing skb_mark_for_recycle (git-fixes). * xfs: add lock protection when remove perag from radix tree (git-fixes). * xfs: allow extent free intents to be retried (git-fixes). * xfs: fix perag leak when growfs fails (git-fixes). * xfs: force all buffers to be written during btree bulk load (git-fixes). * xfs: make xchk_iget safer in the presence of corrupt inode btrees (git- fixes). * xfs: pass the xfs_defer_pending object to iop_recover (git-fixes). * xfs: recompute growfsrtfree transaction reservation while growing rt volume (git-fixes). * xfs: transfer recovered intent item ownership in ->iop_recover (git-fixes). * xfs: use xfs_defer_pending objects to recover intent items (git-fixes). * xhci: add helper that checks for unhandled events on a event ring (git- fixes). * xhci: remove unnecessary event_ring_deq parameter from xhci_handle_event() (git-fixes). * xhci: Simplify event ring dequeue pointer update for port change events (git-fixes). * xhci: simplify event ring dequeue tracking for transfer events (git-fixes). ## Special Instructions and Notes: * Please reboot the system after installing this update. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch SUSE-2024-2203=1 openSUSE-SLE-15.6-2024-2203=1 * Basesystem Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP6-2024-2203=1 * Development Tools Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Development-Tools-15-SP6-2024-2203=1 * Legacy Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Legacy-15-SP6-2024-2203=1 * SUSE Linux Enterprise Live Patching 15-SP6 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP6-2024-2203=1 Please note that this is the initial kernel livepatch without fixes itself, this package is later updated by separate standalone kernel livepatch updates. * SUSE Linux Enterprise High Availability Extension 15 SP6 zypper in -t patch SUSE-SLE-Product-HA-15-SP6-2024-2203=1 * SUSE Linux Enterprise Workstation Extension 15 SP6 zypper in -t patch SUSE-SLE-Product-WE-15-SP6-2024-2203=1 ## Package List: * openSUSE Leap 15.6 (noarch nosrc) * kernel-docs-6.4.0-150600.23.7.4 * openSUSE Leap 15.6 (noarch) * kernel-macros-6.4.0-150600.23.7.2 * kernel-devel-6.4.0-150600.23.7.2 * kernel-source-6.4.0-150600.23.7.2 * kernel-docs-html-6.4.0-150600.23.7.4 * kernel-source-vanilla-6.4.0-150600.23.7.2 * openSUSE Leap 15.6 (nosrc ppc64le x86_64) * kernel-debug-6.4.0-150600.23.7.3 * openSUSE Leap 15.6 (ppc64le x86_64) * kernel-debug-debugsource-6.4.0-150600.23.7.3 * kernel-debug-devel-6.4.0-150600.23.7.3 * kernel-debug-livepatch-devel-6.4.0-150600.23.7.3 * kernel-debug-devel-debuginfo-6.4.0-150600.23.7.3 * kernel-debug-debuginfo-6.4.0-150600.23.7.3 * openSUSE Leap 15.6 (x86_64) * kernel-default-vdso-6.4.0-150600.23.7.3 * kernel-kvmsmall-vdso-debuginfo-6.4.0-150600.23.7.3 * kernel-default-vdso-debuginfo-6.4.0-150600.23.7.3 * kernel-kvmsmall-vdso-6.4.0-150600.23.7.3 * kernel-debug-vdso-6.4.0-150600.23.7.3 * kernel-debug-vdso-debuginfo-6.4.0-150600.23.7.3 * openSUSE Leap 15.6 (aarch64 ppc64le x86_64) * kernel-kvmsmall-livepatch-devel-6.4.0-150600.23.7.3 * kernel-kvmsmall-debuginfo-6.4.0-150600.23.7.3 * kernel-kvmsmall-debugsource-6.4.0-150600.23.7.3 * kernel-default-base-rebuild-6.4.0-150600.23.7.3.150600.12.2.7 * kernel-kvmsmall-devel-debuginfo-6.4.0-150600.23.7.3 * kernel-kvmsmall-devel-6.4.0-150600.23.7.3 * kernel-default-base-6.4.0-150600.23.7.3.150600.12.2.7 * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64) * cluster-md-kmp-default-debuginfo-6.4.0-150600.23.7.3 * kernel-default-livepatch-devel-6.4.0-150600.23.7.3 * kernel-default-debuginfo-6.4.0-150600.23.7.3 * reiserfs-kmp-default-6.4.0-150600.23.7.3 * kselftests-kmp-default-debuginfo-6.4.0-150600.23.7.3 * ocfs2-kmp-default-6.4.0-150600.23.7.3 * ocfs2-kmp-default-debuginfo-6.4.0-150600.23.7.3 * kernel-obs-build-6.4.0-150600.23.7.3 * kernel-obs-build-debugsource-6.4.0-150600.23.7.3 * kernel-default-extra-debuginfo-6.4.0-150600.23.7.3 * dlm-kmp-default-debuginfo-6.4.0-150600.23.7.3 * kernel-default-optional-6.4.0-150600.23.7.3 * kernel-default-devel-debuginfo-6.4.0-150600.23.7.3 * kernel-default-debugsource-6.4.0-150600.23.7.3 * kselftests-kmp-default-6.4.0-150600.23.7.3 * kernel-default-devel-6.4.0-150600.23.7.3 * kernel-default-extra-6.4.0-150600.23.7.3 * reiserfs-kmp-default-debuginfo-6.4.0-150600.23.7.3 * kernel-default-livepatch-6.4.0-150600.23.7.3 * gfs2-kmp-default-debuginfo-6.4.0-150600.23.7.3 * kernel-obs-qa-6.4.0-150600.23.7.1 * kernel-default-optional-debuginfo-6.4.0-150600.23.7.3 * dlm-kmp-default-6.4.0-150600.23.7.3 * kernel-syms-6.4.0-150600.23.7.1 * gfs2-kmp-default-6.4.0-150600.23.7.3 * cluster-md-kmp-default-6.4.0-150600.23.7.3 * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64 nosrc) * kernel-default-6.4.0-150600.23.7.3 * openSUSE Leap 15.6 (aarch64 nosrc ppc64le x86_64) * kernel-kvmsmall-6.4.0-150600.23.7.3 * openSUSE Leap 15.6 (ppc64le s390x x86_64) * kernel-livepatch-SLE15-SP6_Update_1-debugsource-1-150600.13.3.7 * kernel-livepatch-6_4_0-150600_23_7-default-debuginfo-1-150600.13.3.7 * kernel-livepatch-6_4_0-150600_23_7-default-1-150600.13.3.7 * openSUSE Leap 15.6 (nosrc s390x) * kernel-zfcpdump-6.4.0-150600.23.7.3 * openSUSE Leap 15.6 (s390x) * kernel-zfcpdump-debugsource-6.4.0-150600.23.7.3 * kernel-zfcpdump-debuginfo-6.4.0-150600.23.7.3 * openSUSE Leap 15.6 (nosrc) * dtb-aarch64-6.4.0-150600.23.7.1 * openSUSE Leap 15.6 (aarch64) * reiserfs-kmp-64kb-debuginfo-6.4.0-150600.23.7.3 * dtb-rockchip-6.4.0-150600.23.7.1 * kernel-64kb-extra-6.4.0-150600.23.7.3 * ocfs2-kmp-64kb-debuginfo-6.4.0-150600.23.7.3 * gfs2-kmp-64kb-debuginfo-6.4.0-150600.23.7.3 * kernel-64kb-devel-debuginfo-6.4.0-150600.23.7.3 * kselftests-kmp-64kb-debuginfo-6.4.0-150600.23.7.3 * dlm-kmp-64kb-debuginfo-6.4.0-150600.23.7.3 * dtb-broadcom-6.4.0-150600.23.7.1 * dtb-sprd-6.4.0-150600.23.7.1 * kernel-64kb-debuginfo-6.4.0-150600.23.7.3 * ocfs2-kmp-64kb-6.4.0-150600.23.7.3 * dtb-amazon-6.4.0-150600.23.7.1 * dtb-allwinner-6.4.0-150600.23.7.1 * dtb-amlogic-6.4.0-150600.23.7.1 * dtb-lg-6.4.0-150600.23.7.1 * dtb-altera-6.4.0-150600.23.7.1 * dtb-socionext-6.4.0-150600.23.7.1 * dtb-mediatek-6.4.0-150600.23.7.1 * gfs2-kmp-64kb-6.4.0-150600.23.7.3 * dtb-amd-6.4.0-150600.23.7.1 * dtb-freescale-6.4.0-150600.23.7.1 * kernel-64kb-extra-debuginfo-6.4.0-150600.23.7.3 * kernel-64kb-optional-6.4.0-150600.23.7.3 * dtb-renesas-6.4.0-150600.23.7.1 * kselftests-kmp-64kb-6.4.0-150600.23.7.3 * cluster-md-kmp-64kb-6.4.0-150600.23.7.3 * kernel-64kb-devel-6.4.0-150600.23.7.3 * dtb-apple-6.4.0-150600.23.7.1 * dtb-arm-6.4.0-150600.23.7.1 * dlm-kmp-64kb-6.4.0-150600.23.7.3 * kernel-64kb-optional-debuginfo-6.4.0-150600.23.7.3 * dtb-exynos-6.4.0-150600.23.7.1 * dtb-xilinx-6.4.0-150600.23.7.1 * cluster-md-kmp-64kb-debuginfo-6.4.0-150600.23.7.3 * reiserfs-kmp-64kb-6.4.0-150600.23.7.3 * kernel-64kb-debugsource-6.4.0-150600.23.7.3 * kernel-64kb-livepatch-devel-6.4.0-150600.23.7.3 * dtb-cavium-6.4.0-150600.23.7.1 * dtb-nvidia-6.4.0-150600.23.7.1 * dtb-apm-6.4.0-150600.23.7.1 * dtb-qcom-6.4.0-150600.23.7.1 * dtb-marvell-6.4.0-150600.23.7.1 * dtb-hisilicon-6.4.0-150600.23.7.1 * openSUSE Leap 15.6 (aarch64 nosrc) * kernel-64kb-6.4.0-150600.23.7.3 * Basesystem Module 15-SP6 (aarch64 nosrc) * kernel-64kb-6.4.0-150600.23.7.3 * Basesystem Module 15-SP6 (aarch64) * kernel-64kb-devel-6.4.0-150600.23.7.3 * kernel-64kb-debugsource-6.4.0-150600.23.7.3 * kernel-64kb-devel-debuginfo-6.4.0-150600.23.7.3 * kernel-64kb-debuginfo-6.4.0-150600.23.7.3 * Basesystem Module 15-SP6 (aarch64 ppc64le s390x x86_64 nosrc) * kernel-default-6.4.0-150600.23.7.3 * Basesystem Module 15-SP6 (aarch64 ppc64le x86_64) * kernel-default-base-6.4.0-150600.23.7.3.150600.12.2.7 * Basesystem Module 15-SP6 (aarch64 ppc64le s390x x86_64) * kernel-default-debuginfo-6.4.0-150600.23.7.3 * kernel-default-devel-6.4.0-150600.23.7.3 * kernel-default-devel-debuginfo-6.4.0-150600.23.7.3 * kernel-default-debugsource-6.4.0-150600.23.7.3 * Basesystem Module 15-SP6 (noarch) * kernel-macros-6.4.0-150600.23.7.2 * kernel-devel-6.4.0-150600.23.7.2 * Basesystem Module 15-SP6 (nosrc s390x) * kernel-zfcpdump-6.4.0-150600.23.7.3 * Basesystem Module 15-SP6 (s390x) * kernel-zfcpdump-debugsource-6.4.0-150600.23.7.3 * kernel-zfcpdump-debuginfo-6.4.0-150600.23.7.3 * Development Tools Module 15-SP6 (noarch nosrc) * kernel-docs-6.4.0-150600.23.7.4 * Development Tools Module 15-SP6 (aarch64 ppc64le s390x x86_64) * kernel-obs-build-debugsource-6.4.0-150600.23.7.3 * kernel-obs-build-6.4.0-150600.23.7.3 * kernel-syms-6.4.0-150600.23.7.1 * Development Tools Module 15-SP6 (noarch) * kernel-source-6.4.0-150600.23.7.2 * Legacy Module 15-SP6 (nosrc) * kernel-default-6.4.0-150600.23.7.3 * Legacy Module 15-SP6 (aarch64 ppc64le s390x x86_64) * kernel-default-debuginfo-6.4.0-150600.23.7.3 * reiserfs-kmp-default-6.4.0-150600.23.7.3 * reiserfs-kmp-default-debuginfo-6.4.0-150600.23.7.3 * kernel-default-debugsource-6.4.0-150600.23.7.3 * SUSE Linux Enterprise Live Patching 15-SP6 (nosrc) * kernel-default-6.4.0-150600.23.7.3 * SUSE Linux Enterprise Live Patching 15-SP6 (ppc64le s390x x86_64) * kernel-livepatch-SLE15-SP6_Update_1-debugsource-1-150600.13.3.7 * kernel-default-debugsource-6.4.0-150600.23.7.3 * kernel-default-livepatch-devel-6.4.0-150600.23.7.3 * kernel-livepatch-6_4_0-150600_23_7-default-1-150600.13.3.7 * kernel-default-debuginfo-6.4.0-150600.23.7.3 * kernel-livepatch-6_4_0-150600_23_7-default-debuginfo-1-150600.13.3.7 * kernel-default-livepatch-6.4.0-150600.23.7.3 * SUSE Linux Enterprise High Availability Extension 15 SP6 (aarch64 ppc64le s390x x86_64) * ocfs2-kmp-default-6.4.0-150600.23.7.3 * ocfs2-kmp-default-debuginfo-6.4.0-150600.23.7.3 * cluster-md-kmp-default-debuginfo-6.4.0-150600.23.7.3 * gfs2-kmp-default-debuginfo-6.4.0-150600.23.7.3 * kernel-default-debugsource-6.4.0-150600.23.7.3 * kernel-default-debuginfo-6.4.0-150600.23.7.3 * dlm-kmp-default-6.4.0-150600.23.7.3 * gfs2-kmp-default-6.4.0-150600.23.7.3 * dlm-kmp-default-debuginfo-6.4.0-150600.23.7.3 * cluster-md-kmp-default-6.4.0-150600.23.7.3 * SUSE Linux Enterprise High Availability Extension 15 SP6 (nosrc) * kernel-default-6.4.0-150600.23.7.3 * SUSE Linux Enterprise Workstation Extension 15 SP6 (nosrc) * kernel-default-6.4.0-150600.23.7.3 * SUSE Linux Enterprise Workstation Extension 15 SP6 (x86_64) * kernel-default-debuginfo-6.4.0-150600.23.7.3 * kernel-default-extra-debuginfo-6.4.0-150600.23.7.3 * kernel-default-extra-6.4.0-150600.23.7.3 * kernel-default-debugsource-6.4.0-150600.23.7.3 ## References: * https://www.suse.com/security/cve/CVE-2023-0160.html * https://www.suse.com/security/cve/CVE-2023-52434.html * https://www.suse.com/security/cve/CVE-2023-52458.html * https://www.suse.com/security/cve/CVE-2023-52472.html * https://www.suse.com/security/cve/CVE-2023-52503.html * https://www.suse.com/security/cve/CVE-2023-52616.html * https://www.suse.com/security/cve/CVE-2023-52618.html * https://www.suse.com/security/cve/CVE-2023-52631.html * https://www.suse.com/security/cve/CVE-2023-52635.html * https://www.suse.com/security/cve/CVE-2023-52640.html * https://www.suse.com/security/cve/CVE-2023-52641.html * https://www.suse.com/security/cve/CVE-2023-52645.html * https://www.suse.com/security/cve/CVE-2023-52652.html * https://www.suse.com/security/cve/CVE-2023-52653.html * https://www.suse.com/security/cve/CVE-2023-52654.html * https://www.suse.com/security/cve/CVE-2023-52655.html * https://www.suse.com/security/cve/CVE-2023-52657.html * https://www.suse.com/security/cve/CVE-2023-52658.html * https://www.suse.com/security/cve/CVE-2023-52659.html * https://www.suse.com/security/cve/CVE-2023-52660.html * https://www.suse.com/security/cve/CVE-2023-52661.html * https://www.suse.com/security/cve/CVE-2023-52662.html * https://www.suse.com/security/cve/CVE-2023-52663.html * https://www.suse.com/security/cve/CVE-2023-52664.html * https://www.suse.com/security/cve/CVE-2023-52667.html * https://www.suse.com/security/cve/CVE-2023-52669.html * https://www.suse.com/security/cve/CVE-2023-52670.html * https://www.suse.com/security/cve/CVE-2023-52671.html * https://www.suse.com/security/cve/CVE-2023-52673.html * https://www.suse.com/security/cve/CVE-2023-52674.html * https://www.suse.com/security/cve/CVE-2023-52675.html * https://www.suse.com/security/cve/CVE-2023-52676.html * https://www.suse.com/security/cve/CVE-2023-52678.html * https://www.suse.com/security/cve/CVE-2023-52679.html * https://www.suse.com/security/cve/CVE-2023-52680.html * https://www.suse.com/security/cve/CVE-2023-52681.html * https://www.suse.com/security/cve/CVE-2023-52683.html * https://www.suse.com/security/cve/CVE-2023-52685.html * https://www.suse.com/security/cve/CVE-2023-52686.html * https://www.suse.com/security/cve/CVE-2023-52687.html * https://www.suse.com/security/cve/CVE-2023-52690.html * https://www.suse.com/security/cve/CVE-2023-52691.html * https://www.suse.com/security/cve/CVE-2023-52692.html * https://www.suse.com/security/cve/CVE-2023-52693.html * https://www.suse.com/security/cve/CVE-2023-52694.html * https://www.suse.com/security/cve/CVE-2023-52695.html * https://www.suse.com/security/cve/CVE-2023-52696.html * https://www.suse.com/security/cve/CVE-2023-52697.html * https://www.suse.com/security/cve/CVE-2023-52698.html * https://www.suse.com/security/cve/CVE-2023-52771.html * https://www.suse.com/security/cve/CVE-2023-52772.html * https://www.suse.com/security/cve/CVE-2023-52860.html * https://www.suse.com/security/cve/CVE-2023-52882.html * https://www.suse.com/security/cve/CVE-2023-6238.html * https://www.suse.com/security/cve/CVE-2023-7042.html * https://www.suse.com/security/cve/CVE-2024-0639.html * https://www.suse.com/security/cve/CVE-2024-21823.html * https://www.suse.com/security/cve/CVE-2024-22099.html * https://www.suse.com/security/cve/CVE-2024-23848.html * https://www.suse.com/security/cve/CVE-2024-24861.html * https://www.suse.com/security/cve/CVE-2024-25739.html * https://www.suse.com/security/cve/CVE-2024-26601.html * https://www.suse.com/security/cve/CVE-2024-26611.html * https://www.suse.com/security/cve/CVE-2024-26614.html * https://www.suse.com/security/cve/CVE-2024-26632.html * https://www.suse.com/security/cve/CVE-2024-26638.html * https://www.suse.com/security/cve/CVE-2024-26642.html * https://www.suse.com/security/cve/CVE-2024-26643.html * https://www.suse.com/security/cve/CVE-2024-26650.html * https://www.suse.com/security/cve/CVE-2024-26654.html * https://www.suse.com/security/cve/CVE-2024-26656.html * https://www.suse.com/security/cve/CVE-2024-26657.html * https://www.suse.com/security/cve/CVE-2024-26671.html * https://www.suse.com/security/cve/CVE-2024-26673.html * https://www.suse.com/security/cve/CVE-2024-26674.html * https://www.suse.com/security/cve/CVE-2024-26679.html * https://www.suse.com/security/cve/CVE-2024-26684.html * https://www.suse.com/security/cve/CVE-2024-26685.html * https://www.suse.com/security/cve/CVE-2024-26692.html * https://www.suse.com/security/cve/CVE-2024-26704.html * https://www.suse.com/security/cve/CVE-2024-26714.html * https://www.suse.com/security/cve/CVE-2024-26726.html * https://www.suse.com/security/cve/CVE-2024-26731.html * https://www.suse.com/security/cve/CVE-2024-26733.html * https://www.suse.com/security/cve/CVE-2024-26737.html * https://www.suse.com/security/cve/CVE-2024-26739.html * https://www.suse.com/security/cve/CVE-2024-26740.html * https://www.suse.com/security/cve/CVE-2024-26742.html * https://www.suse.com/security/cve/CVE-2024-26760.html * https://www.suse.com/security/cve/CVE-2024-267600.html * https://www.suse.com/security/cve/CVE-2024-26761.html * https://www.suse.com/security/cve/CVE-2024-26764.html * https://www.suse.com/security/cve/CVE-2024-26769.html * https://www.suse.com/security/cve/CVE-2024-26772.html * https://www.suse.com/security/cve/CVE-2024-26773.html * https://www.suse.com/security/cve/CVE-2024-26774.html * https://www.suse.com/security/cve/CVE-2024-26775.html * https://www.suse.com/security/cve/CVE-2024-26783.html * https://www.suse.com/security/cve/CVE-2024-26786.html * https://www.suse.com/security/cve/CVE-2024-26791.html * https://www.suse.com/security/cve/CVE-2024-26793.html * https://www.suse.com/security/cve/CVE-2024-26794.html * https://www.suse.com/security/cve/CVE-2024-26802.html * https://www.suse.com/security/cve/CVE-2024-26805.html * https://www.suse.com/security/cve/CVE-2024-26807.html * https://www.suse.com/security/cve/CVE-2024-26815.html * https://www.suse.com/security/cve/CVE-2024-26816.html * https://www.suse.com/security/cve/CVE-2024-26822.html * https://www.suse.com/security/cve/CVE-2024-26832.html * https://www.suse.com/security/cve/CVE-2024-26836.html * https://www.suse.com/security/cve/CVE-2024-26844.html * https://www.suse.com/security/cve/CVE-2024-26846.html * https://www.suse.com/security/cve/CVE-2024-26853.html * https://www.suse.com/security/cve/CVE-2024-26854.html * https://www.suse.com/security/cve/CVE-2024-26855.html * https://www.suse.com/security/cve/CVE-2024-26856.html * https://www.suse.com/security/cve/CVE-2024-26857.html * https://www.suse.com/security/cve/CVE-2024-26858.html * https://www.suse.com/security/cve/CVE-2024-26860.html * https://www.suse.com/security/cve/CVE-2024-26861.html * https://www.suse.com/security/cve/CVE-2024-26862.html * https://www.suse.com/security/cve/CVE-2024-26866.html * https://www.suse.com/security/cve/CVE-2024-26868.html * https://www.suse.com/security/cve/CVE-2024-26870.html * https://www.suse.com/security/cve/CVE-2024-26878.html * https://www.suse.com/security/cve/CVE-2024-26881.html * https://www.suse.com/security/cve/CVE-2024-26882.html * https://www.suse.com/security/cve/CVE-2024-26883.html * https://www.suse.com/security/cve/CVE-2024-26884.html * https://www.suse.com/security/cve/CVE-2024-26885.html * https://www.suse.com/security/cve/CVE-2024-26899.html * https://www.suse.com/security/cve/CVE-2024-26900.html * https://www.suse.com/security/cve/CVE-2024-26901.html * https://www.suse.com/security/cve/CVE-2024-26903.html * https://www.suse.com/security/cve/CVE-2024-26906.html * https://www.suse.com/security/cve/CVE-2024-26909.html * https://www.suse.com/security/cve/CVE-2024-26921.html * https://www.suse.com/security/cve/CVE-2024-26922.html * https://www.suse.com/security/cve/CVE-2024-26923.html * https://www.suse.com/security/cve/CVE-2024-26925.html * https://www.suse.com/security/cve/CVE-2024-26928.html * https://www.suse.com/security/cve/CVE-2024-26932.html * https://www.suse.com/security/cve/CVE-2024-26933.html * https://www.suse.com/security/cve/CVE-2024-26934.html * https://www.suse.com/security/cve/CVE-2024-26935.html * https://www.suse.com/security/cve/CVE-2024-26937.html * https://www.suse.com/security/cve/CVE-2024-26938.html * https://www.suse.com/security/cve/CVE-2024-26940.html * https://www.suse.com/security/cve/CVE-2024-26943.html * https://www.suse.com/security/cve/CVE-2024-26945.html * https://www.suse.com/security/cve/CVE-2024-26946.html * https://www.suse.com/security/cve/CVE-2024-26948.html * https://www.suse.com/security/cve/CVE-2024-26949.html * https://www.suse.com/security/cve/CVE-2024-26950.html * https://www.suse.com/security/cve/CVE-2024-26951.html * https://www.suse.com/security/cve/CVE-2024-26957.html * https://www.suse.com/security/cve/CVE-2024-26958.html * https://www.suse.com/security/cve/CVE-2024-26960.html * https://www.suse.com/security/cve/CVE-2024-26961.html * https://www.suse.com/security/cve/CVE-2024-26962.html * https://www.suse.com/security/cve/CVE-2024-26963.html * https://www.suse.com/security/cve/CVE-2024-26964.html * https://www.suse.com/security/cve/CVE-2024-26972.html * https://www.suse.com/security/cve/CVE-2024-26973.html * https://www.suse.com/security/cve/CVE-2024-26978.html * https://www.suse.com/security/cve/CVE-2024-26981.html * https://www.suse.com/security/cve/CVE-2024-26982.html * https://www.suse.com/security/cve/CVE-2024-26983.html * https://www.suse.com/security/cve/CVE-2024-26984.html * https://www.suse.com/security/cve/CVE-2024-26986.html * https://www.suse.com/security/cve/CVE-2024-26988.html * https://www.suse.com/security/cve/CVE-2024-26989.html * https://www.suse.com/security/cve/CVE-2024-26990.html * https://www.suse.com/security/cve/CVE-2024-26991.html * https://www.suse.com/security/cve/CVE-2024-26992.html * https://www.suse.com/security/cve/CVE-2024-26993.html * https://www.suse.com/security/cve/CVE-2024-26994.html * https://www.suse.com/security/cve/CVE-2024-26995.html * https://www.suse.com/security/cve/CVE-2024-26996.html * https://www.suse.com/security/cve/CVE-2024-26997.html * https://www.suse.com/security/cve/CVE-2024-26999.html * https://www.suse.com/security/cve/CVE-2024-27000.html * https://www.suse.com/security/cve/CVE-2024-27001.html * https://www.suse.com/security/cve/CVE-2024-27002.html * https://www.suse.com/security/cve/CVE-2024-27003.html * https://www.suse.com/security/cve/CVE-2024-27004.html * https://www.suse.com/security/cve/CVE-2024-27008.html * https://www.suse.com/security/cve/CVE-2024-27013.html * https://www.suse.com/security/cve/CVE-2024-27014.html * https://www.suse.com/security/cve/CVE-2024-27022.html * https://www.suse.com/security/cve/CVE-2024-27027.html * https://www.suse.com/security/cve/CVE-2024-27028.html * https://www.suse.com/security/cve/CVE-2024-27029.html * https://www.suse.com/security/cve/CVE-2024-27030.html * https://www.suse.com/security/cve/CVE-2024-27031.html * https://www.suse.com/security/cve/CVE-2024-27036.html * https://www.suse.com/security/cve/CVE-2024-27046.html * https://www.suse.com/security/cve/CVE-2024-27056.html * https://www.suse.com/security/cve/CVE-2024-27057.html * https://www.suse.com/security/cve/CVE-2024-27062.html * https://www.suse.com/security/cve/CVE-2024-27067.html * https://www.suse.com/security/cve/CVE-2024-27080.html * https://www.suse.com/security/cve/CVE-2024-27388.html * https://www.suse.com/security/cve/CVE-2024-27389.html * https://www.suse.com/security/cve/CVE-2024-27393.html * https://www.suse.com/security/cve/CVE-2024-27395.html * https://www.suse.com/security/cve/CVE-2024-27396.html * https://www.suse.com/security/cve/CVE-2024-27398.html * https://www.suse.com/security/cve/CVE-2024-27399.html * https://www.suse.com/security/cve/CVE-2024-27400.html * https://www.suse.com/security/cve/CVE-2024-27401.html * https://www.suse.com/security/cve/CVE-2024-27405.html * https://www.suse.com/security/cve/CVE-2024-27408.html * https://www.suse.com/security/cve/CVE-2024-27410.html * https://www.suse.com/security/cve/CVE-2024-27411.html * https://www.suse.com/security/cve/CVE-2024-27412.html * https://www.suse.com/security/cve/CVE-2024-27413.html * https://www.suse.com/security/cve/CVE-2024-27416.html * https://www.suse.com/security/cve/CVE-2024-27417.html * https://www.suse.com/security/cve/CVE-2024-27418.html * https://www.suse.com/security/cve/CVE-2024-27431.html * https://www.suse.com/security/cve/CVE-2024-27432.html * https://www.suse.com/security/cve/CVE-2024-27434.html * https://www.suse.com/security/cve/CVE-2024-27435.html * https://www.suse.com/security/cve/CVE-2024-27436.html * https://www.suse.com/security/cve/CVE-2024-35784.html * https://www.suse.com/security/cve/CVE-2024-35786.html * https://www.suse.com/security/cve/CVE-2024-35788.html * https://www.suse.com/security/cve/CVE-2024-35789.html * https://www.suse.com/security/cve/CVE-2024-35790.html * https://www.suse.com/security/cve/CVE-2024-35791.html * https://www.suse.com/security/cve/CVE-2024-35794.html * https://www.suse.com/security/cve/CVE-2024-35795.html * https://www.suse.com/security/cve/CVE-2024-35796.html * https://www.suse.com/security/cve/CVE-2024-35799.html * https://www.suse.com/security/cve/CVE-2024-35800.html * https://www.suse.com/security/cve/CVE-2024-35801.html * https://www.suse.com/security/cve/CVE-2024-35803.html * https://www.suse.com/security/cve/CVE-2024-35804.html * https://www.suse.com/security/cve/CVE-2024-35806.html * https://www.suse.com/security/cve/CVE-2024-35808.html * https://www.suse.com/security/cve/CVE-2024-35809.html * https://www.suse.com/security/cve/CVE-2024-35810.html * https://www.suse.com/security/cve/CVE-2024-35811.html * https://www.suse.com/security/cve/CVE-2024-35812.html * https://www.suse.com/security/cve/CVE-2024-35813.html * https://www.suse.com/security/cve/CVE-2024-35814.html * https://www.suse.com/security/cve/CVE-2024-35815.html * https://www.suse.com/security/cve/CVE-2024-35817.html * https://www.suse.com/security/cve/CVE-2024-35819.html * https://www.suse.com/security/cve/CVE-2024-35821.html * https://www.suse.com/security/cve/CVE-2024-35822.html * https://www.suse.com/security/cve/CVE-2024-35823.html * https://www.suse.com/security/cve/CVE-2024-35824.html * https://www.suse.com/security/cve/CVE-2024-35825.html * https://www.suse.com/security/cve/CVE-2024-35828.html * https://www.suse.com/security/cve/CVE-2024-35829.html * https://www.suse.com/security/cve/CVE-2024-35830.html * https://www.suse.com/security/cve/CVE-2024-35833.html * https://www.suse.com/security/cve/CVE-2024-35834.html * https://www.suse.com/security/cve/CVE-2024-35835.html * https://www.suse.com/security/cve/CVE-2024-35836.html * https://www.suse.com/security/cve/CVE-2024-35837.html * https://www.suse.com/security/cve/CVE-2024-35838.html * https://www.suse.com/security/cve/CVE-2024-35841.html * https://www.suse.com/security/cve/CVE-2024-35842.html * https://www.suse.com/security/cve/CVE-2024-35845.html * https://www.suse.com/security/cve/CVE-2024-35847.html * https://www.suse.com/security/cve/CVE-2024-35849.html * https://www.suse.com/security/cve/CVE-2024-35850.html * https://www.suse.com/security/cve/CVE-2024-35851.html * https://www.suse.com/security/cve/CVE-2024-35852.html * https://www.suse.com/security/cve/CVE-2024-35854.html * https://www.suse.com/security/cve/CVE-2024-35860.html * https://www.suse.com/security/cve/CVE-2024-35861.html * https://www.suse.com/security/cve/CVE-2024-35862.html * https://www.suse.com/security/cve/CVE-2024-35863.html * https://www.suse.com/security/cve/CVE-2024-35864.html * https://www.suse.com/security/cve/CVE-2024-35865.html * https://www.suse.com/security/cve/CVE-2024-35866.html * https://www.suse.com/security/cve/CVE-2024-35867.html * https://www.suse.com/security/cve/CVE-2024-35868.html * https://www.suse.com/security/cve/CVE-2024-35869.html * https://www.suse.com/security/cve/CVE-2024-35870.html * https://www.suse.com/security/cve/CVE-2024-35872.html * https://www.suse.com/security/cve/CVE-2024-35875.html * https://www.suse.com/security/cve/CVE-2024-35877.html * https://www.suse.com/security/cve/CVE-2024-35878.html * https://www.suse.com/security/cve/CVE-2024-35879.html * https://www.suse.com/security/cve/CVE-2024-35883.html * https://www.suse.com/security/cve/CVE-2024-35885.html * https://www.suse.com/security/cve/CVE-2024-35887.html * https://www.suse.com/security/cve/CVE-2024-35889.html * https://www.suse.com/security/cve/CVE-2024-35891.html * https://www.suse.com/security/cve/CVE-2024-35895.html * https://www.suse.com/security/cve/CVE-2024-35901.html * https://www.suse.com/security/cve/CVE-2024-35903.html * https://www.suse.com/security/cve/CVE-2024-35904.html * https://www.suse.com/security/cve/CVE-2024-35905.html * https://www.suse.com/security/cve/CVE-2024-35907.html * https://www.suse.com/security/cve/CVE-2024-35909.html * https://www.suse.com/security/cve/CVE-2024-35911.html * https://www.suse.com/security/cve/CVE-2024-35912.html * https://www.suse.com/security/cve/CVE-2024-35914.html * https://www.suse.com/security/cve/CVE-2024-35915.html * https://www.suse.com/security/cve/CVE-2024-35916.html * https://www.suse.com/security/cve/CVE-2024-35917.html * https://www.suse.com/security/cve/CVE-2024-35921.html * https://www.suse.com/security/cve/CVE-2024-35922.html * https://www.suse.com/security/cve/CVE-2024-35924.html * https://www.suse.com/security/cve/CVE-2024-35927.html * https://www.suse.com/security/cve/CVE-2024-35928.html * https://www.suse.com/security/cve/CVE-2024-35930.html * https://www.suse.com/security/cve/CVE-2024-35931.html * https://www.suse.com/security/cve/CVE-2024-35932.html * https://www.suse.com/security/cve/CVE-2024-35933.html * https://www.suse.com/security/cve/CVE-2024-35935.html * https://www.suse.com/security/cve/CVE-2024-35936.html * https://www.suse.com/security/cve/CVE-2024-35937.html * https://www.suse.com/security/cve/CVE-2024-35938.html * https://www.suse.com/security/cve/CVE-2024-35940.html * https://www.suse.com/security/cve/CVE-2024-35943.html * https://www.suse.com/security/cve/CVE-2024-35944.html * https://www.suse.com/security/cve/CVE-2024-35945.html * https://www.suse.com/security/cve/CVE-2024-35946.html * https://www.suse.com/security/cve/CVE-2024-35947.html * https://www.suse.com/security/cve/CVE-2024-35950.html * https://www.suse.com/security/cve/CVE-2024-35951.html * https://www.suse.com/security/cve/CVE-2024-35952.html * https://www.suse.com/security/cve/CVE-2024-35953.html * https://www.suse.com/security/cve/CVE-2024-35954.html * https://www.suse.com/security/cve/CVE-2024-35955.html * https://www.suse.com/security/cve/CVE-2024-35956.html * https://www.suse.com/security/cve/CVE-2024-35958.html * https://www.suse.com/security/cve/CVE-2024-35959.html * https://www.suse.com/security/cve/CVE-2024-35960.html * https://www.suse.com/security/cve/CVE-2024-35961.html * https://www.suse.com/security/cve/CVE-2024-35963.html * https://www.suse.com/security/cve/CVE-2024-35964.html * https://www.suse.com/security/cve/CVE-2024-35965.html * https://www.suse.com/security/cve/CVE-2024-35966.html * https://www.suse.com/security/cve/CVE-2024-35967.html * https://www.suse.com/security/cve/CVE-2024-35969.html * https://www.suse.com/security/cve/CVE-2024-35971.html * https://www.suse.com/security/cve/CVE-2024-35972.html * https://www.suse.com/security/cve/CVE-2024-35973.html * https://www.suse.com/security/cve/CVE-2024-35974.html * https://www.suse.com/security/cve/CVE-2024-35975.html * https://www.suse.com/security/cve/CVE-2024-35977.html * https://www.suse.com/security/cve/CVE-2024-35978.html * https://www.suse.com/security/cve/CVE-2024-35981.html * https://www.suse.com/security/cve/CVE-2024-35982.html * https://www.suse.com/security/cve/CVE-2024-35984.html * https://www.suse.com/security/cve/CVE-2024-35986.html * https://www.suse.com/security/cve/CVE-2024-35989.html * https://www.suse.com/security/cve/CVE-2024-35990.html * https://www.suse.com/security/cve/CVE-2024-35991.html * https://www.suse.com/security/cve/CVE-2024-35992.html * https://www.suse.com/security/cve/CVE-2024-35995.html * https://www.suse.com/security/cve/CVE-2024-35997.html * https://www.suse.com/security/cve/CVE-2024-35999.html * https://www.suse.com/security/cve/CVE-2024-36002.html * https://www.suse.com/security/cve/CVE-2024-36006.html * https://www.suse.com/security/cve/CVE-2024-36007.html * https://www.suse.com/security/cve/CVE-2024-36009.html * https://www.suse.com/security/cve/CVE-2024-36011.html * https://www.suse.com/security/cve/CVE-2024-36012.html * https://www.suse.com/security/cve/CVE-2024-36013.html * https://www.suse.com/security/cve/CVE-2024-36014.html * https://www.suse.com/security/cve/CVE-2024-36015.html * https://www.suse.com/security/cve/CVE-2024-36016.html * https://www.suse.com/security/cve/CVE-2024-36018.html * https://www.suse.com/security/cve/CVE-2024-36019.html * https://www.suse.com/security/cve/CVE-2024-36020.html * https://www.suse.com/security/cve/CVE-2024-36021.html * https://www.suse.com/security/cve/CVE-2024-36025.html * https://www.suse.com/security/cve/CVE-2024-36026.html * https://www.suse.com/security/cve/CVE-2024-36029.html * https://www.suse.com/security/cve/CVE-2024-36030.html * https://www.suse.com/security/cve/CVE-2024-36032.html * https://www.suse.com/security/cve/CVE-2024-36880.html * https://www.suse.com/security/cve/CVE-2024-36885.html * https://www.suse.com/security/cve/CVE-2024-36890.html * https://www.suse.com/security/cve/CVE-2024-36891.html * https://www.suse.com/security/cve/CVE-2024-36893.html * https://www.suse.com/security/cve/CVE-2024-36894.html * https://www.suse.com/security/cve/CVE-2024-36895.html * https://www.suse.com/security/cve/CVE-2024-36896.html * https://www.suse.com/security/cve/CVE-2024-36897.html * https://www.suse.com/security/cve/CVE-2024-36898.html * https://www.suse.com/security/cve/CVE-2024-36906.html * https://www.suse.com/security/cve/CVE-2024-36918.html * https://www.suse.com/security/cve/CVE-2024-36921.html * https://www.suse.com/security/cve/CVE-2024-36922.html * https://www.suse.com/security/cve/CVE-2024-36928.html * https://www.suse.com/security/cve/CVE-2024-36930.html * https://www.suse.com/security/cve/CVE-2024-36931.html * https://www.suse.com/security/cve/CVE-2024-36936.html * https://www.suse.com/security/cve/CVE-2024-36940.html * https://www.suse.com/security/cve/CVE-2024-36941.html * https://www.suse.com/security/cve/CVE-2024-36942.html * https://www.suse.com/security/cve/CVE-2024-36944.html * https://www.suse.com/security/cve/CVE-2024-36947.html * https://www.suse.com/security/cve/CVE-2024-36949.html * https://www.suse.com/security/cve/CVE-2024-36950.html * https://www.suse.com/security/cve/CVE-2024-36951.html * https://www.suse.com/security/cve/CVE-2024-36955.html * https://www.suse.com/security/cve/CVE-2024-36959.html * https://bugzilla.suse.com/show_bug.cgi?id=1012628 * https://bugzilla.suse.com/show_bug.cgi?id=1065729 * https://bugzilla.suse.com/show_bug.cgi?id=1181674 * https://bugzilla.suse.com/show_bug.cgi?id=1187716 * https://bugzilla.suse.com/show_bug.cgi?id=1193599 * https://bugzilla.suse.com/show_bug.cgi?id=1194869 * https://bugzilla.suse.com/show_bug.cgi?id=1207948 * https://bugzilla.suse.com/show_bug.cgi?id=1208593 * https://bugzilla.suse.com/show_bug.cgi?id=1209657 * https://bugzilla.suse.com/show_bug.cgi?id=1213573 * https://bugzilla.suse.com/show_bug.cgi?id=1214852 * https://bugzilla.suse.com/show_bug.cgi?id=1215199 * https://bugzilla.suse.com/show_bug.cgi?id=1216196 * https://bugzilla.suse.com/show_bug.cgi?id=1216358 * https://bugzilla.suse.com/show_bug.cgi?id=1216702 * https://bugzilla.suse.com/show_bug.cgi?id=1217169 * https://bugzilla.suse.com/show_bug.cgi?id=1217384 * https://bugzilla.suse.com/show_bug.cgi?id=1217408 * https://bugzilla.suse.com/show_bug.cgi?id=1217489 * https://bugzilla.suse.com/show_bug.cgi?id=1217750 * https://bugzilla.suse.com/show_bug.cgi?id=1217959 * https://bugzilla.suse.com/show_bug.cgi?id=1218205 * https://bugzilla.suse.com/show_bug.cgi?id=1218336 * https://bugzilla.suse.com/show_bug.cgi?id=1218447 * https://bugzilla.suse.com/show_bug.cgi?id=1218779 * https://bugzilla.suse.com/show_bug.cgi?id=1218917 * https://bugzilla.suse.com/show_bug.cgi?id=1219104 * https://bugzilla.suse.com/show_bug.cgi?id=1219170 * https://bugzilla.suse.com/show_bug.cgi?id=1219596 * https://bugzilla.suse.com/show_bug.cgi?id=1219623 * https://bugzilla.suse.com/show_bug.cgi?id=1219834 * https://bugzilla.suse.com/show_bug.cgi?id=1220021 * https://bugzilla.suse.com/show_bug.cgi?id=1220045 * https://bugzilla.suse.com/show_bug.cgi?id=1220120 * https://bugzilla.suse.com/show_bug.cgi?id=1220148 * https://bugzilla.suse.com/show_bug.cgi?id=1220328 * https://bugzilla.suse.com/show_bug.cgi?id=1220342 * https://bugzilla.suse.com/show_bug.cgi?id=1220428 * https://bugzilla.suse.com/show_bug.cgi?id=1220430 * https://bugzilla.suse.com/show_bug.cgi?id=1220569 * https://bugzilla.suse.com/show_bug.cgi?id=1220587 * https://bugzilla.suse.com/show_bug.cgi?id=1220783 * https://bugzilla.suse.com/show_bug.cgi?id=1220915 * https://bugzilla.suse.com/show_bug.cgi?id=1221044 * https://bugzilla.suse.com/show_bug.cgi?id=1221293 * https://bugzilla.suse.com/show_bug.cgi?id=1221303 * https://bugzilla.suse.com/show_bug.cgi?id=1221504 * https://bugzilla.suse.com/show_bug.cgi?id=1221612 * https://bugzilla.suse.com/show_bug.cgi?id=1221615 * https://bugzilla.suse.com/show_bug.cgi?id=1221635 * https://bugzilla.suse.com/show_bug.cgi?id=1221645 * https://bugzilla.suse.com/show_bug.cgi?id=1221649 * https://bugzilla.suse.com/show_bug.cgi?id=1221765 * https://bugzilla.suse.com/show_bug.cgi?id=1221777 * https://bugzilla.suse.com/show_bug.cgi?id=1221783 * https://bugzilla.suse.com/show_bug.cgi?id=1221816 * https://bugzilla.suse.com/show_bug.cgi?id=1221829 * https://bugzilla.suse.com/show_bug.cgi?id=1221830 * https://bugzilla.suse.com/show_bug.cgi?id=1221858 * https://bugzilla.suse.com/show_bug.cgi?id=1222048 * https://bugzilla.suse.com/show_bug.cgi?id=1222173 * https://bugzilla.suse.com/show_bug.cgi?id=1222264 * https://bugzilla.suse.com/show_bug.cgi?id=1222273 * https://bugzilla.suse.com/show_bug.cgi?id=1222294 * https://bugzilla.suse.com/show_bug.cgi?id=1222301 * https://bugzilla.suse.com/show_bug.cgi?id=1222303 * https://bugzilla.suse.com/show_bug.cgi?id=1222304 * https://bugzilla.suse.com/show_bug.cgi?id=1222307 * https://bugzilla.suse.com/show_bug.cgi?id=1222357 * https://bugzilla.suse.com/show_bug.cgi?id=1222366 * https://bugzilla.suse.com/show_bug.cgi?id=1222368 * https://bugzilla.suse.com/show_bug.cgi?id=1222371 * https://bugzilla.suse.com/show_bug.cgi?id=1222378 * https://bugzilla.suse.com/show_bug.cgi?id=1222385 * https://bugzilla.suse.com/show_bug.cgi?id=1222422 * https://bugzilla.suse.com/show_bug.cgi?id=1222426 * https://bugzilla.suse.com/show_bug.cgi?id=1222428 * https://bugzilla.suse.com/show_bug.cgi?id=1222437 * https://bugzilla.suse.com/show_bug.cgi?id=1222445 * https://bugzilla.suse.com/show_bug.cgi?id=1222459 * https://bugzilla.suse.com/show_bug.cgi?id=1222464 * https://bugzilla.suse.com/show_bug.cgi?id=1222489 * https://bugzilla.suse.com/show_bug.cgi?id=1222522 * https://bugzilla.suse.com/show_bug.cgi?id=1222525 * https://bugzilla.suse.com/show_bug.cgi?id=1222532 * https://bugzilla.suse.com/show_bug.cgi?id=1222557 * https://bugzilla.suse.com/show_bug.cgi?id=1222559 * https://bugzilla.suse.com/show_bug.cgi?id=1222563 * https://bugzilla.suse.com/show_bug.cgi?id=1222585 * https://bugzilla.suse.com/show_bug.cgi?id=1222596 * https://bugzilla.suse.com/show_bug.cgi?id=1222606 * https://bugzilla.suse.com/show_bug.cgi?id=1222608 * https://bugzilla.suse.com/show_bug.cgi?id=1222613 * https://bugzilla.suse.com/show_bug.cgi?id=1222615 * https://bugzilla.suse.com/show_bug.cgi?id=1222618 * https://bugzilla.suse.com/show_bug.cgi?id=1222622 * https://bugzilla.suse.com/show_bug.cgi?id=1222624 * https://bugzilla.suse.com/show_bug.cgi?id=1222627 * https://bugzilla.suse.com/show_bug.cgi?id=1222630 * https://bugzilla.suse.com/show_bug.cgi?id=1222635 * https://bugzilla.suse.com/show_bug.cgi?id=1222721 * https://bugzilla.suse.com/show_bug.cgi?id=1222727 * https://bugzilla.suse.com/show_bug.cgi?id=1222769 * https://bugzilla.suse.com/show_bug.cgi?id=1222771 * https://bugzilla.suse.com/show_bug.cgi?id=1222775 * https://bugzilla.suse.com/show_bug.cgi?id=1222777 * https://bugzilla.suse.com/show_bug.cgi?id=1222780 * https://bugzilla.suse.com/show_bug.cgi?id=1222782 * https://bugzilla.suse.com/show_bug.cgi?id=1222793 * https://bugzilla.suse.com/show_bug.cgi?id=1222799 * https://bugzilla.suse.com/show_bug.cgi?id=1222801 * https://bugzilla.suse.com/show_bug.cgi?id=1222968 * https://bugzilla.suse.com/show_bug.cgi?id=1223007 * https://bugzilla.suse.com/show_bug.cgi?id=1223011 * https://bugzilla.suse.com/show_bug.cgi?id=1223015 * https://bugzilla.suse.com/show_bug.cgi?id=1223020 * https://bugzilla.suse.com/show_bug.cgi?id=1223023 * https://bugzilla.suse.com/show_bug.cgi?id=1223024 * https://bugzilla.suse.com/show_bug.cgi?id=1223033 * https://bugzilla.suse.com/show_bug.cgi?id=1223034 * https://bugzilla.suse.com/show_bug.cgi?id=1223035 * https://bugzilla.suse.com/show_bug.cgi?id=1223038 * https://bugzilla.suse.com/show_bug.cgi?id=1223039 * https://bugzilla.suse.com/show_bug.cgi?id=1223041 * https://bugzilla.suse.com/show_bug.cgi?id=1223045 * https://bugzilla.suse.com/show_bug.cgi?id=1223046 * https://bugzilla.suse.com/show_bug.cgi?id=1223051 * https://bugzilla.suse.com/show_bug.cgi?id=1223052 * https://bugzilla.suse.com/show_bug.cgi?id=1223058 * https://bugzilla.suse.com/show_bug.cgi?id=1223060 * https://bugzilla.suse.com/show_bug.cgi?id=1223061 * https://bugzilla.suse.com/show_bug.cgi?id=1223076 * https://bugzilla.suse.com/show_bug.cgi?id=1223077 * https://bugzilla.suse.com/show_bug.cgi?id=1223111 * https://bugzilla.suse.com/show_bug.cgi?id=1223113 * https://bugzilla.suse.com/show_bug.cgi?id=1223138 * https://bugzilla.suse.com/show_bug.cgi?id=1223143 * https://bugzilla.suse.com/show_bug.cgi?id=1223187 * https://bugzilla.suse.com/show_bug.cgi?id=1223189 * https://bugzilla.suse.com/show_bug.cgi?id=1223190 * https://bugzilla.suse.com/show_bug.cgi?id=1223191 * https://bugzilla.suse.com/show_bug.cgi?id=1223198 * https://bugzilla.suse.com/show_bug.cgi?id=1223202 * https://bugzilla.suse.com/show_bug.cgi?id=1223285 * https://bugzilla.suse.com/show_bug.cgi?id=1223315 * https://bugzilla.suse.com/show_bug.cgi?id=1223338 * https://bugzilla.suse.com/show_bug.cgi?id=1223369 * https://bugzilla.suse.com/show_bug.cgi?id=1223380 * https://bugzilla.suse.com/show_bug.cgi?id=1223384 * https://bugzilla.suse.com/show_bug.cgi?id=1223390 * https://bugzilla.suse.com/show_bug.cgi?id=1223439 * https://bugzilla.suse.com/show_bug.cgi?id=1223462 * https://bugzilla.suse.com/show_bug.cgi?id=1223532 * https://bugzilla.suse.com/show_bug.cgi?id=1223539 * https://bugzilla.suse.com/show_bug.cgi?id=1223575 * https://bugzilla.suse.com/show_bug.cgi?id=1223590 * https://bugzilla.suse.com/show_bug.cgi?id=1223591 * https://bugzilla.suse.com/show_bug.cgi?id=1223592 * https://bugzilla.suse.com/show_bug.cgi?id=1223593 * https://bugzilla.suse.com/show_bug.cgi?id=1223625 * https://bugzilla.suse.com/show_bug.cgi?id=1223629 * https://bugzilla.suse.com/show_bug.cgi?id=1223633 * https://bugzilla.suse.com/show_bug.cgi?id=1223634 * https://bugzilla.suse.com/show_bug.cgi?id=1223637 * https://bugzilla.suse.com/show_bug.cgi?id=1223641 * https://bugzilla.suse.com/show_bug.cgi?id=1223643 * https://bugzilla.suse.com/show_bug.cgi?id=1223649 * https://bugzilla.suse.com/show_bug.cgi?id=1223650 * https://bugzilla.suse.com/show_bug.cgi?id=1223651 * https://bugzilla.suse.com/show_bug.cgi?id=1223652 * https://bugzilla.suse.com/show_bug.cgi?id=1223653 * https://bugzilla.suse.com/show_bug.cgi?id=1223654 * https://bugzilla.suse.com/show_bug.cgi?id=1223655 * https://bugzilla.suse.com/show_bug.cgi?id=1223660 * https://bugzilla.suse.com/show_bug.cgi?id=1223661 * https://bugzilla.suse.com/show_bug.cgi?id=1223664 * https://bugzilla.suse.com/show_bug.cgi?id=1223665 * https://bugzilla.suse.com/show_bug.cgi?id=1223666 * https://bugzilla.suse.com/show_bug.cgi?id=1223668 * https://bugzilla.suse.com/show_bug.cgi?id=1223669 * https://bugzilla.suse.com/show_bug.cgi?id=1223670 * https://bugzilla.suse.com/show_bug.cgi?id=1223671 * https://bugzilla.suse.com/show_bug.cgi?id=1223675 * https://bugzilla.suse.com/show_bug.cgi?id=1223677 * https://bugzilla.suse.com/show_bug.cgi?id=1223678 * https://bugzilla.suse.com/show_bug.cgi?id=1223686 * https://bugzilla.suse.com/show_bug.cgi?id=1223692 * https://bugzilla.suse.com/show_bug.cgi?id=1223693 * https://bugzilla.suse.com/show_bug.cgi?id=1223695 * https://bugzilla.suse.com/show_bug.cgi?id=1223696 * https://bugzilla.suse.com/show_bug.cgi?id=1223698 * https://bugzilla.suse.com/show_bug.cgi?id=1223705 * https://bugzilla.suse.com/show_bug.cgi?id=1223712 * https://bugzilla.suse.com/show_bug.cgi?id=1223718 * https://bugzilla.suse.com/show_bug.cgi?id=1223728 * https://bugzilla.suse.com/show_bug.cgi?id=1223732 * https://bugzilla.suse.com/show_bug.cgi?id=1223735 * https://bugzilla.suse.com/show_bug.cgi?id=1223739 * https://bugzilla.suse.com/show_bug.cgi?id=1223741 * https://bugzilla.suse.com/show_bug.cgi?id=1223744 * https://bugzilla.suse.com/show_bug.cgi?id=1223745 * https://bugzilla.suse.com/show_bug.cgi?id=1223747 * https://bugzilla.suse.com/show_bug.cgi?id=1223748 * https://bugzilla.suse.com/show_bug.cgi?id=1223749 * https://bugzilla.suse.com/show_bug.cgi?id=1223750 * https://bugzilla.suse.com/show_bug.cgi?id=1223752 * https://bugzilla.suse.com/show_bug.cgi?id=1223754 * https://bugzilla.suse.com/show_bug.cgi?id=1223757 * https://bugzilla.suse.com/show_bug.cgi?id=1223759 * https://bugzilla.suse.com/show_bug.cgi?id=1223761 * https://bugzilla.suse.com/show_bug.cgi?id=1223762 * https://bugzilla.suse.com/show_bug.cgi?id=1223774 * https://bugzilla.suse.com/show_bug.cgi?id=1223782 * https://bugzilla.suse.com/show_bug.cgi?id=1223787 * https://bugzilla.suse.com/show_bug.cgi?id=1223788 * https://bugzilla.suse.com/show_bug.cgi?id=1223789 * https://bugzilla.suse.com/show_bug.cgi?id=1223790 * https://bugzilla.suse.com/show_bug.cgi?id=1223802 * https://bugzilla.suse.com/show_bug.cgi?id=1223805 * https://bugzilla.suse.com/show_bug.cgi?id=1223810 * https://bugzilla.suse.com/show_bug.cgi?id=1223822 * https://bugzilla.suse.com/show_bug.cgi?id=1223827 * https://bugzilla.suse.com/show_bug.cgi?id=1223831 * https://bugzilla.suse.com/show_bug.cgi?id=1223834 * https://bugzilla.suse.com/show_bug.cgi?id=1223838 * https://bugzilla.suse.com/show_bug.cgi?id=1223869 * https://bugzilla.suse.com/show_bug.cgi?id=1223870 * https://bugzilla.suse.com/show_bug.cgi?id=1223871 * https://bugzilla.suse.com/show_bug.cgi?id=1223872 * https://bugzilla.suse.com/show_bug.cgi?id=1223874 * https://bugzilla.suse.com/show_bug.cgi?id=1223944 * https://bugzilla.suse.com/show_bug.cgi?id=1223945 * https://bugzilla.suse.com/show_bug.cgi?id=1223946 * https://bugzilla.suse.com/show_bug.cgi?id=1223991 * https://bugzilla.suse.com/show_bug.cgi?id=1224076 * https://bugzilla.suse.com/show_bug.cgi?id=1224096 * https://bugzilla.suse.com/show_bug.cgi?id=1224098 * https://bugzilla.suse.com/show_bug.cgi?id=1224099 * https://bugzilla.suse.com/show_bug.cgi?id=1224137 * https://bugzilla.suse.com/show_bug.cgi?id=1224166 * https://bugzilla.suse.com/show_bug.cgi?id=1224174 * https://bugzilla.suse.com/show_bug.cgi?id=1224177 * https://bugzilla.suse.com/show_bug.cgi?id=1224180 * https://bugzilla.suse.com/show_bug.cgi?id=1224181 * https://bugzilla.suse.com/show_bug.cgi?id=1224331 * https://bugzilla.suse.com/show_bug.cgi?id=1224423 * https://bugzilla.suse.com/show_bug.cgi?id=1224429 * https://bugzilla.suse.com/show_bug.cgi?id=1224430 * https://bugzilla.suse.com/show_bug.cgi?id=1224432 * https://bugzilla.suse.com/show_bug.cgi?id=1224433 * https://bugzilla.suse.com/show_bug.cgi?id=1224437 * https://bugzilla.suse.com/show_bug.cgi?id=1224438 * https://bugzilla.suse.com/show_bug.cgi?id=1224442 * https://bugzilla.suse.com/show_bug.cgi?id=1224443 * https://bugzilla.suse.com/show_bug.cgi?id=1224445 * https://bugzilla.suse.com/show_bug.cgi?id=1224449 * https://bugzilla.suse.com/show_bug.cgi?id=1224477 * https://bugzilla.suse.com/show_bug.cgi?id=1224479 * https://bugzilla.suse.com/show_bug.cgi?id=1224480 * https://bugzilla.suse.com/show_bug.cgi?id=1224481 * https://bugzilla.suse.com/show_bug.cgi?id=1224482 * https://bugzilla.suse.com/show_bug.cgi?id=1224486 * https://bugzilla.suse.com/show_bug.cgi?id=1224487 * https://bugzilla.suse.com/show_bug.cgi?id=1224488 * https://bugzilla.suse.com/show_bug.cgi?id=1224491 * https://bugzilla.suse.com/show_bug.cgi?id=1224492 * https://bugzilla.suse.com/show_bug.cgi?id=1224493 * https://bugzilla.suse.com/show_bug.cgi?id=1224494 * https://bugzilla.suse.com/show_bug.cgi?id=1224495 * https://bugzilla.suse.com/show_bug.cgi?id=1224500 * https://bugzilla.suse.com/show_bug.cgi?id=1224501 * https://bugzilla.suse.com/show_bug.cgi?id=1224502 * https://bugzilla.suse.com/show_bug.cgi?id=1224504 * https://bugzilla.suse.com/show_bug.cgi?id=1224505 * https://bugzilla.suse.com/show_bug.cgi?id=1224506 * https://bugzilla.suse.com/show_bug.cgi?id=1224507 * https://bugzilla.suse.com/show_bug.cgi?id=1224508 * https://bugzilla.suse.com/show_bug.cgi?id=1224509 * https://bugzilla.suse.com/show_bug.cgi?id=1224511 * https://bugzilla.suse.com/show_bug.cgi?id=1224513 * https://bugzilla.suse.com/show_bug.cgi?id=1224517 * https://bugzilla.suse.com/show_bug.cgi?id=1224519 * https://bugzilla.suse.com/show_bug.cgi?id=1224521 * https://bugzilla.suse.com/show_bug.cgi?id=1224524 * https://bugzilla.suse.com/show_bug.cgi?id=1224525 * https://bugzilla.suse.com/show_bug.cgi?id=1224526 * https://bugzilla.suse.com/show_bug.cgi?id=1224530 * https://bugzilla.suse.com/show_bug.cgi?id=1224531 * https://bugzilla.suse.com/show_bug.cgi?id=1224534 * https://bugzilla.suse.com/show_bug.cgi?id=1224537 * https://bugzilla.suse.com/show_bug.cgi?id=1224541 * https://bugzilla.suse.com/show_bug.cgi?id=1224542 * https://bugzilla.suse.com/show_bug.cgi?id=1224543 * https://bugzilla.suse.com/show_bug.cgi?id=1224546 * https://bugzilla.suse.com/show_bug.cgi?id=1224550 * https://bugzilla.suse.com/show_bug.cgi?id=1224552 * https://bugzilla.suse.com/show_bug.cgi?id=1224553 * https://bugzilla.suse.com/show_bug.cgi?id=1224555 * https://bugzilla.suse.com/show_bug.cgi?id=1224557 * https://bugzilla.suse.com/show_bug.cgi?id=1224558 * https://bugzilla.suse.com/show_bug.cgi?id=1224559 * https://bugzilla.suse.com/show_bug.cgi?id=1224562 * https://bugzilla.suse.com/show_bug.cgi?id=1224565 * https://bugzilla.suse.com/show_bug.cgi?id=1224566 * https://bugzilla.suse.com/show_bug.cgi?id=1224567 * https://bugzilla.suse.com/show_bug.cgi?id=1224568 * https://bugzilla.suse.com/show_bug.cgi?id=1224569 * https://bugzilla.suse.com/show_bug.cgi?id=1224571 * https://bugzilla.suse.com/show_bug.cgi?id=1224573 * https://bugzilla.suse.com/show_bug.cgi?id=1224576 * https://bugzilla.suse.com/show_bug.cgi?id=1224577 * https://bugzilla.suse.com/show_bug.cgi?id=1224578 * https://bugzilla.suse.com/show_bug.cgi?id=1224579 * https://bugzilla.suse.com/show_bug.cgi?id=1224580 * https://bugzilla.suse.com/show_bug.cgi?id=1224581 * https://bugzilla.suse.com/show_bug.cgi?id=1224582 * https://bugzilla.suse.com/show_bug.cgi?id=1224585 * https://bugzilla.suse.com/show_bug.cgi?id=1224586 * https://bugzilla.suse.com/show_bug.cgi?id=1224587 * https://bugzilla.suse.com/show_bug.cgi?id=1224588 * https://bugzilla.suse.com/show_bug.cgi?id=1224592 * https://bugzilla.suse.com/show_bug.cgi?id=1224596 * https://bugzilla.suse.com/show_bug.cgi?id=1224598 * https://bugzilla.suse.com/show_bug.cgi?id=1224600 * https://bugzilla.suse.com/show_bug.cgi?id=1224601 * https://bugzilla.suse.com/show_bug.cgi?id=1224602 * https://bugzilla.suse.com/show_bug.cgi?id=1224603 * https://bugzilla.suse.com/show_bug.cgi?id=1224605 * https://bugzilla.suse.com/show_bug.cgi?id=1224607 * https://bugzilla.suse.com/show_bug.cgi?id=1224608 * https://bugzilla.suse.com/show_bug.cgi?id=1224609 * https://bugzilla.suse.com/show_bug.cgi?id=1224611 * https://bugzilla.suse.com/show_bug.cgi?id=1224613 * https://bugzilla.suse.com/show_bug.cgi?id=1224615 * https://bugzilla.suse.com/show_bug.cgi?id=1224617 * https://bugzilla.suse.com/show_bug.cgi?id=1224618 * https://bugzilla.suse.com/show_bug.cgi?id=1224620 * https://bugzilla.suse.com/show_bug.cgi?id=1224621 * https://bugzilla.suse.com/show_bug.cgi?id=1224622 * https://bugzilla.suse.com/show_bug.cgi?id=1224623 * https://bugzilla.suse.com/show_bug.cgi?id=1224624 * https://bugzilla.suse.com/show_bug.cgi?id=1224626 * https://bugzilla.suse.com/show_bug.cgi?id=1224627 * https://bugzilla.suse.com/show_bug.cgi?id=1224628 * https://bugzilla.suse.com/show_bug.cgi?id=1224629 * https://bugzilla.suse.com/show_bug.cgi?id=1224630 * https://bugzilla.suse.com/show_bug.cgi?id=1224632 * https://bugzilla.suse.com/show_bug.cgi?id=1224633 * https://bugzilla.suse.com/show_bug.cgi?id=1224634 * https://bugzilla.suse.com/show_bug.cgi?id=1224636 * https://bugzilla.suse.com/show_bug.cgi?id=1224637 * https://bugzilla.suse.com/show_bug.cgi?id=1224638 * https://bugzilla.suse.com/show_bug.cgi?id=1224639 * https://bugzilla.suse.com/show_bug.cgi?id=1224640 * https://bugzilla.suse.com/show_bug.cgi?id=1224643 * https://bugzilla.suse.com/show_bug.cgi?id=1224644 * https://bugzilla.suse.com/show_bug.cgi?id=1224645 * https://bugzilla.suse.com/show_bug.cgi?id=1224646 * https://bugzilla.suse.com/show_bug.cgi?id=1224647 * https://bugzilla.suse.com/show_bug.cgi?id=1224648 * https://bugzilla.suse.com/show_bug.cgi?id=1224649 * https://bugzilla.suse.com/show_bug.cgi?id=1224650 * https://bugzilla.suse.com/show_bug.cgi?id=1224651 * https://bugzilla.suse.com/show_bug.cgi?id=1224652 * https://bugzilla.suse.com/show_bug.cgi?id=1224653 * https://bugzilla.suse.com/show_bug.cgi?id=1224654 * https://bugzilla.suse.com/show_bug.cgi?id=1224657 * https://bugzilla.suse.com/show_bug.cgi?id=1224660 * https://bugzilla.suse.com/show_bug.cgi?id=1224663 * https://bugzilla.suse.com/show_bug.cgi?id=1224664 * https://bugzilla.suse.com/show_bug.cgi?id=1224665 * https://bugzilla.suse.com/show_bug.cgi?id=1224666 * https://bugzilla.suse.com/show_bug.cgi?id=1224667 * https://bugzilla.suse.com/show_bug.cgi?id=1224668 * https://bugzilla.suse.com/show_bug.cgi?id=1224671 * https://bugzilla.suse.com/show_bug.cgi?id=1224672 * https://bugzilla.suse.com/show_bug.cgi?id=1224674 * https://bugzilla.suse.com/show_bug.cgi?id=1224675 * https://bugzilla.suse.com/show_bug.cgi?id=1224676 * https://bugzilla.suse.com/show_bug.cgi?id=1224677 * https://bugzilla.suse.com/show_bug.cgi?id=1224678 * https://bugzilla.suse.com/show_bug.cgi?id=1224679 * https://bugzilla.suse.com/show_bug.cgi?id=1224680 * https://bugzilla.suse.com/show_bug.cgi?id=1224681 * https://bugzilla.suse.com/show_bug.cgi?id=1224682 * https://bugzilla.suse.com/show_bug.cgi?id=1224683 * https://bugzilla.suse.com/show_bug.cgi?id=1224685 * https://bugzilla.suse.com/show_bug.cgi?id=1224686 * https://bugzilla.suse.com/show_bug.cgi?id=1224687 * https://bugzilla.suse.com/show_bug.cgi?id=1224688 * https://bugzilla.suse.com/show_bug.cgi?id=1224692 * https://bugzilla.suse.com/show_bug.cgi?id=1224696 * https://bugzilla.suse.com/show_bug.cgi?id=1224697 * https://bugzilla.suse.com/show_bug.cgi?id=1224699 * https://bugzilla.suse.com/show_bug.cgi?id=1224701 * https://bugzilla.suse.com/show_bug.cgi?id=1224703 * https://bugzilla.suse.com/show_bug.cgi?id=1224704 * https://bugzilla.suse.com/show_bug.cgi?id=1224705 * https://bugzilla.suse.com/show_bug.cgi?id=1224706 * https://bugzilla.suse.com/show_bug.cgi?id=1224707 * https://bugzilla.suse.com/show_bug.cgi?id=1224709 * https://bugzilla.suse.com/show_bug.cgi?id=1224710 * https://bugzilla.suse.com/show_bug.cgi?id=1224712 * https://bugzilla.suse.com/show_bug.cgi?id=1224714 * https://bugzilla.suse.com/show_bug.cgi?id=1224716 * https://bugzilla.suse.com/show_bug.cgi?id=1224717 * https://bugzilla.suse.com/show_bug.cgi?id=1224718 * https://bugzilla.suse.com/show_bug.cgi?id=1224719 * https://bugzilla.suse.com/show_bug.cgi?id=1224720 * https://bugzilla.suse.com/show_bug.cgi?id=1224721 * https://bugzilla.suse.com/show_bug.cgi?id=1224722 * https://bugzilla.suse.com/show_bug.cgi?id=1224723 * https://bugzilla.suse.com/show_bug.cgi?id=1224725 * https://bugzilla.suse.com/show_bug.cgi?id=1224727 * https://bugzilla.suse.com/show_bug.cgi?id=1224728 * https://bugzilla.suse.com/show_bug.cgi?id=1224729 * https://bugzilla.suse.com/show_bug.cgi?id=1224730 * https://bugzilla.suse.com/show_bug.cgi?id=1224731 * https://bugzilla.suse.com/show_bug.cgi?id=1224732 * https://bugzilla.suse.com/show_bug.cgi?id=1224733 * https://bugzilla.suse.com/show_bug.cgi?id=1224736 * https://bugzilla.suse.com/show_bug.cgi?id=1224738 * https://bugzilla.suse.com/show_bug.cgi?id=1224739 * https://bugzilla.suse.com/show_bug.cgi?id=1224740 * https://bugzilla.suse.com/show_bug.cgi?id=1224741 * https://bugzilla.suse.com/show_bug.cgi?id=1224742 * https://bugzilla.suse.com/show_bug.cgi?id=1224747 * https://bugzilla.suse.com/show_bug.cgi?id=1224749 * https://bugzilla.suse.com/show_bug.cgi?id=1224763 * https://bugzilla.suse.com/show_bug.cgi?id=1224764 * https://bugzilla.suse.com/show_bug.cgi?id=1224765 * https://bugzilla.suse.com/show_bug.cgi?id=1224766 * https://bugzilla.suse.com/show_bug.cgi?id=1224790 * https://bugzilla.suse.com/show_bug.cgi?id=1224792 * https://bugzilla.suse.com/show_bug.cgi?id=1224793 * https://bugzilla.suse.com/show_bug.cgi?id=1224803 * https://bugzilla.suse.com/show_bug.cgi?id=1224804 * https://bugzilla.suse.com/show_bug.cgi?id=1224866 * https://bugzilla.suse.com/show_bug.cgi?id=1224936 * https://bugzilla.suse.com/show_bug.cgi?id=1224989 * https://bugzilla.suse.com/show_bug.cgi?id=1225007 * https://bugzilla.suse.com/show_bug.cgi?id=1225053 * https://bugzilla.suse.com/show_bug.cgi?id=1225133 * https://bugzilla.suse.com/show_bug.cgi?id=1225134 * https://bugzilla.suse.com/show_bug.cgi?id=1225136 * https://bugzilla.suse.com/show_bug.cgi?id=1225172 * https://bugzilla.suse.com/show_bug.cgi?id=1225502 * https://bugzilla.suse.com/show_bug.cgi?id=1225578 * https://bugzilla.suse.com/show_bug.cgi?id=1225579 * https://bugzilla.suse.com/show_bug.cgi?id=1225580 * https://bugzilla.suse.com/show_bug.cgi?id=1225593 * https://bugzilla.suse.com/show_bug.cgi?id=1225605 * https://bugzilla.suse.com/show_bug.cgi?id=1225607 * https://bugzilla.suse.com/show_bug.cgi?id=1225610 * https://bugzilla.suse.com/show_bug.cgi?id=1225616 * https://bugzilla.suse.com/show_bug.cgi?id=1225618 * https://bugzilla.suse.com/show_bug.cgi?id=1225640 * https://bugzilla.suse.com/show_bug.cgi?id=1225642 * https://bugzilla.suse.com/show_bug.cgi?id=1225692 * https://bugzilla.suse.com/show_bug.cgi?id=1225694 * https://bugzilla.suse.com/show_bug.cgi?id=1225695 * https://bugzilla.suse.com/show_bug.cgi?id=1225696 * https://bugzilla.suse.com/show_bug.cgi?id=1225698 * https://bugzilla.suse.com/show_bug.cgi?id=1225699 * https://bugzilla.suse.com/show_bug.cgi?id=1225704 * https://bugzilla.suse.com/show_bug.cgi?id=1225705 * https://bugzilla.suse.com/show_bug.cgi?id=1225708 * https://bugzilla.suse.com/show_bug.cgi?id=1225710 * https://bugzilla.suse.com/show_bug.cgi?id=1225712 * https://bugzilla.suse.com/show_bug.cgi?id=1225714 * https://bugzilla.suse.com/show_bug.cgi?id=1225715 * https://bugzilla.suse.com/show_bug.cgi?id=1225720 * https://bugzilla.suse.com/show_bug.cgi?id=1225722 * https://bugzilla.suse.com/show_bug.cgi?id=1225728 * https://bugzilla.suse.com/show_bug.cgi?id=1225734 * https://bugzilla.suse.com/show_bug.cgi?id=1225735 * https://bugzilla.suse.com/show_bug.cgi?id=1225736 * https://bugzilla.suse.com/show_bug.cgi?id=1225747 * https://bugzilla.suse.com/show_bug.cgi?id=1225748 * https://bugzilla.suse.com/show_bug.cgi?id=1225749 * https://bugzilla.suse.com/show_bug.cgi?id=1225750 * https://bugzilla.suse.com/show_bug.cgi?id=1225756 * https://bugzilla.suse.com/show_bug.cgi?id=1225765 * https://bugzilla.suse.com/show_bug.cgi?id=1225766 * https://bugzilla.suse.com/show_bug.cgi?id=1225769 * https://bugzilla.suse.com/show_bug.cgi?id=1225773 * https://bugzilla.suse.com/show_bug.cgi?id=1225775 * https://bugzilla.suse.com/show_bug.cgi?id=1225842 * https://bugzilla.suse.com/show_bug.cgi?id=1225945 * https://bugzilla.suse.com/show_bug.cgi?id=1226158 * https://jira.suse.com/browse/PED-8111 * https://jira.suse.com/browse/PED-8240 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 19 12:39:06 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 19 Aug 2024 12:39:06 -0000 Subject: SUSE-SU-2024:2186-1: important: Security update for gnome-settings-daemon Message-ID: <172407114654.18977.5362347816507661388@smelt2.prg2.suse.org> # Security update for gnome-settings-daemon Announcement ID: SUSE-SU-2024:2186-1 Rating: important References: * bsc#1226423 Cross-References: * CVE-2024-38394 CVSS scores: * CVE-2024-38394 ( SUSE ): 6.8 CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Affected Products: * Desktop Applications Module 15-SP6 * openSUSE Leap 15.6 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 An update that solves one vulnerability can now be installed. ## Description: This update for gnome-settings-daemon fixes the following issues: * CVE-2024-38394: Fixed mismatches in interpreting USB authorization policy (bsc#1226423). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2024-2186=1 SUSE-2024-2186=1 * Desktop Applications Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Desktop-Applications-15-SP6-2024-2186=1 ## Package List: * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64 i586) * gnome-settings-daemon-debugsource-45.1-150600.3.3.1 * gnome-settings-daemon-debuginfo-45.1-150600.3.3.1 * gnome-settings-daemon-45.1-150600.3.3.1 * gnome-settings-daemon-devel-45.1-150600.3.3.1 * openSUSE Leap 15.6 (noarch) * gnome-settings-daemon-lang-45.1-150600.3.3.1 * Desktop Applications Module 15-SP6 (aarch64 ppc64le s390x x86_64) * gnome-settings-daemon-debugsource-45.1-150600.3.3.1 * gnome-settings-daemon-debuginfo-45.1-150600.3.3.1 * gnome-settings-daemon-45.1-150600.3.3.1 * gnome-settings-daemon-devel-45.1-150600.3.3.1 * Desktop Applications Module 15-SP6 (noarch) * gnome-settings-daemon-lang-45.1-150600.3.3.1 ## References: * https://www.suse.com/security/cve/CVE-2024-38394.html * https://bugzilla.suse.com/show_bug.cgi?id=1226423 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 19 12:39:07 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 19 Aug 2024 12:39:07 -0000 Subject: SUSE-SU-2024:1486-2: moderate: Security update for cosign Message-ID: <172407114743.18977.16576769586781711922@smelt2.prg2.suse.org> # Security update for cosign Announcement ID: SUSE-SU-2024:1486-2 Rating: moderate References: * bsc#1222835 * bsc#1222837 * jsc#SLE-23879 Cross-References: * CVE-2024-29902 * CVE-2024-29903 CVSS scores: * CVE-2024-29902 ( SUSE ): 4.2 CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:U/C:N/I:N/A:H * CVE-2024-29903 ( SUSE ): 4.2 CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:U/C:N/I:N/A:H Affected Products: * Basesystem Module 15-SP6 * openSUSE Leap 15.6 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 An update that solves two vulnerabilities and contains one feature can now be installed. ## Description: This update for cosign fixes the following issues: * CVE-2024-29902: Fixed denial of service on host machine via remote image with a malicious attachments (bsc#1222835) * CVE-2024-29903: Fixed denial of service on host machine via malicious software artifacts (bsc#1222837) Other fixes: \- Updated to 2.2.4 (jsc#SLE-23879) * Fixes for GHSA-88jx-383q-w4qc and GHSA-95pr-fxf5-86gv (#3661) * ErrNoSignaturesFound should be used when there is no signature attached to an image. (#3526) * fix semgrep issues for dgryski.semgrep-go ruleset (#3541) * Honor creation timestamp for signatures again (#3549) * Features * Adds Support for Fulcio Client Credentials Flow, and Argument to Set Flow Explicitly (#3578) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2024-1486=1 * Basesystem Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP6-2024-1486=1 ## Package List: * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64) * cosign-debuginfo-2.2.4-150400.3.20.1 * cosign-2.2.4-150400.3.20.1 * Basesystem Module 15-SP6 (aarch64 ppc64le s390x x86_64) * cosign-debuginfo-2.2.4-150400.3.20.1 * cosign-2.2.4-150400.3.20.1 ## References: * https://www.suse.com/security/cve/CVE-2024-29902.html * https://www.suse.com/security/cve/CVE-2024-29903.html * https://bugzilla.suse.com/show_bug.cgi?id=1222835 * https://bugzilla.suse.com/show_bug.cgi?id=1222837 * https://jira.suse.com/browse/SLE-23879 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 19 12:39:04 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 19 Aug 2024 12:39:04 -0000 Subject: SUSE-SU-2024:2187-1: moderate: Security update for ntfs-3g_ntfsprogs Message-ID: <172407114413.18977.4982098141289141070@smelt2.prg2.suse.org> # Security update for ntfs-3g_ntfsprogs Announcement ID: SUSE-SU-2024:2187-1 Rating: moderate References: * bsc#1226007 Cross-References: * CVE-2023-52890 CVSS scores: * CVE-2023-52890 ( SUSE ): 4.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L Affected Products: * Basesystem Module 15-SP6 * Development Tools Module 15-SP6 * openSUSE Leap 15.5 * openSUSE Leap 15.6 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 * SUSE Linux Enterprise Desktop 15 SP5 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Linux Enterprise Workstation Extension 15 SP5 An update that solves one vulnerability can now be installed. ## Description: This update for ntfs-3g_ntfsprogs fixes the following issue: * CVE-2023-52890: fix a use after free in ntfs_uppercase_mbs (bsc#1226007) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.5 zypper in -t patch openSUSE-SLE-15.5-2024-2187=1 * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2024-2187=1 * Basesystem Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP6-2024-2187=1 * Development Tools Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Development-Tools-15-SP6-2024-2187=1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 zypper in -t patch SUSE-SLE-Product-SLED-15-SP4-LTSS-2024-2187=1 * SUSE Linux Enterprise Workstation Extension 15 SP5 zypper in -t patch SUSE-SLE-Product-WE-15-SP5-2024-2187=1 ## Package List: * openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64) * libntfs-3g87-debuginfo-2022.5.17-150000.3.21.1 * ntfs-3g-2022.5.17-150000.3.21.1 * ntfsprogs-2022.5.17-150000.3.21.1 * ntfsprogs-extra-2022.5.17-150000.3.21.1 * ntfs-3g_ntfsprogs-debuginfo-2022.5.17-150000.3.21.1 * ntfs-3g-debuginfo-2022.5.17-150000.3.21.1 * libntfs-3g-devel-2022.5.17-150000.3.21.1 * libntfs-3g87-2022.5.17-150000.3.21.1 * ntfsprogs-extra-debuginfo-2022.5.17-150000.3.21.1 * ntfs-3g_ntfsprogs-debugsource-2022.5.17-150000.3.21.1 * ntfsprogs-debuginfo-2022.5.17-150000.3.21.1 * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64) * libntfs-3g87-debuginfo-2022.5.17-150000.3.21.1 * ntfs-3g-2022.5.17-150000.3.21.1 * ntfsprogs-2022.5.17-150000.3.21.1 * ntfsprogs-extra-2022.5.17-150000.3.21.1 * ntfs-3g_ntfsprogs-debuginfo-2022.5.17-150000.3.21.1 * ntfs-3g-debuginfo-2022.5.17-150000.3.21.1 * libntfs-3g-devel-2022.5.17-150000.3.21.1 * libntfs-3g87-2022.5.17-150000.3.21.1 * ntfsprogs-extra-debuginfo-2022.5.17-150000.3.21.1 * ntfs-3g_ntfsprogs-debugsource-2022.5.17-150000.3.21.1 * ntfsprogs-debuginfo-2022.5.17-150000.3.21.1 * Basesystem Module 15-SP6 (aarch64 ppc64le s390x x86_64) * libntfs-3g87-debuginfo-2022.5.17-150000.3.21.1 * ntfs-3g-2022.5.17-150000.3.21.1 * ntfsprogs-2022.5.17-150000.3.21.1 * ntfs-3g_ntfsprogs-debuginfo-2022.5.17-150000.3.21.1 * ntfs-3g-debuginfo-2022.5.17-150000.3.21.1 * libntfs-3g87-2022.5.17-150000.3.21.1 * ntfs-3g_ntfsprogs-debugsource-2022.5.17-150000.3.21.1 * ntfsprogs-debuginfo-2022.5.17-150000.3.21.1 * Development Tools Module 15-SP6 (aarch64 ppc64le s390x x86_64) * libntfs-3g-devel-2022.5.17-150000.3.21.1 * ntfs-3g_ntfsprogs-debugsource-2022.5.17-150000.3.21.1 * ntfs-3g_ntfsprogs-debuginfo-2022.5.17-150000.3.21.1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (x86_64) * libntfs-3g87-debuginfo-2022.5.17-150000.3.21.1 * ntfs-3g-2022.5.17-150000.3.21.1 * ntfsprogs-2022.5.17-150000.3.21.1 * ntfs-3g_ntfsprogs-debuginfo-2022.5.17-150000.3.21.1 * ntfs-3g-debuginfo-2022.5.17-150000.3.21.1 * libntfs-3g-devel-2022.5.17-150000.3.21.1 * libntfs-3g87-2022.5.17-150000.3.21.1 * ntfs-3g_ntfsprogs-debugsource-2022.5.17-150000.3.21.1 * ntfsprogs-debuginfo-2022.5.17-150000.3.21.1 * SUSE Linux Enterprise Workstation Extension 15 SP5 (x86_64) * libntfs-3g87-debuginfo-2022.5.17-150000.3.21.1 * ntfs-3g-2022.5.17-150000.3.21.1 * ntfsprogs-2022.5.17-150000.3.21.1 * ntfs-3g_ntfsprogs-debuginfo-2022.5.17-150000.3.21.1 * ntfs-3g-debuginfo-2022.5.17-150000.3.21.1 * libntfs-3g-devel-2022.5.17-150000.3.21.1 * libntfs-3g87-2022.5.17-150000.3.21.1 * ntfs-3g_ntfsprogs-debugsource-2022.5.17-150000.3.21.1 * ntfsprogs-debuginfo-2022.5.17-150000.3.21.1 ## References: * https://www.suse.com/security/cve/CVE-2023-52890.html * https://bugzilla.suse.com/show_bug.cgi?id=1226007 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 19 12:39:12 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 19 Aug 2024 12:39:12 -0000 Subject: SUSE-SU-2024:1079-2: important: Security update for netty, netty-tcnative Message-ID: <172407115251.18977.15187795193672347010@smelt2.prg2.suse.org> # Security update for netty, netty-tcnative Announcement ID: SUSE-SU-2024:1079-2 Rating: important References: * bsc#1222045 Cross-References: * CVE-2024-29025 CVSS scores: * CVE-2024-29025 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * Development Tools Module 15-SP6 * openSUSE Leap 15.6 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Package Hub 15 15-SP6 An update that solves one vulnerability can now be installed. ## Description: This update for netty, netty-tcnative fixes the following issues: * CVE-2024-29025: Fixed out of memory due to large number of form fields (bsc#1222045). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2024-1079=1 * Development Tools Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Development-Tools-15-SP6-2024-1079=1 * SUSE Package Hub 15 15-SP6 zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP6-2024-1079=1 ## Package List: * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64) * netty-4.1.108-150200.4.23.1 * netty-tcnative-2.0.65-150200.3.19.1 * openSUSE Leap 15.6 (noarch) * netty-poms-4.1.108-150200.4.23.1 * netty-javadoc-4.1.108-150200.4.23.1 * netty-tcnative-javadoc-2.0.65-150200.3.19.1 * Development Tools Module 15-SP6 (aarch64 ppc64le s390x x86_64) * netty-tcnative-2.0.65-150200.3.19.1 * SUSE Package Hub 15 15-SP6 (aarch64 ppc64le s390x x86_64) * netty-4.1.108-150200.4.23.1 * SUSE Package Hub 15 15-SP6 (noarch) * netty-poms-4.1.108-150200.4.23.1 * netty-javadoc-4.1.108-150200.4.23.1 ## References: * https://www.suse.com/security/cve/CVE-2024-29025.html * https://bugzilla.suse.com/show_bug.cgi?id=1222045 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 19 12:39:26 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 19 Aug 2024 12:39:26 -0000 Subject: SUSE-SU-2024:1498-2: low: Security update for java-11-openjdk Message-ID: <172407116609.18977.4963882238949284754@smelt2.prg2.suse.org> # Security update for java-11-openjdk Announcement ID: SUSE-SU-2024:1498-2 Rating: low References: * bsc#1213470 * bsc#1222979 * bsc#1222983 * bsc#1222984 * bsc#1222986 * bsc#1222987 Cross-References: * CVE-2024-21011 * CVE-2024-21012 * CVE-2024-21068 * CVE-2024-21085 * CVE-2024-21094 CVSS scores: * CVE-2024-21011 ( SUSE ): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2024-21012 ( SUSE ): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N * CVE-2024-21068 ( SUSE ): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N * CVE-2024-21085 ( SUSE ): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2024-21094 ( SUSE ): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N Affected Products: * Legacy Module 15-SP6 * openSUSE Leap 15.6 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Package Hub 15 15-SP6 An update that solves five vulnerabilities and has one security fix can now be installed. ## Description: This update for java-11-openjdk fixes the following issues: * CVE-2024-21011: Fixed denial of service due to long Exception message logging (JDK-8319851,bsc#1222979) * CVE-2024-21012: Fixed unauthorized data modification due HTTP/2 client improper reverse DNS lookup (JDK-8315708,bsc#1222987) * CVE-2024-21068: Fixed integer overflow in C1 compiler address generation (JDK-8322122,bsc#1222983) * CVE-2024-21085: Fixed denial of service due to Pack200 excessive memory allocation (JDK-8322114,bsc#1222984) * CVE-2024-21094: Fixed unauthorized data modification due to C2 compilation failure with "Exceeded _node_regs array" (JDK-8317507,JDK-8325348,bsc#1222986) Other fixes: \- Upgrade to upstream tag jdk-11.0.23+9 (April 2024 CPU) * Security fixes \+ JDK-8318340: Improve RSA key implementations * Other changes \+ JDK-6928542: Chinese characters in RTF are not decoded \+ JDK-7132796: [macosx] closed/javax/swing/JComboBox/4517214/ /bug4517214.java fails on MacOS \+ JDK-7148092: [macosx] When Alt+down arrow key is pressed, the combobox popup does not appear. \+ JDK-8054022: HttpURLConnection timeouts with Expect: 100-Continue and no chunking \+ JDK-8054572: [macosx] JComboBox paints the border incorrectly \+ JDK-8058176: [mlvm] tests should not allow code cache exhaustion \+ JDK-8067651: LevelTransitionTest.java, fix trivial methods levels logic \+ JDK-8068225: nsk/jdi/EventQueue/remove_l/remove_l005 intermittently times out \+ JDK-8156889: ListKeychainStore.sh fails in some virtualized environments \+ JDK-8166275: vm/mlvm/meth/stress/compiler/deoptimize keeps timeouting \+ JDK-8166554: Avoid compilation blocking in OverloadCompileQueueTest.java \+ JDK-8169475: WheelModifier.java fails by timeout \+ JDK-8180266: Convert sun/security/provider/KeyStore/DKSTest.sh to Java Jtreg Test \+ JDK-8186610: move ModuleUtils to top-level testlibrary \+ JDK-8192864: defmeth tests can hide failures \+ JDK-8193543: Regression automated test '/open/test/jdk/java/ /awt/TrayIcon/SystemTrayInstance/SystemTrayInstanceTest.java' fails \+ JDK-8198668: MemoryPoolMBean/isUsageThresholdExceeded/ /isexceeded001/TestDescription.java still failing \+ JDK-8202282: [TESTBUG] appcds TestCommon .makeCommandLineForAppCDS() can be removed \+ JDK-8202790: DnD test DisposeFrameOnDragTest.java does not clean up \+ JDK-8202931: [macos] java/awt/Choice/ChoicePopupLocation/ /ChoicePopupLocation.java fails \+ JDK-8207211: [TESTBUG] Remove excessive output from CDS/AppCDS tests \+ JDK-8207214: Broken links in JDK API serialized-form page \+ JDK-8207855: Make applications/jcstress invoke tests in batches \+ JDK-8208243: vmTestbase/gc/lock/jni/jnilock002/ /TestDescription.java fails in jdk/hs nightly \+ JDK-8208278: [mlvm] [TESTBUG] vm.mlvm.mixed.stress.java .findDeadlock.INDIFY_Test Deadlocked threads are not always detected \+ JDK-8208623: [TESTBUG] runtime/LoadClass/LongBCP.java fails in AUFS file system \+ JDK-8208699: remove unneeded imports from runtime tests \+ JDK-8208704: runtime/appcds/MultiReleaseJars.java timed out often in hs-tier7 testing \+ JDK-8208705: [TESTBUG] The -Xlog:cds,cds+hashtables vm option is not always required for appcds tests \+ JDK-8209549: remove VMPropsExt from TEST.ROOT \+ JDK-8209595: MonitorVmStartTerminate.java timed out \+ JDK-8209946: [TESTBUG] CDS tests should use "@run driver" \+ JDK-8211438: [Testbug] runtime/XCheckJniJsig/XCheckJSig.java looks for libjsig in wrong location \+ JDK-8211978: Move testlibrary/jdk/testlibrary/ /SimpleSSLContext.java and testkeys to network testlibrary \+ JDK-8213622: Windows VS2013 build failure - "'snprintf': identifier not found" \+ JDK-8213926: WB_EnqueueInitializerForCompilation requests compilation for NULL \+ JDK-8213927: G1 ignores AlwaysPreTouch when UseTransparentHugePages is enabled \+ JDK-8214908: add ctw tests for jdk.jfr and jdk.management.jfr modules \+ JDK-8214915: CtwRunner misses export for jdk.internal.access \+ JDK-8216408: XMLStreamWriter setDefaultNamespace(null) throws NullPointerException \+ JDK-8217475: Unexpected StackOverflowError in "process reaper" thread \+ JDK-8218754: JDK-8068225 regression in JDIBreakpointTest \+ JDK-8219475: javap man page needs to be updated \+ JDK-8219585: [TESTBUG] sun/management/jmxremote/bootstrap/ /JMXInterfaceBindingTest.java passes trivially when it shouldn't \+ JDK-8219612: [TESTBUG] compiler.codecache.stress.Helper .TestCaseImpl can't be defined in different runtime package as its nest host \+ JDK-8225471: Test utility jdk.test.lib.util.FileUtils .areAllMountPointsAccessible needs to tolerate duplicates \+ JDK-8226706: (se) Reduce the number of outer loop iterations on Windows in java/nio/channels/Selector/RacyDeregister.java \+ JDK-8226905: unproblem list applications/ctw/modules/ _tests on windows \+ JDK-8226910: make it possible to use jtreg 's -match via run-test framework \+ JDK-8227438: [TESTLIB] Determine if file exists by Files.exists in function FileUtils.deleteFileIfExistsWithRetry \+ JDK-8231585: java/lang/management/ThreadMXBean/ /MaxDepthForThreadInfoTest.java fails with java.lang.NullPointerException \+ JDK-8232839: JDI AfterThreadDeathTest.java failed due to "FAILED: Did not get expected IllegalThreadStateException on a StepRequest.enable()" \+ JDK-8233453: MLVM deoptimize stress test timed out \+ JDK-8234309: LFGarbageCollectedTest.java fails with parse Exception \+ JDK-8237222: [macos] java/awt/Focus/UnaccessibleChoice/ /AccessibleChoiceTest.java fails \+ JDK-8237777: "Dumping core ..." is shown despite claiming that "# No core dump will be written." \+ JDK-8237834: com/sun/jndi/ldap/LdapDnsProviderTest.java failing with LDAP response read timeout \+ JDK-8238274: (sctp) JDK-7118373 is not fixed for SctpChannel \+ JDK-8239801: [macos] java/awt/Focus/UnaccessibleChoice/ /AccessibleChoiceTest.java fails \+ JDK-8244679: JVM/TI GetCurrentContendedMonitor/contmon001 failed due to "(IsSameObject#3) unexpected monitor object: 0x000000562336DBA8" \+ JDK-8246222: Rename javac test T6395981.java to be more informative \+ JDK-8247818: GCC 10 warning stringop- overflow with symbol code \+ JDK-8249087: Always initialize _body[0..1] in Symbol constructor \+ JDK-8251349: Add TestCaseImpl to OverloadCompileQueueTest.java's build dependencies \+ JDK-8251904: vmTestbase/nsk/sysdict/vm/stress/btree/btree010/ /btree010.java fails with ClassNotFoundException: nsk.sysdict.share.BTree0LLRLRLRRLR \+ JDK-8253543: sanity/client/SwingSet/src/ /ButtonDemoScreenshotTest.java failed with "AssertionError: All pixels are not black" \+ JDK-8253739: java/awt/image/MultiResolutionImage/ /MultiResolutionImageObserverTest.java fails \+ JDK-8253820: Save test images and dumps with timestamps from client sanity suite \+ JDK-8255277: randomDelay in DrainDeadlockT and LoggingDeadlock do not randomly delay \+ JDK-8255546: Missing coverage for javax.smartcardio.CardPermission and ResponseAPDU \+ JDK-8255743: Relax SIGFPE match in in runtime/ErrorHandling/SecondaryErrorTest.java \+ JDK-8257505: nsk/share/test/StressOptions stressTime is scaled in getter but not when printed \+ JDK-8259801: Enable XML Signature secure validation mode by default \+ JDK-8264135: UnsafeGetStableArrayElement should account for different JIT implementation details \+ JDK-8265349: vmTestbase/../stress/compiler/deoptimize/ /Test.java fails with OOME due to CodeCache exhaustion. \+ JDK-8269025: jsig/Testjsig.java doesn't check exit code \+ JDK-8269077: TestSystemGC uses "require vm.gc.G1" for large pages subtest \+ JDK-8271094: runtime/duplAttributes/DuplAttributesTest.java doesn't check exit code \+ JDK-8271224: runtime/EnclosingMethodAttr/EnclMethodAttr.java doesn't check exit code \+ JDK-8271828: mark hotspot runtime/classFileParserBug tests which ignore external VM flags \+ JDK-8271829: mark hotspot runtime/Throwable tests which ignore external VM flags \+ JDK-8271890: mark hotspot runtime/Dictionary tests which ignore external VM flags \+ JDK-8272291: mark hotspot runtime/logging tests which ignore external VM flags \+ JDK-8272335: runtime/cds/appcds/MoveJDKTest.java doesn't check exit codes \+ JDK-8272551: mark hotspot runtime/modules tests which ignore external VM flags \+ JDK-8272552: mark hotspot runtime/cds tests which ignore external VM flags \+ JDK-8273803: Zero: Handle "zero" variant in CommandLineOptionTest.java \+ JDK-8274122: java/io/File/createTempFile/SpecialTempFile.java fails in Windows 11 \+ JDK-8274621: NullPointerException because listenAddress[0] is null \+ JDK-8276796: gc/TestSystemGC.java large pages subtest fails with ZGC \+ JDK-8280007: Enable Neoverse N1 optimizations for Arm Neoverse V1 & N2 \+ JDK-8281149: (fs) java/nio/file/FileStore/Basic.java fails with java.lang.RuntimeException: values differ by more than 1GB \+ JDK-8281377: Remove vmTestbase/nsk/monitoring/ThreadMXBean/ /ThreadInfo/Deadlock/JavaDeadlock001/TestDescription.java from problemlist. \+ JDK-8281717: Cover logout method for several LoginModule \+ JDK-8282665: [REDO] ByteBufferTest.java: replace endless recursion with RuntimeException in void ck(double x, double y) \+ JDK-8284090: com/sun/security/auth/module/AllPlatforms.java fails to compile \+ JDK-8285756: clean up use of bad arguments for `@clean` in langtools tests \+ JDK-8285785: CheckCleanerBound test fails with PasswordCallback object is not released \+ JDK-8285867: Convert applet manual tests SelectionVisible.java to Frame and automate \+ JDK-8286846: test/jdk/javax/swing/plaf/aqua/ /CustomComboBoxFocusTest.java fails on mac aarch64 \+ JDK-8286969: Add a new test library API to execute kinit in SecurityTools.java \+ JDK-8287113: JFR: Periodic task thread uses period for method sampling events \+ JDK-8289511: Improve test coverage for XPath Axes: child \+ JDK-8289764: gc/lock tests failed with "OutOfMemoryError: Java heap space: failed reallocation of scalar replaced objects" \+ JDK-8289948: Improve test coverage for XPath functions: Node Set Functions \+ JDK-8290399: [macos] Aqua LAF does not fire an action event if combo box menu is displayed \+ JDK-8290909: MemoryPoolMBean/isUsageThresholdExceeded tests failed with "isUsageThresholdExceeded() returned false, and is still false, while threshold = MMMMMMM and used peak = NNNNNNN" \+ JDK-8292182: [TESTLIB] Enhance JAXPPolicyManager to setup required permissions for jtreg version 7 jar \+ JDK-8292946: GC lock/jni/jnilock001 test failed "assert(gch->gc_cause() == GCCause::_scavenge_alot || !gch->incremental_collection_failed()) failed: Twice in a row" \+ JDK-8293819: sun/util/logging/PlatformLoggerTest.java failed with "RuntimeException: Retrieved backing PlatformLogger level null is not the expected CONFIG" \+ JDK-8294158: HTML formatting for PassFailJFrame instructions \+ JDK-8294254: [macOS] javax/swing/plaf/aqua/ /CustomComboBoxFocusTest.java failure \+ JDK-8294402: Add diagnostic logging to VMProps.checkDockerSupport \+ JDK-8294535: Add screen capture functionality to PassFailJFrame \+ JDK-8296083: javax/swing/JTree/6263446/bug6263446.java fails intermittently on a VM \+ JDK-8296384: [TESTBUG] sun/security/provider/SecureRandom/ /AbstractDrbg/SpecTest.java intermittently timeout \+ JDK-8299494: Test vmTestbase/nsk/stress/except/except011.java failed: ExceptionInInitializerError: target class not found \+ JDK-8300269: The selected item in an editable JComboBox with titled border is not visible in Aqua LAF \+ JDK-8300727: java/awt/List/ListGarbageCollectionTest/ /AwtListGarbageCollectionTest.java failed with "List wasn't garbage collected" \+ JDK-8301310: The SendRawSysexMessage test may cause a JVM crash \+ JDK-8301377: adjust timeout for JLI GetObjectSizeIntrinsicsTest.java subtest again \+ JDK-8301846: Invalid TargetDataLine after screen lock when using JFileChooser or COM library \+ JDK-8302017: Allocate BadPaddingException only if it will be thrown \+ JDK-8302109: Trivial fixes to btree tests \+ JDK-8302149: Speed up compiler/jsr292/methodHandleExceptions/TestAMEnotNPE.java \+ JDK-8302607: increase timeout for ContinuousCallSiteTargetChange.java \+ JDK-8304074: [JMX] Add an approximation of total bytes allocated on the Java heap by the JVM \+ JDK-8304314: StackWalkTest.java fails after CODETOOLS-7903373 \+ JDK-8304725: AsyncGetCallTrace can cause SIGBUS on M1 \+ JDK-8305502: adjust timeouts in three more M&M tests \+ JDK-8305505: NPE in javazic compiler \+ JDK-8305972: Update XML Security for Java to 3.0.2 \+ JDK-8306072: Open source several AWT MouseInfo related tests \+ JDK-8306076: Open source AWT misc tests \+ JDK-8306409: Open source AWT KeyBoardFocusManger, LightWeightComponent related tests \+ JDK-8306640: Open source several AWT TextArea related tests \+ JDK-8306652: Open source AWT MenuItem related tests \+ JDK-8306681: Open source more AWT DnD related tests \+ JDK-8306683: Open source several clipboard and color AWT tests \+ JDK-8306752: Open source several container and component AWT tests \+ JDK-8306753: Open source several container AWT tests \+ JDK-8306755: Open source few Swing JComponent and AbstractButton tests \+ JDK-8306812: Open source several AWT Miscellaneous tests \+ JDK-8306871: Open source more AWT Drag & Drop tests \+ JDK-8306996: Open source Swing MenuItem related tests \+ JDK-8307123: Fix deprecation warnings in DPrinter \+ JDK-8307130: Open source few Swing JMenu tests \+ JDK-8307299: Move more DnD tests to open \+ JDK-8307311: Timeouts on one macOS 12.6.1 host of two Swing JTableHeader tests \+ JDK-8307381: Open Source JFrame, JIF related Swing Tests \+ JDK-8307683: Loop Predication should not hoist range checks with trap on success projection by negating their condition \+ JDK-8308043: Deadlock in TestCSLocker.java due to blocking GC while allocating \+ JDK-8308116: jdk.test.lib.compiler.InMemoryJavaCompiler .compile does not close files \+ JDK-8308223: failure handler missed jcmd.vm.info command \+ JDK-8308232: nsk/jdb tests don't pass -verbose flag to the debuggee \+ JDK-8308245: Add -proc:full to describe current default annotation processing policy \+ JDK-8308336: Test java/net/HttpURLConnection/ /HttpURLConnectionExpectContinueTest.java failed: java.net.BindException: Address already in use \+ JDK-8309104: [JVMCI] compiler/unsafe/ /UnsafeGetStableArrayElement test asserts wrong values with Graal \+ JDK-8309119: [17u/11u] Redo JDK-8297951: C2: Create skeleton predicates for all If nodes in loop predication \+ JDK-8309462: [AIX] vmTestbase/nsk/jvmti/RunAgentThread/ /agentthr001/TestDescription.java crashing due to empty while loop \+ JDK-8309778: java/nio/file/Files/CopyAndMove.java fails when using second test directory \+ JDK-8309870: Using -proc:full should be considered requesting explicit annotation processing \+ JDK-8310106: sun.security.ssl.SSLHandshake .getHandshakeProducer() incorrectly checks handshakeConsumers \+ JDK-8310238: [test bug] javax/swing/JTableHeader/6889007/ /bug6889007.java fails \+ JDK-8310551: vmTestbase/nsk/jdb/interrupt/interrupt001/ /interrupt001.java timed out due to missing prompt \+ JDK-8310807: java/nio/channels/DatagramChannel/Connect.java timed out \+ JDK-8311081: KeytoolReaderP12Test.java fail on localized Windows platform \+ JDK-8311511: Improve description of NativeLibrary JFR event \+ JDK-8311585: Add JRadioButtonMenuItem to bug8031573.java \+ JDK-8313081: MonitoringSupport_lock should be unconditionally initialized after 8304074 \+ JDK-8313082: Enable CreateCoredumpOnCrash for testing in makefiles \+ JDK-8313164: src/java.desktop/windows/native/libawt/windows/ /awt_Robot.cpp GetRGBPixels adjust releasing of resources \+ JDK-8313252: Java_sun_awt_windows_ThemeReader_paintBackground release resources in early returns \+ JDK-8313643: Update HarfBuzz to 8.2.2 \+ JDK-8313816: Accessing jmethodID might lead to spurious crashes \+ JDK-8314144: gc/g1/ihop/TestIHOPStatic.java fails due to extra concurrent mark with -Xcomp \+ JDK-8314164: java/net/HttpURLConnection/ /HttpURLConnectionExpectContinueTest.java fails intermittently in timeout \+ JDK-8314883: Java_java_util_prefs_FileSystemPreferences_lockFile0 write result errno in missing case \+ JDK-8315034: File.mkdirs() occasionally fails to create folders on Windows shared folder \+ JDK-8315042: NPE in PKCS7.parseOldSignedData \+ JDK-8315415: OutputAnalyzer.shouldMatchByLine() fails in some cases \+ JDK-8315499: build using devkit on Linux ppc64le RHEL puts path to devkit into libsplashscreen \+ JDK-8315594: Open source few headless Swing misc tests \+ JDK-8315600: Open source few more headless Swing misc tests \+ JDK-8315602: Open source swing security manager test \+ JDK-8315606: Open source few swing text/html tests \+ JDK-8315611: Open source swing text/html and tree test \+ JDK-8315680: java/lang/ref/ReachabilityFenceTest.java should run with -Xbatch \+ JDK-8315731: Open source several Swing Text related tests \+ JDK-8315761: Open source few swing JList and JMenuBar tests \+ JDK-8315986: [macos14] javax/swing/JMenuItem/4654927/ /bug4654927.java: component must be showing on the screen to determine its location \+ JDK-8316001: GC: Make TestArrayAllocatorMallocLimit use createTestJvm \+ JDK-8316028: Update FreeType to 2.13.2 \+ JDK-8316030: Update Libpng to 1.6.40 \+ JDK-8316106: Open source few swing JInternalFrame and JMenuBar tests \+ JDK-8316461: Fix: make test outputs TEST SUCCESS after unsuccessful exit \+ JDK-8316947: Write a test to check textArea triggers MouseEntered/MouseExited events properly \+ JDK-8317307: test/jdk/com/sun/jndi/ldap/ /LdapPoolTimeoutTest.java fails with ConnectException: Connection timed out: no further information \+ JDK-8317327: Remove JT_JAVA dead code in jib-profiles.js \+ JDK-8318154: Improve stability of WheelModifier.java test \+ JDK-8318410: jdk/java/lang/instrument/BootClassPath/ /BootClassPathTest.sh fails on Japanese Windows \+ JDK-8318468: compiler/tiered/LevelTransitionTest.java fails with -XX:CompileThreshold=100 -XX:TieredStopAtLevel=1 \+ JDK-8318603: Parallelize sun/java2d/marlin/ClipShapeTest.java \+ JDK-8318607: Enable parallelism in vmTestbase/nsk/stress/jni tests \+ JDK-8318608: Enable parallelism in vmTestbase/nsk/stress/threads tests \+ JDK-8318736: com/sun/jdi/JdwpOnThrowTest.java failed with "transport error 202: bind failed: Address already in use" \+ JDK-8318889: C2: add bailout after assert Bad graph detected in build_loop_late \+ JDK-8318951: Additional negative value check in JPEG decoding \+ JDK-8318955: Add ReleaseIntArrayElements in Java_sun_awt_X11_XlibWrapper_SetBitmapShape XlbWrapper.c to early return \+ JDK-8318971: Better Error Handling for Jar Tool When Processing Non-existent Files \+ JDK-8318983: Fix comment typo in PKCS12Passwd.java \+ JDK-8319124: Update XML Security for Java to 3.0.3 \+ JDK-8319456: jdk/jfr/event/gc/collection/ /TestGCCauseWith[Serial|Parallel].java : GC cause 'GCLocker Initiated GC' not in the valid causes \+ JDK-8319668: Fixup of jar filename typo in BadFactoryTest.sh \+ JDK-8320001: javac crashes while adding type annotations to the return type of a constructor \+ JDK-8320208: Update Public Suffix List to b5bf572 \+ JDK-8320363: ppc64 TypeEntries::type_unknown logic looks wrong, missed optimization opportunity \+ JDK-8320597: RSA signature verification fails on signed data that does not encode params correctly \+ JDK-8320798: Console read line with zero out should zero out underlying buffer \+ JDK-8320884: Bump update version for OpenJDK: jdk-11.0.23 \+ JDK-8320937: support latest VS2022 MSC_VER in abstract_vm_version.cpp \+ JDK-8321151: JDK-8294427 breaks Windows L&F on all older Windows versions \+ JDK-8321215: Incorrect x86 instruction encoding for VSIB addressing mode \+ JDK-8321408: Add Certainly roots R1 and E1 \+ JDK-8321480: ISO 4217 Amendment 176 Update \+ JDK-8322178: Error. can't find jdk.testlibrary .SimpleSSLContext in test directory or libraries \+ JDK-8322417: Console read line with zero out should zero out when throwing exception \+ JDK-8322725: (tz) Update Timezone Data to 2023d \+ JDK-8322750: Test "api/java_awt/interactive/ /SystemTrayTests.html" failed because A blue ball icon is added outside of the system tray \+ JDK-8322752: [11u] GetStackTraceAndRetransformTest.java is failing assert \+ JDK-8322772: Clean up code after JDK-8322417 \+ JDK-8323008: filter out harmful -std_ flags added by autoconf from CXX \+ JDK-8323243: JNI invocation of an abstract instance method corrupts the stack \+ JDK-8323515: Create test alias "all" for all test roots \+ JDK-8323640: [TESTBUG]testMemoryFailCount in jdk/internal/ /platform/docker/TestDockerMemoryMetrics.java always fail because OOM killed \+ JDK-8324184: Windows VS2010 build failed with "error C2275: 'int64_t'" \+ JDK-8324307: [11u] hotspot fails to build with GCC 12 and newer (non-static data member initializers) \+ JDK-8324347: Enable "maybe- uninitialized" warning for FreeType 2.13.1 \+ JDK-8324659: GHA: Generic jtreg errors are not reported \+ JDK-8325096: Test java/security/cert/CertPathBuilder/akiExt/ /AKISerialNumber.java is failing \+ JDK-8325150: (tz) Update Timezone Data to 2024a \+ JDK-8326109: GCC 13 reports maybe-uninitialized warnings for jni.cpp with dtrace enabled \+ JDK-8326503: [11u] java/net/HttpURLConnection/ /HttpURLConnectionExpectContinueTest.java fail because of package org.junit.jupiter.api does not exist \+ JDK-8327391: Add SipHash attribution file \+ JDK-8329837: [11u] Remove designator DEFAULT_PROMOTED_VERSION_PRE=ea for release 11.0.23 * Removed the possibility to use the system timezone-java (bsc#1213470) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2024-1498=1 * Legacy Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Legacy-15-SP6-2024-1498=1 * SUSE Package Hub 15 15-SP6 zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP6-2024-1498=1 ## Package List: * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64) * java-11-openjdk-headless-11.0.23.0-150000.3.113.1 * java-11-openjdk-devel-11.0.23.0-150000.3.113.1 * java-11-openjdk-devel-debuginfo-11.0.23.0-150000.3.113.1 * java-11-openjdk-debuginfo-11.0.23.0-150000.3.113.1 * java-11-openjdk-headless-debuginfo-11.0.23.0-150000.3.113.1 * java-11-openjdk-demo-11.0.23.0-150000.3.113.1 * java-11-openjdk-debugsource-11.0.23.0-150000.3.113.1 * java-11-openjdk-src-11.0.23.0-150000.3.113.1 * java-11-openjdk-11.0.23.0-150000.3.113.1 * java-11-openjdk-jmods-11.0.23.0-150000.3.113.1 * openSUSE Leap 15.6 (noarch) * java-11-openjdk-javadoc-11.0.23.0-150000.3.113.1 * Legacy Module 15-SP6 (aarch64 ppc64le s390x x86_64) * java-11-openjdk-headless-11.0.23.0-150000.3.113.1 * java-11-openjdk-devel-11.0.23.0-150000.3.113.1 * java-11-openjdk-devel-debuginfo-11.0.23.0-150000.3.113.1 * java-11-openjdk-debuginfo-11.0.23.0-150000.3.113.1 * java-11-openjdk-headless-debuginfo-11.0.23.0-150000.3.113.1 * java-11-openjdk-demo-11.0.23.0-150000.3.113.1 * java-11-openjdk-debugsource-11.0.23.0-150000.3.113.1 * java-11-openjdk-11.0.23.0-150000.3.113.1 * SUSE Package Hub 15 15-SP6 (noarch) * java-11-openjdk-javadoc-11.0.23.0-150000.3.113.1 ## References: * https://www.suse.com/security/cve/CVE-2024-21011.html * https://www.suse.com/security/cve/CVE-2024-21012.html * https://www.suse.com/security/cve/CVE-2024-21068.html * https://www.suse.com/security/cve/CVE-2024-21085.html * https://www.suse.com/security/cve/CVE-2024-21094.html * https://bugzilla.suse.com/show_bug.cgi?id=1213470 * https://bugzilla.suse.com/show_bug.cgi?id=1222979 * https://bugzilla.suse.com/show_bug.cgi?id=1222983 * https://bugzilla.suse.com/show_bug.cgi?id=1222984 * https://bugzilla.suse.com/show_bug.cgi?id=1222986 * https://bugzilla.suse.com/show_bug.cgi?id=1222987 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 19 12:39:19 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 19 Aug 2024 12:39:19 -0000 Subject: SUSE-SU-2024:2052-1: important: Security update for libaom Message-ID: <172407115956.18977.13602465692417324230@smelt2.prg2.suse.org> # Security update for libaom Announcement ID: SUSE-SU-2024:2052-1 Rating: important References: * bsc#1226020 Cross-References: * CVE-2024-5171 CVSS scores: * CVE-2024-5171 ( SUSE ): 8.4 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2024-5171 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Affected Products: * Basesystem Module 15-SP5 * openSUSE Leap 15.4 * openSUSE Leap 15.5 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 * SUSE Linux Enterprise Desktop 15 SP5 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Manager Proxy 4.3 * SUSE Manager Retail Branch Server 4.3 * SUSE Manager Server 4.3 An update that solves one vulnerability can now be installed. ## Description: This update for libaom fixes the following issues: * CVE-2024-5171: Fixed heap buffer overflow in img_alloc_helper() caused by integer overflow (bsc#1226020). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2024-2052=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2024-2052=1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 zypper in -t patch SUSE-SLE-Product-SLED-15-SP4-LTSS-2024-2052=1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2024-2052=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2024-2052=1 * SUSE Manager Proxy 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Proxy-4.3-2024-2052=1 * SUSE Manager Retail Branch Server 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Retail-Branch- Server-4.3-2024-2052=1 * SUSE Manager Server 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Server-4.3-2024-2052=1 * openSUSE Leap 15.4 zypper in -t patch SUSE-2024-2052=1 * openSUSE Leap 15.5 zypper in -t patch openSUSE-SLE-15.5-2024-2052=1 * Basesystem Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP5-2024-2052=1 ## Package List: * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 x86_64) * libaom-debugsource-3.2.0-150400.3.6.1 * libaom3-3.2.0-150400.3.6.1 * libaom3-debuginfo-3.2.0-150400.3.6.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 x86_64) * libaom-debugsource-3.2.0-150400.3.6.1 * libaom3-3.2.0-150400.3.6.1 * libaom3-debuginfo-3.2.0-150400.3.6.1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (x86_64) * libaom-debugsource-3.2.0-150400.3.6.1 * libaom3-3.2.0-150400.3.6.1 * libaom3-debuginfo-3.2.0-150400.3.6.1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (aarch64 ppc64le s390x x86_64) * libaom-debugsource-3.2.0-150400.3.6.1 * libaom3-3.2.0-150400.3.6.1 * libaom3-debuginfo-3.2.0-150400.3.6.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64) * libaom-debugsource-3.2.0-150400.3.6.1 * libaom3-3.2.0-150400.3.6.1 * libaom3-debuginfo-3.2.0-150400.3.6.1 * SUSE Manager Proxy 4.3 (x86_64) * libaom-debugsource-3.2.0-150400.3.6.1 * libaom3-3.2.0-150400.3.6.1 * libaom3-debuginfo-3.2.0-150400.3.6.1 * SUSE Manager Retail Branch Server 4.3 (x86_64) * libaom-debugsource-3.2.0-150400.3.6.1 * libaom3-3.2.0-150400.3.6.1 * libaom3-debuginfo-3.2.0-150400.3.6.1 * SUSE Manager Server 4.3 (ppc64le s390x x86_64) * libaom-debugsource-3.2.0-150400.3.6.1 * libaom3-3.2.0-150400.3.6.1 * libaom3-debuginfo-3.2.0-150400.3.6.1 * openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586) * aom-tools-debuginfo-3.2.0-150400.3.6.1 * aom-tools-3.2.0-150400.3.6.1 * libaom-debugsource-3.2.0-150400.3.6.1 * libaom3-debuginfo-3.2.0-150400.3.6.1 * libaom3-3.2.0-150400.3.6.1 * libaom-devel-3.2.0-150400.3.6.1 * openSUSE Leap 15.4 (noarch) * libaom-devel-doc-3.2.0-150400.3.6.1 * openSUSE Leap 15.4 (x86_64) * libaom3-32bit-debuginfo-3.2.0-150400.3.6.1 * libaom3-32bit-3.2.0-150400.3.6.1 * openSUSE Leap 15.4 (aarch64_ilp32) * libaom3-64bit-3.2.0-150400.3.6.1 * libaom3-64bit-debuginfo-3.2.0-150400.3.6.1 * openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64) * aom-tools-debuginfo-3.2.0-150400.3.6.1 * aom-tools-3.2.0-150400.3.6.1 * libaom-debugsource-3.2.0-150400.3.6.1 * libaom3-debuginfo-3.2.0-150400.3.6.1 * libaom3-3.2.0-150400.3.6.1 * libaom-devel-3.2.0-150400.3.6.1 * openSUSE Leap 15.5 (noarch) * libaom-devel-doc-3.2.0-150400.3.6.1 * openSUSE Leap 15.5 (x86_64) * libaom3-32bit-debuginfo-3.2.0-150400.3.6.1 * libaom3-32bit-3.2.0-150400.3.6.1 * Basesystem Module 15-SP5 (aarch64 ppc64le s390x x86_64) * libaom-debugsource-3.2.0-150400.3.6.1 * libaom3-3.2.0-150400.3.6.1 * libaom3-debuginfo-3.2.0-150400.3.6.1 ## References: * https://www.suse.com/security/cve/CVE-2024-5171.html * https://bugzilla.suse.com/show_bug.cgi?id=1226020 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 19 12:39:55 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 19 Aug 2024 12:39:55 -0000 Subject: SUSE-SU-2024:1865-1: moderate: Security update for wireshark Message-ID: <172407119581.18977.769884368475211759@smelt2.prg2.suse.org> # Security update for wireshark Announcement ID: SUSE-SU-2024:1865-1 Rating: moderate References: * bsc#1224259 * bsc#1224274 * bsc#1224276 Cross-References: * CVE-2024-4853 * CVE-2024-4854 * CVE-2024-4855 CVSS scores: * CVE-2024-4853 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2024-4854 ( SUSE ): 5.7 CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2024-4855 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L Affected Products: * Basesystem Module 15-SP5 * Basesystem Module 15-SP6 * Desktop Applications Module 15-SP5 * openSUSE Leap 15.5 * SUSE Linux Enterprise Desktop 15 SP5 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 An update that solves three vulnerabilities can now be installed. ## Description: This update for wireshark fixes the following issues: Update to version 3.6.22: * CVE-2024-4854: MONGO and ZigBee TLV dissector infinite loops (bsc#1224274) * CVE-2024-4853: The editcap command line utility could crash when chopping bytes from the beginning of a packet (bsc#1224259) * CVE-2024-4855: The editcap command line utility could crash when injecting secrets while writing multiple files (bsc#1224276) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * Desktop Applications Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Desktop-Applications-15-SP5-2024-1865=1 * openSUSE Leap 15.5 zypper in -t patch openSUSE-SLE-15.5-2024-1865=1 * Basesystem Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP5-2024-1865=1 * Basesystem Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP6-2024-1865=1 ## Package List: * Desktop Applications Module 15-SP5 (aarch64 ppc64le s390x x86_64) * wireshark-debuginfo-3.6.23-150000.3.115.1 * wireshark-ui-qt-3.6.23-150000.3.115.1 * wireshark-debugsource-3.6.23-150000.3.115.1 * wireshark-ui-qt-debuginfo-3.6.23-150000.3.115.1 * wireshark-devel-3.6.23-150000.3.115.1 * openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64) * libwsutil13-debuginfo-3.6.23-150000.3.115.1 * wireshark-debuginfo-3.6.23-150000.3.115.1 * libwiretap12-3.6.23-150000.3.115.1 * wireshark-3.6.23-150000.3.115.1 * libwireshark15-3.6.23-150000.3.115.1 * libwiretap12-debuginfo-3.6.23-150000.3.115.1 * wireshark-ui-qt-3.6.23-150000.3.115.1 * wireshark-debugsource-3.6.23-150000.3.115.1 * wireshark-ui-qt-debuginfo-3.6.23-150000.3.115.1 * libwsutil13-3.6.23-150000.3.115.1 * libwireshark15-debuginfo-3.6.23-150000.3.115.1 * wireshark-devel-3.6.23-150000.3.115.1 * Basesystem Module 15-SP5 (aarch64 ppc64le s390x x86_64) * libwsutil13-debuginfo-3.6.23-150000.3.115.1 * wireshark-debuginfo-3.6.23-150000.3.115.1 * libwiretap12-3.6.23-150000.3.115.1 * wireshark-3.6.23-150000.3.115.1 * libwireshark15-3.6.23-150000.3.115.1 * libwiretap12-debuginfo-3.6.23-150000.3.115.1 * wireshark-debugsource-3.6.23-150000.3.115.1 * libwsutil13-3.6.23-150000.3.115.1 * libwireshark15-debuginfo-3.6.23-150000.3.115.1 * Basesystem Module 15-SP6 (aarch64 ppc64le s390x x86_64) * wireshark-debugsource-3.6.23-150000.3.115.1 * wireshark-debuginfo-3.6.23-150000.3.115.1 ## References: * https://www.suse.com/security/cve/CVE-2024-4853.html * https://www.suse.com/security/cve/CVE-2024-4854.html * https://www.suse.com/security/cve/CVE-2024-4855.html * https://bugzilla.suse.com/show_bug.cgi?id=1224259 * https://bugzilla.suse.com/show_bug.cgi?id=1224274 * https://bugzilla.suse.com/show_bug.cgi?id=1224276 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 19 12:39:44 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 19 Aug 2024 12:39:44 -0000 Subject: SUSE-SU-2024:1871-1: important: Security update for jdom Message-ID: <172407118431.18977.9324944147363178367@smelt2.prg2.suse.org> # Security update for jdom Announcement ID: SUSE-SU-2024:1871-1 Rating: important References: * bsc#1187446 * bsc#1225503 Cross-References: * CVE-2021-33813 CVSS scores: * CVE-2021-33813 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2021-33813 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 * SUSE Linux Enterprise Software Development Kit 12 SP5 An update that solves one vulnerability and has one security fix can now be installed. ## Description: This update for jdom fixes the following issues: * CVE-2021-33813: Fixed possible denial-of-service XXE issue in SAXBuilder via a crafted HTTP request (bsc#1187446). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Software Development Kit 12 SP5 zypper in -t patch SUSE-SLE-SDK-12-SP5-2024-1871=1 ## Package List: * SUSE Linux Enterprise Software Development Kit 12 SP5 (noarch) * xom-1.2b1-26.5.1 * jaxen-1.1.6-26.5.1 * jdom-1.1.3-26.5.1 ## References: * https://www.suse.com/security/cve/CVE-2021-33813.html * https://bugzilla.suse.com/show_bug.cgi?id=1187446 * https://bugzilla.suse.com/show_bug.cgi?id=1225503 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 19 12:39:52 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 19 Aug 2024 12:39:52 -0000 Subject: SUSE-SU-2024:1866-1: moderate: Security update for python-aiohttp Message-ID: <172407119226.18977.10745405305272729230@smelt2.prg2.suse.org> # Security update for python-aiohttp Announcement ID: SUSE-SU-2024:1866-1 Rating: moderate References: * bsc#1223098 Cross-References: * CVE-2024-27306 CVSS scores: * CVE-2024-27306 ( SUSE ): 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Affected Products: * openSUSE Leap 15.4 * openSUSE Leap 15.5 * openSUSE Leap 15.6 * Public Cloud Module 15-SP4 * Python 3 Module 15-SP5 * Python 3 Module 15-SP6 * SUSE Linux Enterprise Desktop 15 SP5 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Manager Proxy 4.3 * SUSE Manager Retail Branch Server 4.3 * SUSE Manager Server 4.3 An update that solves one vulnerability can now be installed. ## Description: This update for python-aiohttp fixes the following issues: * CVE-2024-27306: Fixed XSS on index pages for static file handling (bsc#1223098) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch SUSE-2024-1866=1 * openSUSE Leap 15.5 zypper in -t patch openSUSE-SLE-15.5-2024-1866=1 * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2024-1866=1 * Public Cloud Module 15-SP4 zypper in -t patch SUSE-SLE-Module-Public-Cloud-15-SP4-2024-1866=1 * Python 3 Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Python3-15-SP5-2024-1866=1 * Python 3 Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Python3-15-SP6-2024-1866=1 ## Package List: * openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586) * python311-aiohttp-debuginfo-3.9.3-150400.10.21.1 * python-aiohttp-debugsource-3.9.3-150400.10.21.1 * python311-aiohttp-3.9.3-150400.10.21.1 * openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64) * python311-aiohttp-debuginfo-3.9.3-150400.10.21.1 * python-aiohttp-debugsource-3.9.3-150400.10.21.1 * python311-aiohttp-3.9.3-150400.10.21.1 * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64) * python311-aiohttp-debuginfo-3.9.3-150400.10.21.1 * python-aiohttp-debugsource-3.9.3-150400.10.21.1 * python311-aiohttp-3.9.3-150400.10.21.1 * Public Cloud Module 15-SP4 (aarch64 ppc64le s390x x86_64) * python311-aiohttp-3.9.3-150400.10.21.1 * Python 3 Module 15-SP5 (aarch64 ppc64le s390x x86_64) * python311-aiohttp-debuginfo-3.9.3-150400.10.21.1 * python-aiohttp-debugsource-3.9.3-150400.10.21.1 * python311-aiohttp-3.9.3-150400.10.21.1 * Python 3 Module 15-SP6 (aarch64 ppc64le s390x x86_64) * python311-aiohttp-debuginfo-3.9.3-150400.10.21.1 * python-aiohttp-debugsource-3.9.3-150400.10.21.1 * python311-aiohttp-3.9.3-150400.10.21.1 ## References: * https://www.suse.com/security/cve/CVE-2024-27306.html * https://bugzilla.suse.com/show_bug.cgi?id=1223098 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 19 12:40:14 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 19 Aug 2024 12:40:14 -0000 Subject: SUSE-SU-2024:1860-1: important: Security update for uriparser Message-ID: <172407121475.18977.4051632251206734323@smelt2.prg2.suse.org> # Security update for uriparser Announcement ID: SUSE-SU-2024:1860-1 Rating: important References: * bsc#1223887 * bsc#1223888 Cross-References: * CVE-2024-34402 * CVE-2024-34403 CVSS scores: * CVE-2024-34402 ( SUSE ): 8.6 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H * CVE-2024-34403 ( SUSE ): 8.6 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H Affected Products: * openSUSE Leap 15.5 * openSUSE Leap 15.6 * SUSE Linux Enterprise Desktop 15 SP5 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Package Hub 15 15-SP5 * SUSE Package Hub 15 15-SP6 An update that solves two vulnerabilities can now be installed. ## Description: This update for uriparser fixes the following issues: * CVE-2024-34402: Fixed integer overflow protection in ComposeQueryEngine (bsc#1223887). * CVE-2024-34403: Fixed integer overflow protection in ComposeQueryMallocExMm (bsc#1223888). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Package Hub 15 15-SP5 zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP5-2024-1860=1 * SUSE Package Hub 15 15-SP6 zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP6-2024-1860=1 * openSUSE Leap 15.5 zypper in -t patch openSUSE-SLE-15.5-2024-1860=1 * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2024-1860=1 ## Package List: * SUSE Package Hub 15 15-SP5 (aarch64 ppc64le s390x x86_64) * uriparser-debugsource-0.8.5-150000.3.8.1 * uriparser-0.8.5-150000.3.8.1 * liburiparser1-0.8.5-150000.3.8.1 * liburiparser1-debuginfo-0.8.5-150000.3.8.1 * uriparser-devel-0.8.5-150000.3.8.1 * uriparser-debuginfo-0.8.5-150000.3.8.1 * SUSE Package Hub 15 15-SP6 (aarch64 ppc64le s390x x86_64) * uriparser-debugsource-0.8.5-150000.3.8.1 * uriparser-0.8.5-150000.3.8.1 * liburiparser1-0.8.5-150000.3.8.1 * liburiparser1-debuginfo-0.8.5-150000.3.8.1 * uriparser-devel-0.8.5-150000.3.8.1 * uriparser-debuginfo-0.8.5-150000.3.8.1 * openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64) * uriparser-debugsource-0.8.5-150000.3.8.1 * uriparser-0.8.5-150000.3.8.1 * liburiparser1-0.8.5-150000.3.8.1 * liburiparser1-debuginfo-0.8.5-150000.3.8.1 * uriparser-devel-0.8.5-150000.3.8.1 * uriparser-debuginfo-0.8.5-150000.3.8.1 * openSUSE Leap 15.5 (x86_64) * liburiparser1-32bit-debuginfo-0.8.5-150000.3.8.1 * liburiparser1-32bit-0.8.5-150000.3.8.1 * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64) * uriparser-debugsource-0.8.5-150000.3.8.1 * uriparser-0.8.5-150000.3.8.1 * liburiparser1-0.8.5-150000.3.8.1 * liburiparser1-debuginfo-0.8.5-150000.3.8.1 * uriparser-devel-0.8.5-150000.3.8.1 * uriparser-debuginfo-0.8.5-150000.3.8.1 * openSUSE Leap 15.6 (x86_64) * liburiparser1-32bit-debuginfo-0.8.5-150000.3.8.1 * liburiparser1-32bit-0.8.5-150000.3.8.1 ## References: * https://www.suse.com/security/cve/CVE-2024-34402.html * https://www.suse.com/security/cve/CVE-2024-34403.html * https://bugzilla.suse.com/show_bug.cgi?id=1223887 * https://bugzilla.suse.com/show_bug.cgi?id=1223888 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 19 12:40:11 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 19 Aug 2024 12:40:11 -0000 Subject: SUSE-SU-2024:1861-1: important: Security update for python3-sqlparse Message-ID: <172407121154.18977.6651720666135352073@smelt2.prg2.suse.org> # Security update for python3-sqlparse Announcement ID: SUSE-SU-2024:1861-1 Rating: important References: * bsc#1223603 Cross-References: * CVE-2024-4340 CVSS scores: * CVE-2024-4340 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * Basesystem Module 15-SP5 * Basesystem Module 15-SP6 * openSUSE Leap 15.3 * openSUSE Leap 15.5 * SUSE Enterprise Storage 7.1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 * SUSE Linux Enterprise Desktop 15 SP5 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise High Performance Computing 15 SP3 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Server 15 SP3 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Manager Proxy 4.3 * SUSE Manager Retail Branch Server 4.3 * SUSE Manager Server 4.3 An update that solves one vulnerability can now be installed. ## Description: This update for python3-sqlparse fixes the following issues: * CVE-2024-4340: Fixed RecursionError catch to avoid a denial-of-service issue (bsc#1223603). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.3 zypper in -t patch SUSE-2024-1861=1 * openSUSE Leap 15.5 zypper in -t patch openSUSE-SLE-15.5-2024-1861=1 * Basesystem Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP5-2024-1861=1 * Basesystem Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP6-2024-1861=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 zypper in -t patch SUSE-SLE-Product-HPC-15-SP3-LTSS-2024-1861=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2024-1861=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2024-1861=1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 zypper in -t patch SUSE-SLE-Product-SLED-15-SP4-LTSS-2024-1861=1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 zypper in -t patch SUSE-SLE-Product-SLES-15-SP3-LTSS-2024-1861=1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2024-1861=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP3-2024-1861=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2024-1861=1 * SUSE Manager Proxy 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Proxy-4.3-2024-1861=1 * SUSE Manager Retail Branch Server 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Retail-Branch- Server-4.3-2024-1861=1 * SUSE Manager Server 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Server-4.3-2024-1861=1 * SUSE Enterprise Storage 7.1 zypper in -t patch SUSE-Storage-7.1-2024-1861=1 ## Package List: * openSUSE Leap 15.3 (noarch) * python3-sqlparse-0.4.2-150300.12.1 * openSUSE Leap 15.5 (noarch) * python3-sqlparse-0.4.2-150300.12.1 * Basesystem Module 15-SP5 (noarch) * python3-sqlparse-0.4.2-150300.12.1 * Basesystem Module 15-SP6 (noarch) * python3-sqlparse-0.4.2-150300.12.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (noarch) * python3-sqlparse-0.4.2-150300.12.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (noarch) * python3-sqlparse-0.4.2-150300.12.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (noarch) * python3-sqlparse-0.4.2-150300.12.1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (noarch) * python3-sqlparse-0.4.2-150300.12.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (noarch) * python3-sqlparse-0.4.2-150300.12.1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (noarch) * python3-sqlparse-0.4.2-150300.12.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (noarch) * python3-sqlparse-0.4.2-150300.12.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (noarch) * python3-sqlparse-0.4.2-150300.12.1 * SUSE Manager Proxy 4.3 (noarch) * python3-sqlparse-0.4.2-150300.12.1 * SUSE Manager Retail Branch Server 4.3 (noarch) * python3-sqlparse-0.4.2-150300.12.1 * SUSE Manager Server 4.3 (noarch) * python3-sqlparse-0.4.2-150300.12.1 * SUSE Enterprise Storage 7.1 (noarch) * python3-sqlparse-0.4.2-150300.12.1 ## References: * https://www.suse.com/security/cve/CVE-2024-4340.html * https://bugzilla.suse.com/show_bug.cgi?id=1223603 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 19 12:39:48 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 19 Aug 2024 12:39:48 -0000 Subject: SUSE-SU-2024:1867-1: moderate: Security update for fwupdate Message-ID: <172407118834.18977.621544939156797144@smelt2.prg2.suse.org> # Security update for fwupdate Announcement ID: SUSE-SU-2024:1867-1 Rating: moderate References: * bsc#1209188 * bsc#1221301 Affected Products: * Basesystem Module 15-SP5 * Basesystem Module 15-SP6 * openSUSE Leap 15.5 * openSUSE Leap 15.6 * SUSE Enterprise Storage 7 * SUSE Enterprise Storage 7.1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 * SUSE Linux Enterprise Desktop 15 SP5 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise High Performance Computing 15 SP2 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 * SUSE Linux Enterprise High Performance Computing 15 SP3 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Server 15 SP2 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 * SUSE Linux Enterprise Server 15 SP3 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Manager Proxy 4.3 * SUSE Manager Retail Branch Server 4.3 * SUSE Manager Server 4.3 An update that has two security fixes can now be installed. ## Description: This update of fwupdate fixes the following issues: * rebuild the package with the new secure boot key (bsc#1209188). * Update the email address of security team in SBAT (bsc#1221301) * elf_aarch64_efi.lds: set the memory permission explicitly to avoid ld warning like "LOAD segment with RWX permissions" ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.5 zypper in -t patch openSUSE-SLE-15.5-2024-1867=1 * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2024-1867=1 * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2024-1867=1 * Basesystem Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP5-2024-1867=1 * Basesystem Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP6-2024-1867=1 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 zypper in -t patch SUSE-SLE-Product-HPC-15-SP2-LTSS-2024-1867=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 zypper in -t patch SUSE-SLE-Product-HPC-15-SP3-LTSS-2024-1867=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2024-1867=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2024-1867=1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 zypper in -t patch SUSE-SLE-Product-SLED-15-SP4-LTSS-2024-1867=1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 zypper in -t patch SUSE-SLE-Product-SLES-15-SP2-LTSS-2024-1867=1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 zypper in -t patch SUSE-SLE-Product-SLES-15-SP3-LTSS-2024-1867=1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2024-1867=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP2-2024-1867=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP3-2024-1867=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2024-1867=1 * SUSE Manager Proxy 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Proxy-4.3-2024-1867=1 * SUSE Manager Retail Branch Server 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Retail-Branch- Server-4.3-2024-1867=1 * SUSE Manager Server 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Server-4.3-2024-1867=1 * SUSE Enterprise Storage 7.1 zypper in -t patch SUSE-Storage-7.1-2024-1867=1 * SUSE Enterprise Storage 7 zypper in -t patch SUSE-Storage-7-2024-1867=1 ## Package List: * openSUSE Leap 15.5 (aarch64 x86_64) * fwupdate-12-150100.11.15.2 * libfwup1-debuginfo-12-150100.11.15.2 * fwupdate-efi-12-150100.11.15.2 * fwupdate-debuginfo-12-150100.11.15.2 * fwupdate-debugsource-12-150100.11.15.2 * fwupdate-efi-debuginfo-12-150100.11.15.2 * libfwup1-12-150100.11.15.2 * fwupdate-devel-12-150100.11.15.2 * openSUSE Leap 15.6 (aarch64 x86_64) * fwupdate-12-150100.11.15.2 * libfwup1-debuginfo-12-150100.11.15.2 * fwupdate-efi-12-150100.11.15.2 * fwupdate-debuginfo-12-150100.11.15.2 * fwupdate-debugsource-12-150100.11.15.2 * fwupdate-efi-debuginfo-12-150100.11.15.2 * libfwup1-12-150100.11.15.2 * fwupdate-devel-12-150100.11.15.2 * SUSE Linux Enterprise Micro 5.5 (x86_64) * fwupdate-12-150100.11.15.2 * libfwup1-debuginfo-12-150100.11.15.2 * fwupdate-efi-12-150100.11.15.2 * fwupdate-debuginfo-12-150100.11.15.2 * fwupdate-debugsource-12-150100.11.15.2 * fwupdate-efi-debuginfo-12-150100.11.15.2 * libfwup1-12-150100.11.15.2 * Basesystem Module 15-SP5 (aarch64 x86_64) * fwupdate-12-150100.11.15.2 * libfwup1-debuginfo-12-150100.11.15.2 * fwupdate-efi-12-150100.11.15.2 * fwupdate-debuginfo-12-150100.11.15.2 * fwupdate-debugsource-12-150100.11.15.2 * fwupdate-efi-debuginfo-12-150100.11.15.2 * libfwup1-12-150100.11.15.2 * fwupdate-devel-12-150100.11.15.2 * Basesystem Module 15-SP6 (aarch64 x86_64) * fwupdate-12-150100.11.15.2 * libfwup1-debuginfo-12-150100.11.15.2 * fwupdate-efi-12-150100.11.15.2 * fwupdate-debuginfo-12-150100.11.15.2 * fwupdate-debugsource-12-150100.11.15.2 * fwupdate-efi-debuginfo-12-150100.11.15.2 * libfwup1-12-150100.11.15.2 * fwupdate-devel-12-150100.11.15.2 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 (aarch64 x86_64) * fwupdate-12-150100.11.15.2 * libfwup1-debuginfo-12-150100.11.15.2 * fwupdate-efi-12-150100.11.15.2 * fwupdate-debuginfo-12-150100.11.15.2 * fwupdate-debugsource-12-150100.11.15.2 * fwupdate-efi-debuginfo-12-150100.11.15.2 * libfwup1-12-150100.11.15.2 * fwupdate-devel-12-150100.11.15.2 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (aarch64 x86_64) * fwupdate-12-150100.11.15.2 * libfwup1-debuginfo-12-150100.11.15.2 * fwupdate-efi-12-150100.11.15.2 * fwupdate-debuginfo-12-150100.11.15.2 * fwupdate-debugsource-12-150100.11.15.2 * fwupdate-efi-debuginfo-12-150100.11.15.2 * libfwup1-12-150100.11.15.2 * fwupdate-devel-12-150100.11.15.2 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 x86_64) * fwupdate-12-150100.11.15.2 * libfwup1-debuginfo-12-150100.11.15.2 * fwupdate-efi-12-150100.11.15.2 * fwupdate-debuginfo-12-150100.11.15.2 * fwupdate-debugsource-12-150100.11.15.2 * fwupdate-efi-debuginfo-12-150100.11.15.2 * libfwup1-12-150100.11.15.2 * fwupdate-devel-12-150100.11.15.2 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 x86_64) * fwupdate-12-150100.11.15.2 * libfwup1-debuginfo-12-150100.11.15.2 * fwupdate-efi-12-150100.11.15.2 * fwupdate-debuginfo-12-150100.11.15.2 * fwupdate-debugsource-12-150100.11.15.2 * fwupdate-efi-debuginfo-12-150100.11.15.2 * libfwup1-12-150100.11.15.2 * fwupdate-devel-12-150100.11.15.2 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (x86_64) * fwupdate-12-150100.11.15.2 * libfwup1-debuginfo-12-150100.11.15.2 * fwupdate-efi-12-150100.11.15.2 * fwupdate-debuginfo-12-150100.11.15.2 * fwupdate-debugsource-12-150100.11.15.2 * fwupdate-efi-debuginfo-12-150100.11.15.2 * libfwup1-12-150100.11.15.2 * fwupdate-devel-12-150100.11.15.2 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (aarch64 x86_64) * fwupdate-12-150100.11.15.2 * libfwup1-debuginfo-12-150100.11.15.2 * fwupdate-efi-12-150100.11.15.2 * fwupdate-debuginfo-12-150100.11.15.2 * fwupdate-debugsource-12-150100.11.15.2 * fwupdate-efi-debuginfo-12-150100.11.15.2 * libfwup1-12-150100.11.15.2 * fwupdate-devel-12-150100.11.15.2 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (aarch64 x86_64) * fwupdate-12-150100.11.15.2 * libfwup1-debuginfo-12-150100.11.15.2 * fwupdate-efi-12-150100.11.15.2 * fwupdate-debuginfo-12-150100.11.15.2 * fwupdate-debugsource-12-150100.11.15.2 * fwupdate-efi-debuginfo-12-150100.11.15.2 * libfwup1-12-150100.11.15.2 * fwupdate-devel-12-150100.11.15.2 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (aarch64 x86_64) * fwupdate-12-150100.11.15.2 * libfwup1-debuginfo-12-150100.11.15.2 * fwupdate-efi-12-150100.11.15.2 * fwupdate-debuginfo-12-150100.11.15.2 * fwupdate-debugsource-12-150100.11.15.2 * fwupdate-efi-debuginfo-12-150100.11.15.2 * libfwup1-12-150100.11.15.2 * fwupdate-devel-12-150100.11.15.2 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 (x86_64) * fwupdate-12-150100.11.15.2 * libfwup1-debuginfo-12-150100.11.15.2 * fwupdate-efi-12-150100.11.15.2 * fwupdate-debuginfo-12-150100.11.15.2 * fwupdate-debugsource-12-150100.11.15.2 * fwupdate-efi-debuginfo-12-150100.11.15.2 * libfwup1-12-150100.11.15.2 * fwupdate-devel-12-150100.11.15.2 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (x86_64) * fwupdate-12-150100.11.15.2 * libfwup1-debuginfo-12-150100.11.15.2 * fwupdate-efi-12-150100.11.15.2 * fwupdate-debuginfo-12-150100.11.15.2 * fwupdate-debugsource-12-150100.11.15.2 * fwupdate-efi-debuginfo-12-150100.11.15.2 * libfwup1-12-150100.11.15.2 * fwupdate-devel-12-150100.11.15.2 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (x86_64) * fwupdate-12-150100.11.15.2 * libfwup1-debuginfo-12-150100.11.15.2 * fwupdate-efi-12-150100.11.15.2 * fwupdate-debuginfo-12-150100.11.15.2 * fwupdate-debugsource-12-150100.11.15.2 * fwupdate-efi-debuginfo-12-150100.11.15.2 * libfwup1-12-150100.11.15.2 * fwupdate-devel-12-150100.11.15.2 * SUSE Manager Proxy 4.3 (x86_64) * fwupdate-12-150100.11.15.2 * libfwup1-debuginfo-12-150100.11.15.2 * fwupdate-efi-12-150100.11.15.2 * fwupdate-debuginfo-12-150100.11.15.2 * fwupdate-debugsource-12-150100.11.15.2 * fwupdate-efi-debuginfo-12-150100.11.15.2 * libfwup1-12-150100.11.15.2 * fwupdate-devel-12-150100.11.15.2 * SUSE Manager Retail Branch Server 4.3 (x86_64) * fwupdate-12-150100.11.15.2 * libfwup1-debuginfo-12-150100.11.15.2 * fwupdate-efi-12-150100.11.15.2 * fwupdate-debuginfo-12-150100.11.15.2 * fwupdate-debugsource-12-150100.11.15.2 * fwupdate-efi-debuginfo-12-150100.11.15.2 * libfwup1-12-150100.11.15.2 * fwupdate-devel-12-150100.11.15.2 * SUSE Manager Server 4.3 (x86_64) * fwupdate-12-150100.11.15.2 * libfwup1-debuginfo-12-150100.11.15.2 * fwupdate-efi-12-150100.11.15.2 * fwupdate-debuginfo-12-150100.11.15.2 * fwupdate-debugsource-12-150100.11.15.2 * fwupdate-efi-debuginfo-12-150100.11.15.2 * libfwup1-12-150100.11.15.2 * fwupdate-devel-12-150100.11.15.2 * SUSE Enterprise Storage 7.1 (aarch64 x86_64) * fwupdate-12-150100.11.15.2 * libfwup1-debuginfo-12-150100.11.15.2 * fwupdate-efi-12-150100.11.15.2 * fwupdate-debuginfo-12-150100.11.15.2 * fwupdate-debugsource-12-150100.11.15.2 * fwupdate-efi-debuginfo-12-150100.11.15.2 * libfwup1-12-150100.11.15.2 * fwupdate-devel-12-150100.11.15.2 * SUSE Enterprise Storage 7 (aarch64 x86_64) * fwupdate-12-150100.11.15.2 * libfwup1-debuginfo-12-150100.11.15.2 * fwupdate-efi-12-150100.11.15.2 * fwupdate-debuginfo-12-150100.11.15.2 * fwupdate-debugsource-12-150100.11.15.2 * fwupdate-efi-debuginfo-12-150100.11.15.2 * libfwup1-12-150100.11.15.2 * fwupdate-devel-12-150100.11.15.2 ## References: * https://bugzilla.suse.com/show_bug.cgi?id=1209188 * https://bugzilla.suse.com/show_bug.cgi?id=1221301 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 19 12:39:39 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 19 Aug 2024 12:39:39 -0000 Subject: SUSE-SU-2024:1872-1: moderate: Security update for python-tqdm Message-ID: <172407117998.18977.17121519729855395780@smelt2.prg2.suse.org> # Security update for python-tqdm Announcement ID: SUSE-SU-2024:1872-1 Rating: moderate References: * bsc#1223880 Cross-References: * CVE-2024-34062 CVSS scores: * CVE-2024-34062 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:L Affected Products: * openSUSE Leap 15.4 * openSUSE Leap 15.5 * openSUSE Leap 15.6 * Public Cloud Module 15-SP4 * Python 3 Module 15-SP5 * Python 3 Module 15-SP6 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 * SUSE Linux Enterprise Desktop 15 SP5 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Manager Proxy 4.3 * SUSE Manager Retail Branch Server 4.3 * SUSE Manager Server 4.3 An update that solves one vulnerability can now be installed. ## Description: This update for python-tqdm fixes the following issues: Update to version 4.66.4: * rich: fix completion * cli: eval safety (CVE-2024-34062, bsc#1223880) * pandas: add DataFrame.progress_map * notebook: fix HTML padding * keras: fix resuming training when verbose>=2 * fix format_num negative fractions missing leading zero * fix Python 3.12 DeprecationWarning on import ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch SUSE-2024-1872=1 * openSUSE Leap 15.5 zypper in -t patch openSUSE-SLE-15.5-2024-1872=1 * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2024-1872=1 * Public Cloud Module 15-SP4 zypper in -t patch SUSE-SLE-Module-Public-Cloud-15-SP4-2024-1872=1 * Python 3 Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Python3-15-SP5-2024-1872=1 * Python 3 Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Python3-15-SP6-2024-1872=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2024-1872=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2024-1872=1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 zypper in -t patch SUSE-SLE-Product-SLED-15-SP4-LTSS-2024-1872=1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2024-1872=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2024-1872=1 ## Package List: * openSUSE Leap 15.4 (noarch) * python-tqdm-bash-completion-4.66.4-150400.9.12.1 * python311-tqdm-4.66.4-150400.9.12.1 * openSUSE Leap 15.5 (noarch) * python-tqdm-bash-completion-4.66.4-150400.9.12.1 * python311-tqdm-4.66.4-150400.9.12.1 * openSUSE Leap 15.6 (noarch) * python-tqdm-bash-completion-4.66.4-150400.9.12.1 * python311-tqdm-4.66.4-150400.9.12.1 * Public Cloud Module 15-SP4 (noarch) * python311-tqdm-4.66.4-150400.9.12.1 * Python 3 Module 15-SP5 (noarch) * python-tqdm-bash-completion-4.66.4-150400.9.12.1 * python311-tqdm-4.66.4-150400.9.12.1 * Python 3 Module 15-SP6 (noarch) * python-tqdm-bash-completion-4.66.4-150400.9.12.1 * python311-tqdm-4.66.4-150400.9.12.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (noarch) * python-tqdm-bash-completion-4.66.4-150400.9.12.1 * python311-tqdm-4.66.4-150400.9.12.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (noarch) * python-tqdm-bash-completion-4.66.4-150400.9.12.1 * python311-tqdm-4.66.4-150400.9.12.1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (noarch) * python-tqdm-bash-completion-4.66.4-150400.9.12.1 * python311-tqdm-4.66.4-150400.9.12.1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (noarch) * python-tqdm-bash-completion-4.66.4-150400.9.12.1 * python311-tqdm-4.66.4-150400.9.12.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (noarch) * python-tqdm-bash-completion-4.66.4-150400.9.12.1 * python311-tqdm-4.66.4-150400.9.12.1 ## References: * https://www.suse.com/security/cve/CVE-2024-34062.html * https://bugzilla.suse.com/show_bug.cgi?id=1223880 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 19 12:40:09 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 19 Aug 2024 12:40:09 -0000 Subject: SUSE-SU-2024:1862-1: moderate: Security update for python Message-ID: <172407120903.18977.3399823922798601141@smelt2.prg2.suse.org> # Security update for python Announcement ID: SUSE-SU-2024:1862-1 Rating: moderate References: * bsc#1214675 * bsc#1219306 * bsc#1219559 * bsc#1220970 * bsc#1221854 * bsc#1222537 Cross-References: * CVE-2022-48560 * CVE-2023-27043 * CVE-2023-52425 * CVE-2024-0450 CVSS scores: * CVE-2022-48560 ( SUSE ): 6.2 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48560 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2023-27043 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N * CVE-2023-27043 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N * CVE-2023-52425 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52425 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-0450 ( SUSE ): 6.2 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * openSUSE Leap 15.5 * openSUSE Leap 15.6 * SUSE Linux Enterprise Desktop 15 SP5 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Package Hub 15 15-SP5 * SUSE Package Hub 15 15-SP6 An update that solves four vulnerabilities and has two security fixes can now be installed. ## Description: This update for python fixes the following issues: * CVE-2023-52425: Fixed using the system libexpat (bsc#1219559). * CVE-2023-27043: Modifed fix for unicode string handling in email.utils.parseaddr() (bsc#1222537). * CVE-2022-48560: Fixed use-after-free in Python via heappushpop in heapq (bsc#1214675). * CVE-2024-0450: Detect the vulnerability of the "quoted-overlap" zipbomb (bsc#1221854). Bug fixes: * Switch off tests. ONLY FOR FACTORY!!! (bsc#1219306). * Build with -std=gnu89 to build correctly with gcc14 (bsc#1220970). * Switch from %patchN style to the %patch -P N one. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.5 zypper in -t patch openSUSE-SLE-15.5-2024-1862=1 * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2024-1862=1 * SUSE Package Hub 15 15-SP5 zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP5-2024-1862=1 * SUSE Package Hub 15 15-SP6 zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP6-2024-1862=1 ## Package List: * openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64) * python-debugsource-2.7.18-150000.65.1 * python-devel-2.7.18-150000.65.1 * python-base-debugsource-2.7.18-150000.65.1 * python-debuginfo-2.7.18-150000.65.1 * libpython2_7-1_0-2.7.18-150000.65.1 * python-idle-2.7.18-150000.65.1 * python-demo-2.7.18-150000.65.1 * python-tk-debuginfo-2.7.18-150000.65.1 * python-gdbm-debuginfo-2.7.18-150000.65.1 * python-2.7.18-150000.65.1 * python-base-2.7.18-150000.65.1 * python-curses-2.7.18-150000.65.1 * libpython2_7-1_0-debuginfo-2.7.18-150000.65.1 * python-base-debuginfo-2.7.18-150000.65.1 * python-curses-debuginfo-2.7.18-150000.65.1 * python-xml-2.7.18-150000.65.1 * python-tk-2.7.18-150000.65.1 * python-gdbm-2.7.18-150000.65.1 * python-xml-debuginfo-2.7.18-150000.65.1 * openSUSE Leap 15.5 (x86_64) * python-32bit-2.7.18-150000.65.1 * python-32bit-debuginfo-2.7.18-150000.65.1 * python-base-32bit-debuginfo-2.7.18-150000.65.1 * python-base-32bit-2.7.18-150000.65.1 * libpython2_7-1_0-32bit-debuginfo-2.7.18-150000.65.1 * libpython2_7-1_0-32bit-2.7.18-150000.65.1 * openSUSE Leap 15.5 (noarch) * python-doc-2.7.18-150000.65.1 * python-doc-pdf-2.7.18-150000.65.1 * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64) * python-debugsource-2.7.18-150000.65.1 * python-devel-2.7.18-150000.65.1 * python-base-debugsource-2.7.18-150000.65.1 * python-debuginfo-2.7.18-150000.65.1 * libpython2_7-1_0-2.7.18-150000.65.1 * python-idle-2.7.18-150000.65.1 * python-demo-2.7.18-150000.65.1 * python-tk-debuginfo-2.7.18-150000.65.1 * python-gdbm-debuginfo-2.7.18-150000.65.1 * python-2.7.18-150000.65.1 * python-base-2.7.18-150000.65.1 * python-curses-2.7.18-150000.65.1 * libpython2_7-1_0-debuginfo-2.7.18-150000.65.1 * python-base-debuginfo-2.7.18-150000.65.1 * python-curses-debuginfo-2.7.18-150000.65.1 * python-xml-2.7.18-150000.65.1 * python-tk-2.7.18-150000.65.1 * python-gdbm-2.7.18-150000.65.1 * python-xml-debuginfo-2.7.18-150000.65.1 * openSUSE Leap 15.6 (x86_64) * python-32bit-2.7.18-150000.65.1 * python-32bit-debuginfo-2.7.18-150000.65.1 * python-base-32bit-debuginfo-2.7.18-150000.65.1 * python-base-32bit-2.7.18-150000.65.1 * libpython2_7-1_0-32bit-debuginfo-2.7.18-150000.65.1 * libpython2_7-1_0-32bit-2.7.18-150000.65.1 * openSUSE Leap 15.6 (noarch) * python-doc-2.7.18-150000.65.1 * python-doc-pdf-2.7.18-150000.65.1 * SUSE Package Hub 15 15-SP5 (aarch64 ppc64le s390x x86_64) * python-debugsource-2.7.18-150000.65.1 * python-devel-2.7.18-150000.65.1 * python-base-debugsource-2.7.18-150000.65.1 * python-debuginfo-2.7.18-150000.65.1 * libpython2_7-1_0-2.7.18-150000.65.1 * python-gdbm-debuginfo-2.7.18-150000.65.1 * python-2.7.18-150000.65.1 * python-base-2.7.18-150000.65.1 * python-curses-2.7.18-150000.65.1 * libpython2_7-1_0-debuginfo-2.7.18-150000.65.1 * python-base-debuginfo-2.7.18-150000.65.1 * python-curses-debuginfo-2.7.18-150000.65.1 * python-xml-2.7.18-150000.65.1 * python-gdbm-2.7.18-150000.65.1 * python-xml-debuginfo-2.7.18-150000.65.1 * SUSE Package Hub 15 15-SP6 (aarch64 ppc64le s390x x86_64) * python-debugsource-2.7.18-150000.65.1 * python-base-debugsource-2.7.18-150000.65.1 * python-debuginfo-2.7.18-150000.65.1 * libpython2_7-1_0-2.7.18-150000.65.1 * python-gdbm-debuginfo-2.7.18-150000.65.1 * python-2.7.18-150000.65.1 * python-base-2.7.18-150000.65.1 * python-curses-2.7.18-150000.65.1 * libpython2_7-1_0-debuginfo-2.7.18-150000.65.1 * python-base-debuginfo-2.7.18-150000.65.1 * python-curses-debuginfo-2.7.18-150000.65.1 * python-xml-2.7.18-150000.65.1 * python-gdbm-2.7.18-150000.65.1 * python-xml-debuginfo-2.7.18-150000.65.1 ## References: * https://www.suse.com/security/cve/CVE-2022-48560.html * https://www.suse.com/security/cve/CVE-2023-27043.html * https://www.suse.com/security/cve/CVE-2023-52425.html * https://www.suse.com/security/cve/CVE-2024-0450.html * https://bugzilla.suse.com/show_bug.cgi?id=1214675 * https://bugzilla.suse.com/show_bug.cgi?id=1219306 * https://bugzilla.suse.com/show_bug.cgi?id=1219559 * https://bugzilla.suse.com/show_bug.cgi?id=1220970 * https://bugzilla.suse.com/show_bug.cgi?id=1221854 * https://bugzilla.suse.com/show_bug.cgi?id=1222537 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 19 12:39:58 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 19 Aug 2024 12:39:58 -0000 Subject: SUSE-SU-2024:1864-1: moderate: Security update for python-Jinja2 Message-ID: <172407119892.18977.16693520152911691926@smelt2.prg2.suse.org> # Security update for python-Jinja2 Announcement ID: SUSE-SU-2024:1864-1 Rating: moderate References: * bsc#1218722 * bsc#1223980 Cross-References: * CVE-2024-22195 * CVE-2024-34064 CVSS scores: * CVE-2024-22195 ( SUSE ): 5.4 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N * CVE-2024-22195 ( NVD ): 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N * CVE-2024-34064 ( SUSE ): 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Affected Products: * openSUSE Leap 15.4 * openSUSE Leap 15.5 * openSUSE Leap 15.6 * Python 3 Module 15-SP5 * Python 3 Module 15-SP6 * SUSE Linux Enterprise Desktop 15 SP5 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 An update that solves two vulnerabilities can now be installed. ## Description: This update for python-Jinja2 fixes the following issues: * Fixed HTML attribute injection when passing user input as keys to xmlattr filter (CVE-2024-34064, bsc#1223980, CVE-2024-22195, bsc#1218722) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch SUSE-2024-1864=1 * openSUSE Leap 15.5 zypper in -t patch openSUSE-SLE-15.5-2024-1864=1 * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2024-1864=1 * Python 3 Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Python3-15-SP5-2024-1864=1 * Python 3 Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Python3-15-SP6-2024-1864=1 ## Package List: * openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586) * python311-Jinja2-3.1.2-150400.12.6.1 * openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64) * python311-Jinja2-3.1.2-150400.12.6.1 * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64) * python311-Jinja2-3.1.2-150400.12.6.1 * Python 3 Module 15-SP5 (aarch64 ppc64le s390x x86_64) * python311-Jinja2-3.1.2-150400.12.6.1 * Python 3 Module 15-SP6 (aarch64 ppc64le s390x x86_64) * python311-Jinja2-3.1.2-150400.12.6.1 ## References: * https://www.suse.com/security/cve/CVE-2024-22195.html * https://www.suse.com/security/cve/CVE-2024-34064.html * https://bugzilla.suse.com/show_bug.cgi?id=1218722 * https://bugzilla.suse.com/show_bug.cgi?id=1223980 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 19 12:40:02 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 19 Aug 2024 12:40:02 -0000 Subject: SUSE-SU-2024:1863-1: moderate: Security update for python-Jinja2 Message-ID: <172407120220.18977.741807660045284513@smelt2.prg2.suse.org> # Security update for python-Jinja2 Announcement ID: SUSE-SU-2024:1863-1 Rating: moderate References: * bsc#1218722 * bsc#1223980 Cross-References: * CVE-2024-22195 * CVE-2024-34064 CVSS scores: * CVE-2024-22195 ( SUSE ): 5.4 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N * CVE-2024-22195 ( NVD ): 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N * CVE-2024-34064 ( SUSE ): 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Affected Products: * Basesystem Module 15-SP5 * Basesystem Module 15-SP6 * openSUSE Leap 15.5 * openSUSE Leap Micro 5.3 * openSUSE Leap Micro 5.4 * SUSE Linux Enterprise Desktop 15 SP5 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Micro 5.1 * SUSE Linux Enterprise Micro 5.2 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Micro for Rancher 5.2 * SUSE Linux Enterprise Micro for Rancher 5.3 * SUSE Linux Enterprise Micro for Rancher 5.4 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 An update that solves two vulnerabilities can now be installed. ## Description: This update for python-Jinja2 fixes the following issues: * Fixed HTML attribute injection when passing user input as keys to xmlattr filter (CVE-2024-34064, bsc#1223980, CVE-2024-22195, bsc#1218722) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap Micro 5.3 zypper in -t patch openSUSE-Leap-Micro-5.3-2024-1863=1 * openSUSE Leap Micro 5.4 zypper in -t patch openSUSE-Leap-Micro-5.4-2024-1863=1 * openSUSE Leap 15.5 zypper in -t patch openSUSE-SLE-15.5-2024-1863=1 * SUSE Linux Enterprise Micro for Rancher 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2024-1863=1 * SUSE Linux Enterprise Micro 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2024-1863=1 * SUSE Linux Enterprise Micro for Rancher 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2024-1863=1 * SUSE Linux Enterprise Micro 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2024-1863=1 * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2024-1863=1 * Basesystem Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP5-2024-1863=1 * Basesystem Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP6-2024-1863=1 * SUSE Linux Enterprise Micro 5.1 zypper in -t patch SUSE-SUSE-MicroOS-5.1-2024-1863=1 * SUSE Linux Enterprise Micro 5.2 zypper in -t patch SUSE-SUSE-MicroOS-5.2-2024-1863=1 * SUSE Linux Enterprise Micro for Rancher 5.2 zypper in -t patch SUSE-SUSE-MicroOS-5.2-2024-1863=1 ## Package List: * openSUSE Leap Micro 5.3 (noarch) * python3-Jinja2-2.10.1-150000.3.13.1 * openSUSE Leap Micro 5.4 (noarch) * python3-Jinja2-2.10.1-150000.3.13.1 * openSUSE Leap 15.5 (noarch) * python-Jinja2-emacs-2.10.1-150000.3.13.1 * python-Jinja2-vim-2.10.1-150000.3.13.1 * python3-Jinja2-2.10.1-150000.3.13.1 * SUSE Linux Enterprise Micro for Rancher 5.3 (noarch) * python3-Jinja2-2.10.1-150000.3.13.1 * SUSE Linux Enterprise Micro 5.3 (noarch) * python3-Jinja2-2.10.1-150000.3.13.1 * SUSE Linux Enterprise Micro for Rancher 5.4 (noarch) * python3-Jinja2-2.10.1-150000.3.13.1 * SUSE Linux Enterprise Micro 5.4 (noarch) * python3-Jinja2-2.10.1-150000.3.13.1 * SUSE Linux Enterprise Micro 5.5 (noarch) * python3-Jinja2-2.10.1-150000.3.13.1 * Basesystem Module 15-SP5 (noarch) * python3-Jinja2-2.10.1-150000.3.13.1 * Basesystem Module 15-SP6 (noarch) * python3-Jinja2-2.10.1-150000.3.13.1 * SUSE Linux Enterprise Micro 5.1 (noarch) * python3-Jinja2-2.10.1-150000.3.13.1 * SUSE Linux Enterprise Micro 5.2 (noarch) * python3-Jinja2-2.10.1-150000.3.13.1 * SUSE Linux Enterprise Micro for Rancher 5.2 (noarch) * python3-Jinja2-2.10.1-150000.3.13.1 ## References: * https://www.suse.com/security/cve/CVE-2024-22195.html * https://www.suse.com/security/cve/CVE-2024-34064.html * https://bugzilla.suse.com/show_bug.cgi?id=1218722 * https://bugzilla.suse.com/show_bug.cgi?id=1223980 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 19 12:40:30 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 19 Aug 2024 12:40:30 -0000 Subject: SUSE-SU-2024:1857-1: moderate: Security update for python-requests Message-ID: <172407123042.18977.1884496998390946271@smelt2.prg2.suse.org> # Security update for python-requests Announcement ID: SUSE-SU-2024:1857-1 Rating: moderate References: * bsc#1224788 Cross-References: * CVE-2024-35195 CVSS scores: * CVE-2024-35195 ( SUSE ): 6.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:N Affected Products: * openSUSE Leap 15.4 * openSUSE Leap 15.5 * openSUSE Leap 15.6 * Public Cloud Module 15-SP4 * Python 3 Module 15-SP5 * Python 3 Module 15-SP6 * SUSE Linux Enterprise Desktop 15 SP5 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Manager Proxy 4.3 * SUSE Manager Retail Branch Server 4.3 * SUSE Manager Server 4.3 An update that solves one vulnerability can now be installed. ## Description: This update for python-requests fixes the following issues: * CVE-2024-35195: Fixed cert verification regardless of changes to the value of `verify` (bsc#1224788). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch SUSE-2024-1857=1 * openSUSE Leap 15.5 zypper in -t patch openSUSE-SLE-15.5-2024-1857=1 * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2024-1857=1 * Public Cloud Module 15-SP4 zypper in -t patch SUSE-SLE-Module-Public-Cloud-15-SP4-2024-1857=1 * Python 3 Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Python3-15-SP5-2024-1857=1 * Python 3 Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Python3-15-SP6-2024-1857=1 ## Package List: * openSUSE Leap 15.4 (noarch) * python311-requests-2.31.0-150400.6.12.1 * openSUSE Leap 15.5 (noarch) * python311-requests-2.31.0-150400.6.12.1 * openSUSE Leap 15.6 (noarch) * python311-requests-2.31.0-150400.6.12.1 * Public Cloud Module 15-SP4 (noarch) * python311-requests-2.31.0-150400.6.12.1 * Python 3 Module 15-SP5 (noarch) * python311-requests-2.31.0-150400.6.12.1 * Python 3 Module 15-SP6 (noarch) * python311-requests-2.31.0-150400.6.12.1 ## References: * https://www.suse.com/security/cve/CVE-2024-35195.html * https://bugzilla.suse.com/show_bug.cgi?id=1224788 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 19 12:40:44 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 19 Aug 2024 12:40:44 -0000 Subject: SUSE-SU-2024:1854-1: important: Security update for git Message-ID: <172407124414.18977.567525568367152632@smelt2.prg2.suse.org> # Security update for git Announcement ID: SUSE-SU-2024:1854-1 Rating: important References: * bsc#1224168 * bsc#1224170 * bsc#1224171 * bsc#1224172 * bsc#1224173 Cross-References: * CVE-2024-32002 * CVE-2024-32004 * CVE-2024-32020 * CVE-2024-32021 * CVE-2024-32465 CVSS scores: * CVE-2024-32002 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2024-32002 ( NVD ): 9.0 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H * CVE-2024-32004 ( SUSE ): 8.1 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H * CVE-2024-32020 ( SUSE ): 3.9 CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:N/I:L/A:L * CVE-2024-32021 ( SUSE ): 3.9 CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:N/I:L/A:L * CVE-2024-32465 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Affected Products: * SUSE Linux Enterprise High Performance Computing 15 SP2 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 * SUSE Linux Enterprise Server 15 SP2 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 An update that solves five vulnerabilities can now be installed. ## Description: This update for git fixes the following issues: * CVE-2024-32002: Fixed case confusion with recursive clones on case- insensitive filesystems that support symbolic links (bsc#1224168) * CVE-2024-32004: Fixed arbitrary code execution during local clones (bsc#1224170) * CVE-2024-32020: Fixed file overwriting vulnerability during local clones (bsc#1224171) * CVE-2024-32021: Fixed issue where git created hardlinks to arbitrary user- readable files (bsc#1224172) * CVE-2024-32465: Fixed arbitrary code execution during clone operations (bsc#1224173) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 zypper in -t patch SUSE-SLE-Product-SLES-15-SP2-LTSS-2024-1854=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP2-2024-1854=1 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 zypper in -t patch SUSE-SLE-Product-HPC-15-SP2-LTSS-2024-1854=1 ## Package List: * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (aarch64 ppc64le s390x x86_64) * git-gui-2.26.2-150000.56.1 * git-debugsource-2.26.2-150000.56.1 * git-email-2.26.2-150000.56.1 * git-daemon-2.26.2-150000.56.1 * git-core-debuginfo-2.26.2-150000.56.1 * git-cvs-2.26.2-150000.56.1 * git-2.26.2-150000.56.1 * gitk-2.26.2-150000.56.1 * git-web-2.26.2-150000.56.1 * git-svn-debuginfo-2.26.2-150000.56.1 * git-arch-2.26.2-150000.56.1 * git-svn-2.26.2-150000.56.1 * git-core-2.26.2-150000.56.1 * git-daemon-debuginfo-2.26.2-150000.56.1 * git-debuginfo-2.26.2-150000.56.1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (noarch) * git-doc-2.26.2-150000.56.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 (ppc64le x86_64) * git-gui-2.26.2-150000.56.1 * git-debugsource-2.26.2-150000.56.1 * git-email-2.26.2-150000.56.1 * git-daemon-2.26.2-150000.56.1 * git-core-debuginfo-2.26.2-150000.56.1 * git-cvs-2.26.2-150000.56.1 * git-2.26.2-150000.56.1 * gitk-2.26.2-150000.56.1 * git-web-2.26.2-150000.56.1 * git-svn-debuginfo-2.26.2-150000.56.1 * git-arch-2.26.2-150000.56.1 * git-svn-2.26.2-150000.56.1 * git-core-2.26.2-150000.56.1 * git-daemon-debuginfo-2.26.2-150000.56.1 * git-debuginfo-2.26.2-150000.56.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 (noarch) * git-doc-2.26.2-150000.56.1 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 (aarch64 x86_64) * git-gui-2.26.2-150000.56.1 * git-debugsource-2.26.2-150000.56.1 * git-email-2.26.2-150000.56.1 * git-daemon-2.26.2-150000.56.1 * git-core-debuginfo-2.26.2-150000.56.1 * git-cvs-2.26.2-150000.56.1 * git-2.26.2-150000.56.1 * gitk-2.26.2-150000.56.1 * git-web-2.26.2-150000.56.1 * git-svn-debuginfo-2.26.2-150000.56.1 * git-arch-2.26.2-150000.56.1 * git-svn-2.26.2-150000.56.1 * git-core-2.26.2-150000.56.1 * git-daemon-debuginfo-2.26.2-150000.56.1 * git-debuginfo-2.26.2-150000.56.1 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 (noarch) * git-doc-2.26.2-150000.56.1 ## References: * https://www.suse.com/security/cve/CVE-2024-32002.html * https://www.suse.com/security/cve/CVE-2024-32004.html * https://www.suse.com/security/cve/CVE-2024-32020.html * https://www.suse.com/security/cve/CVE-2024-32021.html * https://www.suse.com/security/cve/CVE-2024-32465.html * https://bugzilla.suse.com/show_bug.cgi?id=1224168 * https://bugzilla.suse.com/show_bug.cgi?id=1224170 * https://bugzilla.suse.com/show_bug.cgi?id=1224171 * https://bugzilla.suse.com/show_bug.cgi?id=1224172 * https://bugzilla.suse.com/show_bug.cgi?id=1224173 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 19 12:40:24 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 19 Aug 2024 12:40:24 -0000 Subject: SUSE-SU-2024:1859-1: important: Security update for java-1_8_0-ibm Message-ID: <172407122439.18977.2595593564941311421@smelt2.prg2.suse.org> # Security update for java-1_8_0-ibm Announcement ID: SUSE-SU-2024:1859-1 Rating: important References: * bsc#1222979 * bsc#1222983 * bsc#1222984 * bsc#1222986 * bsc#1222987 * bsc#1223470 * bsc#1224164 Cross-References: * CVE-2023-38264 * CVE-2024-21011 * CVE-2024-21012 * CVE-2024-21068 * CVE-2024-21085 * CVE-2024-21094 CVSS scores: * CVE-2023-38264 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-21011 ( SUSE ): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2024-21012 ( SUSE ): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N * CVE-2024-21068 ( SUSE ): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N * CVE-2024-21085 ( SUSE ): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2024-21094 ( SUSE ): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N Affected Products: * Legacy Module 15-SP5 * Legacy Module 15-SP6 * openSUSE Leap 15.5 * openSUSE Leap 15.6 * SUSE Enterprise Storage 7.1 * SUSE Linux Enterprise High Performance Computing 15 SP3 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise Server 15 SP2 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 * SUSE Linux Enterprise Server 15 SP3 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 An update that solves six vulnerabilities and has one security fix can now be installed. ## Description: This update for java-1_8_0-ibm fixes the following issues: Update to Java 8.0 Service Refresh 8 Fix Pack 25 (bsc#1223470): * CVE-2023-38264: Fixed Object Request Broker (ORB) denial of service (bsc#1224164). * CVE-2024-21094: Fixed C2 compilation fails with "Exceeded _node_regs array" (bsc#1222986). * CVE-2024-21068: Fixed integer overflow in C1 compiler address generation (bsc#1222983). * CVE-2024-21085: Fixed Pack200 excessive memory allocation (bsc#1222984). * CVE-2024-21011: Fixed Long Exception message leading to crash (bsc#1222979). * CVE-2024-21012: Fixed HTTP/2 client improper reverse DNS lookup (bsc#1222987). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.5 zypper in -t patch openSUSE-SLE-15.5-2024-1859=1 * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2024-1859=1 * Legacy Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Legacy-15-SP5-2024-1859=1 * Legacy Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Legacy-15-SP6-2024-1859=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 zypper in -t patch SUSE-SLE-Product-HPC-15-SP3-LTSS-2024-1859=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2024-1859=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2024-1859=1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 zypper in -t patch SUSE-SLE-Product-SLES-15-SP2-LTSS-2024-1859=1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 zypper in -t patch SUSE-SLE-Product-SLES-15-SP3-LTSS-2024-1859=1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2024-1859=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP2-2024-1859=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP3-2024-1859=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2024-1859=1 * SUSE Enterprise Storage 7.1 zypper in -t patch SUSE-Storage-7.1-2024-1859=1 ## Package List: * openSUSE Leap 15.5 (nosrc ppc64le s390x x86_64) * java-1_8_0-ibm-1.8.0_sr8.25-150000.3.89.1 * openSUSE Leap 15.5 (x86_64) * java-1_8_0-ibm-plugin-1.8.0_sr8.25-150000.3.89.1 * java-1_8_0-ibm-alsa-1.8.0_sr8.25-150000.3.89.1 * java-1_8_0-ibm-32bit-1.8.0_sr8.25-150000.3.89.1 * java-1_8_0-ibm-devel-32bit-1.8.0_sr8.25-150000.3.89.1 * openSUSE Leap 15.5 (ppc64le s390x x86_64) * java-1_8_0-ibm-demo-1.8.0_sr8.25-150000.3.89.1 * java-1_8_0-ibm-src-1.8.0_sr8.25-150000.3.89.1 * java-1_8_0-ibm-devel-1.8.0_sr8.25-150000.3.89.1 * openSUSE Leap 15.6 (nosrc ppc64le s390x x86_64) * java-1_8_0-ibm-1.8.0_sr8.25-150000.3.89.1 * openSUSE Leap 15.6 (x86_64) * java-1_8_0-ibm-plugin-1.8.0_sr8.25-150000.3.89.1 * java-1_8_0-ibm-alsa-1.8.0_sr8.25-150000.3.89.1 * java-1_8_0-ibm-32bit-1.8.0_sr8.25-150000.3.89.1 * java-1_8_0-ibm-devel-32bit-1.8.0_sr8.25-150000.3.89.1 * openSUSE Leap 15.6 (ppc64le s390x x86_64) * java-1_8_0-ibm-demo-1.8.0_sr8.25-150000.3.89.1 * java-1_8_0-ibm-src-1.8.0_sr8.25-150000.3.89.1 * java-1_8_0-ibm-devel-1.8.0_sr8.25-150000.3.89.1 * Legacy Module 15-SP5 (nosrc ppc64le s390x x86_64) * java-1_8_0-ibm-1.8.0_sr8.25-150000.3.89.1 * Legacy Module 15-SP5 (ppc64le s390x x86_64) * java-1_8_0-ibm-devel-1.8.0_sr8.25-150000.3.89.1 * Legacy Module 15-SP5 (x86_64) * java-1_8_0-ibm-plugin-1.8.0_sr8.25-150000.3.89.1 * java-1_8_0-ibm-alsa-1.8.0_sr8.25-150000.3.89.1 * Legacy Module 15-SP6 (nosrc ppc64le s390x x86_64) * java-1_8_0-ibm-1.8.0_sr8.25-150000.3.89.1 * Legacy Module 15-SP6 (ppc64le s390x x86_64) * java-1_8_0-ibm-devel-1.8.0_sr8.25-150000.3.89.1 * Legacy Module 15-SP6 (x86_64) * java-1_8_0-ibm-plugin-1.8.0_sr8.25-150000.3.89.1 * java-1_8_0-ibm-alsa-1.8.0_sr8.25-150000.3.89.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (nosrc x86_64) * java-1_8_0-ibm-1.8.0_sr8.25-150000.3.89.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (x86_64) * java-1_8_0-ibm-plugin-1.8.0_sr8.25-150000.3.89.1 * java-1_8_0-ibm-alsa-1.8.0_sr8.25-150000.3.89.1 * java-1_8_0-ibm-devel-1.8.0_sr8.25-150000.3.89.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (nosrc x86_64) * java-1_8_0-ibm-1.8.0_sr8.25-150000.3.89.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (x86_64) * java-1_8_0-ibm-plugin-1.8.0_sr8.25-150000.3.89.1 * java-1_8_0-ibm-alsa-1.8.0_sr8.25-150000.3.89.1 * java-1_8_0-ibm-devel-1.8.0_sr8.25-150000.3.89.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (nosrc x86_64) * java-1_8_0-ibm-1.8.0_sr8.25-150000.3.89.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (x86_64) * java-1_8_0-ibm-plugin-1.8.0_sr8.25-150000.3.89.1 * java-1_8_0-ibm-alsa-1.8.0_sr8.25-150000.3.89.1 * java-1_8_0-ibm-devel-1.8.0_sr8.25-150000.3.89.1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (nosrc ppc64le s390x x86_64) * java-1_8_0-ibm-1.8.0_sr8.25-150000.3.89.1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (ppc64le s390x x86_64) * java-1_8_0-ibm-devel-1.8.0_sr8.25-150000.3.89.1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (x86_64) * java-1_8_0-ibm-plugin-1.8.0_sr8.25-150000.3.89.1 * java-1_8_0-ibm-alsa-1.8.0_sr8.25-150000.3.89.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (nosrc ppc64le s390x x86_64) * java-1_8_0-ibm-1.8.0_sr8.25-150000.3.89.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (ppc64le s390x x86_64) * java-1_8_0-ibm-devel-1.8.0_sr8.25-150000.3.89.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (x86_64) * java-1_8_0-ibm-plugin-1.8.0_sr8.25-150000.3.89.1 * java-1_8_0-ibm-alsa-1.8.0_sr8.25-150000.3.89.1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (nosrc ppc64le s390x x86_64) * java-1_8_0-ibm-1.8.0_sr8.25-150000.3.89.1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (ppc64le s390x x86_64) * java-1_8_0-ibm-devel-1.8.0_sr8.25-150000.3.89.1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (x86_64) * java-1_8_0-ibm-plugin-1.8.0_sr8.25-150000.3.89.1 * java-1_8_0-ibm-alsa-1.8.0_sr8.25-150000.3.89.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 (nosrc ppc64le x86_64) * java-1_8_0-ibm-1.8.0_sr8.25-150000.3.89.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 (ppc64le x86_64) * java-1_8_0-ibm-devel-1.8.0_sr8.25-150000.3.89.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 (x86_64) * java-1_8_0-ibm-plugin-1.8.0_sr8.25-150000.3.89.1 * java-1_8_0-ibm-alsa-1.8.0_sr8.25-150000.3.89.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (nosrc ppc64le x86_64) * java-1_8_0-ibm-1.8.0_sr8.25-150000.3.89.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (ppc64le x86_64) * java-1_8_0-ibm-devel-1.8.0_sr8.25-150000.3.89.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (x86_64) * java-1_8_0-ibm-plugin-1.8.0_sr8.25-150000.3.89.1 * java-1_8_0-ibm-alsa-1.8.0_sr8.25-150000.3.89.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (nosrc ppc64le x86_64) * java-1_8_0-ibm-1.8.0_sr8.25-150000.3.89.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64) * java-1_8_0-ibm-devel-1.8.0_sr8.25-150000.3.89.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (x86_64) * java-1_8_0-ibm-plugin-1.8.0_sr8.25-150000.3.89.1 * java-1_8_0-ibm-alsa-1.8.0_sr8.25-150000.3.89.1 * SUSE Enterprise Storage 7.1 (nosrc x86_64) * java-1_8_0-ibm-1.8.0_sr8.25-150000.3.89.1 * SUSE Enterprise Storage 7.1 (x86_64) * java-1_8_0-ibm-plugin-1.8.0_sr8.25-150000.3.89.1 * java-1_8_0-ibm-alsa-1.8.0_sr8.25-150000.3.89.1 * java-1_8_0-ibm-devel-1.8.0_sr8.25-150000.3.89.1 ## References: * https://www.suse.com/security/cve/CVE-2023-38264.html * https://www.suse.com/security/cve/CVE-2024-21011.html * https://www.suse.com/security/cve/CVE-2024-21012.html * https://www.suse.com/security/cve/CVE-2024-21068.html * https://www.suse.com/security/cve/CVE-2024-21085.html * https://www.suse.com/security/cve/CVE-2024-21094.html * https://bugzilla.suse.com/show_bug.cgi?id=1222979 * https://bugzilla.suse.com/show_bug.cgi?id=1222983 * https://bugzilla.suse.com/show_bug.cgi?id=1222984 * https://bugzilla.suse.com/show_bug.cgi?id=1222986 * https://bugzilla.suse.com/show_bug.cgi?id=1222987 * https://bugzilla.suse.com/show_bug.cgi?id=1223470 * https://bugzilla.suse.com/show_bug.cgi?id=1224164 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 19 12:40:26 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 19 Aug 2024 12:40:26 -0000 Subject: SUSE-SU-2024:1858-1: important: Security update for MozillaThunderbird Message-ID: <172407122698.18977.14203390924962287608@smelt2.prg2.suse.org> # Security update for MozillaThunderbird Announcement ID: SUSE-SU-2024:1858-1 Rating: important References: * bsc#1224056 Cross-References: * CVE-2024-4367 * CVE-2024-4767 * CVE-2024-4768 * CVE-2024-4769 * CVE-2024-4770 * CVE-2024-4777 CVSS scores: * CVE-2024-4367 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2024-4767 ( SUSE ): 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N * CVE-2024-4768 ( SUSE ): 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N * CVE-2024-4769 ( SUSE ): 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N * CVE-2024-4770 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2024-4777 ( SUSE ): 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Affected Products: * openSUSE Leap 15.5 * openSUSE Leap 15.6 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 * SUSE Linux Enterprise Desktop 15 SP5 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Linux Enterprise Workstation Extension 15 SP5 * SUSE Linux Enterprise Workstation Extension 15 SP6 * SUSE Package Hub 15 15-SP5 * SUSE Package Hub 15 15-SP6 An update that solves six vulnerabilities can now be installed. ## Description: This update for MozillaThunderbird fixes the following issues: Update to version 115.11 (bsc#1224056): * CVE-2024-4367: Arbitrary JavaScript execution in PDF.js * CVE-2024-4767: IndexedDB files retained in private browsing mode * CVE-2024-4768: Potential permissions request bypass via clickjacking * CVE-2024-4769: Cross-origin responses could be distinguished between script and non-script content-types * CVE-2024-4770: Use-after-free could occur when printing to PDF * CVE-2024-4777: Memory safety bugs fixed in Firefox 126, Firefox ESR 115.11, and Thunderbird 115.11 * fixed: Splitter arrow between task list and task description did not behave as expected * fixed: Calendar Event Attendees dialog had incorrectly sized rows ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.5 zypper in -t patch openSUSE-SLE-15.5-2024-1858=1 * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2024-1858=1 * SUSE Package Hub 15 15-SP5 zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP5-2024-1858=1 * SUSE Package Hub 15 15-SP6 zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP6-2024-1858=1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 zypper in -t patch SUSE-SLE-Product-SLED-15-SP4-LTSS-2024-1858=1 * SUSE Linux Enterprise Workstation Extension 15 SP5 zypper in -t patch SUSE-SLE-Product-WE-15-SP5-2024-1858=1 * SUSE Linux Enterprise Workstation Extension 15 SP6 zypper in -t patch SUSE-SLE-Product-WE-15-SP6-2024-1858=1 ## Package List: * openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64) * MozillaThunderbird-debugsource-115.11.0-150200.8.160.1 * MozillaThunderbird-translations-other-115.11.0-150200.8.160.1 * MozillaThunderbird-translations-common-115.11.0-150200.8.160.1 * MozillaThunderbird-debuginfo-115.11.0-150200.8.160.1 * MozillaThunderbird-115.11.0-150200.8.160.1 * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64) * MozillaThunderbird-debugsource-115.11.0-150200.8.160.1 * MozillaThunderbird-translations-other-115.11.0-150200.8.160.1 * MozillaThunderbird-translations-common-115.11.0-150200.8.160.1 * MozillaThunderbird-debuginfo-115.11.0-150200.8.160.1 * MozillaThunderbird-115.11.0-150200.8.160.1 * SUSE Package Hub 15 15-SP5 (aarch64 ppc64le s390x) * MozillaThunderbird-debugsource-115.11.0-150200.8.160.1 * MozillaThunderbird-translations-other-115.11.0-150200.8.160.1 * MozillaThunderbird-translations-common-115.11.0-150200.8.160.1 * MozillaThunderbird-debuginfo-115.11.0-150200.8.160.1 * MozillaThunderbird-115.11.0-150200.8.160.1 * SUSE Package Hub 15 15-SP6 (aarch64 ppc64le s390x) * MozillaThunderbird-debugsource-115.11.0-150200.8.160.1 * MozillaThunderbird-translations-other-115.11.0-150200.8.160.1 * MozillaThunderbird-translations-common-115.11.0-150200.8.160.1 * MozillaThunderbird-debuginfo-115.11.0-150200.8.160.1 * MozillaThunderbird-115.11.0-150200.8.160.1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (x86_64) * MozillaThunderbird-debugsource-115.11.0-150200.8.160.1 * MozillaThunderbird-translations-other-115.11.0-150200.8.160.1 * MozillaThunderbird-translations-common-115.11.0-150200.8.160.1 * MozillaThunderbird-debuginfo-115.11.0-150200.8.160.1 * MozillaThunderbird-115.11.0-150200.8.160.1 * SUSE Linux Enterprise Workstation Extension 15 SP5 (x86_64) * MozillaThunderbird-debugsource-115.11.0-150200.8.160.1 * MozillaThunderbird-translations-other-115.11.0-150200.8.160.1 * MozillaThunderbird-translations-common-115.11.0-150200.8.160.1 * MozillaThunderbird-debuginfo-115.11.0-150200.8.160.1 * MozillaThunderbird-115.11.0-150200.8.160.1 * SUSE Linux Enterprise Workstation Extension 15 SP6 (x86_64) * MozillaThunderbird-debugsource-115.11.0-150200.8.160.1 * MozillaThunderbird-translations-other-115.11.0-150200.8.160.1 * MozillaThunderbird-translations-common-115.11.0-150200.8.160.1 * MozillaThunderbird-debuginfo-115.11.0-150200.8.160.1 * MozillaThunderbird-115.11.0-150200.8.160.1 ## References: * https://www.suse.com/security/cve/CVE-2024-4367.html * https://www.suse.com/security/cve/CVE-2024-4767.html * https://www.suse.com/security/cve/CVE-2024-4768.html * https://www.suse.com/security/cve/CVE-2024-4769.html * https://www.suse.com/security/cve/CVE-2024-4770.html * https://www.suse.com/security/cve/CVE-2024-4777.html * https://bugzilla.suse.com/show_bug.cgi?id=1224056 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 19 12:40:37 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 19 Aug 2024 12:40:37 -0000 Subject: SUSE-SU-2024:1855-1: important: Security update for python-PyMySQL Message-ID: <172407123799.18977.1121171821288430922@smelt2.prg2.suse.org> # Security update for python-PyMySQL Announcement ID: SUSE-SU-2024:1855-1 Rating: important References: * bsc#1225070 Cross-References: * CVE-2024-36039 CVSS scores: * CVE-2024-36039 ( SUSE ): 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.5 * SUSE Linux Enterprise Desktop 15 SP5 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Package Hub 15 15-SP5 * SUSE Package Hub 15 15-SP6 An update that solves one vulnerability can now be installed. ## Description: This update for python-PyMySQL fixes the following issues: * CVE-2024-36039: Fixed SQL injection if used with untrusted JSON input (bsc#1225070). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.5 zypper in -t patch openSUSE-SLE-15.5-2024-1855=1 * SUSE Package Hub 15 15-SP5 zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP5-2024-1855=1 * SUSE Package Hub 15 15-SP6 zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP6-2024-1855=1 ## Package List: * openSUSE Leap 15.5 (noarch) * python3-PyMySQL-0.7.11-150000.3.3.1 * SUSE Package Hub 15 15-SP5 (noarch) * python3-PyMySQL-0.7.11-150000.3.3.1 * SUSE Package Hub 15 15-SP6 (noarch) * python3-PyMySQL-0.7.11-150000.3.3.1 ## References: * https://www.suse.com/security/cve/CVE-2024-36039.html * https://bugzilla.suse.com/show_bug.cgi?id=1225070 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 19 12:40:34 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 19 Aug 2024 12:40:34 -0000 Subject: SUSE-SU-2024:1856-1: important: Security update for freerdp Message-ID: <172407123462.18977.482815544782396964@smelt2.prg2.suse.org> # Security update for freerdp Announcement ID: SUSE-SU-2024:1856-1 Rating: important References: * bsc#1223346 * bsc#1223347 * bsc#1223348 * bsc#1223353 Cross-References: * CVE-2024-32658 * CVE-2024-32659 * CVE-2024-32660 * CVE-2024-32661 CVSS scores: * CVE-2024-32658 ( SUSE ): 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2024-32659 ( SUSE ): 7.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H * CVE-2024-32660 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2024-32661 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H Affected Products: * openSUSE Leap 15.4 * openSUSE Leap 15.5 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 * SUSE Linux Enterprise Desktop 15 SP5 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Linux Enterprise Workstation Extension 15 SP5 * SUSE Package Hub 15 15-SP5 * SUSE Package Hub 15 15-SP6 An update that solves four vulnerabilities can now be installed. ## Description: This update for freerdp fixes the following issues: * CVE-2024-32658: Fixed out-of-bounds read in Interleaved RLE Bitmap Codec (bsc#1223353). * CVE-2024-32659: Fixed out-of-bounds read if `((nWidth == 0) and (nHeight == 0))` (bsc#1223346) * CVE-2024-32660: Fixed client crash via invalid huge allocation size (bsc#1223347) * CVE-2024-32661: Fixed client NULL pointer dereference (bsc#1223348) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Package Hub 15 15-SP6 zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP6-2024-1856=1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 zypper in -t patch SUSE-SLE-Product-SLED-15-SP4-LTSS-2024-1856=1 * SUSE Linux Enterprise Workstation Extension 15 SP5 zypper in -t patch SUSE-SLE-Product-WE-15-SP5-2024-1856=1 * openSUSE Leap 15.4 zypper in -t patch SUSE-2024-1856=1 * openSUSE Leap 15.5 zypper in -t patch openSUSE-SLE-15.5-2024-1856=1 * SUSE Package Hub 15 15-SP5 zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP5-2024-1856=1 ## Package List: * SUSE Package Hub 15 15-SP6 (aarch64 ppc64le s390x) * libwinpr2-debuginfo-2.4.0-150400.3.32.1 * freerdp-debugsource-2.4.0-150400.3.32.1 * libwinpr2-2.4.0-150400.3.32.1 * libfreerdp2-debuginfo-2.4.0-150400.3.32.1 * freerdp-debuginfo-2.4.0-150400.3.32.1 * libfreerdp2-2.4.0-150400.3.32.1 * winpr2-devel-2.4.0-150400.3.32.1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (x86_64) * freerdp-proxy-debuginfo-2.4.0-150400.3.32.1 * freerdp-2.4.0-150400.3.32.1 * libwinpr2-debuginfo-2.4.0-150400.3.32.1 * freerdp-debugsource-2.4.0-150400.3.32.1 * libwinpr2-2.4.0-150400.3.32.1 * freerdp-devel-2.4.0-150400.3.32.1 * freerdp-proxy-2.4.0-150400.3.32.1 * libfreerdp2-debuginfo-2.4.0-150400.3.32.1 * freerdp-debuginfo-2.4.0-150400.3.32.1 * libfreerdp2-2.4.0-150400.3.32.1 * winpr2-devel-2.4.0-150400.3.32.1 * SUSE Linux Enterprise Workstation Extension 15 SP5 (x86_64) * freerdp-proxy-debuginfo-2.4.0-150400.3.32.1 * freerdp-2.4.0-150400.3.32.1 * libwinpr2-debuginfo-2.4.0-150400.3.32.1 * freerdp-debugsource-2.4.0-150400.3.32.1 * libwinpr2-2.4.0-150400.3.32.1 * freerdp-devel-2.4.0-150400.3.32.1 * freerdp-proxy-2.4.0-150400.3.32.1 * libfreerdp2-debuginfo-2.4.0-150400.3.32.1 * freerdp-debuginfo-2.4.0-150400.3.32.1 * libfreerdp2-2.4.0-150400.3.32.1 * winpr2-devel-2.4.0-150400.3.32.1 * openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586) * freerdp-wayland-2.4.0-150400.3.32.1 * freerdp-proxy-debuginfo-2.4.0-150400.3.32.1 * freerdp-2.4.0-150400.3.32.1 * freerdp-server-2.4.0-150400.3.32.1 * libwinpr2-debuginfo-2.4.0-150400.3.32.1 * winpr2-devel-2.4.0-150400.3.32.1 * freerdp-debugsource-2.4.0-150400.3.32.1 * libwinpr2-2.4.0-150400.3.32.1 * freerdp-devel-2.4.0-150400.3.32.1 * freerdp-proxy-2.4.0-150400.3.32.1 * libfreerdp2-debuginfo-2.4.0-150400.3.32.1 * uwac0-0-devel-2.4.0-150400.3.32.1 * freerdp-server-debuginfo-2.4.0-150400.3.32.1 * libuwac0-0-debuginfo-2.4.0-150400.3.32.1 * freerdp-debuginfo-2.4.0-150400.3.32.1 * libfreerdp2-2.4.0-150400.3.32.1 * freerdp-wayland-debuginfo-2.4.0-150400.3.32.1 * libuwac0-0-2.4.0-150400.3.32.1 * openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64) * freerdp-wayland-2.4.0-150400.3.32.1 * freerdp-proxy-debuginfo-2.4.0-150400.3.32.1 * freerdp-2.4.0-150400.3.32.1 * freerdp-server-2.4.0-150400.3.32.1 * libwinpr2-debuginfo-2.4.0-150400.3.32.1 * winpr2-devel-2.4.0-150400.3.32.1 * freerdp-debugsource-2.4.0-150400.3.32.1 * libwinpr2-2.4.0-150400.3.32.1 * freerdp-devel-2.4.0-150400.3.32.1 * freerdp-proxy-2.4.0-150400.3.32.1 * libfreerdp2-debuginfo-2.4.0-150400.3.32.1 * uwac0-0-devel-2.4.0-150400.3.32.1 * freerdp-server-debuginfo-2.4.0-150400.3.32.1 * libuwac0-0-debuginfo-2.4.0-150400.3.32.1 * freerdp-debuginfo-2.4.0-150400.3.32.1 * libfreerdp2-2.4.0-150400.3.32.1 * freerdp-wayland-debuginfo-2.4.0-150400.3.32.1 * libuwac0-0-2.4.0-150400.3.32.1 * SUSE Package Hub 15 15-SP5 (aarch64 ppc64le s390x) * freerdp-wayland-2.4.0-150400.3.32.1 * freerdp-proxy-debuginfo-2.4.0-150400.3.32.1 * freerdp-2.4.0-150400.3.32.1 * freerdp-server-2.4.0-150400.3.32.1 * libwinpr2-debuginfo-2.4.0-150400.3.32.1 * winpr2-devel-2.4.0-150400.3.32.1 * freerdp-debugsource-2.4.0-150400.3.32.1 * libwinpr2-2.4.0-150400.3.32.1 * freerdp-devel-2.4.0-150400.3.32.1 * freerdp-proxy-2.4.0-150400.3.32.1 * libfreerdp2-debuginfo-2.4.0-150400.3.32.1 * uwac0-0-devel-2.4.0-150400.3.32.1 * freerdp-server-debuginfo-2.4.0-150400.3.32.1 * libuwac0-0-debuginfo-2.4.0-150400.3.32.1 * freerdp-debuginfo-2.4.0-150400.3.32.1 * libfreerdp2-2.4.0-150400.3.32.1 * freerdp-wayland-debuginfo-2.4.0-150400.3.32.1 * libuwac0-0-2.4.0-150400.3.32.1 ## References: * https://www.suse.com/security/cve/CVE-2024-32658.html * https://www.suse.com/security/cve/CVE-2024-32659.html * https://www.suse.com/security/cve/CVE-2024-32660.html * https://www.suse.com/security/cve/CVE-2024-32661.html * https://bugzilla.suse.com/show_bug.cgi?id=1223346 * https://bugzilla.suse.com/show_bug.cgi?id=1223347 * https://bugzilla.suse.com/show_bug.cgi?id=1223348 * https://bugzilla.suse.com/show_bug.cgi?id=1223353 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 19 12:40:52 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 19 Aug 2024 12:40:52 -0000 Subject: SUSE-SU-2024:1670-1: moderate: Security update for python-azure-core, python-azure-storage-blob, python-azure-storage-queue, python-typing, python-typing_extensions Message-ID: <172407125259.18977.15959612520774321504@smelt2.prg2.suse.org> # Security update for python-azure-core, python-azure-storage-blob, python- azure-storage-queue, python-typing, python-typing_extensions Announcement ID: SUSE-SU-2024:1670-1 Rating: moderate References: * bsc#1202088 Cross-References: * CVE-2022-30187 CVSS scores: * CVE-2022-30187 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2022-30187 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * Public Cloud Module 12 * SUSE Linux Enterprise High Performance Computing 12 SP2 * SUSE Linux Enterprise High Performance Computing 12 SP3 * SUSE Linux Enterprise High Performance Computing 12 SP4 * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise Server 12 * SUSE Linux Enterprise Server 12 SP1 * SUSE Linux Enterprise Server 12 SP2 * SUSE Linux Enterprise Server 12 SP3 * SUSE Linux Enterprise Server 12 SP4 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server for SAP Applications 12 * SUSE Linux Enterprise Server for SAP Applications 12 SP1 * SUSE Linux Enterprise Server for SAP Applications 12 SP2 * SUSE Linux Enterprise Server for SAP Applications 12 SP3 * SUSE Linux Enterprise Server for SAP Applications 12 SP4 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 An update that solves one vulnerability can now be installed. ## Description: This update for python-azure-core, python-azure-storage-blob, python-azure- storage-queue, python-typing, python-typing_extensions fixes the following issues: * CVE-2022-30187: Fixed an information disclosure issue that an attacker could exploit to leak sensitive information on the client side (bsc#1202088). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * Public Cloud Module 12 zypper in -t patch SUSE-SLE-Module-Public-Cloud-12-2024-1670=1 ## Package List: * Public Cloud Module 12 (noarch) * python-azure-storage-queue-12.4.0-2.10.8 * python-azure-core-1.23.1-2.12.8 * python-typing_extensions-3.10.0.0-2.6.1 * python-azure-storage-blob-12.13.1-2.10.8 * python3-azure-core-1.23.1-2.12.8 * python3-azure-storage-blob-12.13.1-2.10.8 * python3-azure-storage-queue-12.4.0-2.10.8 * python3-typing_extensions-3.10.0.0-2.6.1 ## References: * https://www.suse.com/security/cve/CVE-2022-30187.html * https://bugzilla.suse.com/show_bug.cgi?id=1202088 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 19 12:41:16 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 19 Aug 2024 12:41:16 -0000 Subject: SUSE-SU-2024:1663-1: important: Security update for the Linux Kernel Message-ID: <172407127669.18977.12422138997576187038@smelt2.prg2.suse.org> # Security update for the Linux Kernel Announcement ID: SUSE-SU-2024:1663-1 Rating: important References: * bsc#1141539 * bsc#1177529 * bsc#1190576 * bsc#1192145 * bsc#1192837 * bsc#1193629 * bsc#1196869 * bsc#1200313 * bsc#1201308 * bsc#1201489 * bsc#1203906 * bsc#1203935 * bsc#1204614 * bsc#1207361 * bsc#1211592 * bsc#1213573 * bsc#1217408 * bsc#1218562 * bsc#1218917 * bsc#1219104 * bsc#1219126 * bsc#1219141 * bsc#1219169 * bsc#1219170 * bsc#1219264 * bsc#1220342 * bsc#1220492 * bsc#1220569 * bsc#1220761 * bsc#1220901 * bsc#1220915 * bsc#1220935 * bsc#1221042 * bsc#1221044 * bsc#1221080 * bsc#1221084 * bsc#1221088 * bsc#1221162 * bsc#1221299 * bsc#1221612 * bsc#1221617 * bsc#1221645 * bsc#1221791 * bsc#1221825 * bsc#1222011 * bsc#1222051 * bsc#1222247 * bsc#1222266 * bsc#1222294 * bsc#1222307 * bsc#1222357 * bsc#1222368 * bsc#1222379 * bsc#1222416 * bsc#1222422 * bsc#1222424 * bsc#1222427 * bsc#1222428 * bsc#1222430 * bsc#1222431 * bsc#1222435 * bsc#1222437 * bsc#1222445 * bsc#1222449 * bsc#1222482 * bsc#1222503 * bsc#1222520 * bsc#1222536 * bsc#1222549 * bsc#1222550 * bsc#1222557 * bsc#1222559 * bsc#1222585 * bsc#1222586 * bsc#1222596 * bsc#1222609 * bsc#1222610 * bsc#1222613 * bsc#1222615 * bsc#1222618 * bsc#1222624 * bsc#1222630 * bsc#1222632 * bsc#1222660 * bsc#1222662 * bsc#1222664 * bsc#1222666 * bsc#1222669 * bsc#1222671 * bsc#1222677 * bsc#1222678 * bsc#1222680 * bsc#1222703 * bsc#1222704 * bsc#1222706 * bsc#1222709 * bsc#1222710 * bsc#1222720 * bsc#1222721 * bsc#1222724 * bsc#1222726 * bsc#1222727 * bsc#1222764 * bsc#1222772 * bsc#1222773 * bsc#1222776 * bsc#1222781 * bsc#1222784 * bsc#1222785 * bsc#1222787 * bsc#1222790 * bsc#1222791 * bsc#1222792 * bsc#1222796 * bsc#1222798 * bsc#1222801 * bsc#1222812 * bsc#1222824 * bsc#1222829 * bsc#1222832 * bsc#1222836 * bsc#1222838 * bsc#1222866 * bsc#1222867 * bsc#1222869 * bsc#1222876 * bsc#1222878 * bsc#1222879 * bsc#1222881 * bsc#1222883 * bsc#1222888 * bsc#1222894 * bsc#1222901 * bsc#1222968 * bsc#1223012 * bsc#1223014 * bsc#1223016 * bsc#1223024 * bsc#1223030 * bsc#1223033 * bsc#1223034 * bsc#1223035 * bsc#1223036 * bsc#1223037 * bsc#1223041 * bsc#1223042 * bsc#1223051 * bsc#1223052 * bsc#1223056 * bsc#1223057 * bsc#1223058 * bsc#1223060 * bsc#1223061 * bsc#1223065 * bsc#1223066 * bsc#1223067 * bsc#1223068 * bsc#1223076 * bsc#1223078 * bsc#1223111 * bsc#1223115 * bsc#1223118 * bsc#1223187 * bsc#1223189 * bsc#1223190 * bsc#1223191 * bsc#1223196 * bsc#1223197 * bsc#1223198 * bsc#1223275 * bsc#1223323 * bsc#1223369 * bsc#1223380 * bsc#1223473 * bsc#1223474 * bsc#1223475 * bsc#1223477 * bsc#1223478 * bsc#1223479 * bsc#1223481 * bsc#1223482 * bsc#1223484 * bsc#1223487 * bsc#1223490 * bsc#1223496 * bsc#1223498 * bsc#1223499 * bsc#1223501 * bsc#1223502 * bsc#1223503 * bsc#1223505 * bsc#1223509 * bsc#1223511 * bsc#1223512 * bsc#1223513 * bsc#1223516 * bsc#1223517 * bsc#1223518 * bsc#1223519 * bsc#1223520 * bsc#1223522 * bsc#1223523 * bsc#1223525 * bsc#1223536 * bsc#1223539 * bsc#1223574 * bsc#1223595 * bsc#1223598 * bsc#1223634 * bsc#1223640 * bsc#1223643 * bsc#1223644 * bsc#1223645 * bsc#1223646 * bsc#1223648 * bsc#1223655 * bsc#1223657 * bsc#1223660 * bsc#1223661 * bsc#1223663 * bsc#1223664 * bsc#1223668 * bsc#1223686 * bsc#1223693 * bsc#1223705 * bsc#1223714 * bsc#1223735 * bsc#1223745 * bsc#1223784 * bsc#1223785 * bsc#1223790 * bsc#1223816 * bsc#1223821 * bsc#1223822 * bsc#1223824 * bsc#1223827 * bsc#1223834 * bsc#1223875 * bsc#1223876 * bsc#1223877 * bsc#1223878 * bsc#1223879 * bsc#1223894 * bsc#1223921 * bsc#1223922 * bsc#1223923 * bsc#1223924 * bsc#1223929 * bsc#1223931 * bsc#1223932 * bsc#1223934 * bsc#1223941 * bsc#1223948 * bsc#1223949 * bsc#1223950 * bsc#1223951 * bsc#1223952 * bsc#1223953 * bsc#1223956 * bsc#1223957 * bsc#1223960 * bsc#1223962 * bsc#1223963 * bsc#1223964 * jsc#PED-1166 * jsc#PED-1168 * jsc#PED-1170 * jsc#PED-1218 * jsc#PED-1220 * jsc#PED-1222 * jsc#PED-1223 * jsc#PED-1225 * jsc#PED-1565 * jsc#PED-2849 * jsc#PED-376 * jsc#PED-542 * jsc#PED-7167 * jsc#PED-7619 * jsc#SLE-18378 * jsc#SLE-18383 * jsc#SLE-18385 * jsc#SLE-18978 * jsc#SLE-19249 * jsc#SLE-19253 Cross-References: * CVE-2021-47047 * CVE-2021-47181 * CVE-2021-47182 * CVE-2021-47183 * CVE-2021-47184 * CVE-2021-47185 * CVE-2021-47187 * CVE-2021-47188 * CVE-2021-47189 * CVE-2021-47191 * CVE-2021-47192 * CVE-2021-47193 * CVE-2021-47194 * CVE-2021-47195 * CVE-2021-47196 * CVE-2021-47197 * CVE-2021-47198 * CVE-2021-47199 * CVE-2021-47200 * CVE-2021-47201 * CVE-2021-47202 * CVE-2021-47203 * CVE-2021-47204 * CVE-2021-47205 * CVE-2021-47206 * CVE-2021-47207 * CVE-2021-47209 * CVE-2021-47210 * CVE-2021-47211 * CVE-2021-47212 * CVE-2021-47214 * CVE-2021-47215 * CVE-2021-47216 * CVE-2021-47217 * CVE-2021-47218 * CVE-2021-47219 * CVE-2022-48631 * CVE-2022-48632 * CVE-2022-48634 * CVE-2022-48636 * CVE-2022-48637 * CVE-2022-48638 * CVE-2022-48639 * CVE-2022-48640 * CVE-2022-48642 * CVE-2022-48644 * CVE-2022-48646 * CVE-2022-48647 * CVE-2022-48648 * CVE-2022-48650 * CVE-2022-48651 * CVE-2022-48652 * CVE-2022-48653 * CVE-2022-48654 * CVE-2022-48655 * CVE-2022-48656 * CVE-2022-48657 * CVE-2022-48658 * CVE-2022-48659 * CVE-2022-48660 * CVE-2022-48662 * CVE-2022-48663 * CVE-2022-48667 * CVE-2022-48668 * CVE-2022-48671 * CVE-2022-48672 * CVE-2022-48673 * CVE-2022-48675 * CVE-2022-48686 * CVE-2022-48687 * CVE-2022-48688 * CVE-2022-48690 * CVE-2022-48692 * CVE-2022-48693 * CVE-2022-48694 * CVE-2022-48695 * CVE-2022-48697 * CVE-2022-48698 * CVE-2022-48700 * CVE-2022-48701 * CVE-2022-48702 * CVE-2022-48703 * CVE-2022-48704 * CVE-2023-2860 * CVE-2023-52488 * CVE-2023-52503 * CVE-2023-52561 * CVE-2023-52585 * CVE-2023-52589 * CVE-2023-52590 * CVE-2023-52591 * CVE-2023-52593 * CVE-2023-52614 * CVE-2023-52616 * CVE-2023-52620 * CVE-2023-52627 * CVE-2023-52635 * CVE-2023-52636 * CVE-2023-52645 * CVE-2023-52652 * CVE-2023-6270 * CVE-2024-0639 * CVE-2024-0841 * CVE-2024-22099 * CVE-2024-23307 * CVE-2024-23848 * CVE-2024-23850 * CVE-2024-26601 * CVE-2024-26610 * CVE-2024-26656 * CVE-2024-26660 * CVE-2024-26671 * CVE-2024-26673 * CVE-2024-26675 * CVE-2024-26680 * CVE-2024-26681 * CVE-2024-26684 * CVE-2024-26685 * CVE-2024-26687 * CVE-2024-26688 * CVE-2024-26689 * CVE-2024-26696 * CVE-2024-26697 * CVE-2024-26702 * CVE-2024-26704 * CVE-2024-26718 * CVE-2024-26722 * CVE-2024-26727 * CVE-2024-26733 * CVE-2024-26736 * CVE-2024-26737 * CVE-2024-26739 * CVE-2024-26743 * CVE-2024-26744 * CVE-2024-26745 * CVE-2024-26747 * CVE-2024-26749 * CVE-2024-26751 * CVE-2024-26754 * CVE-2024-26760 * CVE-2024-267600 * CVE-2024-26763 * CVE-2024-26764 * CVE-2024-26766 * CVE-2024-26769 * CVE-2024-26771 * CVE-2024-26772 * CVE-2024-26773 * CVE-2024-26776 * CVE-2024-26779 * CVE-2024-26783 * CVE-2024-26787 * CVE-2024-26790 * CVE-2024-26792 * CVE-2024-26793 * CVE-2024-26798 * CVE-2024-26805 * CVE-2024-26807 * CVE-2024-26816 * CVE-2024-26817 * CVE-2024-26820 * CVE-2024-26825 * CVE-2024-26830 * CVE-2024-26833 * CVE-2024-26836 * CVE-2024-26843 * CVE-2024-26848 * CVE-2024-26852 * CVE-2024-26853 * CVE-2024-26855 * CVE-2024-26856 * CVE-2024-26857 * CVE-2024-26861 * CVE-2024-26862 * CVE-2024-26866 * CVE-2024-26872 * CVE-2024-26875 * CVE-2024-26878 * CVE-2024-26879 * CVE-2024-26881 * CVE-2024-26882 * CVE-2024-26883 * CVE-2024-26884 * CVE-2024-26885 * CVE-2024-26891 * CVE-2024-26893 * CVE-2024-26895 * CVE-2024-26896 * CVE-2024-26897 * CVE-2024-26898 * CVE-2024-26901 * CVE-2024-26903 * CVE-2024-26917 * CVE-2024-26927 * CVE-2024-26948 * CVE-2024-26950 * CVE-2024-26951 * CVE-2024-26955 * CVE-2024-26956 * CVE-2024-26960 * CVE-2024-26965 * CVE-2024-26966 * CVE-2024-26969 * CVE-2024-26970 * CVE-2024-26972 * CVE-2024-26981 * CVE-2024-26982 * CVE-2024-26993 * CVE-2024-27013 * CVE-2024-27014 * CVE-2024-27030 * CVE-2024-27038 * CVE-2024-27039 * CVE-2024-27041 * CVE-2024-27043 * CVE-2024-27046 * CVE-2024-27056 * CVE-2024-27062 * CVE-2024-27389 CVSS scores: * CVE-2021-47047 ( SUSE ): 5.6 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:H * CVE-2021-47181 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47182 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47183 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47184 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47185 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47187 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47188 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47189 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47191 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47192 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47193 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47193 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47194 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47194 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2021-47195 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47195 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47196 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47197 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47198 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47198 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2021-47199 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47200 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47201 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47202 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47203 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47204 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47205 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47206 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47207 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47209 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47210 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47211 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47212 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47214 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47215 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47216 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2021-47217 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47218 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47219 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2022-48631 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48632 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48634 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48636 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48637 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48638 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48639 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48640 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48642 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2022-48644 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48646 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48647 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48648 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48650 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48651 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48652 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48653 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2022-48654 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2022-48654 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2022-48655 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2022-48655 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48656 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2022-48657 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2022-48658 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48658 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48659 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48659 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48660 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2022-48660 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48662 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48662 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48663 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48667 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L * CVE-2022-48668 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L * CVE-2022-48671 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48671 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48672 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2022-48672 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48673 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48673 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48675 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48675 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48686 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48686 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48687 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2022-48687 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2022-48688 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48688 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48690 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48692 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48692 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48693 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48693 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48694 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48694 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48695 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48697 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2022-48698 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2022-48700 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2022-48701 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2022-48702 ( SUSE ): 5.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L * CVE-2022-48703 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48704 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-2860 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N * CVE-2023-2860 ( NVD ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N * CVE-2023-52488 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52503 ( SUSE ): 4.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2023-52561 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52585 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52589 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52590 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L * CVE-2023-52591 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2023-52593 ( SUSE ): 5.7 CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2023-52614 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N * CVE-2023-52616 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52620 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52627 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52635 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52636 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52645 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52645 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52652 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2023-6270 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-6270 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-0639 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-0639 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-0841 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-0841 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-22099 ( SUSE ): 5.3 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-22099 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-23307 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-23307 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-23848 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2024-23848 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-23850 ( SUSE ): 4.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-23850 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26601 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26601 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26610 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2024-26656 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26660 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26671 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26673 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26675 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26680 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26681 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26684 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26685 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26687 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26688 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26689 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26696 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26697 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26702 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26704 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26718 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26722 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26727 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26733 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26736 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26737 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26739 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26743 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-26744 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26745 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26747 ( SUSE ): 4.3 CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26749 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2024-26751 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-26754 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26760 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26763 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N * CVE-2024-26764 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-26766 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26769 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26771 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26772 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26773 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26776 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26779 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26783 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26787 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26790 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26792 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26793 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26798 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26805 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26807 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26816 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2024-26817 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26820 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26825 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26830 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26833 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26836 ( SUSE ): 4.3 CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2024-26843 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26848 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-26852 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26853 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26855 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26856 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26857 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26861 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26862 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2024-26866 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26872 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26875 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26878 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26879 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26881 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26881 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26882 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26882 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26883 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26883 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26884 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26884 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26885 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26885 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26891 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26893 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26895 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26896 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26897 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26898 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26898 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26901 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2024-26901 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26903 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26903 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26917 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26927 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26948 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26950 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26951 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26955 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26956 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26960 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26965 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26966 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26969 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26970 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26972 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26981 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26982 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26993 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L * CVE-2024-27013 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27013 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27014 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27014 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27030 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2024-27038 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27039 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27041 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27043 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-27046 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27056 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27062 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27389 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H Affected Products: * openSUSE Leap 15.5 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Live Patching 15-SP5 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Real Time Module 15-SP5 An update that solves 219 vulnerabilities, contains 20 features and has 45 security fixes can now be installed. ## Description: The SUSE Linux Enterprise 15 SP5 Real Time kernel was updated to receive various security bugfixes. The following security bugs were fixed: * CVE-2024-27389: Fixed pstore inode handling with d_invalidate() (bsc#1223705). * CVE-2024-27062: Fixed nouveau lock inside client object tree (bsc#1223834). * CVE-2024-27056: Fixed wifi/iwlwifi/mvm to ensure offloading TID queue exists (bsc#1223822). * CVE-2024-27046: Fixed nfp/flower handling acti_netdevs allocation failure (bsc#1223827). * CVE-2024-27043: Fixed a use-after-free in edia/dvbdev in different places (bsc#1223824). * CVE-2024-27041: Fixed drm/amd/display NULL checks for adev->dm.dc in amdgpu_dm_fini() (bsc#1223714). * CVE-2024-27039: Fixed clk/hisilicon/hi3559a an erroneous devm_kfree() (bsc#1223821). * CVE-2024-27038: Fixed clk_core_get NULL pointer dereference (bsc#1223816). * CVE-2024-27030: Fixed octeontx2-af to use separate handlers for interrupts (bsc#1223790). * CVE-2024-27014: Fixed net/mlx5e to prevent deadlock while disabling aRFS (bsc#1223735). * CVE-2024-27013: Fixed tun limit printing rate when illegal packet received by tun device (bsc#1223745). * CVE-2024-26993: Fixed fs/sysfs reference leak in sysfs_break_active_protection() (bsc#1223693). * CVE-2024-26982: Fixed Squashfs inode number check not to be an invalid value of zero (bsc#1223634). * CVE-2024-26970: Fixed clk/qcom/gcc-ipq6018 termination of frequency table arrays (bsc#1223644). * CVE-2024-26969: Fixed clk/qcom/gcc-ipq8074 termination of frequency table arrays (bsc#1223645). * CVE-2024-26966: Fixed clk/qcom/mmcc-apq8084 termination of frequency table arrays (bsc#1223646). * CVE-2024-26965: Fixed clk/qcom/mmcc-msm8974 termination of frequency table arrays (bsc#1223648). * CVE-2024-26960: Fixed mm/swap race between free_swap_and_cache() and swapoff() (bsc#1223655). * CVE-2024-26951: Fixed wireguard/netlink check for dangling peer via is_dead instead of empty list (bsc#1223660). * CVE-2024-26950: Fixed wireguard/netlink to access device through ctx instead of peer (bsc#1223661). * CVE-2024-26948: Fixed drm/amd/display by adding dc_state NULL check in dc_state_release (bsc#1223664). * CVE-2024-26927: Fixed ASoC/SOF bounds checking to firmware data Smatch (bsc#1223525). * CVE-2024-26901: Fixed do_sys_name_to_handle() to use kzalloc() to prevent kernel-infoleak (bsc#1223198). * CVE-2024-26896: Fixed wifi/wfx memory leak when starting AP (bsc#1223042). * CVE-2024-26893: Fixed firmware/arm_scmi for possible double free in SMC transport cleanup path (bsc#1223196). * CVE-2024-26885: Fixed bpf DEVMAP_HASH overflow check on 32-bit arches (bsc#1223190). * CVE-2024-26884: Fixed bpf hashtab overflow check on 32-bit arches (bsc#1223189). * CVE-2024-26883: Fixed bpf stackmap overflow check on 32-bit arches (bsc#1223035). * CVE-2024-26882: Fixed net/ip_tunnel to make sure to pull inner header in ip_tunnel_rcv() (bsc#1223034). * CVE-2024-26881: Fixed net/hns3 kernel crash when 1588 is received on HIP08 devices (bsc#1223041). * CVE-2024-26879: Fixed clk/meson by adding missing clocks to axg_clk_regmaps (bsc#1223066). * CVE-2024-26878: Fixed quota for potential NULL pointer dereference (bsc#1223060). * CVE-2024-26866: Fixed spi/spi-fsl-lpspi by removing redundant spi_controller_put call (bsc#1223024). * CVE-2024-26862: Fixed packet annotate data-races around ignore_outgoing (bsc#1223111). * CVE-2024-26861: Fixed wireguard/receive annotate data-race around receiving_counter.counter (bsc#1223076). * CVE-2024-26857: Fixed geneve to make sure to pull inner header in geneve_rx() (bsc#1223058). * CVE-2024-26856: Fixed use-after-free inside sparx5_del_mact_entry (bsc#1223052). * CVE-2024-26855: Fixed net/ice potential NULL pointer dereference in ice_bridge_setlink() (bsc#1223051). * CVE-2024-26853: Fixed igc returning frame twice in XDP_REDIRECT (bsc#1223061). * CVE-2024-26852: Fixed net/ipv6 to avoid possible UAF in ip6_route_mpath_notify() (bsc#1223057). * CVE-2024-26848: Fixed afs endless loop in directory parsing (bsc#1223030). * CVE-2024-26836: Fixed platform/x86/think-lmi password opcode ordering for workstations (bsc#1222968). * CVE-2024-26830: Fixed i40e to not allow untrusted VF to remove administratively set MAC (bsc#1223012). * CVE-2024-26817: Fixed amdkfd to use calloc instead of kzalloc to avoid integer overflow (bsc#1222812). * CVE-2024-26816: Fixed relocations in .notes section when building with CONFIG_XEN_PV=y by ignoring them (bsc#1222624). * CVE-2024-26807: Fixed spi/cadence-qspi NULL pointer reference in runtime PM hooks (bsc#1222801). * CVE-2024-26805: Fixed a kernel-infoleak-after-free in __skb_datagram_iter in netlink (bsc#1222630). * CVE-2024-26793: Fixed an use-after-free and null-ptr-deref in gtp_newlink() in gtp (bsc#1222428). * CVE-2024-26783: Fixed mm/vmscan bug when calling wakeup_kswapd() with a wrong zone index (bsc#1222615). * CVE-2024-26779: Fixed a race condition on enabling fast-xmit in mac80211 (bsc#1222772). * CVE-2024-26773: Fixed ext4 block allocation from corrupted group in ext4_mb_try_best_found() (bsc#1222618). * CVE-2024-26772: Fixed ext4 to avoid allocating blocks from corrupted group in ext4_mb_find_by_goal() (bsc#1222613). * CVE-2024-26771: Fixed a null pointer dereference on edma_probe in dmaengine ti edma (bsc#1222610) * CVE-2024-26766: Fixed SDMA off-by-one error in _pad_sdma_tx_descs() (bsc#1222726). * CVE-2024-26764: Fixed IOCB_AIO_RW check in fs/aio before the struct aio_kiocb conversion (bsc#1222721). * CVE-2024-26763: Fixed user corruption via by writing data with O_DIRECT on device in dm-crypt (bsc#1222720). * CVE-2024-26760: Fixed scsi/target/pscsi bio_put() for error case (bsc#1222596). * CVE-2024-267600: Fixed scsi/target/pscsi error case in bio_put() (bsc#1222596). * CVE-2024-26754: Fixed an use-after-free and null-ptr-deref in gtp_genl_dump_pdp() in gtp (bsc#1222632). * CVE-2024-26751: Fixed ARM/ep93xx terminator to gpiod_lookup_table (bsc#1222724). * CVE-2024-26747: Fixed a NULL pointer issue with USB parent module's reference (bsc#1222609). * CVE-2024-26744: Fixed null pointer dereference in srpt_service_guid parameter in rdma/srpt (bsc#1222449). * CVE-2024-26743: Fixed memory leak in qedr_create_user_qp error flow in rdma/qedr (bsc#1222677). * CVE-2024-26737: Fixed selftests/bpf racing between bpf_timer_cancel_and_free and bpf_timer_cancel (bsc#1222557). * CVE-2024-26733: Fixed an overflow in arp_req_get() in arp (bsc#1222585). * CVE-2024-26727: Fixed assertion if a newly created btrfs subvolume already gets read (bsc#1222536). * CVE-2024-26718: Fixed dm-crypt/dm-verity disable tasklets (bsc#1222416). * CVE-2024-26704: Fixed a double-free of blocks due to wrong extents moved_len in ext4 (bsc#1222422). * CVE-2024-26696: Fixed nilfs2 hang in nilfs_lookup_dirty_data_buffers() (bsc#1222549). * CVE-2024-26689: Fixed a use-after-free in encode_cap_msg() (bsc#1222503). * CVE-2024-26687: Fixed xen/events close evtchn after mapping cleanup (bsc#1222435). * CVE-2024-26685: Fixed nilfs2 potential bug in end_buffer_async_write (bsc#1222437). * CVE-2024-26684: Fixed net/stmmac/xgmac handling of DPP safety error for DMA channels (bsc#1222445). * CVE-2024-26681: Fixed netdevsim to avoid potential loop in nsim_dev_trap_report_work() (bsc#1222431). * CVE-2024-26680: Fixed net/atlantic DMA mapping for PTP hwts ring (bsc#1222427). * CVE-2024-26675: Fixed ppp_async to limit MRU to 64K (bsc#1222379). * CVE-2024-26673: Fixed netfilter/nft_ct layer 3 and 4 protocol sanitization (bsc#1222368). * CVE-2024-26671: Fixed blk-mq IO hang from sbitmap wakeup race (bsc#1222357). * CVE-2024-26660: Fixed drm/amd/display bounds check for stream encoder creation (bsc#1222266). * CVE-2024-26656: Fixed drm/amdgpu use-after-free bug (bsc#1222307). * CVE-2024-26610: Fixed memory corruption in wifi/iwlwifi (bsc#1221299). * CVE-2024-26601: Fixed ext4 buddy bitmap corruption via fast commit replay (bsc#1220342). * CVE-2024-23850: Fixed double free of anonymous device after snapshot creation failure (bsc#1219126). * CVE-2024-23848: Fixed media/cec for possible use-after-free in cec_queue_msg_fh (bsc#1219104). * CVE-2024-23307: Fixed Integer Overflow or Wraparound vulnerability in x86 and ARM md, raid, raid5 modules (bsc#1219169). * CVE-2024-22099: Fixed a null-pointer-dereference in rfcomm_check_security (bsc#1219170). * CVE-2024-0841: Fixed a null pointer dereference in the hugetlbfs_fill_super function in hugetlbfs (HugeTLB pages) functionality (bsc#1219264). * CVE-2024-0639: Fixed a denial-of-service vulnerability due to a deadlock found in sctp_auto_asconf_init in net/sctp/socket.c (bsc#1218917). * CVE-2023-6270: Fixed a use-after-free issue in aoecmd_cfg_pkts (bsc#1218562). * CVE-2023-52652: Fixed NTB for possible name leak in ntb_register_device() (bsc#1223686). * CVE-2023-52645: Fixed pmdomain/mediatek race conditions with genpd (bsc#1223033). * CVE-2023-52636: Fixed libceph cursor init when preparing sparse read in msgr2 (bsc#1222247). * CVE-2023-52635: Fixed PM/devfreq to synchronize devfreq_monitor_[start/stop] (bsc#1222294). * CVE-2023-52627: Fixed iio:adc:ad7091r exports into IIO_AD7091R namespace (bsc#1222051). * CVE-2023-52620: Fixed netfilter/nf_tables to disallow timeout for anonymous sets never used from userspace (bsc#1221825). * CVE-2023-52616: Fixed unexpected pointer access in crypto/lib/mpi in mpi_ec_init (bsc#1221612). * CVE-2023-52614: Fixed PM/devfreq buffer overflow in trans_stat_show (bsc#1221617). * CVE-2023-52593: Fixed wifi/wfx possible NULL pointer dereference in wfx_set_mfp_ap() (bsc#1221042). * CVE-2023-52591: Fixed a possible reiserfs filesystem corruption via directory renaming (bsc#1221044). * CVE-2023-52590: Fixed a possible ocfs2 filesystem corruption via directory renaming (bsc#1221088). * CVE-2023-52589: Fixed media/rkisp1 IRQ disable race issue (bsc#1221084). * CVE-2023-52585: Fixed drm/amdgpu for possible NULL pointer dereference in amdgpu_ras_query_error_status_helper() (bsc#1221080). * CVE-2023-52561: Fixed arm64/dts/qcom/sdm845-db845c to mark cont splash memory region (bsc#1220935). * CVE-2023-52503: Fixed tee/amdtee use-after-free vulnerability in amdtee_close_session (bsc#1220915). * CVE-2023-52488: Fixed serial/sc16is7xx convert from _raw_ to _noinc_ regmap functions for FIFO (bsc#1221162). * CVE-2022-48701: Fixed an out-of-bounds bug in __snd_usb_parse_audio_interface() (bsc#1223921). * CVE-2022-48662: Fixed a general protection fault (GPF) in i915_perf_open_ioctl (bsc#1223505). * CVE-2022-48659: Fixed mm/slub to return errno if kmalloc() fails (bsc#1223498). * CVE-2022-48658: Fixed mm/slub to avoid a problem in flush_cpu_slab()/__free_slab() task context (bsc#1223496). * CVE-2022-48651: Fixed an out-of-bound bug in ipvlan caused by unset skb->mac_header (bsc#1223513). * CVE-2022-48642: Fixed netfilter/nf_tables percpu memory leak at nf_tables_addchain() (bsc#1223478). * CVE-2022-48640: Fixed bonding for possible NULL pointer dereference in bond_rr_gen_slave_id (bsc#1223499). * CVE-2022-48631: Fixed a bug in ext4, when parsing extents where eh_entries == 0 and eh_depth > 0 (bsc#1223475). * CVE-2021-47214: Fixed hugetlb/userfaultfd during restore reservation in hugetlb_mcopy_atomic_pte() (bsc#1222710). * CVE-2021-47211: Fixed a null pointer dereference on pointer cs_desc in usb- audio (bsc#1222869). * CVE-2021-47207: Fixed a null pointer dereference on pointer block in gus (bsc#1222790). * CVE-2021-47205: Unregistered clocks/resets when unbinding in sunxi-ng (bsc#1222888). * CVE-2021-47202: Fixed NULL pointer dereferences in of_thermal_ functions (bsc#1222878) * CVE-2021-47200: Fixed drm/prime for possible use-after-free in mmap within drm_gem_ttm_mmap() and drm_gem_ttm_mmap() (bsc#1222838). * CVE-2021-47195: Fixed use-after-free inside SPI via add_lock mutex (bsc#1222832). * CVE-2021-47189: Fixed denial of service due to memory ordering issues between normal and ordered work functions in btrfs (bsc#1222706). * CVE-2021-47185: Fixed a softlockup issue in flush_to_ldisc in tty tty_buffer (bsc#1222669). * CVE-2021-47184: Fixed NULL pointer dereference on VSI filter sync (bsc#1222666). * CVE-2021-47183: Fixed a null pointer dereference during link down processing in scsi lpfc (bsc#1192145, bsc#1222664). * CVE-2021-47182: Fixed scsi_mode_sense() buffer length handling (bsc#1222662). * CVE-2021-47181: Fixed a null pointer dereference caused by calling platform_get_resource() (bsc#1222660). The following non-security bugs were fixed: * ALSA: firewire-lib: handle quirk to calculate payload quadlets as data block counter (stable-fixes). * ALSA: hda/realtek - Enable audio jacks of Haier Boyue G42 with ALC269VC (stable-fixes). * ALSA: hda/realtek - Fix inactive headset mic jack (stable-fixes). * ALSA: hda/realtek: Add quirk for HP SnowWhite laptops (stable-fixes). * ALSA: hda/realtek: Fix mute led of HP Laptop 15-da3001TU (stable-fixes). * ALSA: hda: intel-sdw-acpi: fix usage of device_get_named_child_node() (git- fixes). * ALSA: scarlett2: Add Focusrite Clarett 2Pre and 4Pre USB support (stable- fixes). * ALSA: scarlett2: Add Focusrite Clarett+ 2Pre and 4Pre support (stable- fixes). * ALSA: scarlett2: Add correct product series name to messages (stable-fixes). * ALSA: scarlett2: Add support for Clarett 8Pre USB (stable-fixes). * ALSA: scarlett2: Default mixer driver to enabled (stable-fixes). * ALSA: scarlett2: Move USB IDs out from device_info struct (stable-fixes). * ASoC: meson: axg-card: make links nonatomic (git-fixes). * ASoC: meson: axg-tdm-interface: manage formatters in trigger (git-fixes). * ASoC: meson: cards: select SND_DYNAMIC_MINORS (git-fixes). * ASoC: soc-core.c: Skip dummy codec when adding platforms (stable-fixes). * ASoC: tegra: Fix DSPK 16-bit playback (git-fixes). * ASoC: ti: davinci-mcasp: Fix race condition during probe (git-fixes). * Bluetooth: Add new quirk for broken read key length on ATS2851 (git-fixes). * Bluetooth: Fix TOCTOU in HCI debugfs implementation (git-fixes). * Bluetooth: Fix memory leak in hci_req_sync_complete() (git-fixes). * Bluetooth: Fix type of len in {l2cap,sco}_sock_getsockopt_old() (stable- fixes). * Bluetooth: L2CAP: Fix not validating setsockopt user input (git-fixes). * Bluetooth: RFCOMM: Fix not validating setsockopt user input (git-fixes). * Bluetooth: SCO: Fix not validating setsockopt user input (git-fixes). * Bluetooth: add quirk for broken address properties (git-fixes). * Bluetooth: btintel: Fix null ptr deref in btintel_read_version (stable- fixes). * Bluetooth: btintel: Fixe build regression (git-fixes). * Bluetooth: btusb: Add Realtek RTL8852BE support ID 0x0bda:0x4853 (stable- fixes). * Bluetooth: hci_event: Fix sending HCI_OP_READ_ENC_KEY_SIZE (git-fixes). * Bluetooth: hci_event: set the conn encrypted before conn establishes (stable-fixes). * Bluetooth: hci_sock: Fix not validating setsockopt user input (git-fixes). * Bluetooth: qca: fix NULL-deref on non-serdev suspend (git-fixes). * Documentation: Add missing documentation for EXPORT_OP flags (stable-fixes). * HID: intel-ish-hid: ipc: Fix dev_err usage with uninitialized dev->devc (git-fixes). * HID: logitech-dj: allow mice to use all types of reports (git-fixes). * HID: uhid: Use READ_ONCE()/WRITE_ONCE() for ->running (stable-fixes). * Input: allocate keycode for Display refresh rate toggle (stable-fixes). * Input: synaptics-rmi4 - fail probing if memory allocation for "phys" fails (stable-fixes). * NFC: trf7970a: disable all regulators on removal (git-fixes). * NFS: avoid spurious warning of lost lock that is being unlocked (bsc#1221791). * PCI/AER: Block runtime suspend when handling errors (git-fixes). * PCI/DPC: Quirk PIO log size for Intel Ice Lake Root Ports (git-fixes). * PCI/DPC: Quirk PIO log size for Intel Raptor Lake Root Ports (git-fixes). * PCI/DPC: Quirk PIO log size for certain Intel Root Ports (git-fixes). * PCI/PM: Drain runtime-idle callbacks before driver removal (git-fixes). * PCI: Drop pci_device_remove() test of pci_dev->driver (git-fixes). * PCI: rpaphp: Error out on busy status from get-sensor-state (bsc#1223369 ltc#205888). * RAS: Avoid build errors when CONFIG_DEBUG_FS=n (jsc#PED-7619). * RDMA/cm: Print the old state when cm_destroy_id gets timeout (git-fixes). * RDMA/cm: add timeout to cm_destroy_id wait (git-fixes) * README.BRANCH: Correct email address for Petr Tesarik * README.BRANCH: Remove copy of branch name * Reapply "drm/qxl: simplify qxl_fence_wait" (stable-fixes). * Revert "ACPI: PM: Block ASUS B1400CEAE from suspend to idle by default" (stable-fixes). * Revert "drm/qxl: simplify qxl_fence_wait" (git-fixes). * Revert "ice: Fix ice VF reset during iavf initialization (jsc#PED-376)." (bsc#1223275) * Revert "usb: cdc-wdm: close race between read and workqueue" (git-fixes). * Revert "usb: phy: generic: Get the vbus supply" (git-fixes). * USB: UAS: return ENODEV when submit urbs fail with device not attached (stable-fixes). * USB: serial: add device ID for VeriFone adapter (stable-fixes). * USB: serial: cp210x: add ID for MGP Instruments PDS100 (stable-fixes). * USB: serial: cp210x: add pid/vid for TDK NC0110013M and MM0110113M (stable- fixes). * USB: serial: ftdi_sio: add support for GMC Z216C Adapter IR-USB (stable- fixes). * USB: serial: option: add Fibocom FM135-GL variants (stable-fixes). * USB: serial: option: add Lonsung U8300/U9300 product (stable-fixes). * USB: serial: option: add MeiG Smart SLM320 product (stable-fixes). * USB: serial: option: add Rolling RW101-GL and RW135-GL support (stable- fixes). * USB: serial: option: add Telit FN920C04 rmnet compositions (stable-fixes). * USB: serial: option: add support for Fibocom FM650/FG650 (stable-fixes). * USB: serial: option: support Quectel EM060K sub-models (stable-fixes). * ahci: asm1064: asm1166: do not limit reported ports (git-fixes). * ahci: asm1064: correct count of reported ports (stable-fixes). * arm64: dts: imx8-ss-conn: fix usdhc wrong lpcg clock order (git-fixes) * arm64: dts: rockchip: Remove unsupported node from the Pinebook Pro (git- fixes) * arm64: dts: rockchip: enable internal pull-up for Q7_THRM# on RK3399 (git- fixes) * arm64: dts: rockchip: enable internal pull-up on PCIE_WAKE# for (git-fixes) * arm64: dts: rockchip: enable internal pull-up on Q7_USB_ID for RK3399 (git- fixes) * arm64: dts: rockchip: fix rk3328 hdmi ports node (git-fixes) * arm64: dts: rockchip: fix rk3399 hdmi ports node (git-fixes) * arm64: hibernate: Fix level3 translation fault in swsusp_save() (git-fixes). * ax25: fix use-after-free bugs caused by ax25_ds_del_timer (git-fixes). * batman-adv: Avoid infinite loop trying to resize local TT (git-fixes). * bcache: Fix __bch_btree_node_alloc to make the failure behavior consistent (git-fixes). * bcache: Remove dead references to cache_readaheads (git-fixes). * bcache: Remove unnecessary NULL point check in node allocations (git-fixes). * bcache: add code comments for bch_btree_node_get() and __bch_btree_node_alloc() (git-fixes). * bcache: avoid NULL checking to c->root in run_cache_set() (git-fixes). * bcache: avoid oversize memory allocation by small stripe_size (git-fixes). * bcache: bset: Fix comment typos (git-fixes). * bcache: check return value from btree_node_alloc_replacement() (git-fixes). * bcache: fix NULL pointer reference in cached_dev_detach_finish (git-fixes). * bcache: fix error info in register_bcache() (git-fixes). * bcache: fixup bcache_dev_sectors_dirty_add() multithreaded CPU false sharing (git-fixes). * bcache: fixup btree_cache_wait list damage (git-fixes). * bcache: fixup init dirty data errors (git-fixes). * bcache: fixup lock c->root error (git-fixes). * bcache: fixup multi-threaded bch_sectors_dirty_init() wake-up race (git- fixes). * bcache: move calc_cached_dev_sectors to proper place on backing device detach (git-fixes). * bcache: move uapi header bcache.h to bcache code directory (git-fixes). * bcache: prevent potential division by zero error (git-fixes). * bcache: remove EXPERIMENTAL for Kconfig option 'Asynchronous device registration' (git-fixes). * bcache: remove redundant assignment to variable cur_idx (git-fixes). * bcache: remove the backing_dev_name field from struct cached_dev (git- fixes). * bcache: remove the cache_dev_name field from struct cache (git-fixes). * bcache: remove unnecessary flush_workqueue (git-fixes). * bcache: remove unused bch_mark_cache_readahead function def in stats.h (git- fixes). * bcache: replace a mistaken IS_ERR() by IS_ERR_OR_NULL() in btree_gc_coalesce() (git-fixes). * bcache: replace snprintf in show functions with sysfs_emit (git-fixes). * bcache: revert replacing IS_ERR_OR_NULL with IS_ERR (git-fixes). * bcache: use bvec_kmap_local in bch_data_verify (git-fixes). * bcache: use bvec_kmap_local in bio_csum (git-fixes). * bcache: use default_groups in kobj_type (git-fixes). * bcache:: fix repeated words in comments (git-fixes). * ceph: stop copying to iter at EOF on sync reads (bsc#1223068). * ceph: switch to corrected encoding of max_xattr_size in mdsmap (bsc#1223067). * clk: Get runtime PM before walking tree during disable_unused (git-fixes). * clk: Initialize struct clk_core kref earlier (stable-fixes). * clk: Mark 'all_lists' as const (stable-fixes). * clk: Print an info line before disabling unused clocks (stable-fixes). * clk: Remove prepare_lock hold assertion in __clk_release() (git-fixes). * clk: remove extra empty line (stable-fixes). * comedi: vmk80xx: fix incomplete endpoint checking (git-fixes). * dm cache policy smq: ensure IO does not prevent cleaner policy progress (git-fixes). * dm cache: add cond_resched() to various workqueue loops (git-fixes). * dm clone: call kmem_cache_destroy() in dm_clone_init() error path (git- fixes). * dm crypt: add cond_resched() to dmcrypt_write() (git-fixes). * dm crypt: avoid accessing uninitialized tasklet (git-fixes). * dm flakey: do not corrupt the zero page (git-fixes). * dm flakey: fix a bug with 32-bit highmem systems (git-fixes). * dm flakey: fix a crash with invalid table line (git-fixes). * dm flakey: fix logic when corrupting a bio (git-fixes). * dm init: add dm-mod.waitfor to wait for asynchronously probed block devices (git-fixes). * dm integrity: call kmem_cache_destroy() in dm_integrity_init() error path (git-fixes). * dm integrity: fix out-of-range warning (git-fixes). * dm integrity: reduce vmalloc space footprint on 32-bit architectures (git- fixes). * dm raid: clean up four equivalent goto tags in raid_ctr() (git-fixes). * dm raid: fix false positive for requeue needed during reshape (git-fixes). * dm raid: fix missing reconfig_mutex unlock in raid_ctr() error paths (git- fixes). * dm stats: check for and propagate alloc_percpu failure (git-fixes). * dm thin metadata: Fix ABBA deadlock by resetting dm_bufio_client (git- fixes). * dm thin metadata: check fail_io before using data_sm (git-fixes). * dm thin: add cond_resched() to various workqueue loops (git-fixes). * dm thin: fix deadlock when swapping to thin device (bsc#1177529). * dm verity: do not perform FEC for failed readahead IO (git-fixes). * dm verity: fix error handling for check_at_most_once on FEC (git-fixes). * dm zoned: free dmz->ddev array in dmz_put_zoned_devices (git-fixes). * dm-delay: fix a race between delay_presuspend and delay_bio (git-fixes). * dm-integrity: do not modify bio's immutable bio_vec in integrity_metadata() (git-fixes). * dm-raid: fix lockdep waring in "pers->hot_add_disk" (git-fixes). * dm-verity, dm-crypt: align "struct bvec_iter" correctly (git-fixes). * dm-verity: align struct dm_verity_fec_io properly (git-fixes). * dm: add cond_resched() to dm_wq_work() (git-fixes). * dm: call the resume method on internal suspend (git-fixes). * dm: do not lock fs when the map is NULL during suspend or resume (git- fixes). * dm: do not lock fs when the map is NULL in process of resume (git-fixes). * dm: remove flush_scheduled_work() during local_exit() (git-fixes). * dm: send just one event on resize, not two (git-fixes). * dma: xilinx_dpdma: Fix locking (git-fixes). * dmaengine: idxd: Fix oops during rmmod on single-CPU platforms (git-fixes). * dmaengine: owl: fix register access functions (git-fixes). * dmaengine: tegra186: Fix residual calculation (git-fixes). * docs: Document the FAN_FS_ERROR event (stable-fixes). * drm-print: add drm_dbg_driver to improve namespace symmetry (stable-fixes). * drm/amd/display: Do not recursively call manual trigger programming (stable- fixes). * drm/amd/display: Fix nanosec stat overflow (stable-fixes). * drm/amd/display: fix disable otg wa logic in DCN316 (stable-fixes). * drm/amd/pm: fixes a random hang in S4 for SMU v13.0.4/11 (stable-fixes). * drm/amdgpu/sdma5.2: use legacy HDP flush for SDMA2/3 (stable-fixes). * drm/amdgpu: Fix leak when GPU memory allocation fails (stable-fixes). * drm/amdgpu: Reset dGPU if suspend got aborted (stable-fixes). * drm/amdgpu: always force full reset for SOC21 (stable-fixes). * drm/amdgpu: fix incorrect active rb bitmap for gfx11 (stable-fixes). * drm/amdgpu: fix incorrect number of active RBs for gfx11 (stable-fixes). * drm/amdgpu: once more fix the call oder in amdgpu_ttm_move() v2 (git-fixes). * drm/amdgpu: validate the parameters of bo mapping operations more clearly (git-fixes). * drm/amdkfd: Reset GPU on queue preemption failure (stable-fixes). * drm/ast: Fix soft lockup (git-fixes). * drm/client: Fully protect modes[] with dev->mode_config.mutex (stable- fixes). * drm/i915/cdclk: Fix CDCLK programming order when pipes are active (git- fixes). * drm/i915/vrr: Disable VRR when using bigjoiner (stable-fixes). * drm/i915: Disable port sync when bigjoiner is used (stable-fixes). * drm/msm/dp: fix typo in dp_display_handle_port_status_changed() (git-fixes). * drm/nouveau/nvkm: add a replacement for nvkm_notify (bsc#1223834) * drm/panel: ili9341: Respect deferred probe (git-fixes). * drm/panel: ili9341: Use predefined error codes (git-fixes). * drm/panel: visionox-rm69299: do not unregister DSI device (git-fixes). * drm/vc4: do not check if plane->state->fb == state->fb (stable-fixes). * drm/vmwgfx: Enable DMA mappings with SEV (git-fixes). * drm/vmwgfx: Fix crtc's atomic check conditional (git-fixes). * drm/vmwgfx: Fix invalid reads in fence signaled events (git-fixes). * drm/vmwgfx: Sort primary plane formats by order of preference (git-fixes). * drm: nv04: Fix out of bounds access (git-fixes). * drm: panel-orientation-quirks: Add quirk for GPD Win Mini (stable-fixes). * drm: panel-orientation-quirks: Add quirk for Lenovo Legion Go (stable- fixes). * dump_stack: Do not get cpu_sync for panic CPU (bsc#1223574). * fbdev: fix incorrect address computation in deferred IO (git-fixes). * fbdev: viafb: fix typo in hw_bitblt_1 and hw_bitblt_2 (stable-fixes). * fbmon: prevent division by zero in fb_videomode_from_videomode() (stable- fixes). * fix build warning * fuse: do not unhash root (bsc#1223951). * fuse: fix root lookup with nonzero generation (bsc#1223950). * hwmon: (amc6821) add of_match table (stable-fixes). * i2c: pxa: hide unused icr_bits[] variable (git-fixes). * i2c: smbus: fix NULL function pointer dereference (git-fixes). * i40e: Fix VF MAC filter removal (git-fixes). * idma64: Do not try to serve interrupts when device is powered off (git- fixes). * iio: accel: mxc4005: Interrupt handling fixes (git-fixes). * iio:imu: adis16475: Fix sync mode setting (git-fixes). * init/main.c: Fix potential static_command_line memory overflow (git-fixes). * iommu/amd: Add a length limitation for the ivrs_acpihid command-line parameter (git-fixes). * iommu/amd: Do not block updates to GATag if guest mode is on (git-fixes). * iommu/amd: Fix "Guest Virtual APIC Table Root Pointer" configuration in IRTE (git-fixes). * iommu/amd: Fix domain flush size when syncing iotlb (git-fixes). * iommu/amd: Fix error handling for pdev_pri_ats_enable() (git-fixes). * iommu/arm-smmu-qcom: Limit the SMR groups to 128 (git-fixes). * iommu/arm-smmu-v3: Acknowledge pri/event queue overflow if any (git-fixes). * iommu/arm-smmu-v3: Work around MMU-600 erratum 1076982 (git-fixes). * iommu/fsl: fix all kernel-doc warnings in fsl_pamu.c (git-fixes). * iommu/iova: Fix alloc iova overflows issue (git-fixes). * iommu/mediatek: Flush IOTLB completely only if domain has been attached (git-fixes). * iommu/rockchip: Fix unwind goto issue (git-fixes). * iommu/sprd: Release dma buffer to avoid memory leak (git-fixes). * iommu/vt-d: Allocate local memory for page request queue (git-fixes). * iommu/vt-d: Allow zero SAGAW if second-stage not supported (git-fixes). * iommu/vt-d: Fix error handling in sva enable/disable paths (git-fixes). * iommu: Fix error unwind in iommu_group_alloc() (git-fixes). * ipv6/addrconf: fix a potential refcount underflow for idev (git-fixes). * kABI: Adjust trace_iterator.wait_index (git-fixes). * kprobes: Fix double free of kretprobe_holder (bsc#1220901). * kprobes: Fix possible use-after-free issue on kprobe registration (git- fixes). * libnvdimm/of_pmem: Use devm_kstrdup instead of kstrdup and check its return value (git-fixes). * libnvdimm/region: Allow setting align attribute on regions without mappings (git-fixes). * livepatch: Fix missing newline character in klp_resolve_symbols() (bsc#1223539). * md/raid1: fix choose next idle in read_balance() (git-fixes). * md: Do not clear MD_CLOSING when the raid is about to stop (git-fixes). * md: do not clear MD_RECOVERY_FROZEN for new dm-raid until resume (git- fixes). * media: cec: core: remove length check of Timer Status (stable-fixes). * media: sta2x11: fix irq handler cast (stable-fixes). * mei: me: add arrow lake point H DID (stable-fixes). * mei: me: add arrow lake point S DID (stable-fixes). * mei: me: disable RPL-S on SPS and IGN firmwares (git-fixes). * mm/vmscan: make sure wakeup_kswapd with managed zone (bsc#1223473). * mmc: sdhci-msm: pervent access to suspended controller (git-fixes). * mtd: diskonchip: work around ubsan link failure (stable-fixes). * nd_btt: Make BTT lanes preemptible (git-fixes). * net: bridge: vlan: fix memory leak in __allowed_ingress (git-fixes). * net: fix a memleak when uncloning an skb dst and its metadata (git-fixes). * net: fix skb leak in __skb_tstamp_tx() (git-fixes). * net: ipv6: ensure we call ipv6_mc_down() at most once (git-fixes). * net: mld: fix reference count leak in mld_{query | report}_work() (git- fixes). * net: stream: purge sk_error_queue in sk_stream_kill_queues() (git-fixes). * net: usb: ax88179_178a: avoid the interface always configured as random address (git-fixes). * net: usb: ax88179_178a: avoid writing the mac address before first reading (git-fixes). * net: usb: ax88179_178a: stop lying about skb->truesize (git-fixes). * net: vlan: fix underflow for the real_dev refcnt (git-fixes). * netfilter: br_netfilter: Drop dst references before setting (git-fixes). * netfilter: ipt_CLUSTERIP: fix refcount leak in clusterip_tg_check() (git- fixes). * netfilter: nft_ct: fix l3num expectations with inet pseudo family (git- fixes). * nfsd: Fixed mount issue with KOTD (bsc#1223380 bsc#1217408 bsc#1223640). * nfsd: use __fput_sync() to avoid delayed closing of files (bsc#1223380 bsc#1217408). * nilfs2: fix OOB in nilfs_set_de_type (git-fixes). * nilfs2: fix OOB in nilfs_set_de_type (git-fixes). * nouveau: fix function cast warning (git-fixes). * nouveau: fix instmem race condition around ptr stores (git-fixes). * nvdimm/namespace: drop nested variable in create_namespace_pmem() (git- fixes). * nvdimm: Allow overwrite in the presence of disabled dimms (git-fixes). * nvdimm: Fix badblocks clear off-by-one error (git-fixes). * nvdimm: Fix dereference after free in register_nvdimm_pmu() (git-fixes). * nvdimm: Fix firmware activation deadlock scenarios (git-fixes). * nvdimm: Fix memleak of pmu attr_groups in unregister_nvdimm_pmu() (git- fixes). * pci_iounmap(): Fix MMIO mapping leak (git-fixes). * phy: tegra: xusb: Add API to retrieve the port number of phy (stable-fixes). * pinctrl: renesas: checker: Limit cfg reg enum checks to provided IDs (stable-fixes). * platform/x86: intel-vbtn: Update tablet mode switch at end of probe (git- fixes). * platform/x86: touchscreen_dmi: Add an extra entry for a variant of the Chuwi Vi8 tablet (stable-fixes). * powerpc/kasan: Do not instrument non-maskable or raw interrupts (bsc#1223191). * powerpc/pseries/iommu: LPAR panics when rebooted with a frozen PE (bsc#1222011 ltc#205900). * powerpc/rtas: define pr_fmt and convert printk call sites (bsc#1223369 ltc#205888). * powerpc/rtas: export rtas_error_rc() for reuse (bsc#1223369 ltc#205888). * powerpc: Avoid nmi_enter/nmi_exit in real mode interrupt (bsc#1221645 ltc#205739 bsc#1223191). * powerpc: Refactor verification of MSR_RI (bsc#1223191). * printk: Add this_cpu_in_panic() (bsc#1223574). * printk: Adjust mapping for 32bit seq macros (bsc#1223574). * printk: Avoid non-panic CPUs writing to ringbuffer (bsc#1223574). * printk: Disable passing console lock owner completely during panic() (bsc#1223574). * printk: Drop console_sem during panic (bsc#1223574). * printk: Rename abandon_console_lock_in_panic() to other_cpu_in_panic() (bsc#1223574). * printk: Use prb_first_seq() as base for 32bit seq macros (bsc#1223574). * printk: Wait for all reserved records with pr_flush() (bsc#1223574). * printk: nbcon: Relocate 32bit seq macros (bsc#1223574). * printk: ringbuffer: Clarify special lpos values (bsc#1223574). * printk: ringbuffer: Cleanup reader terminology (bsc#1223574). * printk: ringbuffer: Do not skip non-finalized records with prb_next_seq() (bsc#1223574). * printk: ringbuffer: Improve prb_next_seq() performance (bsc#1223574). * printk: ringbuffer: Skip non-finalized records in panic (bsc#1223574). * pstore/zone: Add a null pointer check to the psz_kmsg_read (stable-fixes). * ring-buffer: Do not set shortest_full when full target is hit (git-fixes). * ring-buffer: Fix full_waiters_pending in poll (git-fixes). * ring-buffer: Fix resetting of shortest_full (git-fixes). * ring-buffer: Fix waking up ring buffer readers (git-fixes). * ring-buffer: Make wake once of ring_buffer_wait() more robust (git-fixes). * ring-buffer: Use wait_event_interruptible() in ring_buffer_wait() (git- fixes). * ring-buffer: use READ_ONCE() to read cpu_buffer->commit_page in concurrent environment (git-fixes). * s390/cio: Ensure the copied buf is NUL terminated (git-fixes bsc#1223875). * s390/decompressor: fix misaligned symbol build error (git-fixes bsc#1223785). * s390/mm: Fix clearing storage keys for huge pages (git-fixes bsc#1223877). * s390/mm: Fix storage key clearing for guest huge pages (git-fixes bsc#1223878). * s390/qeth: Fix kernel panic after setting hsuid (git-fixes bsc#1223879). * s390/scm: fix virtual vs physical address confusion (git-fixes bsc#1223784). * s390/vdso: Add CFI for RA register to asm macro vdso_func (git-fixes bsc#1223876). * s390/vdso: drop '-fPIC' from LDFLAGS (git-fixes bsc#1223598). * s390/zcrypt: fix reference counting on zcrypt card objects (git-fixes bsc#1223595). * s390: Fixed LPM of lpar failure with error HSCLA2CF in 19th loops (jsc#PED-542 git-fixes bsc#1213573 ltc#203238). * s390: Fixed kernel backtrack (bsc#1141539 git-fixes). * serial/pmac_zilog: Remove flawed mitigation for rx irq flood (git-fixes). * serial: core: Provide port lock wrappers (stable-fixes). * serial: core: fix kernel-doc for uart_port_unlock_irqrestore() (git-fixes). * serial: mxs-auart: add spinlock around changing cts state (git-fixes). * slimbus: qcom-ngd-ctrl: Add timeout for wait operation (git-fixes). * speakup: Avoid crash on very long word (git-fixes). * speakup: Fix 8bit characters from direct synth (git-fixes). * tcp/udp: Fix memleaks of sk and zerocopy skbs with TX timestamp (git-fixes). * thunderbolt: Avoid notify PM core about runtime PM resume (stable-fixes). * thunderbolt: Fix wake configurations after device unplug (stable-fixes). * tracing/net_sched: Fix tracepoints that save qdisc_dev() as a string (git- fixes). * tracing/ring-buffer: Fix wait_on_pipe() race (git-fixes). * tracing: Have saved_cmdlines arrays all in one allocation (git-fixes). * tracing: Remove precision vsnprintf() check from print event (git-fixes). * tracing: Show size of requested perf buffer (git-fixes). * tracing: Use .flush() call to wake up readers (git-fixes). * usb: Disable USB3 LPM at shutdown (stable-fixes). * usb: Fix regression caused by invalid ep0 maxpacket in virtual SuperSpeed device (git-fixes). * usb: dwc2: host: Fix dereference issue in DDMA completion flow (git-fixes). * usb: gadget: composite: fix OS descriptors w_value logic (git-fixes). * usb: gadget: f_fs: Fix a race condition when processing setup packets (git- fixes). * usb: gadget: f_ncm: Fix UAF ncm object at re-bind after usb ep transport error (stable-fixes). * usb: gadget: tegra-xudc: Fix USB3 PHY retrieval logic (git-fixes). * usb: ohci: Prevent missed ohci interrupts (git-fixes). * usb: sl811-hcd: only defined function checkdone if QUIRK2 is defined (stable-fixes). * usb: typec: tcpci: add generic tcpci fallback compatible (stable-fixes). * usb: typec: tcpm: Check for port partner validity before consuming it (git- fixes). * usb: typec: tcpm: unregister existing source caps before re-registration (bsc#1220569). * usb: typec: ucsi: Ack unsupported commands (stable-fixes). * usb: typec: ucsi: Clear UCSI_CCI_RESET_COMPLETE before reset (stable-fixes). * usb: typec: ucsi: Fix connector check on init (git-fixes). * usb: udc: remove warning when queue disabled ep (stable-fixes). * vdpa/mlx5: Allow CVQ size changes (git-fixes). * virtio: treat alloc_dax() -EOPNOTSUPP failure as non-fatal (bsc#1223949). * wifi: ath9k: fix LNA selection in ath_ant_try_scan() (stable-fixes). * wifi: iwlwifi: mvm: remove old PASN station when adding a new one (git- fixes). * wifi: iwlwifi: mvm: return uid from iwl_mvm_build_scan_cmd (git-fixes). * wifi: mac80211: check/clear fast rx for non-4addr sta VLAN changes (stable- fixes). * wifi: nl80211: do not free NULL coalescing rule (git-fixes). * x86/cpufeatures: Fix dependencies for GFNI, VAES, and VPCLMULQDQ (git- fixes). * x86/mm: Ensure input to pfn_to_kaddr() is treated as a 64-bit type (jsc#PED-7167 git-fixes). * x86/sev: Skip ROM range scans and validation for SEV-SNP guests (jsc#PED-7167 git-fixes). * x86/xen: Add some null pointer checking to smp.c (git-fixes). * x86/xen: add CPU dependencies for 32-bit build (git-fixes). * x86/xen: fix percpu vcpu_info allocation (git-fixes). * xen-netback: properly sync TX responses (git-fixes). * xen-netfront: Add missing skb_mark_for_recycle (git-fixes). * xen/gntdev: Fix the abuse of underlying struct page in DMA-buf import (git- fixes). * xen/xenbus: document will_handle argument for xenbus_watch_path() (git- fixes). * xfrm6: fix inet6_dev refcount underflow problem (git-fixes). ## Special Instructions and Notes: * Please reboot the system after installing this update. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.5 zypper in -t patch SUSE-2024-1663=1 openSUSE-SLE-15.5-2024-1663=1 * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2024-1663=1 * SUSE Linux Enterprise Live Patching 15-SP5 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP5-2024-1663=1 * SUSE Real Time Module 15-SP5 zypper in -t patch SUSE-SLE-Module-RT-15-SP5-2024-1663=1 ## Package List: * openSUSE Leap 15.5 (noarch) * kernel-devel-rt-5.14.21-150500.13.52.1 * kernel-source-rt-5.14.21-150500.13.52.1 * openSUSE Leap 15.5 (x86_64) * gfs2-kmp-rt-5.14.21-150500.13.52.1 * kernel-rt-extra-debuginfo-5.14.21-150500.13.52.1 * kernel-rt_debug-debuginfo-5.14.21-150500.13.52.1 * kernel-rt-livepatch-devel-5.14.21-150500.13.52.1 * kernel-livepatch-5_14_21-150500_13_52-rt-1-150500.11.5.1 * reiserfs-kmp-rt-5.14.21-150500.13.52.1 * kernel-rt-optional-debuginfo-5.14.21-150500.13.52.1 * kernel-rt_debug-debugsource-5.14.21-150500.13.52.1 * kernel-rt-debugsource-5.14.21-150500.13.52.1 * dlm-kmp-rt-5.14.21-150500.13.52.1 * kernel-rt-optional-5.14.21-150500.13.52.1 * kselftests-kmp-rt-debuginfo-5.14.21-150500.13.52.1 * dlm-kmp-rt-debuginfo-5.14.21-150500.13.52.1 * kernel-rt-extra-5.14.21-150500.13.52.1 * kernel-syms-rt-5.14.21-150500.13.52.1 * gfs2-kmp-rt-debuginfo-5.14.21-150500.13.52.1 * kernel-livepatch-SLE15-SP5-RT_Update_14-debugsource-1-150500.11.5.1 * kernel-rt_debug-devel-5.14.21-150500.13.52.1 * kernel-rt_debug-devel-debuginfo-5.14.21-150500.13.52.1 * kernel-rt_debug-vdso-5.14.21-150500.13.52.1 * kernel-rt_debug-livepatch-devel-5.14.21-150500.13.52.1 * kernel-rt-debuginfo-5.14.21-150500.13.52.1 * ocfs2-kmp-rt-5.14.21-150500.13.52.1 * kernel-rt-livepatch-5.14.21-150500.13.52.1 * kernel-livepatch-5_14_21-150500_13_52-rt-debuginfo-1-150500.11.5.1 * cluster-md-kmp-rt-debuginfo-5.14.21-150500.13.52.1 * kselftests-kmp-rt-5.14.21-150500.13.52.1 * kernel-rt-vdso-5.14.21-150500.13.52.1 * cluster-md-kmp-rt-5.14.21-150500.13.52.1 * ocfs2-kmp-rt-debuginfo-5.14.21-150500.13.52.1 * kernel-rt-devel-5.14.21-150500.13.52.1 * kernel-rt-devel-debuginfo-5.14.21-150500.13.52.1 * kernel-rt-vdso-debuginfo-5.14.21-150500.13.52.1 * reiserfs-kmp-rt-debuginfo-5.14.21-150500.13.52.1 * kernel-rt_debug-vdso-debuginfo-5.14.21-150500.13.52.1 * openSUSE Leap 15.5 (nosrc x86_64) * kernel-rt-5.14.21-150500.13.52.1 * kernel-rt_debug-5.14.21-150500.13.52.1 * SUSE Linux Enterprise Micro 5.5 (nosrc x86_64) * kernel-rt-5.14.21-150500.13.52.1 * SUSE Linux Enterprise Micro 5.5 (x86_64) * kernel-rt-debuginfo-5.14.21-150500.13.52.1 * kernel-rt-debugsource-5.14.21-150500.13.52.1 * SUSE Linux Enterprise Micro 5.5 (noarch) * kernel-source-rt-5.14.21-150500.13.52.1 * SUSE Linux Enterprise Live Patching 15-SP5 (x86_64) * kernel-livepatch-5_14_21-150500_13_52-rt-debuginfo-1-150500.11.5.1 * kernel-livepatch-5_14_21-150500_13_52-rt-1-150500.11.5.1 * kernel-livepatch-SLE15-SP5-RT_Update_14-debugsource-1-150500.11.5.1 * SUSE Real Time Module 15-SP5 (x86_64) * gfs2-kmp-rt-5.14.21-150500.13.52.1 * kernel-rt_debug-debuginfo-5.14.21-150500.13.52.1 * kernel-rt_debug-debugsource-5.14.21-150500.13.52.1 * kernel-rt-debugsource-5.14.21-150500.13.52.1 * dlm-kmp-rt-5.14.21-150500.13.52.1 * dlm-kmp-rt-debuginfo-5.14.21-150500.13.52.1 * kernel-syms-rt-5.14.21-150500.13.52.1 * gfs2-kmp-rt-debuginfo-5.14.21-150500.13.52.1 * kernel-rt_debug-devel-debuginfo-5.14.21-150500.13.52.1 * kernel-rt_debug-devel-5.14.21-150500.13.52.1 * kernel-rt_debug-vdso-5.14.21-150500.13.52.1 * kernel-rt-debuginfo-5.14.21-150500.13.52.1 * ocfs2-kmp-rt-5.14.21-150500.13.52.1 * cluster-md-kmp-rt-debuginfo-5.14.21-150500.13.52.1 * kernel-rt-vdso-5.14.21-150500.13.52.1 * cluster-md-kmp-rt-5.14.21-150500.13.52.1 * ocfs2-kmp-rt-debuginfo-5.14.21-150500.13.52.1 * kernel-rt-devel-5.14.21-150500.13.52.1 * kernel-rt-devel-debuginfo-5.14.21-150500.13.52.1 * kernel-rt-vdso-debuginfo-5.14.21-150500.13.52.1 * kernel-rt_debug-vdso-debuginfo-5.14.21-150500.13.52.1 * SUSE Real Time Module 15-SP5 (noarch) * kernel-devel-rt-5.14.21-150500.13.52.1 * kernel-source-rt-5.14.21-150500.13.52.1 * SUSE Real Time Module 15-SP5 (nosrc x86_64) * kernel-rt-5.14.21-150500.13.52.1 * kernel-rt_debug-5.14.21-150500.13.52.1 ## References: * https://www.suse.com/security/cve/CVE-2021-47047.html * https://www.suse.com/security/cve/CVE-2021-47181.html * https://www.suse.com/security/cve/CVE-2021-47182.html * https://www.suse.com/security/cve/CVE-2021-47183.html * https://www.suse.com/security/cve/CVE-2021-47184.html * https://www.suse.com/security/cve/CVE-2021-47185.html * https://www.suse.com/security/cve/CVE-2021-47187.html * https://www.suse.com/security/cve/CVE-2021-47188.html * https://www.suse.com/security/cve/CVE-2021-47189.html * https://www.suse.com/security/cve/CVE-2021-47191.html * https://www.suse.com/security/cve/CVE-2021-47192.html * https://www.suse.com/security/cve/CVE-2021-47193.html * https://www.suse.com/security/cve/CVE-2021-47194.html * https://www.suse.com/security/cve/CVE-2021-47195.html * https://www.suse.com/security/cve/CVE-2021-47196.html * https://www.suse.com/security/cve/CVE-2021-47197.html * https://www.suse.com/security/cve/CVE-2021-47198.html * https://www.suse.com/security/cve/CVE-2021-47199.html * https://www.suse.com/security/cve/CVE-2021-47200.html * https://www.suse.com/security/cve/CVE-2021-47201.html * https://www.suse.com/security/cve/CVE-2021-47202.html * https://www.suse.com/security/cve/CVE-2021-47203.html * https://www.suse.com/security/cve/CVE-2021-47204.html * https://www.suse.com/security/cve/CVE-2021-47205.html * https://www.suse.com/security/cve/CVE-2021-47206.html * https://www.suse.com/security/cve/CVE-2021-47207.html * https://www.suse.com/security/cve/CVE-2021-47209.html * https://www.suse.com/security/cve/CVE-2021-47210.html * https://www.suse.com/security/cve/CVE-2021-47211.html * https://www.suse.com/security/cve/CVE-2021-47212.html * https://www.suse.com/security/cve/CVE-2021-47214.html * https://www.suse.com/security/cve/CVE-2021-47215.html * https://www.suse.com/security/cve/CVE-2021-47216.html * https://www.suse.com/security/cve/CVE-2021-47217.html * https://www.suse.com/security/cve/CVE-2021-47218.html * https://www.suse.com/security/cve/CVE-2021-47219.html * https://www.suse.com/security/cve/CVE-2022-48631.html * https://www.suse.com/security/cve/CVE-2022-48632.html * https://www.suse.com/security/cve/CVE-2022-48634.html * https://www.suse.com/security/cve/CVE-2022-48636.html * https://www.suse.com/security/cve/CVE-2022-48637.html * https://www.suse.com/security/cve/CVE-2022-48638.html * https://www.suse.com/security/cve/CVE-2022-48639.html * https://www.suse.com/security/cve/CVE-2022-48640.html * https://www.suse.com/security/cve/CVE-2022-48642.html * https://www.suse.com/security/cve/CVE-2022-48644.html * https://www.suse.com/security/cve/CVE-2022-48646.html * https://www.suse.com/security/cve/CVE-2022-48647.html * https://www.suse.com/security/cve/CVE-2022-48648.html * https://www.suse.com/security/cve/CVE-2022-48650.html * https://www.suse.com/security/cve/CVE-2022-48651.html * https://www.suse.com/security/cve/CVE-2022-48652.html * https://www.suse.com/security/cve/CVE-2022-48653.html * https://www.suse.com/security/cve/CVE-2022-48654.html * https://www.suse.com/security/cve/CVE-2022-48655.html * https://www.suse.com/security/cve/CVE-2022-48656.html * https://www.suse.com/security/cve/CVE-2022-48657.html * https://www.suse.com/security/cve/CVE-2022-48658.html * https://www.suse.com/security/cve/CVE-2022-48659.html * https://www.suse.com/security/cve/CVE-2022-48660.html * https://www.suse.com/security/cve/CVE-2022-48662.html * https://www.suse.com/security/cve/CVE-2022-48663.html * https://www.suse.com/security/cve/CVE-2022-48667.html * https://www.suse.com/security/cve/CVE-2022-48668.html * https://www.suse.com/security/cve/CVE-2022-48671.html * https://www.suse.com/security/cve/CVE-2022-48672.html * https://www.suse.com/security/cve/CVE-2022-48673.html * https://www.suse.com/security/cve/CVE-2022-48675.html * https://www.suse.com/security/cve/CVE-2022-48686.html * https://www.suse.com/security/cve/CVE-2022-48687.html * https://www.suse.com/security/cve/CVE-2022-48688.html * https://www.suse.com/security/cve/CVE-2022-48690.html * https://www.suse.com/security/cve/CVE-2022-48692.html * https://www.suse.com/security/cve/CVE-2022-48693.html * https://www.suse.com/security/cve/CVE-2022-48694.html * https://www.suse.com/security/cve/CVE-2022-48695.html * https://www.suse.com/security/cve/CVE-2022-48697.html * https://www.suse.com/security/cve/CVE-2022-48698.html * https://www.suse.com/security/cve/CVE-2022-48700.html * https://www.suse.com/security/cve/CVE-2022-48701.html * https://www.suse.com/security/cve/CVE-2022-48702.html * https://www.suse.com/security/cve/CVE-2022-48703.html * https://www.suse.com/security/cve/CVE-2022-48704.html * https://www.suse.com/security/cve/CVE-2023-2860.html * https://www.suse.com/security/cve/CVE-2023-52488.html * https://www.suse.com/security/cve/CVE-2023-52503.html * https://www.suse.com/security/cve/CVE-2023-52561.html * https://www.suse.com/security/cve/CVE-2023-52585.html * https://www.suse.com/security/cve/CVE-2023-52589.html * https://www.suse.com/security/cve/CVE-2023-52590.html * https://www.suse.com/security/cve/CVE-2023-52591.html * https://www.suse.com/security/cve/CVE-2023-52593.html * https://www.suse.com/security/cve/CVE-2023-52614.html * https://www.suse.com/security/cve/CVE-2023-52616.html * https://www.suse.com/security/cve/CVE-2023-52620.html * https://www.suse.com/security/cve/CVE-2023-52627.html * https://www.suse.com/security/cve/CVE-2023-52635.html * https://www.suse.com/security/cve/CVE-2023-52636.html * https://www.suse.com/security/cve/CVE-2023-52645.html * https://www.suse.com/security/cve/CVE-2023-52652.html * https://www.suse.com/security/cve/CVE-2023-6270.html * https://www.suse.com/security/cve/CVE-2024-0639.html * https://www.suse.com/security/cve/CVE-2024-0841.html * https://www.suse.com/security/cve/CVE-2024-22099.html * https://www.suse.com/security/cve/CVE-2024-23307.html * https://www.suse.com/security/cve/CVE-2024-23848.html * https://www.suse.com/security/cve/CVE-2024-23850.html * https://www.suse.com/security/cve/CVE-2024-26601.html * https://www.suse.com/security/cve/CVE-2024-26610.html * https://www.suse.com/security/cve/CVE-2024-26656.html * https://www.suse.com/security/cve/CVE-2024-26660.html * https://www.suse.com/security/cve/CVE-2024-26671.html * https://www.suse.com/security/cve/CVE-2024-26673.html * https://www.suse.com/security/cve/CVE-2024-26675.html * https://www.suse.com/security/cve/CVE-2024-26680.html * https://www.suse.com/security/cve/CVE-2024-26681.html * https://www.suse.com/security/cve/CVE-2024-26684.html * https://www.suse.com/security/cve/CVE-2024-26685.html * https://www.suse.com/security/cve/CVE-2024-26687.html * https://www.suse.com/security/cve/CVE-2024-26688.html * https://www.suse.com/security/cve/CVE-2024-26689.html * https://www.suse.com/security/cve/CVE-2024-26696.html * https://www.suse.com/security/cve/CVE-2024-26697.html * https://www.suse.com/security/cve/CVE-2024-26702.html * https://www.suse.com/security/cve/CVE-2024-26704.html * https://www.suse.com/security/cve/CVE-2024-26718.html * https://www.suse.com/security/cve/CVE-2024-26722.html * https://www.suse.com/security/cve/CVE-2024-26727.html * https://www.suse.com/security/cve/CVE-2024-26733.html * https://www.suse.com/security/cve/CVE-2024-26736.html * https://www.suse.com/security/cve/CVE-2024-26737.html * https://www.suse.com/security/cve/CVE-2024-26739.html * https://www.suse.com/security/cve/CVE-2024-26743.html * https://www.suse.com/security/cve/CVE-2024-26744.html * https://www.suse.com/security/cve/CVE-2024-26745.html * https://www.suse.com/security/cve/CVE-2024-26747.html * https://www.suse.com/security/cve/CVE-2024-26749.html * https://www.suse.com/security/cve/CVE-2024-26751.html * https://www.suse.com/security/cve/CVE-2024-26754.html * https://www.suse.com/security/cve/CVE-2024-26760.html * https://www.suse.com/security/cve/CVE-2024-267600.html * https://www.suse.com/security/cve/CVE-2024-26763.html * https://www.suse.com/security/cve/CVE-2024-26764.html * https://www.suse.com/security/cve/CVE-2024-26766.html * https://www.suse.com/security/cve/CVE-2024-26769.html * https://www.suse.com/security/cve/CVE-2024-26771.html * https://www.suse.com/security/cve/CVE-2024-26772.html * https://www.suse.com/security/cve/CVE-2024-26773.html * https://www.suse.com/security/cve/CVE-2024-26776.html * https://www.suse.com/security/cve/CVE-2024-26779.html * https://www.suse.com/security/cve/CVE-2024-26783.html * https://www.suse.com/security/cve/CVE-2024-26787.html * https://www.suse.com/security/cve/CVE-2024-26790.html * https://www.suse.com/security/cve/CVE-2024-26792.html * https://www.suse.com/security/cve/CVE-2024-26793.html * https://www.suse.com/security/cve/CVE-2024-26798.html * https://www.suse.com/security/cve/CVE-2024-26805.html * https://www.suse.com/security/cve/CVE-2024-26807.html * https://www.suse.com/security/cve/CVE-2024-26816.html * https://www.suse.com/security/cve/CVE-2024-26817.html * https://www.suse.com/security/cve/CVE-2024-26820.html * https://www.suse.com/security/cve/CVE-2024-26825.html * https://www.suse.com/security/cve/CVE-2024-26830.html * https://www.suse.com/security/cve/CVE-2024-26833.html * https://www.suse.com/security/cve/CVE-2024-26836.html * https://www.suse.com/security/cve/CVE-2024-26843.html * https://www.suse.com/security/cve/CVE-2024-26848.html * https://www.suse.com/security/cve/CVE-2024-26852.html * https://www.suse.com/security/cve/CVE-2024-26853.html * https://www.suse.com/security/cve/CVE-2024-26855.html * https://www.suse.com/security/cve/CVE-2024-26856.html * https://www.suse.com/security/cve/CVE-2024-26857.html * https://www.suse.com/security/cve/CVE-2024-26861.html * https://www.suse.com/security/cve/CVE-2024-26862.html * https://www.suse.com/security/cve/CVE-2024-26866.html * https://www.suse.com/security/cve/CVE-2024-26872.html * https://www.suse.com/security/cve/CVE-2024-26875.html * https://www.suse.com/security/cve/CVE-2024-26878.html * https://www.suse.com/security/cve/CVE-2024-26879.html * https://www.suse.com/security/cve/CVE-2024-26881.html * https://www.suse.com/security/cve/CVE-2024-26882.html * https://www.suse.com/security/cve/CVE-2024-26883.html * https://www.suse.com/security/cve/CVE-2024-26884.html * https://www.suse.com/security/cve/CVE-2024-26885.html * https://www.suse.com/security/cve/CVE-2024-26891.html * https://www.suse.com/security/cve/CVE-2024-26893.html * https://www.suse.com/security/cve/CVE-2024-26895.html * https://www.suse.com/security/cve/CVE-2024-26896.html * https://www.suse.com/security/cve/CVE-2024-26897.html * https://www.suse.com/security/cve/CVE-2024-26898.html * https://www.suse.com/security/cve/CVE-2024-26901.html * https://www.suse.com/security/cve/CVE-2024-26903.html * https://www.suse.com/security/cve/CVE-2024-26917.html * https://www.suse.com/security/cve/CVE-2024-26927.html * https://www.suse.com/security/cve/CVE-2024-26948.html * https://www.suse.com/security/cve/CVE-2024-26950.html * https://www.suse.com/security/cve/CVE-2024-26951.html * https://www.suse.com/security/cve/CVE-2024-26955.html * https://www.suse.com/security/cve/CVE-2024-26956.html * https://www.suse.com/security/cve/CVE-2024-26960.html * https://www.suse.com/security/cve/CVE-2024-26965.html * https://www.suse.com/security/cve/CVE-2024-26966.html * https://www.suse.com/security/cve/CVE-2024-26969.html * https://www.suse.com/security/cve/CVE-2024-26970.html * https://www.suse.com/security/cve/CVE-2024-26972.html * https://www.suse.com/security/cve/CVE-2024-26981.html * https://www.suse.com/security/cve/CVE-2024-26982.html * https://www.suse.com/security/cve/CVE-2024-26993.html * https://www.suse.com/security/cve/CVE-2024-27013.html * https://www.suse.com/security/cve/CVE-2024-27014.html * https://www.suse.com/security/cve/CVE-2024-27030.html * https://www.suse.com/security/cve/CVE-2024-27038.html * https://www.suse.com/security/cve/CVE-2024-27039.html * https://www.suse.com/security/cve/CVE-2024-27041.html * https://www.suse.com/security/cve/CVE-2024-27043.html * https://www.suse.com/security/cve/CVE-2024-27046.html * https://www.suse.com/security/cve/CVE-2024-27056.html * https://www.suse.com/security/cve/CVE-2024-27062.html * https://www.suse.com/security/cve/CVE-2024-27389.html * https://bugzilla.suse.com/show_bug.cgi?id=1141539 * https://bugzilla.suse.com/show_bug.cgi?id=1177529 * https://bugzilla.suse.com/show_bug.cgi?id=1190576 * https://bugzilla.suse.com/show_bug.cgi?id=1192145 * https://bugzilla.suse.com/show_bug.cgi?id=1192837 * https://bugzilla.suse.com/show_bug.cgi?id=1193629 * https://bugzilla.suse.com/show_bug.cgi?id=1196869 * https://bugzilla.suse.com/show_bug.cgi?id=1200313 * https://bugzilla.suse.com/show_bug.cgi?id=1201308 * https://bugzilla.suse.com/show_bug.cgi?id=1201489 * https://bugzilla.suse.com/show_bug.cgi?id=1203906 * https://bugzilla.suse.com/show_bug.cgi?id=1203935 * https://bugzilla.suse.com/show_bug.cgi?id=1204614 * https://bugzilla.suse.com/show_bug.cgi?id=1207361 * https://bugzilla.suse.com/show_bug.cgi?id=1211592 * https://bugzilla.suse.com/show_bug.cgi?id=1213573 * https://bugzilla.suse.com/show_bug.cgi?id=1217408 * https://bugzilla.suse.com/show_bug.cgi?id=1218562 * https://bugzilla.suse.com/show_bug.cgi?id=1218917 * https://bugzilla.suse.com/show_bug.cgi?id=1219104 * https://bugzilla.suse.com/show_bug.cgi?id=1219126 * https://bugzilla.suse.com/show_bug.cgi?id=1219141 * https://bugzilla.suse.com/show_bug.cgi?id=1219169 * https://bugzilla.suse.com/show_bug.cgi?id=1219170 * https://bugzilla.suse.com/show_bug.cgi?id=1219264 * https://bugzilla.suse.com/show_bug.cgi?id=1220342 * https://bugzilla.suse.com/show_bug.cgi?id=1220492 * https://bugzilla.suse.com/show_bug.cgi?id=1220569 * https://bugzilla.suse.com/show_bug.cgi?id=1220761 * https://bugzilla.suse.com/show_bug.cgi?id=1220901 * https://bugzilla.suse.com/show_bug.cgi?id=1220915 * https://bugzilla.suse.com/show_bug.cgi?id=1220935 * https://bugzilla.suse.com/show_bug.cgi?id=1221042 * https://bugzilla.suse.com/show_bug.cgi?id=1221044 * https://bugzilla.suse.com/show_bug.cgi?id=1221080 * https://bugzilla.suse.com/show_bug.cgi?id=1221084 * https://bugzilla.suse.com/show_bug.cgi?id=1221088 * https://bugzilla.suse.com/show_bug.cgi?id=1221162 * https://bugzilla.suse.com/show_bug.cgi?id=1221299 * https://bugzilla.suse.com/show_bug.cgi?id=1221612 * https://bugzilla.suse.com/show_bug.cgi?id=1221617 * https://bugzilla.suse.com/show_bug.cgi?id=1221645 * https://bugzilla.suse.com/show_bug.cgi?id=1221791 * https://bugzilla.suse.com/show_bug.cgi?id=1221825 * https://bugzilla.suse.com/show_bug.cgi?id=1222011 * https://bugzilla.suse.com/show_bug.cgi?id=1222051 * https://bugzilla.suse.com/show_bug.cgi?id=1222247 * https://bugzilla.suse.com/show_bug.cgi?id=1222266 * https://bugzilla.suse.com/show_bug.cgi?id=1222294 * https://bugzilla.suse.com/show_bug.cgi?id=1222307 * https://bugzilla.suse.com/show_bug.cgi?id=1222357 * https://bugzilla.suse.com/show_bug.cgi?id=1222368 * https://bugzilla.suse.com/show_bug.cgi?id=1222379 * https://bugzilla.suse.com/show_bug.cgi?id=1222416 * https://bugzilla.suse.com/show_bug.cgi?id=1222422 * https://bugzilla.suse.com/show_bug.cgi?id=1222424 * https://bugzilla.suse.com/show_bug.cgi?id=1222427 * https://bugzilla.suse.com/show_bug.cgi?id=1222428 * https://bugzilla.suse.com/show_bug.cgi?id=1222430 * https://bugzilla.suse.com/show_bug.cgi?id=1222431 * https://bugzilla.suse.com/show_bug.cgi?id=1222435 * https://bugzilla.suse.com/show_bug.cgi?id=1222437 * https://bugzilla.suse.com/show_bug.cgi?id=1222445 * https://bugzilla.suse.com/show_bug.cgi?id=1222449 * https://bugzilla.suse.com/show_bug.cgi?id=1222482 * https://bugzilla.suse.com/show_bug.cgi?id=1222503 * https://bugzilla.suse.com/show_bug.cgi?id=1222520 * https://bugzilla.suse.com/show_bug.cgi?id=1222536 * https://bugzilla.suse.com/show_bug.cgi?id=1222549 * https://bugzilla.suse.com/show_bug.cgi?id=1222550 * https://bugzilla.suse.com/show_bug.cgi?id=1222557 * https://bugzilla.suse.com/show_bug.cgi?id=1222559 * https://bugzilla.suse.com/show_bug.cgi?id=1222585 * https://bugzilla.suse.com/show_bug.cgi?id=1222586 * https://bugzilla.suse.com/show_bug.cgi?id=1222596 * https://bugzilla.suse.com/show_bug.cgi?id=1222609 * https://bugzilla.suse.com/show_bug.cgi?id=1222610 * https://bugzilla.suse.com/show_bug.cgi?id=1222613 * https://bugzilla.suse.com/show_bug.cgi?id=1222615 * https://bugzilla.suse.com/show_bug.cgi?id=1222618 * https://bugzilla.suse.com/show_bug.cgi?id=1222624 * https://bugzilla.suse.com/show_bug.cgi?id=1222630 * https://bugzilla.suse.com/show_bug.cgi?id=1222632 * https://bugzilla.suse.com/show_bug.cgi?id=1222660 * https://bugzilla.suse.com/show_bug.cgi?id=1222662 * https://bugzilla.suse.com/show_bug.cgi?id=1222664 * https://bugzilla.suse.com/show_bug.cgi?id=1222666 * https://bugzilla.suse.com/show_bug.cgi?id=1222669 * https://bugzilla.suse.com/show_bug.cgi?id=1222671 * https://bugzilla.suse.com/show_bug.cgi?id=1222677 * https://bugzilla.suse.com/show_bug.cgi?id=1222678 * https://bugzilla.suse.com/show_bug.cgi?id=1222680 * https://bugzilla.suse.com/show_bug.cgi?id=1222703 * https://bugzilla.suse.com/show_bug.cgi?id=1222704 * https://bugzilla.suse.com/show_bug.cgi?id=1222706 * https://bugzilla.suse.com/show_bug.cgi?id=1222709 * https://bugzilla.suse.com/show_bug.cgi?id=1222710 * https://bugzilla.suse.com/show_bug.cgi?id=1222720 * https://bugzilla.suse.com/show_bug.cgi?id=1222721 * https://bugzilla.suse.com/show_bug.cgi?id=1222724 * https://bugzilla.suse.com/show_bug.cgi?id=1222726 * https://bugzilla.suse.com/show_bug.cgi?id=1222727 * https://bugzilla.suse.com/show_bug.cgi?id=1222764 * https://bugzilla.suse.com/show_bug.cgi?id=1222772 * https://bugzilla.suse.com/show_bug.cgi?id=1222773 * https://bugzilla.suse.com/show_bug.cgi?id=1222776 * https://bugzilla.suse.com/show_bug.cgi?id=1222781 * https://bugzilla.suse.com/show_bug.cgi?id=1222784 * https://bugzilla.suse.com/show_bug.cgi?id=1222785 * https://bugzilla.suse.com/show_bug.cgi?id=1222787 * https://bugzilla.suse.com/show_bug.cgi?id=1222790 * https://bugzilla.suse.com/show_bug.cgi?id=1222791 * https://bugzilla.suse.com/show_bug.cgi?id=1222792 * https://bugzilla.suse.com/show_bug.cgi?id=1222796 * https://bugzilla.suse.com/show_bug.cgi?id=1222798 * https://bugzilla.suse.com/show_bug.cgi?id=1222801 * https://bugzilla.suse.com/show_bug.cgi?id=1222812 * https://bugzilla.suse.com/show_bug.cgi?id=1222824 * https://bugzilla.suse.com/show_bug.cgi?id=1222829 * https://bugzilla.suse.com/show_bug.cgi?id=1222832 * https://bugzilla.suse.com/show_bug.cgi?id=1222836 * https://bugzilla.suse.com/show_bug.cgi?id=1222838 * https://bugzilla.suse.com/show_bug.cgi?id=1222866 * https://bugzilla.suse.com/show_bug.cgi?id=1222867 * https://bugzilla.suse.com/show_bug.cgi?id=1222869 * https://bugzilla.suse.com/show_bug.cgi?id=1222876 * https://bugzilla.suse.com/show_bug.cgi?id=1222878 * https://bugzilla.suse.com/show_bug.cgi?id=1222879 * https://bugzilla.suse.com/show_bug.cgi?id=1222881 * https://bugzilla.suse.com/show_bug.cgi?id=1222883 * https://bugzilla.suse.com/show_bug.cgi?id=1222888 * https://bugzilla.suse.com/show_bug.cgi?id=1222894 * https://bugzilla.suse.com/show_bug.cgi?id=1222901 * https://bugzilla.suse.com/show_bug.cgi?id=1222968 * https://bugzilla.suse.com/show_bug.cgi?id=1223012 * https://bugzilla.suse.com/show_bug.cgi?id=1223014 * https://bugzilla.suse.com/show_bug.cgi?id=1223016 * https://bugzilla.suse.com/show_bug.cgi?id=1223024 * https://bugzilla.suse.com/show_bug.cgi?id=1223030 * https://bugzilla.suse.com/show_bug.cgi?id=1223033 * https://bugzilla.suse.com/show_bug.cgi?id=1223034 * https://bugzilla.suse.com/show_bug.cgi?id=1223035 * https://bugzilla.suse.com/show_bug.cgi?id=1223036 * https://bugzilla.suse.com/show_bug.cgi?id=1223037 * https://bugzilla.suse.com/show_bug.cgi?id=1223041 * https://bugzilla.suse.com/show_bug.cgi?id=1223042 * https://bugzilla.suse.com/show_bug.cgi?id=1223051 * https://bugzilla.suse.com/show_bug.cgi?id=1223052 * https://bugzilla.suse.com/show_bug.cgi?id=1223056 * https://bugzilla.suse.com/show_bug.cgi?id=1223057 * https://bugzilla.suse.com/show_bug.cgi?id=1223058 * https://bugzilla.suse.com/show_bug.cgi?id=1223060 * https://bugzilla.suse.com/show_bug.cgi?id=1223061 * https://bugzilla.suse.com/show_bug.cgi?id=1223065 * https://bugzilla.suse.com/show_bug.cgi?id=1223066 * https://bugzilla.suse.com/show_bug.cgi?id=1223067 * https://bugzilla.suse.com/show_bug.cgi?id=1223068 * https://bugzilla.suse.com/show_bug.cgi?id=1223076 * https://bugzilla.suse.com/show_bug.cgi?id=1223078 * https://bugzilla.suse.com/show_bug.cgi?id=1223111 * https://bugzilla.suse.com/show_bug.cgi?id=1223115 * https://bugzilla.suse.com/show_bug.cgi?id=1223118 * https://bugzilla.suse.com/show_bug.cgi?id=1223187 * https://bugzilla.suse.com/show_bug.cgi?id=1223189 * https://bugzilla.suse.com/show_bug.cgi?id=1223190 * https://bugzilla.suse.com/show_bug.cgi?id=1223191 * https://bugzilla.suse.com/show_bug.cgi?id=1223196 * https://bugzilla.suse.com/show_bug.cgi?id=1223197 * https://bugzilla.suse.com/show_bug.cgi?id=1223198 * https://bugzilla.suse.com/show_bug.cgi?id=1223275 * https://bugzilla.suse.com/show_bug.cgi?id=1223323 * https://bugzilla.suse.com/show_bug.cgi?id=1223369 * https://bugzilla.suse.com/show_bug.cgi?id=1223380 * https://bugzilla.suse.com/show_bug.cgi?id=1223473 * https://bugzilla.suse.com/show_bug.cgi?id=1223474 * https://bugzilla.suse.com/show_bug.cgi?id=1223475 * https://bugzilla.suse.com/show_bug.cgi?id=1223477 * https://bugzilla.suse.com/show_bug.cgi?id=1223478 * https://bugzilla.suse.com/show_bug.cgi?id=1223479 * https://bugzilla.suse.com/show_bug.cgi?id=1223481 * https://bugzilla.suse.com/show_bug.cgi?id=1223482 * https://bugzilla.suse.com/show_bug.cgi?id=1223484 * https://bugzilla.suse.com/show_bug.cgi?id=1223487 * https://bugzilla.suse.com/show_bug.cgi?id=1223490 * https://bugzilla.suse.com/show_bug.cgi?id=1223496 * https://bugzilla.suse.com/show_bug.cgi?id=1223498 * https://bugzilla.suse.com/show_bug.cgi?id=1223499 * https://bugzilla.suse.com/show_bug.cgi?id=1223501 * https://bugzilla.suse.com/show_bug.cgi?id=1223502 * https://bugzilla.suse.com/show_bug.cgi?id=1223503 * https://bugzilla.suse.com/show_bug.cgi?id=1223505 * https://bugzilla.suse.com/show_bug.cgi?id=1223509 * https://bugzilla.suse.com/show_bug.cgi?id=1223511 * https://bugzilla.suse.com/show_bug.cgi?id=1223512 * https://bugzilla.suse.com/show_bug.cgi?id=1223513 * https://bugzilla.suse.com/show_bug.cgi?id=1223516 * https://bugzilla.suse.com/show_bug.cgi?id=1223517 * https://bugzilla.suse.com/show_bug.cgi?id=1223518 * https://bugzilla.suse.com/show_bug.cgi?id=1223519 * https://bugzilla.suse.com/show_bug.cgi?id=1223520 * https://bugzilla.suse.com/show_bug.cgi?id=1223522 * https://bugzilla.suse.com/show_bug.cgi?id=1223523 * https://bugzilla.suse.com/show_bug.cgi?id=1223525 * https://bugzilla.suse.com/show_bug.cgi?id=1223536 * https://bugzilla.suse.com/show_bug.cgi?id=1223539 * https://bugzilla.suse.com/show_bug.cgi?id=1223574 * https://bugzilla.suse.com/show_bug.cgi?id=1223595 * https://bugzilla.suse.com/show_bug.cgi?id=1223598 * https://bugzilla.suse.com/show_bug.cgi?id=1223634 * https://bugzilla.suse.com/show_bug.cgi?id=1223640 * https://bugzilla.suse.com/show_bug.cgi?id=1223643 * https://bugzilla.suse.com/show_bug.cgi?id=1223644 * https://bugzilla.suse.com/show_bug.cgi?id=1223645 * https://bugzilla.suse.com/show_bug.cgi?id=1223646 * https://bugzilla.suse.com/show_bug.cgi?id=1223648 * https://bugzilla.suse.com/show_bug.cgi?id=1223655 * https://bugzilla.suse.com/show_bug.cgi?id=1223657 * https://bugzilla.suse.com/show_bug.cgi?id=1223660 * https://bugzilla.suse.com/show_bug.cgi?id=1223661 * https://bugzilla.suse.com/show_bug.cgi?id=1223663 * https://bugzilla.suse.com/show_bug.cgi?id=1223664 * https://bugzilla.suse.com/show_bug.cgi?id=1223668 * https://bugzilla.suse.com/show_bug.cgi?id=1223686 * https://bugzilla.suse.com/show_bug.cgi?id=1223693 * https://bugzilla.suse.com/show_bug.cgi?id=1223705 * https://bugzilla.suse.com/show_bug.cgi?id=1223714 * https://bugzilla.suse.com/show_bug.cgi?id=1223735 * https://bugzilla.suse.com/show_bug.cgi?id=1223745 * https://bugzilla.suse.com/show_bug.cgi?id=1223784 * https://bugzilla.suse.com/show_bug.cgi?id=1223785 * https://bugzilla.suse.com/show_bug.cgi?id=1223790 * https://bugzilla.suse.com/show_bug.cgi?id=1223816 * https://bugzilla.suse.com/show_bug.cgi?id=1223821 * https://bugzilla.suse.com/show_bug.cgi?id=1223822 * https://bugzilla.suse.com/show_bug.cgi?id=1223824 * https://bugzilla.suse.com/show_bug.cgi?id=1223827 * https://bugzilla.suse.com/show_bug.cgi?id=1223834 * https://bugzilla.suse.com/show_bug.cgi?id=1223875 * https://bugzilla.suse.com/show_bug.cgi?id=1223876 * https://bugzilla.suse.com/show_bug.cgi?id=1223877 * https://bugzilla.suse.com/show_bug.cgi?id=1223878 * https://bugzilla.suse.com/show_bug.cgi?id=1223879 * https://bugzilla.suse.com/show_bug.cgi?id=1223894 * https://bugzilla.suse.com/show_bug.cgi?id=1223921 * https://bugzilla.suse.com/show_bug.cgi?id=1223922 * https://bugzilla.suse.com/show_bug.cgi?id=1223923 * https://bugzilla.suse.com/show_bug.cgi?id=1223924 * https://bugzilla.suse.com/show_bug.cgi?id=1223929 * https://bugzilla.suse.com/show_bug.cgi?id=1223931 * https://bugzilla.suse.com/show_bug.cgi?id=1223932 * https://bugzilla.suse.com/show_bug.cgi?id=1223934 * https://bugzilla.suse.com/show_bug.cgi?id=1223941 * https://bugzilla.suse.com/show_bug.cgi?id=1223948 * https://bugzilla.suse.com/show_bug.cgi?id=1223949 * https://bugzilla.suse.com/show_bug.cgi?id=1223950 * https://bugzilla.suse.com/show_bug.cgi?id=1223951 * https://bugzilla.suse.com/show_bug.cgi?id=1223952 * https://bugzilla.suse.com/show_bug.cgi?id=1223953 * https://bugzilla.suse.com/show_bug.cgi?id=1223956 * https://bugzilla.suse.com/show_bug.cgi?id=1223957 * https://bugzilla.suse.com/show_bug.cgi?id=1223960 * https://bugzilla.suse.com/show_bug.cgi?id=1223962 * https://bugzilla.suse.com/show_bug.cgi?id=1223963 * https://bugzilla.suse.com/show_bug.cgi?id=1223964 * https://jira.suse.com/browse/PED-1166 * https://jira.suse.com/browse/PED-1168 * https://jira.suse.com/browse/PED-1170 * https://jira.suse.com/browse/PED-1218 * https://jira.suse.com/browse/PED-1220 * https://jira.suse.com/browse/PED-1222 * https://jira.suse.com/browse/PED-1223 * https://jira.suse.com/browse/PED-1225 * https://jira.suse.com/browse/PED-1565 * https://jira.suse.com/browse/PED-2849 * https://jira.suse.com/browse/PED-376 * https://jira.suse.com/browse/PED-542 * https://jira.suse.com/browse/PED-7167 * https://jira.suse.com/browse/PED-7619 * https://jira.suse.com/browse/SLE-18378 * https://jira.suse.com/browse/SLE-18383 * https://jira.suse.com/browse/SLE-18385 * https://jira.suse.com/browse/SLE-18978 * https://jira.suse.com/browse/SLE-19249 * https://jira.suse.com/browse/SLE-19253 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 19 12:41:11 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 19 Aug 2024 12:41:11 -0000 Subject: SUSE-SU-2024:1669-1: important: Security update for the Linux Kernel Message-ID: <172407127131.18977.2262000369544872442@smelt2.prg2.suse.org> # Security update for the Linux Kernel Announcement ID: SUSE-SU-2024:1669-1 Rating: important References: * bsc#1210780 * bsc#1213456 * bsc#1218220 * bsc#1218562 * bsc#1218730 * bsc#1218757 * bsc#1219146 * bsc#1219295 * bsc#1219827 * bsc#1220191 * bsc#1220238 * bsc#1220241 * bsc#1220416 * bsc#1220418 * bsc#1220444 * bsc#1220649 * bsc#1221044 * bsc#1221088 * bsc#1221578 * bsc#1221598 * bsc#1222585 * bsc#1222619 * bsc#1223016 * bsc#1223824 Cross-References: * CVE-2021-46904 * CVE-2021-46905 * CVE-2021-46932 * CVE-2022-48619 * CVE-2023-28746 * CVE-2023-31083 * CVE-2023-51780 * CVE-2023-51782 * CVE-2023-52340 * CVE-2023-52429 * CVE-2023-52445 * CVE-2023-52449 * CVE-2023-52475 * CVE-2023-52590 * CVE-2023-52591 * CVE-2023-6270 * CVE-2024-23851 * CVE-2024-26733 * CVE-2024-26898 * CVE-2024-27043 CVSS scores: * CVE-2021-46904 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-46904 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-46905 ( SUSE ): 4.0 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2021-46905 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-46932 ( SUSE ): 2.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2021-46932 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48619 ( SUSE ): 6.2 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48619 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-28746 ( SUSE ): 6.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N * CVE-2023-31083 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-31083 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-51780 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-51780 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-51782 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2023-51782 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-52340 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52340 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52429 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52429 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52445 ( SUSE ): 6.3 CVSS:3.1/AV:P/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-52445 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-52449 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52449 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52475 ( SUSE ): 6.3 CVSS:3.1/AV:P/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-52590 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L * CVE-2023-52591 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2023-6270 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-6270 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-23851 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-23851 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26733 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26898 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26898 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-27043 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * SUSE Linux Enterprise Server 11 SP4 * SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE 11-SP4 An update that solves 20 vulnerabilities and has four security fixes can now be installed. ## Description: The SUSE Linux Enterprise 11 SP4 kernel was updated to receive various security bugfixes. The following security bugs were fixed: * CVE-2024-27043: Fixed a use-after-free in edia/dvbdev in different places (bsc#1223824). * CVE-2024-26733: Fixed an overflow in arp_req_get() in arp (bsc#1222585). * CVE-2022-48619: Fixed a denial-of-service issue in drivers/input/input.c (bsc#1218220). * CVE-2021-46904: Fixed NULL pointer dereference during tty device unregistration (bsc#1220416). * CVE-2023-28746: Fixed Register File Data Sampling (bsc#1213456). * CVE-2021-46905: Fixed NULL pointer dereference on disconnect regression (bsc#1220418). * CVE-2023-52340: Fixed a denial of service related to ICMPv6 'Packet Too Big' packets (bsc#1219295). * CVE-2021-46932: Initialized work before appletouch device registration (bsc#1220444). * CVE-2023-52449: Fixed gluebi NULL pointer dereference caused by ftl notifier (bsc#1220238). * CVE-2023-52475: Fixed a use-after-free in powermate_config_complete() (bsc#1220649). * CVE-2023-52445: Fixed a use-after-free on context disconnection in pvrusb2 (bsc#1220241). * CVE-2023-52429: Limited the number of targets and parameter size area for device mapper (bsc#1219146). * CVE-2023-51780: Fixed a use-after-free in do_vcc_ioctl() related to a vcc_recvmsg race condition (bsc#1218730). * CVE-2023-51782: Fixed a use-after-free in rose_ioctl() related to a rose_accept race condition (bsc#1218757). * CVE-2023-31083: Fixed a NULL pointer dereference in hci_uart_tty_ioctl() (bsc#1210780). The following non-security bugs were fixed: * KVM: VMX: Move VERW closer to VMentry for MDS mitigation (git-fixes). * KVM: VMX: Use BT+JNC, i.e. EFLAGS.CF to select VMRESUME vs. VMLAUNCH (git- fixes). * tty: n_gsm: require CAP_NET_ADMIN to attach N_GSM0710 ldisc (bsc#1222619). * x86/asm: Add _ASM_RIP() macro for x86-64 (%rip) suffix (git-fixes). * x86/bugs: Add asm helpers for executing VERW (bsc#1213456). * x86/bugs: Use ALTERNATIVE() instead of mds_user_clear static key (git- fixes). * x86/entry_32: Add VERW just before userspace transition (git-fixes). * x86/entry_64: Add VERW just before userspace transition (git-fixes). ## Special Instructions and Notes: * Please reboot the system after installing this update. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE 11-SP4 zypper in -t patch SUSE-SLE-SERVER-11-SP4-LTSS-EXTREME-CORE-2024-1669=1 * SUSE Linux Enterprise Server 11 SP4 zypper in -t patch SUSE-SLE-SERVER-11-SP4-LTSS-EXTREME-CORE-2024-1669=1 ## Package List: * SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE 11-SP4 (nosrc x86_64) * kernel-ec2-3.0.101-108.153.1 * kernel-default-3.0.101-108.153.1 * kernel-trace-3.0.101-108.153.1 * kernel-xen-3.0.101-108.153.1 * SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE 11-SP4 (x86_64) * kernel-default-devel-3.0.101-108.153.1 * kernel-xen-devel-3.0.101-108.153.1 * kernel-default-base-3.0.101-108.153.1 * kernel-ec2-devel-3.0.101-108.153.1 * kernel-ec2-base-3.0.101-108.153.1 * kernel-syms-3.0.101-108.153.1 * kernel-xen-base-3.0.101-108.153.1 * kernel-trace-base-3.0.101-108.153.1 * kernel-source-3.0.101-108.153.1 * kernel-trace-devel-3.0.101-108.153.1 * SUSE Linux Enterprise Server 11 SP4 (nosrc x86_64) * kernel-ec2-3.0.101-108.153.1 * kernel-default-3.0.101-108.153.1 * kernel-trace-3.0.101-108.153.1 * kernel-xen-3.0.101-108.153.1 * SUSE Linux Enterprise Server 11 SP4 (x86_64) * kernel-default-devel-3.0.101-108.153.1 * kernel-xen-devel-3.0.101-108.153.1 * kernel-default-base-3.0.101-108.153.1 * kernel-ec2-devel-3.0.101-108.153.1 * kernel-ec2-base-3.0.101-108.153.1 * kernel-syms-3.0.101-108.153.1 * kernel-xen-base-3.0.101-108.153.1 * kernel-trace-base-3.0.101-108.153.1 * kernel-source-3.0.101-108.153.1 * kernel-trace-devel-3.0.101-108.153.1 ## References: * https://www.suse.com/security/cve/CVE-2021-46904.html * https://www.suse.com/security/cve/CVE-2021-46905.html * https://www.suse.com/security/cve/CVE-2021-46932.html * https://www.suse.com/security/cve/CVE-2022-48619.html * https://www.suse.com/security/cve/CVE-2023-28746.html * https://www.suse.com/security/cve/CVE-2023-31083.html * https://www.suse.com/security/cve/CVE-2023-51780.html * https://www.suse.com/security/cve/CVE-2023-51782.html * https://www.suse.com/security/cve/CVE-2023-52340.html * https://www.suse.com/security/cve/CVE-2023-52429.html * https://www.suse.com/security/cve/CVE-2023-52445.html * https://www.suse.com/security/cve/CVE-2023-52449.html * https://www.suse.com/security/cve/CVE-2023-52475.html * https://www.suse.com/security/cve/CVE-2023-52590.html * https://www.suse.com/security/cve/CVE-2023-52591.html * https://www.suse.com/security/cve/CVE-2023-6270.html * https://www.suse.com/security/cve/CVE-2024-23851.html * https://www.suse.com/security/cve/CVE-2024-26733.html * https://www.suse.com/security/cve/CVE-2024-26898.html * https://www.suse.com/security/cve/CVE-2024-27043.html * https://bugzilla.suse.com/show_bug.cgi?id=1210780 * https://bugzilla.suse.com/show_bug.cgi?id=1213456 * https://bugzilla.suse.com/show_bug.cgi?id=1218220 * https://bugzilla.suse.com/show_bug.cgi?id=1218562 * https://bugzilla.suse.com/show_bug.cgi?id=1218730 * https://bugzilla.suse.com/show_bug.cgi?id=1218757 * https://bugzilla.suse.com/show_bug.cgi?id=1219146 * https://bugzilla.suse.com/show_bug.cgi?id=1219295 * https://bugzilla.suse.com/show_bug.cgi?id=1219827 * https://bugzilla.suse.com/show_bug.cgi?id=1220191 * https://bugzilla.suse.com/show_bug.cgi?id=1220238 * https://bugzilla.suse.com/show_bug.cgi?id=1220241 * https://bugzilla.suse.com/show_bug.cgi?id=1220416 * https://bugzilla.suse.com/show_bug.cgi?id=1220418 * https://bugzilla.suse.com/show_bug.cgi?id=1220444 * https://bugzilla.suse.com/show_bug.cgi?id=1220649 * https://bugzilla.suse.com/show_bug.cgi?id=1221044 * https://bugzilla.suse.com/show_bug.cgi?id=1221088 * https://bugzilla.suse.com/show_bug.cgi?id=1221578 * https://bugzilla.suse.com/show_bug.cgi?id=1221598 * https://bugzilla.suse.com/show_bug.cgi?id=1222585 * https://bugzilla.suse.com/show_bug.cgi?id=1222619 * https://bugzilla.suse.com/show_bug.cgi?id=1223016 * https://bugzilla.suse.com/show_bug.cgi?id=1223824 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 19 12:41:33 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 19 Aug 2024 12:41:33 -0000 Subject: SUSE-SU-2024:1489-1: important: Security update for the Linux Kernel Message-ID: <172407129361.18977.11131840527994685500@smelt2.prg2.suse.org> # Security update for the Linux Kernel Announcement ID: SUSE-SU-2024:1489-1 Rating: important References: * bsc#1184942 * bsc#1186060 * bsc#1192145 * bsc#1194516 * bsc#1208995 * bsc#1209635 * bsc#1209657 * bsc#1212514 * bsc#1213456 * bsc#1217987 * bsc#1217988 * bsc#1217989 * bsc#1218336 * bsc#1218447 * bsc#1218479 * bsc#1218562 * bsc#1219170 * bsc#1219264 * bsc#1220320 * bsc#1220340 * bsc#1220366 * bsc#1220400 * bsc#1220411 * bsc#1220413 * bsc#1220414 * bsc#1220425 * bsc#1220426 * bsc#1220429 * bsc#1220432 * bsc#1220442 * bsc#1220445 * bsc#1220465 * bsc#1220468 * bsc#1220475 * bsc#1220484 * bsc#1220486 * bsc#1220487 * bsc#1220516 * bsc#1220521 * bsc#1220528 * bsc#1220529 * bsc#1220532 * bsc#1220554 * bsc#1220556 * bsc#1220557 * bsc#1220560 * bsc#1220561 * bsc#1220566 * bsc#1220575 * bsc#1220580 * bsc#1220583 * bsc#1220611 * bsc#1220615 * bsc#1220621 * bsc#1220625 * bsc#1220630 * bsc#1220631 * bsc#1220638 * bsc#1220639 * bsc#1220640 * bsc#1220641 * bsc#1220662 * bsc#1220663 * bsc#1220669 * bsc#1220670 * bsc#1220677 * bsc#1220678 * bsc#1220685 * bsc#1220687 * bsc#1220688 * bsc#1220692 * bsc#1220697 * bsc#1220703 * bsc#1220706 * bsc#1220733 * bsc#1220734 * bsc#1220739 * bsc#1220743 * bsc#1220745 * bsc#1220749 * bsc#1220751 * bsc#1220753 * bsc#1220758 * bsc#1220759 * bsc#1220764 * bsc#1220768 * bsc#1220769 * bsc#1220777 * bsc#1220779 * bsc#1220785 * bsc#1220790 * bsc#1220794 * bsc#1220824 * bsc#1220826 * bsc#1220829 * bsc#1220836 * bsc#1220846 * bsc#1220850 * bsc#1220861 * bsc#1220871 * bsc#1220883 * bsc#1220946 * bsc#1220954 * bsc#1220969 * bsc#1220979 * bsc#1220982 * bsc#1220985 * bsc#1220987 * bsc#1221015 * bsc#1221044 * bsc#1221058 * bsc#1221061 * bsc#1221077 * bsc#1221088 * bsc#1221276 * bsc#1221293 * bsc#1221532 * bsc#1221534 * bsc#1221541 * bsc#1221548 * bsc#1221552 * bsc#1221575 * bsc#1221605 * bsc#1221606 * bsc#1221608 * bsc#1221830 * bsc#1221931 * bsc#1221932 * bsc#1221934 * bsc#1221935 * bsc#1221949 * bsc#1221952 * bsc#1221965 * bsc#1221966 * bsc#1221969 * bsc#1221973 * bsc#1221974 * bsc#1221978 * bsc#1221989 * bsc#1221990 * bsc#1221991 * bsc#1221992 * bsc#1221993 * bsc#1221994 * bsc#1221996 * bsc#1221997 * bsc#1221998 * bsc#1221999 * bsc#1222000 * bsc#1222001 * bsc#1222002 * bsc#1222003 * bsc#1222004 * bsc#1222117 * bsc#1222422 * bsc#1222585 * bsc#1222619 * bsc#1222660 * bsc#1222664 * bsc#1222669 * bsc#1222706 * jsc#PED-5759 * jsc#SLE-13706 * jsc#SLE-15131 * jsc#SLE-15172 * jsc#SLE-15176 Cross-References: * CVE-2020-36780 * CVE-2020-36781 * CVE-2020-36782 * CVE-2020-36783 * CVE-2021-23134 * CVE-2021-29155 * CVE-2021-46908 * CVE-2021-46909 * CVE-2021-46911 * CVE-2021-46914 * CVE-2021-46917 * CVE-2021-46918 * CVE-2021-46919 * CVE-2021-46920 * CVE-2021-46921 * CVE-2021-46922 * CVE-2021-46930 * CVE-2021-46931 * CVE-2021-46933 * CVE-2021-46938 * CVE-2021-46939 * CVE-2021-46943 * CVE-2021-46944 * CVE-2021-46950 * CVE-2021-46951 * CVE-2021-46956 * CVE-2021-46958 * CVE-2021-46959 * CVE-2021-46960 * CVE-2021-46961 * CVE-2021-46962 * CVE-2021-46963 * CVE-2021-46971 * CVE-2021-46976 * CVE-2021-46980 * CVE-2021-46981 * CVE-2021-46983 * CVE-2021-46984 * CVE-2021-46988 * CVE-2021-46990 * CVE-2021-46991 * CVE-2021-46992 * CVE-2021-46998 * CVE-2021-47000 * CVE-2021-47001 * CVE-2021-47003 * CVE-2021-47006 * CVE-2021-47009 * CVE-2021-47013 * CVE-2021-47014 * CVE-2021-47015 * CVE-2021-47017 * CVE-2021-47020 * CVE-2021-47026 * CVE-2021-47034 * CVE-2021-47035 * CVE-2021-47038 * CVE-2021-47044 * CVE-2021-47045 * CVE-2021-47046 * CVE-2021-47049 * CVE-2021-47051 * CVE-2021-47055 * CVE-2021-47056 * CVE-2021-47058 * CVE-2021-47061 * CVE-2021-47063 * CVE-2021-47065 * CVE-2021-47068 * CVE-2021-47069 * CVE-2021-47070 * CVE-2021-47071 * CVE-2021-47073 * CVE-2021-47077 * CVE-2021-47082 * CVE-2021-47087 * CVE-2021-47095 * CVE-2021-47097 * CVE-2021-47100 * CVE-2021-47101 * CVE-2021-47109 * CVE-2021-47110 * CVE-2021-47112 * CVE-2021-47114 * CVE-2021-47117 * CVE-2021-47118 * CVE-2021-47119 * CVE-2021-47120 * CVE-2021-47130 * CVE-2021-47136 * CVE-2021-47137 * CVE-2021-47138 * CVE-2021-47139 * CVE-2021-47141 * CVE-2021-47142 * CVE-2021-47144 * CVE-2021-47150 * CVE-2021-47153 * CVE-2021-47160 * CVE-2021-47161 * CVE-2021-47164 * CVE-2021-47165 * CVE-2021-47166 * CVE-2021-47167 * CVE-2021-47168 * CVE-2021-47169 * CVE-2021-47170 * CVE-2021-47171 * CVE-2021-47172 * CVE-2021-47173 * CVE-2021-47174 * CVE-2021-47175 * CVE-2021-47176 * CVE-2021-47177 * CVE-2021-47179 * CVE-2021-47180 * CVE-2021-47181 * CVE-2021-47183 * CVE-2021-47185 * CVE-2021-47189 * CVE-2022-0487 * CVE-2022-4744 * CVE-2022-48626 * CVE-2023-0160 * CVE-2023-1192 * CVE-2023-28746 * CVE-2023-35827 * CVE-2023-52454 * CVE-2023-52469 * CVE-2023-52470 * CVE-2023-52474 * CVE-2023-52476 * CVE-2023-52477 * CVE-2023-52492 * CVE-2023-52500 * CVE-2023-52508 * CVE-2023-52509 * CVE-2023-52572 * CVE-2023-52575 * CVE-2023-52583 * CVE-2023-52590 * CVE-2023-52591 * CVE-2023-52607 * CVE-2023-52628 * CVE-2023-6270 * CVE-2023-6356 * CVE-2023-6531 * CVE-2023-6535 * CVE-2023-6536 * CVE-2023-7042 * CVE-2023-7192 * CVE-2024-22099 * CVE-2024-26600 * CVE-2024-26614 * CVE-2024-26642 * CVE-2024-26704 * CVE-2024-26733 CVSS scores: * CVE-2020-36780 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2020-36781 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2020-36782 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2020-36783 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-23134 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2021-23134 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2021-29155 ( SUSE ): 6.2 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2021-29155 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2021-46908 ( SUSE ): 5.1 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2021-46908 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-46909 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-46909 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-46911 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2021-46914 ( SUSE ): 4.3 CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-46914 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-46917 ( SUSE ): 3.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:L * CVE-2021-46917 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2021-46918 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2021-46918 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-46919 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2021-46919 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-46920 ( SUSE ): 1.9 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:L * CVE-2021-46920 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N * CVE-2021-46921 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N * CVE-2021-46922 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2021-46922 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-46930 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2021-46930 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-46931 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-46931 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-46933 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L * CVE-2021-46933 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-46938 ( SUSE ): 5.1 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H * CVE-2021-46938 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2021-46939 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-46939 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-46943 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-46943 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2021-46944 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-46944 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-46950 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N * CVE-2021-46950 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2021-46951 ( SUSE ): 4.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2021-46951 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-46956 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-46958 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-46959 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2021-46960 ( SUSE ): 2.3 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:L * CVE-2021-46961 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-46962 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N * CVE-2021-46963 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-46971 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2021-46976 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2021-46980 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-46981 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-46983 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-46984 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-46988 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-46990 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-46991 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2021-46992 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2021-46998 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2021-47000 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2021-47001 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47003 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47006 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47009 ( SUSE ): 6.0 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:H * CVE-2021-47013 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47014 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2021-47015 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47017 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2021-47020 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2021-47026 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47034 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47035 ( SUSE ): 6.0 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N * CVE-2021-47038 ( SUSE ): 5.7 CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47044 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2021-47045 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47046 ( SUSE ): 6.0 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:H * CVE-2021-47049 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47051 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N * CVE-2021-47055 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47056 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47058 ( SUSE ): 5.1 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:H * CVE-2021-47061 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2021-47063 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2021-47065 ( SUSE ): 6.3 CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H * CVE-2021-47068 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2021-47069 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47070 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2021-47071 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2021-47073 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47077 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47082 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47087 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2021-47095 ( SUSE ): 5.1 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47097 ( SUSE ): 4.0 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2021-47100 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47101 ( SUSE ): 4.0 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N * CVE-2021-47109 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47110 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47112 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2021-47114 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47117 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47118 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47119 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47120 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47130 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47136 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2021-47137 ( SUSE ): 6.4 CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2021-47138 ( SUSE ): 4.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2021-47139 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47141 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47142 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47144 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47150 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47153 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47160 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47161 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47164 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47164 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47165 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47166 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47167 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47168 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47169 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47170 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47171 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47171 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47172 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47173 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47173 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47174 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47175 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47176 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47177 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47179 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47179 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47180 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47181 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47183 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47185 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47189 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-0487 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-0487 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2022-4744 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-4744 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48626 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2022-48626 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-0160 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-0160 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-1192 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-1192 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-28746 ( SUSE ): 6.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N * CVE-2023-35827 ( SUSE ): 6.4 CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2023-35827 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-52454 ( SUSE ): 6.5 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52454 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52469 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2023-52469 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-52470 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52470 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52474 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N * CVE-2023-52474 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-52476 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52477 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52492 ( SUSE ): 6.2 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52500 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2023-52508 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52509 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-52572 ( SUSE ): 0.0 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N * CVE-2023-52575 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52583 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52590 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L * CVE-2023-52591 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2023-52607 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52628 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-6270 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-6270 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-6356 ( SUSE ): 6.5 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2023-6356 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2023-6531 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-6531 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-6535 ( SUSE ): 6.5 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2023-6535 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2023-6536 ( SUSE ): 6.5 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2023-6536 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2023-7042 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2023-7042 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-7192 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2023-7192 ( NVD ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-22099 ( SUSE ): 5.3 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-22099 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26600 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26600 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26614 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26642 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26704 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26733 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H Affected Products: * openSUSE Leap 15.3 * SUSE Enterprise Storage 7.1 * SUSE Linux Enterprise High Availability Extension 15 SP3 * SUSE Linux Enterprise High Performance Computing 15 SP3 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 * SUSE Linux Enterprise Live Patching 15-SP3 * SUSE Linux Enterprise Micro 5.1 * SUSE Linux Enterprise Micro 5.2 * SUSE Linux Enterprise Micro for Rancher 5.2 * SUSE Linux Enterprise Server 15 SP3 * SUSE Linux Enterprise Server 15 SP3 Business Critical Linux 15-SP3 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 * SUSE Manager Proxy 4.2 * SUSE Manager Retail Branch Server 4.2 * SUSE Manager Server 4.2 An update that solves 157 vulnerabilities, contains five features and has four security fixes can now be installed. ## Description: The SUSE Linux Enterprise 15 SP3 LTSS kernel was updated to receive various security bugfixes. The following security bugs were fixed: * CVE-2020-36781: Fixed reference leak when pm_runtime_get_sync fails in i2c/imx (bsc#1220557). * CVE-2021-46911: Fixed kernel panic (bsc#1220400). * CVE-2021-46914: Fixed unbalanced device enable/disable in suspend/resume in pci_disable_device() (bsc#1220465). * CVE-2021-46917: Fixed wq cleanup of WQCFG registers in idxd (bsc#1220432). * CVE-2021-46918: Fixed not clearing MSIX permission entry on shutdown in idxd (bsc#1220429). * CVE-2021-46919: Fixed wq size store permission state in idxd (bsc#1220414). * CVE-2021-46920: Fixed clobbering of SWERR overflow bit on writeback (bsc#1220426). * CVE-2021-46922: Fixed TPM reservation for seal/unseal (bsc#1220475). * CVE-2021-46930: Fixed usb/mtu3 list_head check warning (bsc#1220484). * CVE-2021-46931: Fixed wrong type casting in mlx5e_tx_reporter_dump_sq() (bsc#1220486). * CVE-2021-46933: Fixed possible underflow in ffs_data_clear() (bsc#1220487). * CVE-2021-46956: Fixed memory leak in virtio_fs_probe() (bsc#1220516). * CVE-2021-46959: Fixed use-after-free with devm_spi_alloc_* (bsc#1220734). * CVE-2021-46961: Fixed spurious interrup handling (bsc#1220529). * CVE-2021-46971: Fixed unconditional security_locked_down() call (bsc#1220697). * CVE-2021-46976: Fixed crash in auto_retire in drm/i915 (bsc#1220621). * CVE-2021-46980: Fixed not retrieving all the PDOs instead of just the first 4 in usb/typec/ucsi (bsc#1220663). * CVE-2021-46983: Fixed NULL pointer dereference when SEND is completed with error (bsc#1220639). * CVE-2021-46988: Fixed release page in error path to avoid BUG_ON (bsc#1220706). * CVE-2021-47001: Fixed cwnd update ordering in xprtrdma (bsc#1220670). * CVE-2021-47003: Fixed potential null dereference on pointer status in idxd_cmd_exec (bsc#1220677). * CVE-2021-47009: Fixed memory leak on object td (bsc#1220733). * CVE-2021-47014: Fixed wild memory access when clearing fragments in net/sched/act_ct (bsc#1220630). * CVE-2021-47017: Fixed use after free in ath10k_htc_send_bundle (bsc#1220678). * CVE-2021-47026: Fixed not destroying sysfs after removing session from active list (bsc#1220685). * CVE-2021-47035: Fixed wrong WO permissions on second-level paging entries in iommu/vt-d (bsc#1220688). * CVE-2021-47038: Fixed deadlock between hci_dev->lock and socket lock in bluetooth (bsc#1220753). * CVE-2021-47044: Fixed shift-out-of-bounds in load_balance() in sched/fair (bsc#1220759). * CVE-2021-47046: Fixed off by one in hdmi_14_process_transaction() (bsc#1220758). * CVE-2021-47087: Fixed incorrect page free bug in tee/optee (bsc#1220954). * CVE-2021-47095: Fixed missing initialization in ipmi/ssif (bsc#1220979). * CVE-2021-47097: Fixed stack out of bound access in elantech_change_report_id() (bsc#1220982). * CVE-2021-47100: Fixed UAF when uninstall in ipmi (bsc#1220985). * CVE-2021-47101: Fixed uninit-value in asix_mdio_read() (bsc#1220987). * CVE-2021-47109: Fixed NUD_NOARP entries to be forced GCed (bsc#1221534). * CVE-2021-47130: Fixed freeing unallocated p2pmem in nvmet (bsc#1221552). * CVE-2021-47137: Fixed memory corruption in RX ring in net/lantiq (bsc#1221932). * CVE-2021-47150: Fixed the potential memory leak in fec_enet_init() (bsc#1221973). * CVE-2021-47160: Fixed VLAN traffic leaks in dsa: mt7530 (bsc#1221974). * CVE-2021-47164: Fixed null pointer dereference accessing lag dev in net/mlx5e (bsc#1221978). * CVE-2021-47174: Fixed missing check in irq_fpu_usable() (bsc#1221990). * CVE-2021-47175: Fixed OOB access in net/sched/fq_pie (bsc#1222003). * CVE-2021-47181: Fixed a null pointer dereference caused by calling platform_get_resource() (bsc#1222660). * CVE-2021-47183: Fixed a null pointer dereference during link down processing in scsi lpfc (bsc#1192145, bsc#1222664). * CVE-2021-47185: Fixed a softlockup issue in flush_to_ldisc in tty tty_buffer (bsc#1222669). * CVE-2021-47189: Fixed denial of service due to memory ordering issues between normal and ordered work functions in btrfs (bsc#1222706). * CVE-2023-0160: Fixed deadlock flaw in BPF that could allow a local user to potentially crash the system (bsc#1209657). * CVE-2023-28746: Fixed Register File Data Sampling (bsc#1213456). * CVE-2023-52469: Fixed a use-after-free in kv_parse_power_table (bsc#1220411). * CVE-2023-52470: Fixed null-ptr-deref in radeon_crtc_init() (bsc#1220413). * CVE-2023-52474: Fixed a vulnerability with non-PAGE_SIZE-end multi-iovec user SDMA requests (bsc#1220445). * CVE-2023-52476: Fixed possible unhandled page fault via perf sampling NMI during vsyscall (bsc#1220703). * CVE-2023-52492: Fixed a null-pointer-dereference in channel unregistration function __dma_async_device_channel_register() (bsc#1221276). * CVE-2023-52500: Fixed information leaking when processing OPC_INB_SET_CONTROLLER_CONFIG command (bsc#1220883). * CVE-2023-52508: Fixed null pointer dereference in nvme_fc_io_getuuid() (bsc#1221015). * CVE-2023-52575: Fixed SBPB enablement for spec_rstack_overflow=off (bsc#1220871). * CVE-2023-52583: Fixed deadlock or deadcode of misusing dget() inside ceph (bsc#1221058). * CVE-2023-52607: Fixed a null-pointer-dereference in pgtable_cache_add kasprintf() (bsc#1221061). * CVE-2023-52628: Fixed 4-byte stack OOB write in nftables (bsc#1222117). * CVE-2023-6270: Fixed a use-after-free issue in aoecmd_cfg_pkts (bsc#1218562). * CVE-2023-6531: Fixed a use-after-free flaw due to a race problem in the unix garbage collector's deletion of SKB races with unix_stream_read_generic()on the socket that the SKB is queued on (bsc#1218447). * CVE-2023-7042: Fixed a null-pointer-dereference in ath10k_wmi_tlv_op_pull_mgmt_tx_compl_ev() (bsc#1218336). * CVE-2023-7192: Fixed a memory leak problem in ctnetlink_create_conntrack in net/netfilter/nf_conntrack_netlink.c (bsc#1218479). * CVE-2024-22099: Fixed a null-pointer-dereference in rfcomm_check_security (bsc#1219170). * CVE-2024-26600: Fixed NULL pointer dereference for SRP in phy-omap-usb2 (bsc#1220340). * CVE-2024-26614: Fixed the initialization of accept_queue's spinlocks (bsc#1221293). * CVE-2024-26642: Fixed the set of anonymous timeout flag in netfilter nf_tables (bsc#1221830). * CVE-2024-26704: Fixed a double-free of blocks due to wrong extents moved_len in ext4 (bsc#1222422). * CVE-2024-26733: Fixed an overflow in arp_req_get() in arp (bsc#1222585). The following non-security bugs were fixed: * fs,hugetlb: fix NULL pointer dereference in hugetlbs_fill_super (bsc#1219264). * tty: n_gsm: require CAP_NET_ADMIN to attach N_GSM0710 ldisc (bsc#1222619). * group-source-files.pl: Quote filenames (boo#1221077). * kernel-binary: certs: Avoid trailing space * mm: fix gup_pud_range (bsc#1220824). ## Special Instructions and Notes: * Please reboot the system after installing this update. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server for SAP Applications 15 SP3 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP3-2024-1489=1 * SUSE Enterprise Storage 7.1 zypper in -t patch SUSE-Storage-7.1-2024-1489=1 * SUSE Linux Enterprise Micro 5.1 zypper in -t patch SUSE-SUSE-MicroOS-5.1-2024-1489=1 * SUSE Linux Enterprise Micro 5.2 zypper in -t patch SUSE-SUSE-MicroOS-5.2-2024-1489=1 * SUSE Linux Enterprise Micro for Rancher 5.2 zypper in -t patch SUSE-SUSE-MicroOS-5.2-2024-1489=1 * openSUSE Leap 15.3 zypper in -t patch SUSE-2024-1489=1 * SUSE Linux Enterprise Live Patching 15-SP3 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP3-2024-1489=1 * SUSE Linux Enterprise High Availability Extension 15 SP3 zypper in -t patch SUSE-SLE-Product-HA-15-SP3-2024-1489=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 zypper in -t patch SUSE-SLE-Product-HPC-15-SP3-LTSS-2024-1489=1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 zypper in -t patch SUSE-SLE-Product-SLES-15-SP3-LTSS-2024-1489=1 ## Package List: * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (nosrc ppc64le x86_64) * kernel-default-5.3.18-150300.59.158.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (ppc64le x86_64) * kernel-default-devel-5.3.18-150300.59.158.1 * kernel-syms-5.3.18-150300.59.158.1 * reiserfs-kmp-default-debuginfo-5.3.18-150300.59.158.1 * reiserfs-kmp-default-5.3.18-150300.59.158.1 * kernel-default-debuginfo-5.3.18-150300.59.158.1 * kernel-obs-build-5.3.18-150300.59.158.1 * kernel-default-debugsource-5.3.18-150300.59.158.1 * kernel-default-base-5.3.18-150300.59.158.1.150300.18.92.5 * kernel-obs-build-debugsource-5.3.18-150300.59.158.1 * kernel-default-devel-debuginfo-5.3.18-150300.59.158.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (noarch) * kernel-source-5.3.18-150300.59.158.1 * kernel-devel-5.3.18-150300.59.158.1 * kernel-macros-5.3.18-150300.59.158.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (noarch nosrc) * kernel-docs-5.3.18-150300.59.158.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (nosrc x86_64) * kernel-preempt-5.3.18-150300.59.158.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (x86_64) * kernel-preempt-devel-debuginfo-5.3.18-150300.59.158.1 * kernel-preempt-devel-5.3.18-150300.59.158.1 * kernel-preempt-debuginfo-5.3.18-150300.59.158.1 * kernel-preempt-debugsource-5.3.18-150300.59.158.1 * SUSE Enterprise Storage 7.1 (aarch64 nosrc) * kernel-64kb-5.3.18-150300.59.158.1 * SUSE Enterprise Storage 7.1 (aarch64) * kernel-64kb-debugsource-5.3.18-150300.59.158.1 * kernel-64kb-devel-5.3.18-150300.59.158.1 * kernel-64kb-devel-debuginfo-5.3.18-150300.59.158.1 * kernel-64kb-debuginfo-5.3.18-150300.59.158.1 * SUSE Enterprise Storage 7.1 (aarch64 nosrc x86_64) * kernel-default-5.3.18-150300.59.158.1 * kernel-preempt-5.3.18-150300.59.158.1 * SUSE Enterprise Storage 7.1 (aarch64 x86_64) * kernel-default-devel-5.3.18-150300.59.158.1 * kernel-preempt-debugsource-5.3.18-150300.59.158.1 * kernel-syms-5.3.18-150300.59.158.1 * kernel-preempt-devel-5.3.18-150300.59.158.1 * reiserfs-kmp-default-debuginfo-5.3.18-150300.59.158.1 * kernel-preempt-debuginfo-5.3.18-150300.59.158.1 * reiserfs-kmp-default-5.3.18-150300.59.158.1 * kernel-default-debuginfo-5.3.18-150300.59.158.1 * kernel-obs-build-5.3.18-150300.59.158.1 * kernel-default-debugsource-5.3.18-150300.59.158.1 * kernel-default-base-5.3.18-150300.59.158.1.150300.18.92.5 * kernel-preempt-devel-debuginfo-5.3.18-150300.59.158.1 * kernel-obs-build-debugsource-5.3.18-150300.59.158.1 * kernel-default-devel-debuginfo-5.3.18-150300.59.158.1 * SUSE Enterprise Storage 7.1 (noarch) * kernel-source-5.3.18-150300.59.158.1 * kernel-devel-5.3.18-150300.59.158.1 * kernel-macros-5.3.18-150300.59.158.1 * SUSE Enterprise Storage 7.1 (noarch nosrc) * kernel-docs-5.3.18-150300.59.158.1 * SUSE Linux Enterprise Micro 5.1 (aarch64 nosrc s390x x86_64) * kernel-default-5.3.18-150300.59.158.1 * SUSE Linux Enterprise Micro 5.1 (aarch64 s390x x86_64) * kernel-default-debuginfo-5.3.18-150300.59.158.1 * kernel-default-debugsource-5.3.18-150300.59.158.1 * kernel-default-base-5.3.18-150300.59.158.1.150300.18.92.5 * SUSE Linux Enterprise Micro 5.2 (aarch64 nosrc s390x x86_64) * kernel-default-5.3.18-150300.59.158.1 * SUSE Linux Enterprise Micro 5.2 (aarch64 x86_64) * kernel-default-base-5.3.18-150300.59.158.1.150300.18.92.5 * SUSE Linux Enterprise Micro 5.2 (aarch64 s390x x86_64) * kernel-default-debuginfo-5.3.18-150300.59.158.1 * kernel-default-debugsource-5.3.18-150300.59.158.1 * SUSE Linux Enterprise Micro for Rancher 5.2 (aarch64 nosrc s390x x86_64) * kernel-default-5.3.18-150300.59.158.1 * SUSE Linux Enterprise Micro for Rancher 5.2 (aarch64 x86_64) * kernel-default-base-5.3.18-150300.59.158.1.150300.18.92.5 * SUSE Linux Enterprise Micro for Rancher 5.2 (aarch64 s390x x86_64) * kernel-default-debuginfo-5.3.18-150300.59.158.1 * kernel-default-debugsource-5.3.18-150300.59.158.1 * openSUSE Leap 15.3 (noarch nosrc) * kernel-docs-5.3.18-150300.59.158.1 * openSUSE Leap 15.3 (noarch) * kernel-devel-5.3.18-150300.59.158.1 * kernel-docs-html-5.3.18-150300.59.158.1 * kernel-source-vanilla-5.3.18-150300.59.158.1 * kernel-source-5.3.18-150300.59.158.1 * kernel-macros-5.3.18-150300.59.158.1 * openSUSE Leap 15.3 (nosrc ppc64le x86_64) * kernel-kvmsmall-5.3.18-150300.59.158.1 * kernel-debug-5.3.18-150300.59.158.1 * openSUSE Leap 15.3 (ppc64le x86_64) * kernel-kvmsmall-devel-debuginfo-5.3.18-150300.59.158.1 * kernel-debug-devel-5.3.18-150300.59.158.1 * kernel-kvmsmall-debugsource-5.3.18-150300.59.158.1 * kernel-debug-devel-debuginfo-5.3.18-150300.59.158.1 * kernel-debug-debugsource-5.3.18-150300.59.158.1 * kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.158.1 * kernel-kvmsmall-devel-5.3.18-150300.59.158.1 * kernel-debug-debuginfo-5.3.18-150300.59.158.1 * kernel-kvmsmall-debuginfo-5.3.18-150300.59.158.1 * kernel-debug-livepatch-devel-5.3.18-150300.59.158.1 * openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64) * kselftests-kmp-default-5.3.18-150300.59.158.1 * dlm-kmp-default-5.3.18-150300.59.158.1 * cluster-md-kmp-default-5.3.18-150300.59.158.1 * kernel-default-base-5.3.18-150300.59.158.1.150300.18.92.5 * kernel-default-extra-debuginfo-5.3.18-150300.59.158.1 * kernel-default-livepatch-5.3.18-150300.59.158.1 * gfs2-kmp-default-debuginfo-5.3.18-150300.59.158.1 * kernel-obs-qa-5.3.18-150300.59.158.1 * kernel-default-devel-5.3.18-150300.59.158.1 * kernel-syms-5.3.18-150300.59.158.1 * reiserfs-kmp-default-debuginfo-5.3.18-150300.59.158.1 * kernel-default-debugsource-5.3.18-150300.59.158.1 * kernel-default-optional-debuginfo-5.3.18-150300.59.158.1 * cluster-md-kmp-default-debuginfo-5.3.18-150300.59.158.1 * kernel-obs-build-debugsource-5.3.18-150300.59.158.1 * gfs2-kmp-default-5.3.18-150300.59.158.1 * kernel-default-livepatch-devel-5.3.18-150300.59.158.1 * kernel-default-extra-5.3.18-150300.59.158.1 * kselftests-kmp-default-debuginfo-5.3.18-150300.59.158.1 * reiserfs-kmp-default-5.3.18-150300.59.158.1 * dlm-kmp-default-debuginfo-5.3.18-150300.59.158.1 * kernel-default-devel-debuginfo-5.3.18-150300.59.158.1 * ocfs2-kmp-default-5.3.18-150300.59.158.1 * kernel-default-base-rebuild-5.3.18-150300.59.158.1.150300.18.92.5 * kernel-default-optional-5.3.18-150300.59.158.1 * kernel-default-debuginfo-5.3.18-150300.59.158.1 * kernel-obs-build-5.3.18-150300.59.158.1 * ocfs2-kmp-default-debuginfo-5.3.18-150300.59.158.1 * openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64 nosrc) * kernel-default-5.3.18-150300.59.158.1 * openSUSE Leap 15.3 (ppc64le s390x x86_64) * kernel-livepatch-SLE15-SP3_Update_43-debugsource-1-150300.7.3.5 * kernel-livepatch-5_3_18-150300_59_158-default-1-150300.7.3.5 * kernel-livepatch-5_3_18-150300_59_158-default-debuginfo-1-150300.7.3.5 * openSUSE Leap 15.3 (x86_64) * kernel-livepatch-5_3_18-150300_59_158-preempt-1-150300.7.3.5 * kernel-livepatch-5_3_18-150300_59_158-preempt-debuginfo-1-150300.7.3.5 * openSUSE Leap 15.3 (aarch64 x86_64) * reiserfs-kmp-preempt-debuginfo-5.3.18-150300.59.158.1 * kernel-preempt-livepatch-devel-5.3.18-150300.59.158.1 * kselftests-kmp-preempt-5.3.18-150300.59.158.1 * dlm-kmp-preempt-5.3.18-150300.59.158.1 * kselftests-kmp-preempt-debuginfo-5.3.18-150300.59.158.1 * kernel-preempt-optional-debuginfo-5.3.18-150300.59.158.1 * ocfs2-kmp-preempt-debuginfo-5.3.18-150300.59.158.1 * ocfs2-kmp-preempt-5.3.18-150300.59.158.1 * kernel-preempt-debugsource-5.3.18-150300.59.158.1 * kernel-preempt-debuginfo-5.3.18-150300.59.158.1 * reiserfs-kmp-preempt-5.3.18-150300.59.158.1 * kernel-preempt-extra-5.3.18-150300.59.158.1 * gfs2-kmp-preempt-debuginfo-5.3.18-150300.59.158.1 * cluster-md-kmp-preempt-5.3.18-150300.59.158.1 * cluster-md-kmp-preempt-debuginfo-5.3.18-150300.59.158.1 * kernel-preempt-optional-5.3.18-150300.59.158.1 * kernel-preempt-devel-5.3.18-150300.59.158.1 * dlm-kmp-preempt-debuginfo-5.3.18-150300.59.158.1 * kernel-preempt-extra-debuginfo-5.3.18-150300.59.158.1 * kernel-preempt-devel-debuginfo-5.3.18-150300.59.158.1 * gfs2-kmp-preempt-5.3.18-150300.59.158.1 * openSUSE Leap 15.3 (aarch64 nosrc x86_64) * kernel-preempt-5.3.18-150300.59.158.1 * openSUSE Leap 15.3 (nosrc s390x) * kernel-zfcpdump-5.3.18-150300.59.158.1 * openSUSE Leap 15.3 (s390x) * kernel-zfcpdump-debugsource-5.3.18-150300.59.158.1 * kernel-zfcpdump-debuginfo-5.3.18-150300.59.158.1 * openSUSE Leap 15.3 (nosrc) * dtb-aarch64-5.3.18-150300.59.158.1 * openSUSE Leap 15.3 (aarch64) * gfs2-kmp-64kb-5.3.18-150300.59.158.1 * dtb-al-5.3.18-150300.59.158.1 * dtb-xilinx-5.3.18-150300.59.158.1 * ocfs2-kmp-64kb-5.3.18-150300.59.158.1 * dtb-marvell-5.3.18-150300.59.158.1 * kernel-64kb-extra-5.3.18-150300.59.158.1 * kselftests-kmp-64kb-5.3.18-150300.59.158.1 * dtb-freescale-5.3.18-150300.59.158.1 * dtb-exynos-5.3.18-150300.59.158.1 * dtb-rockchip-5.3.18-150300.59.158.1 * dtb-broadcom-5.3.18-150300.59.158.1 * dtb-arm-5.3.18-150300.59.158.1 * dtb-mediatek-5.3.18-150300.59.158.1 * dlm-kmp-64kb-debuginfo-5.3.18-150300.59.158.1 * kernel-64kb-devel-5.3.18-150300.59.158.1 * kernel-64kb-optional-5.3.18-150300.59.158.1 * dtb-cavium-5.3.18-150300.59.158.1 * dtb-renesas-5.3.18-150300.59.158.1 * dtb-socionext-5.3.18-150300.59.158.1 * cluster-md-kmp-64kb-5.3.18-150300.59.158.1 * kselftests-kmp-64kb-debuginfo-5.3.18-150300.59.158.1 * kernel-64kb-devel-debuginfo-5.3.18-150300.59.158.1 * reiserfs-kmp-64kb-debuginfo-5.3.18-150300.59.158.1 * kernel-64kb-debugsource-5.3.18-150300.59.158.1 * dtb-amlogic-5.3.18-150300.59.158.1 * dtb-apm-5.3.18-150300.59.158.1 * dtb-allwinner-5.3.18-150300.59.158.1 * gfs2-kmp-64kb-debuginfo-5.3.18-150300.59.158.1 * kernel-64kb-extra-debuginfo-5.3.18-150300.59.158.1 * dtb-sprd-5.3.18-150300.59.158.1 * dtb-qcom-5.3.18-150300.59.158.1 * dtb-lg-5.3.18-150300.59.158.1 * kernel-64kb-debuginfo-5.3.18-150300.59.158.1 * reiserfs-kmp-64kb-5.3.18-150300.59.158.1 * ocfs2-kmp-64kb-debuginfo-5.3.18-150300.59.158.1 * dtb-altera-5.3.18-150300.59.158.1 * dtb-nvidia-5.3.18-150300.59.158.1 * cluster-md-kmp-64kb-debuginfo-5.3.18-150300.59.158.1 * kernel-64kb-livepatch-devel-5.3.18-150300.59.158.1 * dtb-hisilicon-5.3.18-150300.59.158.1 * dtb-zte-5.3.18-150300.59.158.1 * dlm-kmp-64kb-5.3.18-150300.59.158.1 * kernel-64kb-optional-debuginfo-5.3.18-150300.59.158.1 * dtb-amd-5.3.18-150300.59.158.1 * openSUSE Leap 15.3 (aarch64 nosrc) * kernel-64kb-5.3.18-150300.59.158.1 * SUSE Linux Enterprise Live Patching 15-SP3 (nosrc) * kernel-default-5.3.18-150300.59.158.1 * SUSE Linux Enterprise Live Patching 15-SP3 (ppc64le s390x x86_64) * kernel-default-debuginfo-5.3.18-150300.59.158.1 * kernel-default-debugsource-5.3.18-150300.59.158.1 * kernel-default-livepatch-5.3.18-150300.59.158.1 * kernel-livepatch-5_3_18-150300_59_158-default-1-150300.7.3.5 * kernel-default-livepatch-devel-5.3.18-150300.59.158.1 * SUSE Linux Enterprise High Availability Extension 15 SP3 (aarch64 ppc64le s390x x86_64) * ocfs2-kmp-default-5.3.18-150300.59.158.1 * dlm-kmp-default-debuginfo-5.3.18-150300.59.158.1 * kernel-default-debuginfo-5.3.18-150300.59.158.1 * dlm-kmp-default-5.3.18-150300.59.158.1 * kernel-default-debugsource-5.3.18-150300.59.158.1 * cluster-md-kmp-default-5.3.18-150300.59.158.1 * ocfs2-kmp-default-debuginfo-5.3.18-150300.59.158.1 * cluster-md-kmp-default-debuginfo-5.3.18-150300.59.158.1 * gfs2-kmp-default-debuginfo-5.3.18-150300.59.158.1 * gfs2-kmp-default-5.3.18-150300.59.158.1 * SUSE Linux Enterprise High Availability Extension 15 SP3 (nosrc) * kernel-default-5.3.18-150300.59.158.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (aarch64 nosrc) * kernel-64kb-5.3.18-150300.59.158.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (aarch64) * kernel-64kb-debugsource-5.3.18-150300.59.158.1 * kernel-64kb-devel-5.3.18-150300.59.158.1 * kernel-64kb-devel-debuginfo-5.3.18-150300.59.158.1 * kernel-64kb-debuginfo-5.3.18-150300.59.158.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (aarch64 nosrc x86_64) * kernel-default-5.3.18-150300.59.158.1 * kernel-preempt-5.3.18-150300.59.158.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (aarch64 x86_64) * kernel-default-devel-5.3.18-150300.59.158.1 * kernel-preempt-debugsource-5.3.18-150300.59.158.1 * kernel-syms-5.3.18-150300.59.158.1 * kernel-preempt-devel-5.3.18-150300.59.158.1 * reiserfs-kmp-default-debuginfo-5.3.18-150300.59.158.1 * kernel-preempt-debuginfo-5.3.18-150300.59.158.1 * reiserfs-kmp-default-5.3.18-150300.59.158.1 * kernel-default-debuginfo-5.3.18-150300.59.158.1 * kernel-obs-build-5.3.18-150300.59.158.1 * kernel-default-debugsource-5.3.18-150300.59.158.1 * kernel-default-base-5.3.18-150300.59.158.1.150300.18.92.5 * kernel-preempt-devel-debuginfo-5.3.18-150300.59.158.1 * kernel-obs-build-debugsource-5.3.18-150300.59.158.1 * kernel-default-devel-debuginfo-5.3.18-150300.59.158.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (noarch) * kernel-source-5.3.18-150300.59.158.1 * kernel-devel-5.3.18-150300.59.158.1 * kernel-macros-5.3.18-150300.59.158.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (noarch nosrc) * kernel-docs-5.3.18-150300.59.158.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (aarch64 nosrc) * kernel-64kb-5.3.18-150300.59.158.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (aarch64) * kernel-64kb-debugsource-5.3.18-150300.59.158.1 * kernel-64kb-devel-5.3.18-150300.59.158.1 * kernel-64kb-devel-debuginfo-5.3.18-150300.59.158.1 * kernel-64kb-debuginfo-5.3.18-150300.59.158.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (aarch64 ppc64le s390x x86_64 nosrc) * kernel-default-5.3.18-150300.59.158.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (aarch64 ppc64le s390x x86_64) * kernel-default-devel-5.3.18-150300.59.158.1 * kernel-syms-5.3.18-150300.59.158.1 * reiserfs-kmp-default-debuginfo-5.3.18-150300.59.158.1 * reiserfs-kmp-default-5.3.18-150300.59.158.1 * kernel-default-debuginfo-5.3.18-150300.59.158.1 * kernel-obs-build-5.3.18-150300.59.158.1 * kernel-default-debugsource-5.3.18-150300.59.158.1 * kernel-default-base-5.3.18-150300.59.158.1.150300.18.92.5 * kernel-obs-build-debugsource-5.3.18-150300.59.158.1 * kernel-default-devel-debuginfo-5.3.18-150300.59.158.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (noarch) * kernel-source-5.3.18-150300.59.158.1 * kernel-devel-5.3.18-150300.59.158.1 * kernel-macros-5.3.18-150300.59.158.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (noarch nosrc) * kernel-docs-5.3.18-150300.59.158.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (aarch64 nosrc x86_64) * kernel-preempt-5.3.18-150300.59.158.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (aarch64 x86_64) * kernel-preempt-devel-debuginfo-5.3.18-150300.59.158.1 * kernel-preempt-devel-5.3.18-150300.59.158.1 * kernel-preempt-debuginfo-5.3.18-150300.59.158.1 * kernel-preempt-debugsource-5.3.18-150300.59.158.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (nosrc s390x) * kernel-zfcpdump-5.3.18-150300.59.158.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (s390x) * kernel-zfcpdump-debugsource-5.3.18-150300.59.158.1 * kernel-zfcpdump-debuginfo-5.3.18-150300.59.158.1 ## References: * https://www.suse.com/security/cve/CVE-2020-36780.html * https://www.suse.com/security/cve/CVE-2020-36781.html * https://www.suse.com/security/cve/CVE-2020-36782.html * https://www.suse.com/security/cve/CVE-2020-36783.html * https://www.suse.com/security/cve/CVE-2021-23134.html * https://www.suse.com/security/cve/CVE-2021-29155.html * https://www.suse.com/security/cve/CVE-2021-46908.html * https://www.suse.com/security/cve/CVE-2021-46909.html * https://www.suse.com/security/cve/CVE-2021-46911.html * https://www.suse.com/security/cve/CVE-2021-46914.html * https://www.suse.com/security/cve/CVE-2021-46917.html * https://www.suse.com/security/cve/CVE-2021-46918.html * https://www.suse.com/security/cve/CVE-2021-46919.html * https://www.suse.com/security/cve/CVE-2021-46920.html * https://www.suse.com/security/cve/CVE-2021-46921.html * https://www.suse.com/security/cve/CVE-2021-46922.html * https://www.suse.com/security/cve/CVE-2021-46930.html * https://www.suse.com/security/cve/CVE-2021-46931.html * https://www.suse.com/security/cve/CVE-2021-46933.html * https://www.suse.com/security/cve/CVE-2021-46938.html * https://www.suse.com/security/cve/CVE-2021-46939.html * https://www.suse.com/security/cve/CVE-2021-46943.html * https://www.suse.com/security/cve/CVE-2021-46944.html * https://www.suse.com/security/cve/CVE-2021-46950.html * https://www.suse.com/security/cve/CVE-2021-46951.html * https://www.suse.com/security/cve/CVE-2021-46956.html * https://www.suse.com/security/cve/CVE-2021-46958.html * https://www.suse.com/security/cve/CVE-2021-46959.html * https://www.suse.com/security/cve/CVE-2021-46960.html * https://www.suse.com/security/cve/CVE-2021-46961.html * https://www.suse.com/security/cve/CVE-2021-46962.html * https://www.suse.com/security/cve/CVE-2021-46963.html * https://www.suse.com/security/cve/CVE-2021-46971.html * https://www.suse.com/security/cve/CVE-2021-46976.html * https://www.suse.com/security/cve/CVE-2021-46980.html * https://www.suse.com/security/cve/CVE-2021-46981.html * https://www.suse.com/security/cve/CVE-2021-46983.html * https://www.suse.com/security/cve/CVE-2021-46984.html * https://www.suse.com/security/cve/CVE-2021-46988.html * https://www.suse.com/security/cve/CVE-2021-46990.html * https://www.suse.com/security/cve/CVE-2021-46991.html * https://www.suse.com/security/cve/CVE-2021-46992.html * https://www.suse.com/security/cve/CVE-2021-46998.html * https://www.suse.com/security/cve/CVE-2021-47000.html * https://www.suse.com/security/cve/CVE-2021-47001.html * https://www.suse.com/security/cve/CVE-2021-47003.html * https://www.suse.com/security/cve/CVE-2021-47006.html * https://www.suse.com/security/cve/CVE-2021-47009.html * https://www.suse.com/security/cve/CVE-2021-47013.html * https://www.suse.com/security/cve/CVE-2021-47014.html * https://www.suse.com/security/cve/CVE-2021-47015.html * https://www.suse.com/security/cve/CVE-2021-47017.html * https://www.suse.com/security/cve/CVE-2021-47020.html * https://www.suse.com/security/cve/CVE-2021-47026.html * https://www.suse.com/security/cve/CVE-2021-47034.html * https://www.suse.com/security/cve/CVE-2021-47035.html * https://www.suse.com/security/cve/CVE-2021-47038.html * https://www.suse.com/security/cve/CVE-2021-47044.html * https://www.suse.com/security/cve/CVE-2021-47045.html * https://www.suse.com/security/cve/CVE-2021-47046.html * https://www.suse.com/security/cve/CVE-2021-47049.html * https://www.suse.com/security/cve/CVE-2021-47051.html * https://www.suse.com/security/cve/CVE-2021-47055.html * https://www.suse.com/security/cve/CVE-2021-47056.html * https://www.suse.com/security/cve/CVE-2021-47058.html * https://www.suse.com/security/cve/CVE-2021-47061.html * https://www.suse.com/security/cve/CVE-2021-47063.html * https://www.suse.com/security/cve/CVE-2021-47065.html * https://www.suse.com/security/cve/CVE-2021-47068.html * https://www.suse.com/security/cve/CVE-2021-47069.html * https://www.suse.com/security/cve/CVE-2021-47070.html * https://www.suse.com/security/cve/CVE-2021-47071.html * https://www.suse.com/security/cve/CVE-2021-47073.html * https://www.suse.com/security/cve/CVE-2021-47077.html * https://www.suse.com/security/cve/CVE-2021-47082.html * https://www.suse.com/security/cve/CVE-2021-47087.html * https://www.suse.com/security/cve/CVE-2021-47095.html * https://www.suse.com/security/cve/CVE-2021-47097.html * https://www.suse.com/security/cve/CVE-2021-47100.html * https://www.suse.com/security/cve/CVE-2021-47101.html * https://www.suse.com/security/cve/CVE-2021-47109.html * https://www.suse.com/security/cve/CVE-2021-47110.html * https://www.suse.com/security/cve/CVE-2021-47112.html * https://www.suse.com/security/cve/CVE-2021-47114.html * https://www.suse.com/security/cve/CVE-2021-47117.html * https://www.suse.com/security/cve/CVE-2021-47118.html * https://www.suse.com/security/cve/CVE-2021-47119.html * https://www.suse.com/security/cve/CVE-2021-47120.html * https://www.suse.com/security/cve/CVE-2021-47130.html * https://www.suse.com/security/cve/CVE-2021-47136.html * https://www.suse.com/security/cve/CVE-2021-47137.html * https://www.suse.com/security/cve/CVE-2021-47138.html * https://www.suse.com/security/cve/CVE-2021-47139.html * https://www.suse.com/security/cve/CVE-2021-47141.html * https://www.suse.com/security/cve/CVE-2021-47142.html * https://www.suse.com/security/cve/CVE-2021-47144.html * https://www.suse.com/security/cve/CVE-2021-47150.html * https://www.suse.com/security/cve/CVE-2021-47153.html * https://www.suse.com/security/cve/CVE-2021-47160.html * https://www.suse.com/security/cve/CVE-2021-47161.html * https://www.suse.com/security/cve/CVE-2021-47164.html * https://www.suse.com/security/cve/CVE-2021-47165.html * https://www.suse.com/security/cve/CVE-2021-47166.html * https://www.suse.com/security/cve/CVE-2021-47167.html * https://www.suse.com/security/cve/CVE-2021-47168.html * https://www.suse.com/security/cve/CVE-2021-47169.html * https://www.suse.com/security/cve/CVE-2021-47170.html * https://www.suse.com/security/cve/CVE-2021-47171.html * https://www.suse.com/security/cve/CVE-2021-47172.html * https://www.suse.com/security/cve/CVE-2021-47173.html * https://www.suse.com/security/cve/CVE-2021-47174.html * https://www.suse.com/security/cve/CVE-2021-47175.html * https://www.suse.com/security/cve/CVE-2021-47176.html * https://www.suse.com/security/cve/CVE-2021-47177.html * https://www.suse.com/security/cve/CVE-2021-47179.html * https://www.suse.com/security/cve/CVE-2021-47180.html * https://www.suse.com/security/cve/CVE-2021-47181.html * https://www.suse.com/security/cve/CVE-2021-47183.html * https://www.suse.com/security/cve/CVE-2021-47185.html * https://www.suse.com/security/cve/CVE-2021-47189.html * https://www.suse.com/security/cve/CVE-2022-0487.html * https://www.suse.com/security/cve/CVE-2022-4744.html * https://www.suse.com/security/cve/CVE-2022-48626.html * https://www.suse.com/security/cve/CVE-2023-0160.html * https://www.suse.com/security/cve/CVE-2023-1192.html * https://www.suse.com/security/cve/CVE-2023-28746.html * https://www.suse.com/security/cve/CVE-2023-35827.html * https://www.suse.com/security/cve/CVE-2023-52454.html * https://www.suse.com/security/cve/CVE-2023-52469.html * https://www.suse.com/security/cve/CVE-2023-52470.html * https://www.suse.com/security/cve/CVE-2023-52474.html * https://www.suse.com/security/cve/CVE-2023-52476.html * https://www.suse.com/security/cve/CVE-2023-52477.html * https://www.suse.com/security/cve/CVE-2023-52492.html * https://www.suse.com/security/cve/CVE-2023-52500.html * https://www.suse.com/security/cve/CVE-2023-52508.html * https://www.suse.com/security/cve/CVE-2023-52509.html * https://www.suse.com/security/cve/CVE-2023-52572.html * https://www.suse.com/security/cve/CVE-2023-52575.html * https://www.suse.com/security/cve/CVE-2023-52583.html * https://www.suse.com/security/cve/CVE-2023-52590.html * https://www.suse.com/security/cve/CVE-2023-52591.html * https://www.suse.com/security/cve/CVE-2023-52607.html * https://www.suse.com/security/cve/CVE-2023-52628.html * https://www.suse.com/security/cve/CVE-2023-6270.html * https://www.suse.com/security/cve/CVE-2023-6356.html * https://www.suse.com/security/cve/CVE-2023-6531.html * https://www.suse.com/security/cve/CVE-2023-6535.html * https://www.suse.com/security/cve/CVE-2023-6536.html * https://www.suse.com/security/cve/CVE-2023-7042.html * https://www.suse.com/security/cve/CVE-2023-7192.html * https://www.suse.com/security/cve/CVE-2024-22099.html * https://www.suse.com/security/cve/CVE-2024-26600.html * https://www.suse.com/security/cve/CVE-2024-26614.html * https://www.suse.com/security/cve/CVE-2024-26642.html * https://www.suse.com/security/cve/CVE-2024-26704.html * https://www.suse.com/security/cve/CVE-2024-26733.html * https://bugzilla.suse.com/show_bug.cgi?id=1184942 * https://bugzilla.suse.com/show_bug.cgi?id=1186060 * https://bugzilla.suse.com/show_bug.cgi?id=1192145 * https://bugzilla.suse.com/show_bug.cgi?id=1194516 * https://bugzilla.suse.com/show_bug.cgi?id=1208995 * https://bugzilla.suse.com/show_bug.cgi?id=1209635 * https://bugzilla.suse.com/show_bug.cgi?id=1209657 * https://bugzilla.suse.com/show_bug.cgi?id=1212514 * https://bugzilla.suse.com/show_bug.cgi?id=1213456 * https://bugzilla.suse.com/show_bug.cgi?id=1217987 * https://bugzilla.suse.com/show_bug.cgi?id=1217988 * https://bugzilla.suse.com/show_bug.cgi?id=1217989 * https://bugzilla.suse.com/show_bug.cgi?id=1218336 * https://bugzilla.suse.com/show_bug.cgi?id=1218447 * https://bugzilla.suse.com/show_bug.cgi?id=1218479 * https://bugzilla.suse.com/show_bug.cgi?id=1218562 * https://bugzilla.suse.com/show_bug.cgi?id=1219170 * https://bugzilla.suse.com/show_bug.cgi?id=1219264 * https://bugzilla.suse.com/show_bug.cgi?id=1220320 * https://bugzilla.suse.com/show_bug.cgi?id=1220340 * https://bugzilla.suse.com/show_bug.cgi?id=1220366 * https://bugzilla.suse.com/show_bug.cgi?id=1220400 * https://bugzilla.suse.com/show_bug.cgi?id=1220411 * https://bugzilla.suse.com/show_bug.cgi?id=1220413 * https://bugzilla.suse.com/show_bug.cgi?id=1220414 * https://bugzilla.suse.com/show_bug.cgi?id=1220425 * https://bugzilla.suse.com/show_bug.cgi?id=1220426 * https://bugzilla.suse.com/show_bug.cgi?id=1220429 * https://bugzilla.suse.com/show_bug.cgi?id=1220432 * https://bugzilla.suse.com/show_bug.cgi?id=1220442 * https://bugzilla.suse.com/show_bug.cgi?id=1220445 * https://bugzilla.suse.com/show_bug.cgi?id=1220465 * https://bugzilla.suse.com/show_bug.cgi?id=1220468 * https://bugzilla.suse.com/show_bug.cgi?id=1220475 * https://bugzilla.suse.com/show_bug.cgi?id=1220484 * https://bugzilla.suse.com/show_bug.cgi?id=1220486 * https://bugzilla.suse.com/show_bug.cgi?id=1220487 * https://bugzilla.suse.com/show_bug.cgi?id=1220516 * https://bugzilla.suse.com/show_bug.cgi?id=1220521 * https://bugzilla.suse.com/show_bug.cgi?id=1220528 * https://bugzilla.suse.com/show_bug.cgi?id=1220529 * https://bugzilla.suse.com/show_bug.cgi?id=1220532 * https://bugzilla.suse.com/show_bug.cgi?id=1220554 * https://bugzilla.suse.com/show_bug.cgi?id=1220556 * https://bugzilla.suse.com/show_bug.cgi?id=1220557 * https://bugzilla.suse.com/show_bug.cgi?id=1220560 * https://bugzilla.suse.com/show_bug.cgi?id=1220561 * https://bugzilla.suse.com/show_bug.cgi?id=1220566 * https://bugzilla.suse.com/show_bug.cgi?id=1220575 * https://bugzilla.suse.com/show_bug.cgi?id=1220580 * https://bugzilla.suse.com/show_bug.cgi?id=1220583 * https://bugzilla.suse.com/show_bug.cgi?id=1220611 * https://bugzilla.suse.com/show_bug.cgi?id=1220615 * https://bugzilla.suse.com/show_bug.cgi?id=1220621 * https://bugzilla.suse.com/show_bug.cgi?id=1220625 * https://bugzilla.suse.com/show_bug.cgi?id=1220630 * https://bugzilla.suse.com/show_bug.cgi?id=1220631 * https://bugzilla.suse.com/show_bug.cgi?id=1220638 * https://bugzilla.suse.com/show_bug.cgi?id=1220639 * https://bugzilla.suse.com/show_bug.cgi?id=1220640 * https://bugzilla.suse.com/show_bug.cgi?id=1220641 * https://bugzilla.suse.com/show_bug.cgi?id=1220662 * https://bugzilla.suse.com/show_bug.cgi?id=1220663 * https://bugzilla.suse.com/show_bug.cgi?id=1220669 * https://bugzilla.suse.com/show_bug.cgi?id=1220670 * https://bugzilla.suse.com/show_bug.cgi?id=1220677 * https://bugzilla.suse.com/show_bug.cgi?id=1220678 * https://bugzilla.suse.com/show_bug.cgi?id=1220685 * https://bugzilla.suse.com/show_bug.cgi?id=1220687 * https://bugzilla.suse.com/show_bug.cgi?id=1220688 * https://bugzilla.suse.com/show_bug.cgi?id=1220692 * https://bugzilla.suse.com/show_bug.cgi?id=1220697 * https://bugzilla.suse.com/show_bug.cgi?id=1220703 * https://bugzilla.suse.com/show_bug.cgi?id=1220706 * https://bugzilla.suse.com/show_bug.cgi?id=1220733 * https://bugzilla.suse.com/show_bug.cgi?id=1220734 * https://bugzilla.suse.com/show_bug.cgi?id=1220739 * https://bugzilla.suse.com/show_bug.cgi?id=1220743 * https://bugzilla.suse.com/show_bug.cgi?id=1220745 * https://bugzilla.suse.com/show_bug.cgi?id=1220749 * https://bugzilla.suse.com/show_bug.cgi?id=1220751 * https://bugzilla.suse.com/show_bug.cgi?id=1220753 * https://bugzilla.suse.com/show_bug.cgi?id=1220758 * https://bugzilla.suse.com/show_bug.cgi?id=1220759 * https://bugzilla.suse.com/show_bug.cgi?id=1220764 * https://bugzilla.suse.com/show_bug.cgi?id=1220768 * https://bugzilla.suse.com/show_bug.cgi?id=1220769 * https://bugzilla.suse.com/show_bug.cgi?id=1220777 * https://bugzilla.suse.com/show_bug.cgi?id=1220779 * https://bugzilla.suse.com/show_bug.cgi?id=1220785 * https://bugzilla.suse.com/show_bug.cgi?id=1220790 * https://bugzilla.suse.com/show_bug.cgi?id=1220794 * https://bugzilla.suse.com/show_bug.cgi?id=1220824 * https://bugzilla.suse.com/show_bug.cgi?id=1220826 * https://bugzilla.suse.com/show_bug.cgi?id=1220829 * https://bugzilla.suse.com/show_bug.cgi?id=1220836 * https://bugzilla.suse.com/show_bug.cgi?id=1220846 * https://bugzilla.suse.com/show_bug.cgi?id=1220850 * https://bugzilla.suse.com/show_bug.cgi?id=1220861 * https://bugzilla.suse.com/show_bug.cgi?id=1220871 * https://bugzilla.suse.com/show_bug.cgi?id=1220883 * https://bugzilla.suse.com/show_bug.cgi?id=1220946 * https://bugzilla.suse.com/show_bug.cgi?id=1220954 * https://bugzilla.suse.com/show_bug.cgi?id=1220969 * https://bugzilla.suse.com/show_bug.cgi?id=1220979 * https://bugzilla.suse.com/show_bug.cgi?id=1220982 * https://bugzilla.suse.com/show_bug.cgi?id=1220985 * https://bugzilla.suse.com/show_bug.cgi?id=1220987 * https://bugzilla.suse.com/show_bug.cgi?id=1221015 * https://bugzilla.suse.com/show_bug.cgi?id=1221044 * https://bugzilla.suse.com/show_bug.cgi?id=1221058 * https://bugzilla.suse.com/show_bug.cgi?id=1221061 * https://bugzilla.suse.com/show_bug.cgi?id=1221077 * https://bugzilla.suse.com/show_bug.cgi?id=1221088 * https://bugzilla.suse.com/show_bug.cgi?id=1221276 * https://bugzilla.suse.com/show_bug.cgi?id=1221293 * https://bugzilla.suse.com/show_bug.cgi?id=1221532 * https://bugzilla.suse.com/show_bug.cgi?id=1221534 * https://bugzilla.suse.com/show_bug.cgi?id=1221541 * https://bugzilla.suse.com/show_bug.cgi?id=1221548 * https://bugzilla.suse.com/show_bug.cgi?id=1221552 * https://bugzilla.suse.com/show_bug.cgi?id=1221575 * https://bugzilla.suse.com/show_bug.cgi?id=1221605 * https://bugzilla.suse.com/show_bug.cgi?id=1221606 * https://bugzilla.suse.com/show_bug.cgi?id=1221608 * https://bugzilla.suse.com/show_bug.cgi?id=1221830 * https://bugzilla.suse.com/show_bug.cgi?id=1221931 * https://bugzilla.suse.com/show_bug.cgi?id=1221932 * https://bugzilla.suse.com/show_bug.cgi?id=1221934 * https://bugzilla.suse.com/show_bug.cgi?id=1221935 * https://bugzilla.suse.com/show_bug.cgi?id=1221949 * https://bugzilla.suse.com/show_bug.cgi?id=1221952 * https://bugzilla.suse.com/show_bug.cgi?id=1221965 * https://bugzilla.suse.com/show_bug.cgi?id=1221966 * https://bugzilla.suse.com/show_bug.cgi?id=1221969 * https://bugzilla.suse.com/show_bug.cgi?id=1221973 * https://bugzilla.suse.com/show_bug.cgi?id=1221974 * https://bugzilla.suse.com/show_bug.cgi?id=1221978 * https://bugzilla.suse.com/show_bug.cgi?id=1221989 * https://bugzilla.suse.com/show_bug.cgi?id=1221990 * https://bugzilla.suse.com/show_bug.cgi?id=1221991 * https://bugzilla.suse.com/show_bug.cgi?id=1221992 * https://bugzilla.suse.com/show_bug.cgi?id=1221993 * https://bugzilla.suse.com/show_bug.cgi?id=1221994 * https://bugzilla.suse.com/show_bug.cgi?id=1221996 * https://bugzilla.suse.com/show_bug.cgi?id=1221997 * https://bugzilla.suse.com/show_bug.cgi?id=1221998 * https://bugzilla.suse.com/show_bug.cgi?id=1221999 * https://bugzilla.suse.com/show_bug.cgi?id=1222000 * https://bugzilla.suse.com/show_bug.cgi?id=1222001 * https://bugzilla.suse.com/show_bug.cgi?id=1222002 * https://bugzilla.suse.com/show_bug.cgi?id=1222003 * https://bugzilla.suse.com/show_bug.cgi?id=1222004 * https://bugzilla.suse.com/show_bug.cgi?id=1222117 * https://bugzilla.suse.com/show_bug.cgi?id=1222422 * https://bugzilla.suse.com/show_bug.cgi?id=1222585 * https://bugzilla.suse.com/show_bug.cgi?id=1222619 * https://bugzilla.suse.com/show_bug.cgi?id=1222660 * https://bugzilla.suse.com/show_bug.cgi?id=1222664 * https://bugzilla.suse.com/show_bug.cgi?id=1222669 * https://bugzilla.suse.com/show_bug.cgi?id=1222706 * https://jira.suse.com/browse/PED-5759 * https://jira.suse.com/browse/SLE-13706 * https://jira.suse.com/browse/SLE-15131 * https://jira.suse.com/browse/SLE-15172 * https://jira.suse.com/browse/SLE-15176 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 19 12:41:35 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 19 Aug 2024 12:41:35 -0000 Subject: SUSE-SU-2024:1486-1: moderate: Security update for cosign Message-ID: <172407129526.18977.16144790305572545559@smelt2.prg2.suse.org> # Security update for cosign Announcement ID: SUSE-SU-2024:1486-1 Rating: moderate References: * bsc#1222835 * bsc#1222837 * jsc#SLE-23879 Cross-References: * CVE-2024-29902 * CVE-2024-29903 CVSS scores: * CVE-2024-29902 ( SUSE ): 4.2 CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:U/C:N/I:N/A:H * CVE-2024-29903 ( SUSE ): 4.2 CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:U/C:N/I:N/A:H Affected Products: * Basesystem Module 15-SP5 * openSUSE Leap 15.4 * openSUSE Leap 15.5 * SUSE Linux Enterprise Desktop 15 SP5 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 An update that solves two vulnerabilities and contains one feature can now be installed. ## Description: This update for cosign fixes the following issues: * CVE-2024-29902: Fixed denial of service on host machine via remote image with a malicious attachments (bsc#1222835) * CVE-2024-29903: Fixed denial of service on host machine via malicious software artifacts (bsc#1222837) Other fixes: \- Updated to 2.2.4 (jsc#SLE-23879) * Fixes for GHSA-88jx-383q-w4qc and GHSA-95pr-fxf5-86gv (#3661) * ErrNoSignaturesFound should be used when there is no signature attached to an image. (#3526) * fix semgrep issues for dgryski.semgrep-go ruleset (#3541) * Honor creation timestamp for signatures again (#3549) * Features * Adds Support for Fulcio Client Credentials Flow, and Argument to Set Flow Explicitly (#3578) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch SUSE-2024-1486=1 * openSUSE Leap 15.5 zypper in -t patch openSUSE-SLE-15.5-2024-1486=1 * Basesystem Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP5-2024-1486=1 ## Package List: * openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586) * cosign-debuginfo-2.2.4-150400.3.20.1 * cosign-2.2.4-150400.3.20.1 * openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64) * cosign-2.2.4-150400.3.20.1 * Basesystem Module 15-SP5 (aarch64 ppc64le s390x x86_64) * cosign-2.2.4-150400.3.20.1 ## References: * https://www.suse.com/security/cve/CVE-2024-29902.html * https://www.suse.com/security/cve/CVE-2024-29903.html * https://bugzilla.suse.com/show_bug.cgi?id=1222835 * https://bugzilla.suse.com/show_bug.cgi?id=1222837 * https://jira.suse.com/browse/SLE-23879 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 19 12:41:29 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 19 Aug 2024 12:41:29 -0000 Subject: SUSE-SU-2024:1577-1: important: Security update for sssd Message-ID: <172407128988.18977.7711524266706338170@smelt2.prg2.suse.org> # Security update for sssd Announcement ID: SUSE-SU-2024:1577-1 Rating: important References: * bsc#1160688 * bsc#1223100 * jsc#PED-7677 * jsc#SLE-9298 Cross-References: * CVE-2023-3758 CVSS scores: * CVE-2023-3758 ( SUSE ): 7.1 CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 * SUSE Linux Enterprise Software Development Kit 12 SP5 An update that solves one vulnerability, contains two features and has one security fix can now be installed. ## Description: This update for sssd fixes the following issues: Security fixes: \- CVE-2023-3758: Fixed race condition during authorization that lead to GPO policies functioning inconsistently (bsc#1223100) Other fixes: * Extend sssctl command line tool to manage the cached GPOs (jsc#PED-7677) * SSSD GPO host entries are ignored if computer cn does not match it's samaccountname (jsc#SLE-9298) (bsc#1160688) * SSSD should accept host entries from GPO's security filter (jsc#SLE-9298) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise High Performance Computing 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-1577=1 * SUSE Linux Enterprise Server 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-1577=1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-1577=1 * SUSE Linux Enterprise Software Development Kit 12 SP5 zypper in -t patch SUSE-SLE-SDK-12-SP5-2024-1577=1 ## Package List: * SUSE Linux Enterprise High Performance Computing 12 SP5 (aarch64 x86_64) * sssd-ad-1.16.1-7.61.1 * sssd-krb5-common-1.16.1-7.61.1 * libipa_hbac0-1.16.1-7.61.1 * sssd-common-debuginfo-1.16.1-7.61.1 * sssd-ipa-1.16.1-7.61.1 * libsss_simpleifp0-1.16.1-7.61.1 * sssd-debugsource-1.16.1-7.61.1 * libsss_nss_idmap0-1.16.1-7.61.1 * python-sssd-config-1.16.1-7.61.1 * sssd-krb5-1.16.1-7.61.1 * libsss_certmap0-debuginfo-1.16.1-7.61.1 * sssd-krb5-common-debuginfo-1.16.1-7.61.1 * libsss_certmap0-1.16.1-7.61.1 * sssd-tools-debuginfo-1.16.1-7.61.1 * sssd-dbus-1.16.1-7.61.1 * sssd-1.16.1-7.61.1 * libipa_hbac0-debuginfo-1.16.1-7.61.1 * sssd-ldap-1.16.1-7.61.1 * libsss_idmap0-debuginfo-1.16.1-7.61.1 * sssd-dbus-debuginfo-1.16.1-7.61.1 * sssd-tools-1.16.1-7.61.1 * python-sssd-config-debuginfo-1.16.1-7.61.1 * sssd-ldap-debuginfo-1.16.1-7.61.1 * libsss_idmap0-1.16.1-7.61.1 * sssd-proxy-1.16.1-7.61.1 * sssd-common-1.16.1-7.61.1 * sssd-proxy-debuginfo-1.16.1-7.61.1 * libsss_nss_idmap0-debuginfo-1.16.1-7.61.1 * libsss_simpleifp0-debuginfo-1.16.1-7.61.1 * sssd-ad-debuginfo-1.16.1-7.61.1 * sssd-krb5-debuginfo-1.16.1-7.61.1 * sssd-ipa-debuginfo-1.16.1-7.61.1 * SUSE Linux Enterprise High Performance Computing 12 SP5 (aarch64) * libsss_nss_idmap-devel-1.16.1-7.61.1 * SUSE Linux Enterprise High Performance Computing 12 SP5 (x86_64) * sssd-common-debuginfo-32bit-1.16.1-7.61.1 * sssd-common-32bit-1.16.1-7.61.1 * SUSE Linux Enterprise Server 12 SP5 (aarch64 ppc64le s390x x86_64) * sssd-ad-1.16.1-7.61.1 * sssd-krb5-common-1.16.1-7.61.1 * libipa_hbac0-1.16.1-7.61.1 * sssd-common-debuginfo-1.16.1-7.61.1 * sssd-ipa-1.16.1-7.61.1 * libsss_simpleifp0-1.16.1-7.61.1 * sssd-debugsource-1.16.1-7.61.1 * libsss_nss_idmap0-1.16.1-7.61.1 * python-sssd-config-1.16.1-7.61.1 * sssd-krb5-1.16.1-7.61.1 * libsss_certmap0-debuginfo-1.16.1-7.61.1 * sssd-krb5-common-debuginfo-1.16.1-7.61.1 * libsss_certmap0-1.16.1-7.61.1 * sssd-tools-debuginfo-1.16.1-7.61.1 * sssd-dbus-1.16.1-7.61.1 * sssd-1.16.1-7.61.1 * libipa_hbac0-debuginfo-1.16.1-7.61.1 * sssd-ldap-1.16.1-7.61.1 * libsss_idmap0-debuginfo-1.16.1-7.61.1 * sssd-dbus-debuginfo-1.16.1-7.61.1 * sssd-tools-1.16.1-7.61.1 * python-sssd-config-debuginfo-1.16.1-7.61.1 * sssd-ldap-debuginfo-1.16.1-7.61.1 * libsss_idmap0-1.16.1-7.61.1 * sssd-proxy-1.16.1-7.61.1 * sssd-common-1.16.1-7.61.1 * sssd-proxy-debuginfo-1.16.1-7.61.1 * libsss_nss_idmap0-debuginfo-1.16.1-7.61.1 * libsss_simpleifp0-debuginfo-1.16.1-7.61.1 * sssd-ad-debuginfo-1.16.1-7.61.1 * sssd-krb5-debuginfo-1.16.1-7.61.1 * sssd-ipa-debuginfo-1.16.1-7.61.1 * SUSE Linux Enterprise Server 12 SP5 (aarch64) * libsss_nss_idmap-devel-1.16.1-7.61.1 * SUSE Linux Enterprise Server 12 SP5 (s390x x86_64) * sssd-common-debuginfo-32bit-1.16.1-7.61.1 * sssd-common-32bit-1.16.1-7.61.1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 (ppc64le x86_64) * sssd-ad-1.16.1-7.61.1 * sssd-krb5-common-1.16.1-7.61.1 * libipa_hbac0-1.16.1-7.61.1 * sssd-common-debuginfo-1.16.1-7.61.1 * sssd-ipa-1.16.1-7.61.1 * libsss_simpleifp0-1.16.1-7.61.1 * sssd-debugsource-1.16.1-7.61.1 * libsss_nss_idmap0-1.16.1-7.61.1 * python-sssd-config-1.16.1-7.61.1 * sssd-krb5-1.16.1-7.61.1 * libsss_certmap0-debuginfo-1.16.1-7.61.1 * sssd-krb5-common-debuginfo-1.16.1-7.61.1 * libsss_certmap0-1.16.1-7.61.1 * sssd-tools-debuginfo-1.16.1-7.61.1 * sssd-dbus-1.16.1-7.61.1 * sssd-1.16.1-7.61.1 * libipa_hbac0-debuginfo-1.16.1-7.61.1 * sssd-ldap-1.16.1-7.61.1 * libsss_idmap0-debuginfo-1.16.1-7.61.1 * sssd-dbus-debuginfo-1.16.1-7.61.1 * sssd-tools-1.16.1-7.61.1 * python-sssd-config-debuginfo-1.16.1-7.61.1 * sssd-ldap-debuginfo-1.16.1-7.61.1 * libsss_idmap0-1.16.1-7.61.1 * sssd-proxy-1.16.1-7.61.1 * sssd-common-1.16.1-7.61.1 * sssd-proxy-debuginfo-1.16.1-7.61.1 * libsss_nss_idmap0-debuginfo-1.16.1-7.61.1 * libsss_simpleifp0-debuginfo-1.16.1-7.61.1 * sssd-ad-debuginfo-1.16.1-7.61.1 * sssd-krb5-debuginfo-1.16.1-7.61.1 * sssd-ipa-debuginfo-1.16.1-7.61.1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 (x86_64) * sssd-common-debuginfo-32bit-1.16.1-7.61.1 * sssd-common-32bit-1.16.1-7.61.1 * SUSE Linux Enterprise Software Development Kit 12 SP5 (aarch64 ppc64le s390x x86_64) * libipa_hbac-devel-1.16.1-7.61.1 * libsss_idmap-devel-1.16.1-7.61.1 * sssd-debugsource-1.16.1-7.61.1 * libsss_nss_idmap-devel-1.16.1-7.61.1 ## References: * https://www.suse.com/security/cve/CVE-2023-3758.html * https://bugzilla.suse.com/show_bug.cgi?id=1160688 * https://bugzilla.suse.com/show_bug.cgi?id=1223100 * https://jira.suse.com/browse/PED-7677 * https://jira.suse.com/browse/SLE-9298 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 19 12:41:49 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 19 Aug 2024 12:41:49 -0000 Subject: SUSE-SU-2024:1465-1: important: Security update for the Linux Kernel Message-ID: <172407130994.18977.3826842672880681284@smelt2.prg2.suse.org> # Security update for the Linux Kernel Announcement ID: SUSE-SU-2024:1465-1 Rating: important References: * bsc#1192145 * bsc#1209657 * bsc#1218336 * bsc#1218447 * bsc#1218479 * bsc#1218562 * bsc#1219170 * bsc#1219264 * bsc#1220320 * bsc#1220340 * bsc#1220366 * bsc#1220400 * bsc#1220411 * bsc#1220413 * bsc#1220414 * bsc#1220425 * bsc#1220426 * bsc#1220429 * bsc#1220432 * bsc#1220442 * bsc#1220445 * bsc#1220465 * bsc#1220468 * bsc#1220475 * bsc#1220484 * bsc#1220486 * bsc#1220487 * bsc#1220516 * bsc#1220521 * bsc#1220528 * bsc#1220529 * bsc#1220532 * bsc#1220536 * bsc#1220554 * bsc#1220556 * bsc#1220557 * bsc#1220560 * bsc#1220561 * bsc#1220566 * bsc#1220575 * bsc#1220580 * bsc#1220583 * bsc#1220611 * bsc#1220615 * bsc#1220621 * bsc#1220625 * bsc#1220630 * bsc#1220631 * bsc#1220638 * bsc#1220639 * bsc#1220640 * bsc#1220662 * bsc#1220663 * bsc#1220669 * bsc#1220670 * bsc#1220677 * bsc#1220678 * bsc#1220685 * bsc#1220687 * bsc#1220688 * bsc#1220692 * bsc#1220697 * bsc#1220703 * bsc#1220706 * bsc#1220733 * bsc#1220734 * bsc#1220739 * bsc#1220743 * bsc#1220749 * bsc#1220751 * bsc#1220753 * bsc#1220758 * bsc#1220759 * bsc#1220764 * bsc#1220768 * bsc#1220769 * bsc#1220777 * bsc#1220779 * bsc#1220785 * bsc#1220790 * bsc#1220794 * bsc#1220824 * bsc#1220829 * bsc#1220836 * bsc#1220846 * bsc#1220850 * bsc#1220861 * bsc#1220871 * bsc#1220883 * bsc#1220946 * bsc#1220954 * bsc#1220969 * bsc#1220979 * bsc#1220982 * bsc#1220985 * bsc#1220987 * bsc#1221015 * bsc#1221044 * bsc#1221058 * bsc#1221061 * bsc#1221077 * bsc#1221088 * bsc#1221276 * bsc#1221293 * bsc#1221532 * bsc#1221534 * bsc#1221541 * bsc#1221548 * bsc#1221552 * bsc#1221575 * bsc#1221605 * bsc#1221606 * bsc#1221608 * bsc#1221830 * bsc#1221931 * bsc#1221932 * bsc#1221934 * bsc#1221935 * bsc#1221949 * bsc#1221952 * bsc#1221965 * bsc#1221966 * bsc#1221969 * bsc#1221973 * bsc#1221974 * bsc#1221978 * bsc#1221989 * bsc#1221990 * bsc#1221991 * bsc#1221992 * bsc#1221993 * bsc#1221994 * bsc#1221996 * bsc#1221997 * bsc#1221998 * bsc#1221999 * bsc#1222000 * bsc#1222001 * bsc#1222002 * bsc#1222003 * bsc#1222004 * bsc#1222117 * bsc#1222422 * bsc#1222585 * bsc#1222619 * bsc#1222660 * bsc#1222664 * bsc#1222669 * bsc#1222706 * bsc#1222878 * jsc#PED-5759 * jsc#SLE-13706 * jsc#SLE-15131 * jsc#SLE-15172 * jsc#SLE-15176 Cross-References: * CVE-2020-36780 * CVE-2020-36781 * CVE-2020-36782 * CVE-2020-36783 * CVE-2021-46908 * CVE-2021-46909 * CVE-2021-46911 * CVE-2021-46914 * CVE-2021-46917 * CVE-2021-46918 * CVE-2021-46919 * CVE-2021-46920 * CVE-2021-46921 * CVE-2021-46922 * CVE-2021-46930 * CVE-2021-46931 * CVE-2021-46933 * CVE-2021-46938 * CVE-2021-46939 * CVE-2021-46943 * CVE-2021-46944 * CVE-2021-46950 * CVE-2021-46951 * CVE-2021-46956 * CVE-2021-46958 * CVE-2021-46959 * CVE-2021-46960 * CVE-2021-46961 * CVE-2021-46962 * CVE-2021-46963 * CVE-2021-46971 * CVE-2021-46976 * CVE-2021-46980 * CVE-2021-46981 * CVE-2021-46983 * CVE-2021-46984 * CVE-2021-46988 * CVE-2021-46990 * CVE-2021-46991 * CVE-2021-46992 * CVE-2021-46998 * CVE-2021-47000 * CVE-2021-47001 * CVE-2021-47003 * CVE-2021-47006 * CVE-2021-47009 * CVE-2021-47014 * CVE-2021-47015 * CVE-2021-47017 * CVE-2021-47020 * CVE-2021-47026 * CVE-2021-47034 * CVE-2021-47035 * CVE-2021-47038 * CVE-2021-47044 * CVE-2021-47045 * CVE-2021-47046 * CVE-2021-47049 * CVE-2021-47051 * CVE-2021-47055 * CVE-2021-47056 * CVE-2021-47058 * CVE-2021-47063 * CVE-2021-47065 * CVE-2021-47068 * CVE-2021-47070 * CVE-2021-47071 * CVE-2021-47073 * CVE-2021-47077 * CVE-2021-47082 * CVE-2021-47087 * CVE-2021-47095 * CVE-2021-47097 * CVE-2021-47100 * CVE-2021-47101 * CVE-2021-47109 * CVE-2021-47110 * CVE-2021-47112 * CVE-2021-47114 * CVE-2021-47117 * CVE-2021-47118 * CVE-2021-47119 * CVE-2021-47120 * CVE-2021-47130 * CVE-2021-47136 * CVE-2021-47137 * CVE-2021-47138 * CVE-2021-47139 * CVE-2021-47141 * CVE-2021-47142 * CVE-2021-47144 * CVE-2021-47150 * CVE-2021-47153 * CVE-2021-47160 * CVE-2021-47161 * CVE-2021-47164 * CVE-2021-47165 * CVE-2021-47166 * CVE-2021-47167 * CVE-2021-47168 * CVE-2021-47169 * CVE-2021-47170 * CVE-2021-47171 * CVE-2021-47172 * CVE-2021-47173 * CVE-2021-47174 * CVE-2021-47175 * CVE-2021-47176 * CVE-2021-47177 * CVE-2021-47179 * CVE-2021-47180 * CVE-2021-47181 * CVE-2021-47183 * CVE-2021-47185 * CVE-2021-47189 * CVE-2021-47202 * CVE-2022-48626 * CVE-2023-0160 * CVE-2023-52454 * CVE-2023-52469 * CVE-2023-52470 * CVE-2023-52474 * CVE-2023-52476 * CVE-2023-52477 * CVE-2023-52492 * CVE-2023-52500 * CVE-2023-52508 * CVE-2023-52509 * CVE-2023-52572 * CVE-2023-52575 * CVE-2023-52583 * CVE-2023-52590 * CVE-2023-52591 * CVE-2023-52607 * CVE-2023-52628 * CVE-2023-6270 * CVE-2023-6531 * CVE-2023-7042 * CVE-2023-7192 * CVE-2024-22099 * CVE-2024-26600 * CVE-2024-26614 * CVE-2024-26642 * CVE-2024-26704 * CVE-2024-26733 CVSS scores: * CVE-2020-36780 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2020-36781 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2020-36782 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2020-36783 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-46908 ( SUSE ): 5.1 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2021-46908 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-46909 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-46909 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-46911 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2021-46914 ( SUSE ): 4.3 CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-46914 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-46917 ( SUSE ): 3.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:L * CVE-2021-46917 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2021-46918 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2021-46918 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-46919 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2021-46919 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-46920 ( SUSE ): 1.9 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:L * CVE-2021-46920 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N * CVE-2021-46921 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N * CVE-2021-46922 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2021-46922 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-46930 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2021-46930 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-46931 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-46931 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-46933 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L * CVE-2021-46933 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-46938 ( SUSE ): 5.1 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H * CVE-2021-46938 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2021-46939 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-46939 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-46943 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-46943 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2021-46944 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-46944 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-46950 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N * CVE-2021-46950 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2021-46951 ( SUSE ): 4.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2021-46951 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-46956 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-46958 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-46959 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2021-46960 ( SUSE ): 2.3 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:L * CVE-2021-46961 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-46962 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N * CVE-2021-46963 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-46971 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2021-46976 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2021-46980 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-46981 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-46983 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-46984 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-46988 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-46990 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-46991 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2021-46992 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2021-46998 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2021-47000 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2021-47001 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47003 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47006 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47009 ( SUSE ): 6.0 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:H * CVE-2021-47014 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2021-47015 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47017 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2021-47020 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2021-47026 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47034 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47035 ( SUSE ): 6.0 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N * CVE-2021-47038 ( SUSE ): 5.7 CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47044 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2021-47045 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47046 ( SUSE ): 6.0 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:H * CVE-2021-47049 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47051 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N * CVE-2021-47055 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47056 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47058 ( SUSE ): 5.1 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:H * CVE-2021-47063 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2021-47065 ( SUSE ): 6.3 CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H * CVE-2021-47068 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2021-47070 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2021-47071 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2021-47073 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47077 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47082 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47087 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2021-47095 ( SUSE ): 5.1 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47097 ( SUSE ): 4.0 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2021-47100 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47101 ( SUSE ): 4.0 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N * CVE-2021-47109 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47110 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47112 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2021-47114 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47117 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47118 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47119 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47120 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47130 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47136 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2021-47137 ( SUSE ): 6.4 CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2021-47138 ( SUSE ): 4.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2021-47139 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47141 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47142 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47144 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47150 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47153 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47160 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47161 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47164 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47164 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47165 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47166 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47167 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47168 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47169 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47170 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47171 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47171 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47172 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47173 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47173 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47174 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47175 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47176 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47177 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47179 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47179 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47180 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47181 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47183 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47185 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47189 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-47202 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48626 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2022-48626 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-0160 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-0160 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52454 ( SUSE ): 6.5 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52454 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52469 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2023-52469 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-52470 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52470 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52474 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N * CVE-2023-52474 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-52476 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52477 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52492 ( SUSE ): 6.2 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52500 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2023-52508 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52509 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-52572 ( SUSE ): 0.0 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N * CVE-2023-52575 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52583 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52590 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L * CVE-2023-52591 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2023-52607 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52628 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-6270 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-6270 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-6531 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-6531 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-7042 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2023-7042 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-7192 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2023-7192 ( NVD ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-22099 ( SUSE ): 5.3 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-22099 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26600 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26600 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26614 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26642 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26704 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26733 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H Affected Products: * SUSE Linux Enterprise Micro 5.1 * SUSE Linux Enterprise Micro 5.2 * SUSE Linux Enterprise Micro for Rancher 5.2 An update that solves 145 vulnerabilities, contains five features and has five security fixes can now be installed. ## Description: The SUSE Linux Enterprise 15 SP3 RT kernel was updated to receive various security bugfixes. The following security bugs were fixed: * CVE-2020-36780: Fixed a reference leak when pm_runtime_get_sync fails in i2c (bsc#1220556). * CVE-2020-36781: Fixed reference leak when pm_runtime_get_sync fails in i2c/imx (bsc#1220557). * CVE-2020-36782: Fixed a reference leak when pm_runtime_get_sync fails in i2c imx-lpi2c (bsc#1220560). * CVE-2020-36783: Fixed a reference leak when pm_runtime_get_sync fails in i2c img-scb (bsc#1220561). * CVE-2021-46908: Fixed incorrect permission flag for mixed signed bounds arithmetic in bpf (bsc#1220425). * CVE-2021-46909: Fixed a PCI interrupt mapping in ARM footbridge (bsc#1220442). * CVE-2021-46911: Fixed kernel panic (bsc#1220400). * CVE-2021-46914: Fixed unbalanced device enable/disable in suspend/resume in pci_disable_device() (bsc#1220465). * CVE-2021-46917: Fixed wq cleanup of WQCFG registers in idxd (bsc#1220432). * CVE-2021-46918: Fixed not clearing MSIX permission entry on shutdown in idxd (bsc#1220429). * CVE-2021-46919: Fixed wq size store permission state in idxd (bsc#1220414). * CVE-2021-46920: Fixed clobbering of SWERR overflow bit on writeback (bsc#1220426). * CVE-2021-46921: Fixed ordering in queued_write_lock_slowpath (bsc#1220468). * CVE-2021-46922: Fixed TPM reservation for seal/unseal (bsc#1220475). * CVE-2021-46930: Fixed usb/mtu3 list_head check warning (bsc#1220484). * CVE-2021-46931: Fixed wrong type casting in mlx5e_tx_reporter_dump_sq() (bsc#1220486). * CVE-2021-46933: Fixed possible underflow in ffs_data_clear() (bsc#1220487). * CVE-2021-46938: Fixed a double free of blk_mq_tag_set in dev remove after table load fails in dm rq (bsc#1220554). * CVE-2021-46939: Fixed a denial of service in trace_clock_global() in tracing (bsc#1220580). * CVE-2021-46943: Fixed an oops in set_fmt error handling in media: staging/intel-ipu3 (bsc#1220583). * CVE-2021-46944: Fixed a memory leak in imu_fmt in media staging/intel-ipu3 (bsc#1220566). * CVE-2021-46950: Fixed a data corruption bug in raid1 arrays using bitmaps in md/raid1 (bsc#1220662). * CVE-2021-46951: Fixed an integer underflow of efi_tpm_final_log_size in tpm_read_log_efi in tpm efi (bsc#1220615). * CVE-2021-46956: Fixed memory leak in virtio_fs_probe() (bsc#1220516). * CVE-2021-46958: Fixed a race between transaction aborts and fsyncs leading to use-after-free in btrfs (bsc#1220521). * CVE-2021-46959: Fixed use-after-free with devm_spi_alloc_* (bsc#1220734). * CVE-2021-46960: Fixed a warning on smb2_get_enc_key in cifs (bsc#1220528). * CVE-2021-46961: Fixed spurious interrup handling (bsc#1220529). * CVE-2021-46962: Fixed a resource leak in the remove function in mmc uniphier-sd (bsc#1220532). * CVE-2021-46963: Fixed crash in qla2xxx_mqueuecommand() (bsc#1220536). * CVE-2021-46971: Fixed unconditional security_locked_down() call (bsc#1220697). * CVE-2021-46976: Fixed crash in auto_retire in drm/i915 (bsc#1220621). * CVE-2021-46980: Fixed not retrieving all the PDOs instead of just the first 4 in usb/typec/ucsi (bsc#1220663). * CVE-2021-46981: Fixed a NULL pointer in flush_workqueue in nbd (bsc#1220611). * CVE-2021-46983: Fixed NULL pointer dereference when SEND is completed with error (bsc#1220639). * CVE-2021-46984: Fixed an out of bounds access in kyber_bio_merge() in kyber (bsc#1220631). * CVE-2021-46988: Fixed release page in error path to avoid BUG_ON (bsc#1220706). * CVE-2021-46990: Fixed a denial of service when toggling entry flush barrier in powerpc/64s (bsc#1220743). * CVE-2021-46991: Fixed a use-after-free in i40e_client_subtask (bsc#1220575). * CVE-2021-46992: Fixed a bug to avoid overflows in nft_hash_buckets (bsc#1220638). * CVE-2021-46998: Fixed an use after free bug in enic_hard_start_xmit in ethernet/enic (bsc#1220625). * CVE-2021-47000: Fixed an inode leak on getattr error in __fh_to_dentry in ceph (bsc#1220669). * CVE-2021-47001: Fixed cwnd update ordering in xprtrdma (bsc#1220670). * CVE-2021-47003: Fixed potential null dereference on pointer status in idxd_cmd_exec (bsc#1220677). * CVE-2021-47006: Fixed wrong check in overflow_handler hook in ARM 9064/1 hw_breakpoint (bsc#1220751). * CVE-2021-47009: Fixed memory leak on object td (bsc#1220733). * CVE-2021-47014: Fixed wild memory access when clearing fragments in net/sched/act_ct (bsc#1220630). * CVE-2021-47015: Fixed a RX consumer index logic in the error path in bnxt_rx_pkt() in bnxt_en (bsc#1220794). * CVE-2021-47017: Fixed use after free in ath10k_htc_send_bundle (bsc#1220678). * CVE-2021-47020: Fixed a memory leak in stream config error path in soundwire stream (bsc#1220785). * CVE-2021-47026: Fixed not destroying sysfs after removing session from active list (bsc#1220685). * CVE-2021-47034: Fixed a kernel memory fault for pte update on radix in powerpc/64s (bsc#1220687). * CVE-2021-47035: Fixed wrong WO permissions on second-level paging entries in iommu/vt-d (bsc#1220688). * CVE-2021-47038: Fixed deadlock between hci_dev->lock and socket lock in bluetooth (bsc#1220753). * CVE-2021-47044: Fixed shift-out-of-bounds in load_balance() in sched/fair (bsc#1220759). * CVE-2021-47045: Fixed a null pointer dereference in lpfc_prep_els_iocb() in scsi lpfc (bsc#1220640). * CVE-2021-47046: Fixed off by one in hdmi_14_process_transaction() (bsc#1220758). * CVE-2021-47049: Fixed an after free in __vmbus_open() in hv vmbus (bsc#1220692). * CVE-2021-47051: Fixed a PM reference leak in lpspi_prepare_xfer_hardware() in spi fsl-lpspi (bsc#1220764). * CVE-2021-47055: Fixed missing permissions for locking and badblock ioctls in mtd (bsc#1220768). * CVE-2021-47056: Fixed a user-memory-access error on vf2pf_lock in crypto (bsc#1220769). * CVE-2021-47058: Fixed a possible user-after-free in set debugfs_name in regmap (bsc#1220779). * CVE-2021-47063: Fixed a potential use-after-free during bridge detach in drm bridge/panel (bsc#1220777). * CVE-2021-47065: Fixed an array overrun in rtw_get_tx_power_params() in rtw88 (bsc#1220749). * CVE-2021-47068: Fixed a use-after-free issue in llcp_sock_bind/connect (bsc#1220739). * CVE-2021-47070: Fixed memory leak in error handling paths in uio_hv_generic (bsc#1220829). * CVE-2021-47071: Fixed a memory leak in error handling paths in hv_uio_cleanup() in uio_hv_generic (bsc#1220846). * CVE-2021-47073: Fixed oops on rmmod dell_smbios init_dell_smbios_wmi() (bsc#1220850). * CVE-2021-47077: Fixed a NULL pointer dereference when in shost_data (bsc#1220861). * CVE-2021-47082: Fixed ouble free in tun_free_netdev() (bsc#1220969). * CVE-2021-47087: Fixed incorrect page free bug in tee/optee (bsc#1220954). * CVE-2021-47095: Fixed missing initialization in ipmi/ssif (bsc#1220979). * CVE-2021-47097: Fixed stack out of bound access in elantech_change_report_id() (bsc#1220982). * CVE-2021-47100: Fixed UAF when uninstall in ipmi (bsc#1220985). * CVE-2021-47101: Fixed uninit-value in asix_mdio_read() (bsc#1220987). * CVE-2021-47109: Fixed NUD_NOARP entries to be forced GCed (bsc#1221534). * CVE-2021-47110: Fixed possible memory corruption when restoring from hibernation in x86/kvm (bsc#1221532). * CVE-2021-47112: Fixed possible memory corruption when restoring from hibernation in x86/kvm (bsc#1221541). * CVE-2021-47114: Fixed a data corruption by fallocate in ocfs2 (bsc#1221548). * CVE-2021-47117: Fixed a crash in ext4_es_cache_extent as ext4_split_extent_at failed in ext4 (bsc#1221575). * CVE-2021-47118: Fixed an use-after-free in init task's struct pid in pid (bsc#1221605). * CVE-2021-47119: Fixed a memory leak in ext4_fill_super in ext4 (bsc#1221608). * CVE-2021-47120: Fixed a NULL pointer dereference on disconnect in HID magicmouse (bsc#1221606). * CVE-2021-47130: Fixed freeing unallocated p2pmem in nvmet (bsc#1221552). * CVE-2021-47136: Fixed uninitialized memory access caused by allocation via zero-initialize tc skb extension in net (bsc#1221931). * CVE-2021-47137: Fixed memory corruption in RX ring in net/lantiq (bsc#1221932). * CVE-2021-47138: Fixed an out-of-bound memory access during clearing filters in cxgb4 (bsc#1221934). * CVE-2021-47139: Fixed a race condition that lead to oops in netdevice registration in net hns3 (bsc#1221935). * CVE-2021-47141: Fixed a null pointer dereference on priv->msix_vectors when driver is unloaded in gve (bsc#1221949). * CVE-2021-47142: Fixed an use-after-free on ttm->sg in drm/amdgpu (bsc#1221952). * CVE-2021-47144: Fixed a refcount leak in amdgpufb_create in drm/amd/amdgpu (bsc#1221989). * CVE-2021-47150: Fixed the potential memory leak in fec_enet_init() (bsc#1221973). * CVE-2021-47153: Fixed wrongly generated interrupt on bus reset in i2c/i801 (bsc#1221969). * CVE-2021-47160: Fixed VLAN traffic leaks in dsa: mt7530 (bsc#1221974). * CVE-2021-47161: Fixed a resource leak in an error handling path in the error handling path of the probe function in spi spi-fsl-dspi (bsc#1221966). * CVE-2021-47164: Fixed null pointer dereference accessing lag dev in net/mlx5e (bsc#1221978). * CVE-2021-47165: Fixed shutdown crash when component not probed in drm/meson (bsc#1221965). * CVE-2021-47166: Fixed a data corruption of pg_bytes_written in nfs_do_recoalesce() in nfs (bsc#1221998). * CVE-2021-47167: Fixed an oopsable condition in __nfs_pageio_add_request() in nfs (bsc#1221991). * CVE-2021-47168: Fixed an incorrect limit in filelayout_decode_layout() in nfs (bsc#1222002). * CVE-2021-47169: Fixed a NULL pointer dereference in rp2_probe in serial rp2 (bsc#1222000). * CVE-2021-47170: Fixed a WARN about excessively large memory allocations in usb usbfs (bsc#1222004). * CVE-2021-47171: Fixed a memory leak in smsc75xx_bind in net usb (bsc#1221994). * CVE-2021-47172: Fixed a potential overflow due to non sequential channel numbers in adc/ad7124 (bsc#1221992). * CVE-2021-47173: Fixed a memory leak in uss720_probe in misc/uss720 (bsc#1221993). * CVE-2021-47174: Fixed missing check in irq_fpu_usable() (bsc#1221990). * CVE-2021-47175: Fixed OOB access in net/sched/fq_pie (bsc#1222003). * CVE-2021-47176: Fixed crash with illegal operation exception in dasd_device_tasklet in s390/dasd (bsc#1221996). * CVE-2021-47177: Fixed a sysfs leak in alloc_iommu() in iommu/vt-d (bsc#1221997). * CVE-2021-47179: Fixed a NULL pointer dereference in pnfs_mark_matching_lsegs_return() in nfsv4 (bsc#1222001). * CVE-2021-47180: Fixed a memory leak in nci_allocate_device nfcmrvl_disconnect in nfc nci (bsc#1221999). * CVE-2021-47181: Fixed a null pointer dereference caused by calling platform_get_resource() (bsc#1222660). * CVE-2021-47183: Fixed a null pointer dereference during link down processing in scsi lpfc (bsc#1192145, bsc#1222664). * CVE-2021-47185: Fixed a softlockup issue in flush_to_ldisc in tty tty_buffer (bsc#1222669). * CVE-2021-47189: Fixed denial of service due to memory ordering issues between normal and ordered work functions in btrfs (bsc#1222706). * CVE-2021-47202: Fixed NULL pointer dereferences in of_thermal_ functions (bsc#1222878) * CVE-2022-48626: Fixed a potential use-after-free on remove path moxart (bsc#1220366). * CVE-2023-0160: Fixed deadlock flaw in BPF that could allow a local user to potentially crash the system (bsc#1209657). * CVE-2023-52454: Fixed a kernel panic when host sends an invalid H2C PDU length (bsc#1220320). * CVE-2023-52469: Fixed a use-after-free in kv_parse_power_table (bsc#1220411). * CVE-2023-52470: Fixed null-ptr-deref in radeon_crtc_init() (bsc#1220413). * CVE-2023-52474: Fixed a vulnerability with non-PAGE_SIZE-end multi-iovec user SDMA requests (bsc#1220445). * CVE-2023-52476: Fixed possible unhandled page fault via perf sampling NMI during vsyscall (bsc#1220703). * CVE-2023-52477: Fixed USB Hub accesses to uninitialized BOS descriptors (bsc#1220790). * CVE-2023-52492: Fixed a null-pointer-dereference in channel unregistration function __dma_async_device_channel_register() (bsc#1221276). * CVE-2023-52500: Fixed information leaking when processing OPC_INB_SET_CONTROLLER_CONFIG command (bsc#1220883). * CVE-2023-52508: Fixed null pointer dereference in nvme_fc_io_getuuid() (bsc#1221015). * CVE-2023-52509: Fixed a use-after-free issue in ravb_tx_timeout_work() (bsc#1220836). * CVE-2023-52572: Fixed UAF in cifs_demultiplex_thread() in cifs (bsc#1220946). * CVE-2023-52575: Fixed SBPB enablement for spec_rstack_overflow=off (bsc#1220871). * CVE-2023-52583: Fixed deadlock or deadcode of misusing dget() inside ceph (bsc#1221058). * CVE-2023-52590: Fixed a possible ocfs2 filesystem corruption via directory renaming (bsc#1221088). * CVE-2023-52591: Fixed a possible reiserfs filesystem corruption via directory renaming (bsc#1221044). * CVE-2023-52607: Fixed a null-pointer-dereference in pgtable_cache_add kasprintf() (bsc#1221061). * CVE-2023-52628: Fixed 4-byte stack OOB write in nftables (bsc#1222117). * CVE-2023-6270: Fixed a use-after-free issue in aoecmd_cfg_pkts (bsc#1218562). * CVE-2023-6531: Fixed a use-after-free flaw due to a race problem in the unix garbage collector's deletion of SKB races with unix_stream_read_generic()on the socket that the SKB is queued on (bsc#1218447). * CVE-2023-7042: Fixed a null-pointer-dereference in ath10k_wmi_tlv_op_pull_mgmt_tx_compl_ev() (bsc#1218336). * CVE-2023-7192: Fixed a memory leak problem in ctnetlink_create_conntrack in net/netfilter/nf_conntrack_netlink.c (bsc#1218479). * CVE-2024-22099: Fixed a null-pointer-dereference in rfcomm_check_security (bsc#1219170). * CVE-2024-26600: Fixed NULL pointer dereference for SRP in phy-omap-usb2 (bsc#1220340). * CVE-2024-26614: Fixed the initialization of accept_queue's spinlocks (bsc#1221293). * CVE-2024-26642: Fixed the set of anonymous timeout flag in netfilter nf_tables (bsc#1221830). * CVE-2024-26704: Fixed a double-free of blocks due to wrong extents moved_len in ext4 (bsc#1222422). * CVE-2024-26733: Fixed an overflow in arp_req_get() in arp (bsc#1222585). The following non-security bugs were fixed: * doc/README.SUSE: Update information about module support status (jsc#PED-5759) * fs,hugetlb: fix NULL pointer dereference in hugetlbs_fill_super (bsc#1219264). * group-source-files.pl: Quote filenames (boo#1221077). * mm: fix gup_pud_range (bsc#1220824). * tty: n_gsm: require CAP_NET_ADMIN to attach N_GSM0710 ldisc (bsc#1222619). * usb: hub: Guard against accesses to uninitialized BOS descriptors (git- fixes). Altered because 5.3 does not do SSP ## Special Instructions and Notes: * Please reboot the system after installing this update. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Micro 5.1 zypper in -t patch SUSE-SUSE-MicroOS-5.1-2024-1465=1 * SUSE Linux Enterprise Micro 5.2 zypper in -t patch SUSE-SUSE-MicroOS-5.2-2024-1465=1 * SUSE Linux Enterprise Micro for Rancher 5.2 zypper in -t patch SUSE-SUSE-MicroOS-5.2-2024-1465=1 ## Package List: * SUSE Linux Enterprise Micro 5.1 (nosrc x86_64) * kernel-rt-5.3.18-150300.166.1 * SUSE Linux Enterprise Micro 5.1 (x86_64) * kernel-rt-debugsource-5.3.18-150300.166.1 * kernel-rt-debuginfo-5.3.18-150300.166.1 * SUSE Linux Enterprise Micro 5.1 (noarch) * kernel-source-rt-5.3.18-150300.166.1 * SUSE Linux Enterprise Micro 5.2 (nosrc x86_64) * kernel-rt-5.3.18-150300.166.1 * SUSE Linux Enterprise Micro 5.2 (x86_64) * kernel-rt-debugsource-5.3.18-150300.166.1 * kernel-rt-debuginfo-5.3.18-150300.166.1 * SUSE Linux Enterprise Micro 5.2 (noarch) * kernel-source-rt-5.3.18-150300.166.1 * SUSE Linux Enterprise Micro for Rancher 5.2 (nosrc x86_64) * kernel-rt-5.3.18-150300.166.1 * SUSE Linux Enterprise Micro for Rancher 5.2 (x86_64) * kernel-rt-debugsource-5.3.18-150300.166.1 * kernel-rt-debuginfo-5.3.18-150300.166.1 * SUSE Linux Enterprise Micro for Rancher 5.2 (noarch) * kernel-source-rt-5.3.18-150300.166.1 ## References: * https://www.suse.com/security/cve/CVE-2020-36780.html * https://www.suse.com/security/cve/CVE-2020-36781.html * https://www.suse.com/security/cve/CVE-2020-36782.html * https://www.suse.com/security/cve/CVE-2020-36783.html * https://www.suse.com/security/cve/CVE-2021-46908.html * https://www.suse.com/security/cve/CVE-2021-46909.html * https://www.suse.com/security/cve/CVE-2021-46911.html * https://www.suse.com/security/cve/CVE-2021-46914.html * https://www.suse.com/security/cve/CVE-2021-46917.html * https://www.suse.com/security/cve/CVE-2021-46918.html * https://www.suse.com/security/cve/CVE-2021-46919.html * https://www.suse.com/security/cve/CVE-2021-46920.html * https://www.suse.com/security/cve/CVE-2021-46921.html * https://www.suse.com/security/cve/CVE-2021-46922.html * https://www.suse.com/security/cve/CVE-2021-46930.html * https://www.suse.com/security/cve/CVE-2021-46931.html * https://www.suse.com/security/cve/CVE-2021-46933.html * https://www.suse.com/security/cve/CVE-2021-46938.html * https://www.suse.com/security/cve/CVE-2021-46939.html * https://www.suse.com/security/cve/CVE-2021-46943.html * https://www.suse.com/security/cve/CVE-2021-46944.html * https://www.suse.com/security/cve/CVE-2021-46950.html * https://www.suse.com/security/cve/CVE-2021-46951.html * https://www.suse.com/security/cve/CVE-2021-46956.html * https://www.suse.com/security/cve/CVE-2021-46958.html * https://www.suse.com/security/cve/CVE-2021-46959.html * https://www.suse.com/security/cve/CVE-2021-46960.html * https://www.suse.com/security/cve/CVE-2021-46961.html * https://www.suse.com/security/cve/CVE-2021-46962.html * https://www.suse.com/security/cve/CVE-2021-46963.html * https://www.suse.com/security/cve/CVE-2021-46971.html * https://www.suse.com/security/cve/CVE-2021-46976.html * https://www.suse.com/security/cve/CVE-2021-46980.html * https://www.suse.com/security/cve/CVE-2021-46981.html * https://www.suse.com/security/cve/CVE-2021-46983.html * https://www.suse.com/security/cve/CVE-2021-46984.html * https://www.suse.com/security/cve/CVE-2021-46988.html * https://www.suse.com/security/cve/CVE-2021-46990.html * https://www.suse.com/security/cve/CVE-2021-46991.html * https://www.suse.com/security/cve/CVE-2021-46992.html * https://www.suse.com/security/cve/CVE-2021-46998.html * https://www.suse.com/security/cve/CVE-2021-47000.html * https://www.suse.com/security/cve/CVE-2021-47001.html * https://www.suse.com/security/cve/CVE-2021-47003.html * https://www.suse.com/security/cve/CVE-2021-47006.html * https://www.suse.com/security/cve/CVE-2021-47009.html * https://www.suse.com/security/cve/CVE-2021-47014.html * https://www.suse.com/security/cve/CVE-2021-47015.html * https://www.suse.com/security/cve/CVE-2021-47017.html * https://www.suse.com/security/cve/CVE-2021-47020.html * https://www.suse.com/security/cve/CVE-2021-47026.html * https://www.suse.com/security/cve/CVE-2021-47034.html * https://www.suse.com/security/cve/CVE-2021-47035.html * https://www.suse.com/security/cve/CVE-2021-47038.html * https://www.suse.com/security/cve/CVE-2021-47044.html * https://www.suse.com/security/cve/CVE-2021-47045.html * https://www.suse.com/security/cve/CVE-2021-47046.html * https://www.suse.com/security/cve/CVE-2021-47049.html * https://www.suse.com/security/cve/CVE-2021-47051.html * https://www.suse.com/security/cve/CVE-2021-47055.html * https://www.suse.com/security/cve/CVE-2021-47056.html * https://www.suse.com/security/cve/CVE-2021-47058.html * https://www.suse.com/security/cve/CVE-2021-47063.html * https://www.suse.com/security/cve/CVE-2021-47065.html * https://www.suse.com/security/cve/CVE-2021-47068.html * https://www.suse.com/security/cve/CVE-2021-47070.html * https://www.suse.com/security/cve/CVE-2021-47071.html * https://www.suse.com/security/cve/CVE-2021-47073.html * https://www.suse.com/security/cve/CVE-2021-47077.html * https://www.suse.com/security/cve/CVE-2021-47082.html * https://www.suse.com/security/cve/CVE-2021-47087.html * https://www.suse.com/security/cve/CVE-2021-47095.html * https://www.suse.com/security/cve/CVE-2021-47097.html * https://www.suse.com/security/cve/CVE-2021-47100.html * https://www.suse.com/security/cve/CVE-2021-47101.html * https://www.suse.com/security/cve/CVE-2021-47109.html * https://www.suse.com/security/cve/CVE-2021-47110.html * https://www.suse.com/security/cve/CVE-2021-47112.html * https://www.suse.com/security/cve/CVE-2021-47114.html * https://www.suse.com/security/cve/CVE-2021-47117.html * https://www.suse.com/security/cve/CVE-2021-47118.html * https://www.suse.com/security/cve/CVE-2021-47119.html * https://www.suse.com/security/cve/CVE-2021-47120.html * https://www.suse.com/security/cve/CVE-2021-47130.html * https://www.suse.com/security/cve/CVE-2021-47136.html * https://www.suse.com/security/cve/CVE-2021-47137.html * https://www.suse.com/security/cve/CVE-2021-47138.html * https://www.suse.com/security/cve/CVE-2021-47139.html * https://www.suse.com/security/cve/CVE-2021-47141.html * https://www.suse.com/security/cve/CVE-2021-47142.html * https://www.suse.com/security/cve/CVE-2021-47144.html * https://www.suse.com/security/cve/CVE-2021-47150.html * https://www.suse.com/security/cve/CVE-2021-47153.html * https://www.suse.com/security/cve/CVE-2021-47160.html * https://www.suse.com/security/cve/CVE-2021-47161.html * https://www.suse.com/security/cve/CVE-2021-47164.html * https://www.suse.com/security/cve/CVE-2021-47165.html * https://www.suse.com/security/cve/CVE-2021-47166.html * https://www.suse.com/security/cve/CVE-2021-47167.html * https://www.suse.com/security/cve/CVE-2021-47168.html * https://www.suse.com/security/cve/CVE-2021-47169.html * https://www.suse.com/security/cve/CVE-2021-47170.html * https://www.suse.com/security/cve/CVE-2021-47171.html * https://www.suse.com/security/cve/CVE-2021-47172.html * https://www.suse.com/security/cve/CVE-2021-47173.html * https://www.suse.com/security/cve/CVE-2021-47174.html * https://www.suse.com/security/cve/CVE-2021-47175.html * https://www.suse.com/security/cve/CVE-2021-47176.html * https://www.suse.com/security/cve/CVE-2021-47177.html * https://www.suse.com/security/cve/CVE-2021-47179.html * https://www.suse.com/security/cve/CVE-2021-47180.html * https://www.suse.com/security/cve/CVE-2021-47181.html * https://www.suse.com/security/cve/CVE-2021-47183.html * https://www.suse.com/security/cve/CVE-2021-47185.html * https://www.suse.com/security/cve/CVE-2021-47189.html * https://www.suse.com/security/cve/CVE-2021-47202.html * https://www.suse.com/security/cve/CVE-2022-48626.html * https://www.suse.com/security/cve/CVE-2023-0160.html * https://www.suse.com/security/cve/CVE-2023-52454.html * https://www.suse.com/security/cve/CVE-2023-52469.html * https://www.suse.com/security/cve/CVE-2023-52470.html * https://www.suse.com/security/cve/CVE-2023-52474.html * https://www.suse.com/security/cve/CVE-2023-52476.html * https://www.suse.com/security/cve/CVE-2023-52477.html * https://www.suse.com/security/cve/CVE-2023-52492.html * https://www.suse.com/security/cve/CVE-2023-52500.html * https://www.suse.com/security/cve/CVE-2023-52508.html * https://www.suse.com/security/cve/CVE-2023-52509.html * https://www.suse.com/security/cve/CVE-2023-52572.html * https://www.suse.com/security/cve/CVE-2023-52575.html * https://www.suse.com/security/cve/CVE-2023-52583.html * https://www.suse.com/security/cve/CVE-2023-52590.html * https://www.suse.com/security/cve/CVE-2023-52591.html * https://www.suse.com/security/cve/CVE-2023-52607.html * https://www.suse.com/security/cve/CVE-2023-52628.html * https://www.suse.com/security/cve/CVE-2023-6270.html * https://www.suse.com/security/cve/CVE-2023-6531.html * https://www.suse.com/security/cve/CVE-2023-7042.html * https://www.suse.com/security/cve/CVE-2023-7192.html * https://www.suse.com/security/cve/CVE-2024-22099.html * https://www.suse.com/security/cve/CVE-2024-26600.html * https://www.suse.com/security/cve/CVE-2024-26614.html * https://www.suse.com/security/cve/CVE-2024-26642.html * https://www.suse.com/security/cve/CVE-2024-26704.html * https://www.suse.com/security/cve/CVE-2024-26733.html * https://bugzilla.suse.com/show_bug.cgi?id=1192145 * https://bugzilla.suse.com/show_bug.cgi?id=1209657 * https://bugzilla.suse.com/show_bug.cgi?id=1218336 * https://bugzilla.suse.com/show_bug.cgi?id=1218447 * https://bugzilla.suse.com/show_bug.cgi?id=1218479 * https://bugzilla.suse.com/show_bug.cgi?id=1218562 * https://bugzilla.suse.com/show_bug.cgi?id=1219170 * https://bugzilla.suse.com/show_bug.cgi?id=1219264 * https://bugzilla.suse.com/show_bug.cgi?id=1220320 * https://bugzilla.suse.com/show_bug.cgi?id=1220340 * https://bugzilla.suse.com/show_bug.cgi?id=1220366 * https://bugzilla.suse.com/show_bug.cgi?id=1220400 * https://bugzilla.suse.com/show_bug.cgi?id=1220411 * https://bugzilla.suse.com/show_bug.cgi?id=1220413 * https://bugzilla.suse.com/show_bug.cgi?id=1220414 * https://bugzilla.suse.com/show_bug.cgi?id=1220425 * https://bugzilla.suse.com/show_bug.cgi?id=1220426 * https://bugzilla.suse.com/show_bug.cgi?id=1220429 * https://bugzilla.suse.com/show_bug.cgi?id=1220432 * https://bugzilla.suse.com/show_bug.cgi?id=1220442 * https://bugzilla.suse.com/show_bug.cgi?id=1220445 * https://bugzilla.suse.com/show_bug.cgi?id=1220465 * https://bugzilla.suse.com/show_bug.cgi?id=1220468 * https://bugzilla.suse.com/show_bug.cgi?id=1220475 * https://bugzilla.suse.com/show_bug.cgi?id=1220484 * https://bugzilla.suse.com/show_bug.cgi?id=1220486 * https://bugzilla.suse.com/show_bug.cgi?id=1220487 * https://bugzilla.suse.com/show_bug.cgi?id=1220516 * https://bugzilla.suse.com/show_bug.cgi?id=1220521 * https://bugzilla.suse.com/show_bug.cgi?id=1220528 * https://bugzilla.suse.com/show_bug.cgi?id=1220529 * https://bugzilla.suse.com/show_bug.cgi?id=1220532 * https://bugzilla.suse.com/show_bug.cgi?id=1220536 * https://bugzilla.suse.com/show_bug.cgi?id=1220554 * https://bugzilla.suse.com/show_bug.cgi?id=1220556 * https://bugzilla.suse.com/show_bug.cgi?id=1220557 * https://bugzilla.suse.com/show_bug.cgi?id=1220560 * https://bugzilla.suse.com/show_bug.cgi?id=1220561 * https://bugzilla.suse.com/show_bug.cgi?id=1220566 * https://bugzilla.suse.com/show_bug.cgi?id=1220575 * https://bugzilla.suse.com/show_bug.cgi?id=1220580 * https://bugzilla.suse.com/show_bug.cgi?id=1220583 * https://bugzilla.suse.com/show_bug.cgi?id=1220611 * https://bugzilla.suse.com/show_bug.cgi?id=1220615 * https://bugzilla.suse.com/show_bug.cgi?id=1220621 * https://bugzilla.suse.com/show_bug.cgi?id=1220625 * https://bugzilla.suse.com/show_bug.cgi?id=1220630 * https://bugzilla.suse.com/show_bug.cgi?id=1220631 * https://bugzilla.suse.com/show_bug.cgi?id=1220638 * https://bugzilla.suse.com/show_bug.cgi?id=1220639 * https://bugzilla.suse.com/show_bug.cgi?id=1220640 * https://bugzilla.suse.com/show_bug.cgi?id=1220662 * https://bugzilla.suse.com/show_bug.cgi?id=1220663 * https://bugzilla.suse.com/show_bug.cgi?id=1220669 * https://bugzilla.suse.com/show_bug.cgi?id=1220670 * https://bugzilla.suse.com/show_bug.cgi?id=1220677 * https://bugzilla.suse.com/show_bug.cgi?id=1220678 * https://bugzilla.suse.com/show_bug.cgi?id=1220685 * https://bugzilla.suse.com/show_bug.cgi?id=1220687 * https://bugzilla.suse.com/show_bug.cgi?id=1220688 * https://bugzilla.suse.com/show_bug.cgi?id=1220692 * https://bugzilla.suse.com/show_bug.cgi?id=1220697 * https://bugzilla.suse.com/show_bug.cgi?id=1220703 * https://bugzilla.suse.com/show_bug.cgi?id=1220706 * https://bugzilla.suse.com/show_bug.cgi?id=1220733 * https://bugzilla.suse.com/show_bug.cgi?id=1220734 * https://bugzilla.suse.com/show_bug.cgi?id=1220739 * https://bugzilla.suse.com/show_bug.cgi?id=1220743 * https://bugzilla.suse.com/show_bug.cgi?id=1220749 * https://bugzilla.suse.com/show_bug.cgi?id=1220751 * https://bugzilla.suse.com/show_bug.cgi?id=1220753 * https://bugzilla.suse.com/show_bug.cgi?id=1220758 * https://bugzilla.suse.com/show_bug.cgi?id=1220759 * https://bugzilla.suse.com/show_bug.cgi?id=1220764 * https://bugzilla.suse.com/show_bug.cgi?id=1220768 * https://bugzilla.suse.com/show_bug.cgi?id=1220769 * https://bugzilla.suse.com/show_bug.cgi?id=1220777 * https://bugzilla.suse.com/show_bug.cgi?id=1220779 * https://bugzilla.suse.com/show_bug.cgi?id=1220785 * https://bugzilla.suse.com/show_bug.cgi?id=1220790 * https://bugzilla.suse.com/show_bug.cgi?id=1220794 * https://bugzilla.suse.com/show_bug.cgi?id=1220824 * https://bugzilla.suse.com/show_bug.cgi?id=1220829 * https://bugzilla.suse.com/show_bug.cgi?id=1220836 * https://bugzilla.suse.com/show_bug.cgi?id=1220846 * https://bugzilla.suse.com/show_bug.cgi?id=1220850 * https://bugzilla.suse.com/show_bug.cgi?id=1220861 * https://bugzilla.suse.com/show_bug.cgi?id=1220871 * https://bugzilla.suse.com/show_bug.cgi?id=1220883 * https://bugzilla.suse.com/show_bug.cgi?id=1220946 * https://bugzilla.suse.com/show_bug.cgi?id=1220954 * https://bugzilla.suse.com/show_bug.cgi?id=1220969 * https://bugzilla.suse.com/show_bug.cgi?id=1220979 * https://bugzilla.suse.com/show_bug.cgi?id=1220982 * https://bugzilla.suse.com/show_bug.cgi?id=1220985 * https://bugzilla.suse.com/show_bug.cgi?id=1220987 * https://bugzilla.suse.com/show_bug.cgi?id=1221015 * https://bugzilla.suse.com/show_bug.cgi?id=1221044 * https://bugzilla.suse.com/show_bug.cgi?id=1221058 * https://bugzilla.suse.com/show_bug.cgi?id=1221061 * https://bugzilla.suse.com/show_bug.cgi?id=1221077 * https://bugzilla.suse.com/show_bug.cgi?id=1221088 * https://bugzilla.suse.com/show_bug.cgi?id=1221276 * https://bugzilla.suse.com/show_bug.cgi?id=1221293 * https://bugzilla.suse.com/show_bug.cgi?id=1221532 * https://bugzilla.suse.com/show_bug.cgi?id=1221534 * https://bugzilla.suse.com/show_bug.cgi?id=1221541 * https://bugzilla.suse.com/show_bug.cgi?id=1221548 * https://bugzilla.suse.com/show_bug.cgi?id=1221552 * https://bugzilla.suse.com/show_bug.cgi?id=1221575 * https://bugzilla.suse.com/show_bug.cgi?id=1221605 * https://bugzilla.suse.com/show_bug.cgi?id=1221606 * https://bugzilla.suse.com/show_bug.cgi?id=1221608 * https://bugzilla.suse.com/show_bug.cgi?id=1221830 * https://bugzilla.suse.com/show_bug.cgi?id=1221931 * https://bugzilla.suse.com/show_bug.cgi?id=1221932 * https://bugzilla.suse.com/show_bug.cgi?id=1221934 * https://bugzilla.suse.com/show_bug.cgi?id=1221935 * https://bugzilla.suse.com/show_bug.cgi?id=1221949 * https://bugzilla.suse.com/show_bug.cgi?id=1221952 * https://bugzilla.suse.com/show_bug.cgi?id=1221965 * https://bugzilla.suse.com/show_bug.cgi?id=1221966 * https://bugzilla.suse.com/show_bug.cgi?id=1221969 * https://bugzilla.suse.com/show_bug.cgi?id=1221973 * https://bugzilla.suse.com/show_bug.cgi?id=1221974 * https://bugzilla.suse.com/show_bug.cgi?id=1221978 * https://bugzilla.suse.com/show_bug.cgi?id=1221989 * https://bugzilla.suse.com/show_bug.cgi?id=1221990 * https://bugzilla.suse.com/show_bug.cgi?id=1221991 * https://bugzilla.suse.com/show_bug.cgi?id=1221992 * https://bugzilla.suse.com/show_bug.cgi?id=1221993 * https://bugzilla.suse.com/show_bug.cgi?id=1221994 * https://bugzilla.suse.com/show_bug.cgi?id=1221996 * https://bugzilla.suse.com/show_bug.cgi?id=1221997 * https://bugzilla.suse.com/show_bug.cgi?id=1221998 * https://bugzilla.suse.com/show_bug.cgi?id=1221999 * https://bugzilla.suse.com/show_bug.cgi?id=1222000 * https://bugzilla.suse.com/show_bug.cgi?id=1222001 * https://bugzilla.suse.com/show_bug.cgi?id=1222002 * https://bugzilla.suse.com/show_bug.cgi?id=1222003 * https://bugzilla.suse.com/show_bug.cgi?id=1222004 * https://bugzilla.suse.com/show_bug.cgi?id=1222117 * https://bugzilla.suse.com/show_bug.cgi?id=1222422 * https://bugzilla.suse.com/show_bug.cgi?id=1222585 * https://bugzilla.suse.com/show_bug.cgi?id=1222619 * https://bugzilla.suse.com/show_bug.cgi?id=1222660 * https://bugzilla.suse.com/show_bug.cgi?id=1222664 * https://bugzilla.suse.com/show_bug.cgi?id=1222669 * https://bugzilla.suse.com/show_bug.cgi?id=1222706 * https://bugzilla.suse.com/show_bug.cgi?id=1222878 * https://jira.suse.com/browse/PED-5759 * https://jira.suse.com/browse/SLE-13706 * https://jira.suse.com/browse/SLE-15131 * https://jira.suse.com/browse/SLE-15172 * https://jira.suse.com/browse/SLE-15176 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 19 12:41:56 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 19 Aug 2024 12:41:56 -0000 Subject: SUSE-SU-2024:1464-1: important: Security update for jasper Message-ID: <172407131618.18977.17831199710408243860@smelt2.prg2.suse.org> # Security update for jasper Announcement ID: SUSE-SU-2024:1464-1 Rating: important References: * bsc#1223155 Cross-References: * CVE-2024-31744 CVSS scores: * CVE-2024-31744 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * Basesystem Module 15-SP5 * Desktop Applications Module 15-SP5 * openSUSE Leap 15.5 * SUSE Enterprise Storage 7.1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 * SUSE Linux Enterprise Desktop 15 SP5 * SUSE Linux Enterprise High Performance Computing 15 SP2 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 * SUSE Linux Enterprise High Performance Computing 15 SP3 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Server 15 SP2 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 * SUSE Linux Enterprise Server 15 SP3 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Manager Proxy 4.3 * SUSE Manager Retail Branch Server 4.3 * SUSE Manager Server 4.3 An update that solves one vulnerability can now be installed. ## Description: This update for jasper fixes the following issues: * CVE-2024-31744: Fixed denial of service through assertion failure in jpc_streamlist_remove() (bsc#1223155). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.5 zypper in -t patch openSUSE-SLE-15.5-2024-1464=1 * Basesystem Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP5-2024-1464=1 * Desktop Applications Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Desktop-Applications-15-SP5-2024-1464=1 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 zypper in -t patch SUSE-SLE-Product-HPC-15-SP2-LTSS-2024-1464=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 zypper in -t patch SUSE-SLE-Product-HPC-15-SP3-LTSS-2024-1464=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2024-1464=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2024-1464=1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 zypper in -t patch SUSE-SLE-Product-SLED-15-SP4-LTSS-2024-1464=1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 zypper in -t patch SUSE-SLE-Product-SLES-15-SP2-LTSS-2024-1464=1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 zypper in -t patch SUSE-SLE-Product-SLES-15-SP3-LTSS-2024-1464=1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2024-1464=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP2-2024-1464=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP3-2024-1464=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2024-1464=1 * SUSE Manager Proxy 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Proxy-4.3-2024-1464=1 * SUSE Manager Retail Branch Server 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Retail-Branch- Server-4.3-2024-1464=1 * SUSE Manager Server 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Server-4.3-2024-1464=1 * SUSE Enterprise Storage 7.1 zypper in -t patch SUSE-Storage-7.1-2024-1464=1 ## Package List: * openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64) * libjasper-devel-2.0.14-150000.3.34.1 * jasper-debugsource-2.0.14-150000.3.34.1 * jasper-2.0.14-150000.3.34.1 * libjasper4-2.0.14-150000.3.34.1 * libjasper4-debuginfo-2.0.14-150000.3.34.1 * jasper-debuginfo-2.0.14-150000.3.34.1 * openSUSE Leap 15.5 (x86_64) * libjasper4-32bit-2.0.14-150000.3.34.1 * libjasper4-32bit-debuginfo-2.0.14-150000.3.34.1 * Basesystem Module 15-SP5 (aarch64 ppc64le s390x x86_64) * jasper-debugsource-2.0.14-150000.3.34.1 * libjasper4-2.0.14-150000.3.34.1 * libjasper4-debuginfo-2.0.14-150000.3.34.1 * jasper-debuginfo-2.0.14-150000.3.34.1 * Desktop Applications Module 15-SP5 (aarch64 ppc64le s390x x86_64) * jasper-debugsource-2.0.14-150000.3.34.1 * libjasper-devel-2.0.14-150000.3.34.1 * jasper-debuginfo-2.0.14-150000.3.34.1 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 (aarch64 x86_64) * libjasper-devel-2.0.14-150000.3.34.1 * jasper-debugsource-2.0.14-150000.3.34.1 * libjasper4-2.0.14-150000.3.34.1 * libjasper4-debuginfo-2.0.14-150000.3.34.1 * jasper-debuginfo-2.0.14-150000.3.34.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (aarch64 x86_64) * libjasper-devel-2.0.14-150000.3.34.1 * jasper-debugsource-2.0.14-150000.3.34.1 * libjasper4-2.0.14-150000.3.34.1 * libjasper4-debuginfo-2.0.14-150000.3.34.1 * jasper-debuginfo-2.0.14-150000.3.34.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 x86_64) * libjasper-devel-2.0.14-150000.3.34.1 * jasper-debugsource-2.0.14-150000.3.34.1 * libjasper4-2.0.14-150000.3.34.1 * libjasper4-debuginfo-2.0.14-150000.3.34.1 * jasper-debuginfo-2.0.14-150000.3.34.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 x86_64) * libjasper-devel-2.0.14-150000.3.34.1 * jasper-debugsource-2.0.14-150000.3.34.1 * libjasper4-2.0.14-150000.3.34.1 * libjasper4-debuginfo-2.0.14-150000.3.34.1 * jasper-debuginfo-2.0.14-150000.3.34.1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (x86_64) * libjasper-devel-2.0.14-150000.3.34.1 * jasper-debugsource-2.0.14-150000.3.34.1 * libjasper4-2.0.14-150000.3.34.1 * libjasper4-debuginfo-2.0.14-150000.3.34.1 * jasper-debuginfo-2.0.14-150000.3.34.1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (aarch64 ppc64le s390x x86_64) * libjasper-devel-2.0.14-150000.3.34.1 * jasper-debugsource-2.0.14-150000.3.34.1 * libjasper4-2.0.14-150000.3.34.1 * libjasper4-debuginfo-2.0.14-150000.3.34.1 * jasper-debuginfo-2.0.14-150000.3.34.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (aarch64 ppc64le s390x x86_64) * libjasper-devel-2.0.14-150000.3.34.1 * jasper-debugsource-2.0.14-150000.3.34.1 * libjasper4-2.0.14-150000.3.34.1 * libjasper4-debuginfo-2.0.14-150000.3.34.1 * jasper-debuginfo-2.0.14-150000.3.34.1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (aarch64 ppc64le s390x x86_64) * libjasper-devel-2.0.14-150000.3.34.1 * jasper-debugsource-2.0.14-150000.3.34.1 * libjasper4-2.0.14-150000.3.34.1 * libjasper4-debuginfo-2.0.14-150000.3.34.1 * jasper-debuginfo-2.0.14-150000.3.34.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 (ppc64le x86_64) * libjasper-devel-2.0.14-150000.3.34.1 * jasper-debugsource-2.0.14-150000.3.34.1 * libjasper4-2.0.14-150000.3.34.1 * libjasper4-debuginfo-2.0.14-150000.3.34.1 * jasper-debuginfo-2.0.14-150000.3.34.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (ppc64le x86_64) * libjasper-devel-2.0.14-150000.3.34.1 * jasper-debugsource-2.0.14-150000.3.34.1 * libjasper4-2.0.14-150000.3.34.1 * libjasper4-debuginfo-2.0.14-150000.3.34.1 * jasper-debuginfo-2.0.14-150000.3.34.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64) * libjasper-devel-2.0.14-150000.3.34.1 * jasper-debugsource-2.0.14-150000.3.34.1 * libjasper4-2.0.14-150000.3.34.1 * libjasper4-debuginfo-2.0.14-150000.3.34.1 * jasper-debuginfo-2.0.14-150000.3.34.1 * SUSE Manager Proxy 4.3 (x86_64) * jasper-debugsource-2.0.14-150000.3.34.1 * libjasper4-2.0.14-150000.3.34.1 * libjasper4-debuginfo-2.0.14-150000.3.34.1 * jasper-debuginfo-2.0.14-150000.3.34.1 * SUSE Manager Retail Branch Server 4.3 (x86_64) * jasper-debugsource-2.0.14-150000.3.34.1 * libjasper4-2.0.14-150000.3.34.1 * libjasper4-debuginfo-2.0.14-150000.3.34.1 * jasper-debuginfo-2.0.14-150000.3.34.1 * SUSE Manager Server 4.3 (ppc64le s390x x86_64) * jasper-debugsource-2.0.14-150000.3.34.1 * libjasper4-2.0.14-150000.3.34.1 * libjasper4-debuginfo-2.0.14-150000.3.34.1 * jasper-debuginfo-2.0.14-150000.3.34.1 * SUSE Enterprise Storage 7.1 (aarch64 x86_64) * libjasper-devel-2.0.14-150000.3.34.1 * jasper-debugsource-2.0.14-150000.3.34.1 * libjasper4-2.0.14-150000.3.34.1 * libjasper4-debuginfo-2.0.14-150000.3.34.1 * jasper-debuginfo-2.0.14-150000.3.34.1 ## References: * https://www.suse.com/security/cve/CVE-2024-31744.html * https://bugzilla.suse.com/show_bug.cgi?id=1223155 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 19 12:42:07 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 19 Aug 2024 12:42:07 -0000 Subject: SUSE-SU-2024:0882-1: moderate: Security update for hdf5 Message-ID: <172407132735.18977.6968313668104280185@smelt2.prg2.suse.org> # Security update for hdf5 Announcement ID: SUSE-SU-2024:0882-1 Rating: moderate References: * bsc#1011205 * bsc#1093641 * bsc#1125882 * bsc#1167400 * bsc#1207973 * bsc#1209548 * bsc#133222 * jsc#PED-7816 Cross-References: * CVE-2016-4332 * CVE-2018-11202 * CVE-2019-8396 * CVE-2020-10812 * CVE-2021-37501 CVSS scores: * CVE-2016-4332 ( NVD ): 8.6 CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H * CVE-2018-11202 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L * CVE-2018-11202 ( NVD ): 6.5 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2019-8396 ( SUSE ): 3.3 CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L * CVE-2019-8396 ( NVD ): 6.5 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2020-10812 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L * CVE-2020-10812 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2021-37501 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:H * CVE-2021-37501 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * HPC Module 12 * SUSE Linux Enterprise High Performance Computing 12 SP2 * SUSE Linux Enterprise High Performance Computing 12 SP3 * SUSE Linux Enterprise High Performance Computing 12 SP4 * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise Server 12 SP2 * SUSE Linux Enterprise Server 12 SP3 * SUSE Linux Enterprise Server 12 SP4 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server for SAP Applications 12 SP2 * SUSE Linux Enterprise Server for SAP Applications 12 SP3 * SUSE Linux Enterprise Server for SAP Applications 12 SP4 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 An update that solves five vulnerabilities, contains one feature and has two security fixes can now be installed. ## Description: This update for hdf5 fixes the following issues: Updated to version 1.10.11 * Changed the error handling for a not found path in the find plugin process. * Fixed CVE-2018-11202, a malformed file could result in chunk index memory leaks. * Fixed a file space allocation bug in the parallel library for chunked datasets. * Fixed an assertion failure in Parallel HDF5 when a file can't be created due to an invalid library version bounds setting. * Fixed an assertion in a previous fix for CVE-2016-4332. * Fixed segfault on file close in h5debug which fails with a core dump on a file that has an illegal file size in its cache image. Fixes HDFFV-11052, CVE-2020-10812. * Fixed memory leaks that could occur when reading a dataset from a malformed file. * Fixed a bug in H5Ocopy that could generate invalid HDF5 files * Fixed potential heap buffer overflow in decoding of link info message. * Fixed potential buffer overrun issues in some object header decode routines. * Fixed a heap buffer overflow that occurs when reading from a dataset with a compact layout within a malformed HDF5 file. * Fixed CVE-2019-8396, malformed HDF5 files where content does not match expected size. * Fixed memory leak when running h5dump with proof of vulnerability file. * Added option --no-compact-subset to h5diff. Fixes since 1.10.10: * Fixed a memory corruption when reading from dataset using a hyperslab selection in file dataspace and a point selection memory dataspace. * Fix CVE-2021-37501 * Fixed an issue with variable length attributes. * Fixed an issue with hyperslab selections where an incorrect combined selection was produced. * Fixed an issue with attribute type conversion with compound datatypes. * Modified H5Fstart_swmr_write() to preserve DAPL properties. * Converted an assertion on (possibly corrupt) file contents to a normal error check. * Fixed memory leak with variable-length fill value in H5O_fill_convert(). * Fix h5repack to only print output when verbose option is selected. Fixes since 1.10.9: * Several improvements to parallel compression feature, including: * Improved support for collective I/O (for both writes and reads). * Reduction of copying of application data buffers passed to H5Dwrite. * Addition of support for incremental file space allocation for filtered datasets created in parallel. * Addition of support for HDF5's "don't filter partial edge chunks" flag * Addition of proper support for HDF5 fill values with the feature. * Addition of 'H5_HAVE_PARALLEL_FILTERED_WRITES' macro to H5pubconf.h so HDF5 applications can determine at compile-time whether the feature is available. * Addition of simple examples * h5repack added an optional verbose value for reporting R/W timing. * Fixed a metadata cache bug when resizing a pinned/protected cache entry. * Fixed a problem with the H5_VERS_RELEASE check in the H5check_version function. * Unified handling of collective metadata reads to correctly fix old bugs. * Fixed several potential MPI deadlocks in library failure conditions. * Fixed an issue with collective metadata reads being permanently disabled after a dataset chunk lookup operation. * Remove timestamp/buildhost/kernel version from libhdf5.settings (bsc#1209548). * set higher constraints for succesfull mpich tests (bsc#133222) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * HPC Module 12 zypper in -t patch SUSE-SLE-Module-HPC-12-2024-882=1 ## Package List: * HPC Module 12 (noarch) * hdf5-gnu-hpc-devel-1.10.11-3.21.1 * hdf5-gnu-mvapich2-hpc-devel-1.10.11-3.21.1 * hdf5-gnu-openmpi1-hpc-devel-1.10.11-3.21.1 * HPC Module 12 (aarch64 x86_64) * libhdf5_cpp_1_10_11-gnu-mvapich2-hpc-1.10.11-3.21.1 * libhdf5_hl_cpp_1_10_11-gnu-mvapich2-hpc-1.10.11-3.21.1 * libhdf5_cpp-gnu-hpc-1.10.11-3.21.1 * libhdf5_1_10_11-gnu-mvapich2-hpc-debuginfo-1.10.11-3.21.1 * hdf5_1_10_11-gnu-hpc-debuginfo-1.10.11-3.21.1 * libhdf5_fortran-gnu-mvapich2-hpc-1.10.11-3.21.1 * hdf5_1_10_11-gnu-openmpi1-hpc-devel-static-1.10.11-3.21.1 * libhdf5_hl_1_10_11-gnu-mvapich2-hpc-1.10.11-3.21.1 * libhdf5_fortran_1_10_11-gnu-hpc-debuginfo-1.10.11-3.21.1 * hdf5_1_10_11-gnu-openmpi1-hpc-1.10.11-3.21.1 * hdf5_1_10_11-gnu-hpc-devel-1.10.11-3.21.1 * libhdf5_hl_cpp_1_10_11-gnu-hpc-1.10.11-3.21.1 * libhdf5hl_fortran_1_10_11-gnu-hpc-1.10.11-3.21.1 * hdf5_1_10_11-gnu-openmpi1-hpc-debugsource-1.10.11-3.21.1 * libhdf5_hl-gnu-mvapich2-hpc-1.10.11-3.21.1 * libhdf5hl_fortran_1_10_11-gnu-mvapich2-hpc-1.10.11-3.21.1 * libhdf5hl_fortran_1_10_11-gnu-hpc-debuginfo-1.10.11-3.21.1 * hdf5_1_10_11-gnu-hpc-debugsource-1.10.11-3.21.1 * libhdf5_hl_cpp_1_10_11-gnu-hpc-debuginfo-1.10.11-3.21.1 * libhdf5-gnu-hpc-1.10.11-3.21.1 * libhdf5_hl-gnu-hpc-1.10.11-3.21.1 * libhdf5_hl_1_10_11-gnu-mvapich2-hpc-debuginfo-1.10.11-3.21.1 * libhdf5_1_10_11-gnu-mvapich2-hpc-1.10.11-3.21.1 * libhdf5hl_fortran_1_10_11-gnu-openmpi1-hpc-1.10.11-3.21.1 * libhdf5_hl_fortran-gnu-mvapich2-hpc-1.10.11-3.21.1 * libhdf5_fortran_1_10_11-gnu-openmpi1-hpc-debuginfo-1.10.11-3.21.1 * libhdf5_fortran-gnu-hpc-1.10.11-3.21.1 * hdf5_1_10_11-gnu-hpc-devel-static-1.10.11-3.21.1 * libhdf5_fortran-gnu-openmpi1-hpc-1.10.11-3.21.1 * hdf5_1_10_11-gnu-mvapich2-hpc-devel-static-1.10.11-3.21.1 * hdf5_1_10_11-gnu-hpc-module-1.10.11-3.21.1 * hdf5_1_10_11-gnu-mvapich2-hpc-1.10.11-3.21.1 * hdf5_1_10_11-gnu-hpc-1.10.11-3.21.1 * hdf5_1_10_11-gnu-mvapich2-hpc-module-1.10.11-3.21.1 * libhdf5_hl-gnu-openmpi1-hpc-1.10.11-3.21.1 * libhdf5_hl_1_10_11-gnu-hpc-debuginfo-1.10.11-3.21.1 * libhdf5-gnu-mvapich2-hpc-1.10.11-3.21.1 * libhdf5_hl_1_10_11-gnu-openmpi1-hpc-1.10.11-3.21.1 * hdf5_1_10_11-gnu-openmpi1-hpc-devel-1.10.11-3.21.1 * libhdf5_cpp_1_10_11-gnu-hpc-1.10.11-3.21.1 * libhdf5_fortran_1_10_11-gnu-mvapich2-hpc-1.10.11-3.21.1 * hdf5_1_10_11-gnu-mvapich2-hpc-devel-1.10.11-3.21.1 * libhdf5hl_fortran_1_10_11-gnu-openmpi1-hpc-debuginfo-1.10.11-3.21.1 * libhdf5_hl_cpp-gnu-hpc-1.10.11-3.21.1 * libhdf5_1_10_11-gnu-hpc-debuginfo-1.10.11-3.21.1 * libhdf5-gnu-openmpi1-hpc-1.10.11-3.21.1 * libhdf5_hl_cpp_1_10_11-gnu-openmpi1-hpc-1.10.11-3.21.1 * libhdf5_1_10_11-gnu-hpc-1.10.11-3.21.1 * libhdf5_fortran_1_10_11-gnu-mvapich2-hpc-debuginfo-1.10.11-3.21.1 * libhdf5_hl_fortran-gnu-hpc-1.10.11-3.21.1 * hdf5_1_10_11-gnu-openmpi1-hpc-module-1.10.11-3.21.1 * libhdf5_hl_1_10_11-gnu-hpc-1.10.11-3.21.1 * libhdf5_1_10_11-gnu-openmpi1-hpc-1.10.11-3.21.1 * hdf5_1_10_11-gnu-mvapich2-hpc-debuginfo-1.10.11-3.21.1 * libhdf5hl_fortran_1_10_11-gnu-mvapich2-hpc-debuginfo-1.10.11-3.21.1 * libhdf5_cpp_1_10_11-gnu-openmpi1-hpc-1.10.11-3.21.1 * libhdf5_hl_fortran-gnu-openmpi1-hpc-1.10.11-3.21.1 * libhdf5_fortran_1_10_11-gnu-hpc-1.10.11-3.21.1 * libhdf5_hl_1_10_11-gnu-openmpi1-hpc-debuginfo-1.10.11-3.21.1 * libhdf5_cpp_1_10_11-gnu-hpc-debuginfo-1.10.11-3.21.1 * libhdf5_fortran_1_10_11-gnu-openmpi1-hpc-1.10.11-3.21.1 * libhdf5_1_10_11-gnu-openmpi1-hpc-debuginfo-1.10.11-3.21.1 * hdf5_1_10_11-gnu-openmpi1-hpc-debuginfo-1.10.11-3.21.1 * hdf5_1_10_11-gnu-mvapich2-hpc-debugsource-1.10.11-3.21.1 ## References: * https://www.suse.com/security/cve/CVE-2016-4332.html * https://www.suse.com/security/cve/CVE-2018-11202.html * https://www.suse.com/security/cve/CVE-2019-8396.html * https://www.suse.com/security/cve/CVE-2020-10812.html * https://www.suse.com/security/cve/CVE-2021-37501.html * https://bugzilla.suse.com/show_bug.cgi?id=1011205 * https://bugzilla.suse.com/show_bug.cgi?id=1093641 * https://bugzilla.suse.com/show_bug.cgi?id=1125882 * https://bugzilla.suse.com/show_bug.cgi?id=1167400 * https://bugzilla.suse.com/show_bug.cgi?id=1207973 * https://bugzilla.suse.com/show_bug.cgi?id=1209548 * https://bugzilla.suse.com/show_bug.cgi?id=133222 * https://jira.suse.com/browse/PED-7816 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 19 16:30:02 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 19 Aug 2024 16:30:02 -0000 Subject: SUSE-SU-2024:2970-1: moderate: Security update for python-WebOb Message-ID: <172408500280.18977.7649254767824086340@smelt2.prg2.suse.org> # Security update for python-WebOb Announcement ID: SUSE-SU-2024:2970-1 Rating: moderate References: * bsc#1229221 Cross-References: * CVE-2024-42353 CVSS scores: * CVE-2024-42353 ( SUSE ): 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Affected Products: * openSUSE Leap 15.4 * openSUSE Leap 15.6 An update that solves one vulnerability can now be installed. ## Description: This update for python-WebOb fixes the following issues: * CVE-2024-42353: Fixed open redirect via WebOb's Response object in Location header (bsc#1229221) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch SUSE-2024-2970=1 * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2024-2970=1 ## Package List: * openSUSE Leap 15.4 (noarch) * python311-WebOb-1.8.7-150400.11.6.1 * openSUSE Leap 15.6 (noarch) * python311-WebOb-1.8.7-150400.11.6.1 ## References: * https://www.suse.com/security/cve/CVE-2024-42353.html * https://bugzilla.suse.com/show_bug.cgi?id=1229221 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 19 16:30:05 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 19 Aug 2024 16:30:05 -0000 Subject: SUSE-SU-2024:2969-1: moderate: Security update for python-WebOb Message-ID: <172408500510.18977.15082013022072218647@smelt2.prg2.suse.org> # Security update for python-WebOb Announcement ID: SUSE-SU-2024:2969-1 Rating: moderate References: * bsc#1229221 Cross-References: * CVE-2024-42353 CVSS scores: * CVE-2024-42353 ( SUSE ): 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Affected Products: * Public Cloud Module 12 * SUSE Linux Enterprise High Performance Computing 12 SP2 * SUSE Linux Enterprise High Performance Computing 12 SP3 * SUSE Linux Enterprise High Performance Computing 12 SP4 * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise Server 12 * SUSE Linux Enterprise Server 12 SP1 * SUSE Linux Enterprise Server 12 SP2 * SUSE Linux Enterprise Server 12 SP3 * SUSE Linux Enterprise Server 12 SP4 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server for SAP Applications 12 * SUSE Linux Enterprise Server for SAP Applications 12 SP1 * SUSE Linux Enterprise Server for SAP Applications 12 SP2 * SUSE Linux Enterprise Server for SAP Applications 12 SP3 * SUSE Linux Enterprise Server for SAP Applications 12 SP4 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 An update that solves one vulnerability can now be installed. ## Description: This update for python-WebOb fixes the following issues: * CVE-2024-42353: Fixed open redirect via WebOb's Response object in Location header (bsc#1229221) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * Public Cloud Module 12 zypper in -t patch SUSE-SLE-Module-Public-Cloud-12-2024-2969=1 ## Package List: * Public Cloud Module 12 (noarch) * python-WebOb-1.2.3-3.3.1 ## References: * https://www.suse.com/security/cve/CVE-2024-42353.html * https://bugzilla.suse.com/show_bug.cgi?id=1229221 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 19 16:30:22 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 19 Aug 2024 16:30:22 -0000 Subject: SUSE-SU-2024:2963-1: moderate: Security update for osc Message-ID: <172408502295.18977.4135170123003334731@smelt2.prg2.suse.org> # Security update for osc Announcement ID: SUSE-SU-2024:2963-1 Rating: moderate References: * bsc#1225911 Cross-References: * CVE-2024-22034 CVSS scores: * CVE-2024-22034 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N Affected Products: * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 * SUSE Linux Enterprise Software Development Kit 12 SP5 An update that solves one vulnerability can now be installed. ## Description: This update for osc fixes the following issues: 0.183.0 \- Fix possibility to overwrite special files in .osc (CVE-2024-22034 bsc#1225911) Source files are now stored in the 'sources' subdirectory which prevents name collisons. This requires changing version of '.osc' store to 2.0. \- Fix errorneous double quotes in core.py ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Software Development Kit 12 SP5 zypper in -t patch SUSE-SLE-SDK-12-SP5-2024-2963=1 ## Package List: * SUSE Linux Enterprise Software Development Kit 12 SP5 (noarch) * osc-0.183.0-15.18.1 ## References: * https://www.suse.com/security/cve/CVE-2024-22034.html * https://bugzilla.suse.com/show_bug.cgi?id=1225911 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 19 16:30:28 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 19 Aug 2024 16:30:28 -0000 Subject: SUSE-SU-2024:2961-1: moderate: Security update for osc Message-ID: <172408502816.18977.13867943799342402255@smelt2.prg2.suse.org> # Security update for osc Announcement ID: SUSE-SU-2024:2961-1 Rating: moderate References: * bsc#1122683 * bsc#1212476 * bsc#1218170 * bsc#1221340 * bsc#1225911 Cross-References: * CVE-2024-22034 CVSS scores: * CVE-2024-22034 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N Affected Products: * Development Tools Module 15-SP5 * Development Tools Module 15-SP6 * openSUSE Leap 15.4 * openSUSE Leap 15.5 * openSUSE Leap 15.6 * SUSE Linux Enterprise Desktop 15 SP5 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 An update that solves one vulnerability and has four security fixes can now be installed. ## Description: This update for osc fixes the following issues: * 1.9.0 * Security: * Fix possibility to overwrite special files in .osc (CVE-2024-22034 bsc#1225911) Source files are now stored in the 'sources' subdirectory which prevents name collisons. This requires changing version of '.osc' store to 2.0. * Command-line: * Introduce build --checks parameter * Library: * OscConfigParser: Remove automatic **name** option * 1.8.3 * Command-line: * Change 'repairwc' command to always run all repair steps * Library: * Make most of the fields in KeyinfoPubkey and KeyinfoSslcert models optional * Fix colorize() to avoid wrapping empty string into color escape sequences * Provide default values for kwargs.get/pop in get_results() function * 1.8.2 * Library: * Change 'repairwc' command to fix missing .osc/_osclib_version * Make error message in check_store_version() more generic to work for both projects and packages * Fix check_store_version in project store * 1.8.1 * Command-line: * Fix 'linkpac' command crash when used with '\--disable-build' or '\--disable-publish' option * 1.8.0 * Command-line: * Improve 'submitrequest' command to inherit description from superseded request * Fix 'mv' command when renaming a file multiple times * Improve 'info' command to support projects * Improve 'getbinaries' command by accepting '-M' / '\--multibuild-package' option outside checkouts * Add architecture filtering to 'release' command * Change 'results' command so the normal and multibuild packages have the same output * Change 'results' command to use csv writer instead of formatting csv as string * Add couple mutually exclusive options errors to 'results' command * Set a default value for 'results --format' only for the csv output * Add support for 'results --format' for the default text mode * Update help text for '\--format' option in 'results' command * Add 'results --fail-on-error/-F' flag * Redirect venv warnings from stderr to debug output * Configuration: * Fix config parser to throw an exception on duplicate sections or options * Modify conf.get_config() to print permissions warning to stderr rather than stdout * Library: * Run check_store_version() in obs_scm.Store and fix related code in Project and Package * Forbid extracting files with absolute path from 'cpio' archives (bsc#1122683) * Forbid extracting files with absolute path from 'ar' archives (bsc#1122683) * Remove no longer valid warning from core.unpack_srcrpm() * Make obs_api.KeyinfoSslcert keyid and fingerprint fields optional * Fix return value in build build.create_build_descr_data() * Fix core.get_package_results() to obey 'multibuild_packages' argument * Tests: * Fix tests so they don't modify fixtures * 1.7.0 * Command-line: * Add 'person search' command * Add 'person register' command * Add '-M/--multibuild-package' option to '[what]dependson' commands * Update '-U/--user' option in 'maintainer' command to accept also an email address * Fix 'branch' command to allow using '\--new-package' option on packages that do not exist * Fix 'buildinfo' command to include obs:cli_debug_packages by default * Fix 'buildinfo' command to send complete local build environment as the 'build' command does * Fix 'maintainer --devel-project' to raise an error if running outside a working copy without any arguments * Fix handling arguments in 'service remoterun prj/pac' * Fix 'rebuild' command so the '\--all' option conflicts with the 'package' argument * Fix crash when removing 'scmsync' element from dst package meta in 'linkpac' command * Fix crash when reading dst package meta in 'linkpac' command * Allow `osc rpmlint` to infer prj/pkg from CWD * Propagate exit code from the run() and do_() commandline methods * Give a hint where a scmsync git is hosted * Fix crash in 'updatepacmetafromspec' command when working with an incomplete spec * Improve 'updatepacmetafromspec' command to expand rpm spec macros by calling rpmspec to query the data * Improve 'build' and 'buildinfo' commands by uploading *.inc files to OBS for parsing BuildRequires (bsc#1221340) * Improve 'service' command by printing names of running services * Improve 'getbinaries' command by ignoring source and debuginfo filters when a binary name is specified * Change 'build' command to pass '\--jobs' option to 'build' tool only if 'build_jobs' > 0 * Clarify 'list' command's help that that listing binaries doesn't contain md5 checksums * Improve 'log' command: produce proper CSV and XML outputs, add -p/--patch option for the text output * Allow setlinkrev to set a specific vrev * Document '\--buildtool-opt=--noclean' example in 'build' command's help * Fix handling the default package argument on the command-line * Configuration: * Document loading configuration from env variables * Connection: * Don't retry on error 400 * Remove now unused 'retry_on_400' http_request() option from XmlModel * Revert "Don't retry on 400 HTTP status code in core.server_diff()" * Revert "connection: Allow disabling retry on 400 HTTP status code" * Authentication: * Update SignatureAuthHandler to support specifying ssh key by its fingerprint * Use ssh key from ssh agent that contains comment 'obs=' * Use strings instead of bytes in SignatureAuthHandler * Cache password from SecretService to avoid spamming user with an accept dialog * Never ask for credentials when displaying help * Remove unused SignatureAuthHandler.get_fingerprint() * Library: * Add rootless build support for 'qemu' VM type * Support package linking of packages from scmsync projects * Fix do_createrequest() function to return None instead of request id * Replace invalid 'if' with 'elif' in BaseModel.dict() * Fix crash when no prefered packages are defined * Add XmlModel class that encapsulates manipulation with XML * Add obs_api.Person.cmd_register() for registering new users * Fix conf.get_config() to ignore file type bits when comparing oscrc perms * Fix conf.get_config() to correctly handle overrides when env variables are set * Fix output.tty.IS_INTERACTIVE when os.isatty() throws OSError * Improve cmdln.HelpFormatter to obey newline characters * Update list of color codes in 'output.tty' module * Remove core.setDevelProject() in favor of core.set_devel_project() * Move removing control characters to output.sanitize_text() * Improve sanitize_text() to keep selected CSI escape sequences * Add output.pipe_to_pager() that pipes lines to a pager without creating an intermediate temporary file * Fix output.safe_write() in connection with NamedTemporaryFile * Modernize output.run_pager() * Extend output.print_msg() to accept 'error' and 'warning' values of 'to_print' argument * Add XPathQuery class for translating keyword arguments to an xpath query * Add obs_api.Keyinfo class * Add obs_api.Package class * Add Package.get_revision_list() for listing commit log * Add obs_api.PackageSources class for handling OBS SCM sources * Add obs_api.Person class * Add obs_api.Project class * Add obs_api.Request class * Add obs_api.Token class * Allow storing apiurl in the XmlModel instances * Allow retrieving default field value from top-level model * Fix BaseModel to convert dictionaries to objects on retrieving a model list * Fix BaseModel to always deepcopy mutable defaults on first use * Implement do_snapshot() and has_changed() methods to determine changes in BaseModel * Implement total ordering on BaseModel * Add comments with available attributes/elements to edited XML * Refactoring: * Migrate repo {list,add,remove} commands to obs_api.Project * Migrate core.show_package_disabled_repos() to obs_api.Package * Migrate core.Package.update_package_meta() to obs_api.Package * Migrate core.get_repos_of_project() to obs_api.Project * Migrate core.get_repositories_of_project() to obs_api.Project * Migrate core.show_scmsync() to obs_api.{Package,Project} * Migrate core.set_devel_project() to obs_api.Package * Migrate core.show_devel_project() to obs_api.Package * Migrate Fetcher.run() to obs_api.Keyinfo * Migrate core.create_submit_request() to obs_api.Request * Migrate 'token' command to obs_api.Token * Migrate 'whois/user' command to obs_api.Person * Migrate 'signkey' command to obs_api.Keyinfo * Move print_msg() to the 'osc.output' module * Move run_pager() and get_default_pager() from 'core' to 'output' module * Move core.Package to obs_scm.Package * Move core.Project to obs_scm.Project * Move functions manipulating store from core to obs_scm.store * Move store.Store to obs_scm.Store * Move core.Linkinfo to obs_scm.Linkinfo * Move core.Serviceinfo to obs_scm.Serviceinfo * Move core.File to obs_scm.File * Merge _private.project.ProjectMeta into obs_api.Project * Spec: * Remove dependency on /usr/bin/python3 using %python3_fix_shebang macro (bsc#1212476) * 1.6.2 * Command-line: * Fix 'branch' command to allow using '\--new-package' option on packages that do not exist * Fix 'buildinfo' command to include obs:cli_debug_packages by default * Fix 'buildinfo' command to send complete local build environment as the 'build' command does * Allow `osc rpmlint` to infer prj/pkg from CWD * Propagate exit code from the run() and do_() commandline methods * Give a hint where a scmsync git is hosted * Fix crash in 'updatepacmetafromspec' command when working with an incomplete spec * Authentication: * Cache password from SecretService to avoid spamming user with an accept dialog * Never ask for credentials when displaying help * Library: * Support package linking of packages from scmsync projects * Fix do_createrequest() function to return None instead of request id * Replace invalid 'if' with 'elif' in BaseModel.dict() * Fix crash when no prefered packages are defined * 1.6.1 * Command-line: * Use busybox compatible commands for completion * Change 'wipe' command to use the new get_user_input() function * Fix error 500 in running 'meta attribute ' * Configuration: * Fix resolving config symlink to the actual config file * Honor XDG_CONFIG_HOME and XDG_CACHE_HOME env vars * Warn about ignoring XDG_CONFIG_HOME and ~/.config/osc/oscrc if ~/.oscrc exists * Library: * Error out when branching a scmsync package * New get_user_input() function for consistent handling of user input * Move xml_indent, xml_quote and xml_unquote to osc.util.xml module * Refactor makeurl(), deprecate query taking string or list arguments, drop osc_urlencode() * Remove all path quoting, rely on makeurl() * Always use dict query in makeurl() * Fix core.slash_split() to strip both leading and trailing slashes * 1.6.0 * Command-line: * The 'token --trigger' command no longer sets '\--operation=runservice' by default. * Change 'token --create' command to require '\--operation' * Fix 'linkdiff' command error 400: prj/pac/md5 not in repository * Update 'build' command to support building 'productcompose' build type with updateinfo.xml data * Don't show meter in terminals that are not interactive * Fix traceback when running osc from an arbitrary git repo that fails to map branch to a project (bsc#1218170) * Configuration: * Implement reading credentials from environmental variables * Allow starting with an empty config if --configfile is either empty or points to /dev/null * Implement 'quiet' conf option * Password can be an empty string (commonly used with ssh auth) * Connection: * Allow -X HEAD on osc api requests as well * Library: * Fix credentials managers to consistently return Password * Fix Password.encode() on python < 3.8 * Refactor 'meter' module, use config settings to pick the right class * Convert to using f-strings * Use Field.get_callback to handle quiet/verbose and http_debug/http_full_debug options * Implement get_callback that allows modifying returned value to the Field class * Add support for List[BaseModel] type to Field class * Report class name when reporting an error during instantiating BaseModel object * Fix exporting an empty model field in BaseModel.dict() * Fix initializing a sub-model instance from a dictionary * Implement 'Enum' support in models * Fix Field.origin_type for Optional types * Drop unused 'exclude_unset' argument from BaseModel.dict() method * Store cached model defaults in self._defaults, avoid sharing references to mutable defaults * Limit model attributes to predefined fields by forbidding creating new attributes on fly * Store model values in self._values dict instead of private attributes * Spec: * Recommend openssh-clients for ssh-add that is required during ssh auth * Add 0%{?amzn} macro that wasn't usptreamed ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch SUSE-2024-2961=1 * openSUSE Leap 15.5 zypper in -t patch openSUSE-SLE-15.5-2024-2961=1 * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2024-2961=1 * Development Tools Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Development-Tools-15-SP5-2024-2961=1 * Development Tools Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Development-Tools-15-SP6-2024-2961=1 ## Package List: * openSUSE Leap 15.4 (noarch) * osc-1.9.0-150400.10.6.1 * openSUSE Leap 15.5 (noarch) * osc-1.9.0-150400.10.6.1 * openSUSE Leap 15.6 (noarch) * osc-1.9.0-150400.10.6.1 * Development Tools Module 15-SP5 (noarch) * osc-1.9.0-150400.10.6.1 * Development Tools Module 15-SP6 (noarch) * osc-1.9.0-150400.10.6.1 ## References: * https://www.suse.com/security/cve/CVE-2024-22034.html * https://bugzilla.suse.com/show_bug.cgi?id=1122683 * https://bugzilla.suse.com/show_bug.cgi?id=1212476 * https://bugzilla.suse.com/show_bug.cgi?id=1218170 * https://bugzilla.suse.com/show_bug.cgi?id=1221340 * https://bugzilla.suse.com/show_bug.cgi?id=1225911 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Aug 20 08:41:30 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Tue, 20 Aug 2024 08:41:30 -0000 Subject: SUSE-SU-2024:2973-1: important: Security update for the Linux Kernel Message-ID: <172414329053.28640.1412386230058222418@smelt2.prg2.suse.org> # Security update for the Linux Kernel Announcement ID: SUSE-SU-2024:2973-1 Rating: important References: * bsc#1012628 * bsc#1065729 * bsc#1181674 * bsc#1186716 * bsc#1187716 * bsc#1193599 * bsc#1194869 * bsc#1195775 * bsc#1204562 * bsc#1207948 * bsc#1208593 * bsc#1209657 * bsc#1209834 * bsc#1213573 * bsc#1214683 * bsc#1214852 * bsc#1215199 * bsc#1215587 * bsc#1216196 * bsc#1216358 * bsc#1216702 * bsc#1217384 * bsc#1217408 * bsc#1217481 * bsc#1217489 * bsc#1217750 * bsc#1217912 * bsc#1217959 * bsc#1218205 * bsc#1218336 * bsc#1218442 * bsc#1218730 * bsc#1218779 * bsc#1218820 * bsc#1218917 * bsc#1219104 * bsc#1219170 * bsc#1219224 * bsc#1219478 * bsc#1219596 * bsc#1219623 * bsc#1219633 * bsc#1219832 * bsc#1219834 * bsc#1219847 * bsc#1219953 * bsc#1220021 * bsc#1220045 * bsc#1220120 * bsc#1220138 * bsc#1220328 * bsc#1220342 * bsc#1220427 * bsc#1220428 * bsc#1220430 * bsc#1220569 * bsc#1220587 * bsc#1220783 * bsc#1220915 * bsc#1220942 * bsc#1221044 * bsc#1221057 * bsc#1221086 * bsc#1221293 * bsc#1221303 * bsc#1221504 * bsc#1221612 * bsc#1221615 * bsc#1221635 * bsc#1221645 * bsc#1221647 * bsc#1221649 * bsc#1221654 * bsc#1221656 * bsc#1221659 * bsc#1221765 * bsc#1221777 * bsc#1221783 * bsc#1221816 * bsc#1221829 * bsc#1221830 * bsc#1221858 * bsc#1221958 * bsc#1222011 * bsc#1222015 * bsc#1222048 * bsc#1222080 * bsc#1222115 * bsc#1222173 * bsc#1222241 * bsc#1222264 * bsc#1222273 * bsc#1222294 * bsc#1222301 * bsc#1222303 * bsc#1222304 * bsc#1222307 * bsc#1222326 * bsc#1222328 * bsc#1222357 * bsc#1222366 * bsc#1222368 * bsc#1222371 * bsc#1222378 * bsc#1222380 * bsc#1222385 * bsc#1222422 * bsc#1222426 * bsc#1222428 * bsc#1222437 * bsc#1222438 * bsc#1222445 * bsc#1222459 * bsc#1222463 * bsc#1222489 * bsc#1222522 * bsc#1222525 * bsc#1222531 * bsc#1222532 * bsc#1222557 * bsc#1222559 * bsc#1222563 * bsc#1222585 * bsc#1222588 * bsc#1222596 * bsc#1222606 * bsc#1222608 * bsc#1222613 * bsc#1222615 * bsc#1222617 * bsc#1222618 * bsc#1222619 * bsc#1222622 * bsc#1222624 * bsc#1222627 * bsc#1222630 * bsc#1222635 * bsc#1222721 * bsc#1222727 * bsc#1222768 * bsc#1222769 * bsc#1222771 * bsc#1222775 * bsc#1222779 * bsc#1222780 * bsc#1222782 * bsc#1222793 * bsc#1222799 * bsc#1222801 * bsc#1222809 * bsc#1222810 * bsc#1222893 * bsc#1222968 * bsc#1223007 * bsc#1223010 * bsc#1223011 * bsc#1223013 * bsc#1223015 * bsc#1223018 * bsc#1223020 * bsc#1223021 * bsc#1223023 * bsc#1223024 * bsc#1223033 * bsc#1223034 * bsc#1223035 * bsc#1223038 * bsc#1223039 * bsc#1223041 * bsc#1223045 * bsc#1223046 * bsc#1223051 * bsc#1223052 * bsc#1223058 * bsc#1223060 * bsc#1223061 * bsc#1223076 * bsc#1223077 * bsc#1223111 * bsc#1223113 * bsc#1223138 * bsc#1223143 * bsc#1223187 * bsc#1223189 * bsc#1223190 * bsc#1223191 * bsc#1223198 * bsc#1223202 * bsc#1223265 * bsc#1223285 * bsc#1223315 * bsc#1223338 * bsc#1223369 * bsc#1223380 * bsc#1223384 * bsc#1223390 * bsc#1223439 * bsc#1223462 * bsc#1223532 * bsc#1223539 * bsc#1223570 * bsc#1223575 * bsc#1223590 * bsc#1223591 * bsc#1223592 * bsc#1223593 * bsc#1223625 * bsc#1223629 * bsc#1223633 * bsc#1223634 * bsc#1223637 * bsc#1223641 * bsc#1223643 * bsc#1223649 * bsc#1223650 * bsc#1223651 * bsc#1223652 * bsc#1223653 * bsc#1223654 * bsc#1223655 * bsc#1223660 * bsc#1223661 * bsc#1223664 * bsc#1223665 * bsc#1223666 * bsc#1223668 * bsc#1223669 * bsc#1223670 * bsc#1223671 * bsc#1223675 * bsc#1223677 * bsc#1223678 * bsc#1223686 * bsc#1223692 * bsc#1223693 * bsc#1223695 * bsc#1223696 * bsc#1223698 * bsc#1223705 * bsc#1223712 * bsc#1223718 * bsc#1223728 * bsc#1223731 * bsc#1223732 * bsc#1223735 * bsc#1223739 * bsc#1223740 * bsc#1223741 * bsc#1223744 * bsc#1223745 * bsc#1223747 * bsc#1223748 * bsc#1223749 * bsc#1223750 * bsc#1223752 * bsc#1223754 * bsc#1223757 * bsc#1223759 * bsc#1223761 * bsc#1223762 * bsc#1223774 * bsc#1223778 * bsc#1223782 * bsc#1223787 * bsc#1223788 * bsc#1223790 * bsc#1223802 * bsc#1223804 * bsc#1223805 * bsc#1223806 * bsc#1223807 * bsc#1223813 * bsc#1223815 * bsc#1223822 * bsc#1223827 * bsc#1223831 * bsc#1223834 * bsc#1223836 * bsc#1223838 * bsc#1223863 * bsc#1223869 * bsc#1223870 * bsc#1223871 * bsc#1223872 * bsc#1223874 * bsc#1223944 * bsc#1223945 * bsc#1223946 * bsc#1223991 * bsc#1224049 * bsc#1224076 * bsc#1224096 * bsc#1224098 * bsc#1224137 * bsc#1224166 * bsc#1224177 * bsc#1224180 * bsc#1224181 * bsc#1224187 * bsc#1224331 * bsc#1224414 * bsc#1224422 * bsc#1224423 * bsc#1224429 * bsc#1224430 * bsc#1224432 * bsc#1224433 * bsc#1224437 * bsc#1224438 * bsc#1224439 * bsc#1224442 * bsc#1224443 * bsc#1224445 * bsc#1224449 * bsc#1224477 * bsc#1224479 * bsc#1224480 * bsc#1224481 * bsc#1224482 * bsc#1224486 * bsc#1224487 * bsc#1224488 * bsc#1224490 * bsc#1224491 * bsc#1224492 * bsc#1224493 * bsc#1224494 * bsc#1224495 * bsc#1224497 * bsc#1224498 * bsc#1224499 * bsc#1224500 * bsc#1224501 * bsc#1224502 * bsc#1224504 * bsc#1224505 * bsc#1224506 * bsc#1224507 * bsc#1224508 * bsc#1224509 * bsc#1224511 * bsc#1224512 * bsc#1224513 * bsc#1224515 * bsc#1224516 * bsc#1224517 * bsc#1224519 * bsc#1224520 * bsc#1224521 * bsc#1224523 * bsc#1224524 * bsc#1224525 * bsc#1224526 * bsc#1224530 * bsc#1224531 * bsc#1224534 * bsc#1224537 * bsc#1224539 * bsc#1224540 * bsc#1224541 * bsc#1224542 * bsc#1224543 * bsc#1224544 * bsc#1224545 * bsc#1224546 * bsc#1224549 * bsc#1224550 * bsc#1224552 * bsc#1224553 * bsc#1224555 * bsc#1224557 * bsc#1224558 * bsc#1224559 * bsc#1224562 * bsc#1224565 * bsc#1224566 * bsc#1224567 * bsc#1224568 * bsc#1224569 * bsc#1224571 * bsc#1224572 * bsc#1224573 * bsc#1224575 * bsc#1224576 * bsc#1224577 * bsc#1224578 * bsc#1224579 * bsc#1224580 * bsc#1224581 * bsc#1224582 * bsc#1224583 * bsc#1224584 * bsc#1224585 * bsc#1224586 * bsc#1224587 * bsc#1224588 * bsc#1224589 * bsc#1224592 * bsc#1224596 * bsc#1224598 * bsc#1224600 * bsc#1224601 * bsc#1224602 * bsc#1224603 * bsc#1224604 * bsc#1224605 * bsc#1224606 * bsc#1224607 * bsc#1224608 * bsc#1224609 * bsc#1224611 * bsc#1224612 * bsc#1224613 * bsc#1224614 * bsc#1224615 * bsc#1224617 * bsc#1224618 * bsc#1224619 * bsc#1224620 * bsc#1224621 * bsc#1224622 * bsc#1224623 * bsc#1224624 * bsc#1224626 * bsc#1224627 * bsc#1224628 * bsc#1224629 * bsc#1224630 * bsc#1224632 * bsc#1224633 * bsc#1224634 * bsc#1224636 * bsc#1224637 * bsc#1224638 * bsc#1224639 * bsc#1224640 * bsc#1224641 * bsc#1224643 * bsc#1224644 * bsc#1224645 * bsc#1224646 * bsc#1224647 * bsc#1224648 * bsc#1224649 * bsc#1224650 * bsc#1224651 * bsc#1224652 * bsc#1224653 * bsc#1224654 * bsc#1224655 * bsc#1224657 * bsc#1224659 * bsc#1224660 * bsc#1224661 * bsc#1224662 * bsc#1224663 * bsc#1224664 * bsc#1224665 * bsc#1224666 * bsc#1224667 * bsc#1224668 * bsc#1224670 * bsc#1224671 * bsc#1224673 * bsc#1224674 * bsc#1224675 * bsc#1224676 * bsc#1224677 * bsc#1224678 * bsc#1224680 * bsc#1224681 * bsc#1224682 * bsc#1224683 * bsc#1224685 * bsc#1224686 * bsc#1224687 * bsc#1224688 * bsc#1224692 * bsc#1224696 * bsc#1224697 * bsc#1224698 * bsc#1224699 * bsc#1224701 * bsc#1224703 * bsc#1224704 * bsc#1224705 * bsc#1224706 * bsc#1224707 * bsc#1224709 * bsc#1224710 * bsc#1224712 * bsc#1224714 * bsc#1224716 * bsc#1224717 * bsc#1224718 * bsc#1224719 * bsc#1224720 * bsc#1224721 * bsc#1224722 * bsc#1224723 * bsc#1224725 * bsc#1224727 * bsc#1224728 * bsc#1224729 * bsc#1224730 * bsc#1224731 * bsc#1224732 * bsc#1224733 * bsc#1224735 * bsc#1224736 * bsc#1224738 * bsc#1224739 * bsc#1224740 * bsc#1224741 * bsc#1224742 * bsc#1224743 * bsc#1224747 * bsc#1224749 * bsc#1224751 * bsc#1224759 * bsc#1224763 * bsc#1224764 * bsc#1224765 * bsc#1224766 * bsc#1224767 * bsc#1224790 * bsc#1224792 * bsc#1224793 * bsc#1224803 * bsc#1224804 * bsc#1224866 * bsc#1224928 * bsc#1224930 * bsc#1224932 * bsc#1224933 * bsc#1224935 * bsc#1224936 * bsc#1224937 * bsc#1224939 * bsc#1224941 * bsc#1224944 * bsc#1224946 * bsc#1224947 * bsc#1224949 * bsc#1224951 * bsc#1224988 * bsc#1224989 * bsc#1224992 * bsc#1224998 * bsc#1225000 * bsc#1225001 * bsc#1225004 * bsc#1225006 * bsc#1225007 * bsc#1225008 * bsc#1225009 * bsc#1225014 * bsc#1225015 * bsc#1225022 * bsc#1225025 * bsc#1225028 * bsc#1225029 * bsc#1225031 * bsc#1225036 * bsc#1225041 * bsc#1225044 * bsc#1225049 * bsc#1225050 * bsc#1225053 * bsc#1225076 * bsc#1225077 * bsc#1225078 * bsc#1225081 * bsc#1225085 * bsc#1225086 * bsc#1225088 * bsc#1225090 * bsc#1225092 * bsc#1225096 * bsc#1225097 * bsc#1225101 * bsc#1225103 * bsc#1225104 * bsc#1225105 * bsc#1225106 * bsc#1225108 * bsc#1225120 * bsc#1225132 * bsc#1225133 * bsc#1225134 * bsc#1225136 * bsc#1225172 * bsc#1225180 * bsc#1225272 * bsc#1225300 * bsc#1225391 * bsc#1225472 * bsc#1225475 * bsc#1225476 * bsc#1225477 * bsc#1225478 * bsc#1225485 * bsc#1225489 * bsc#1225490 * bsc#1225502 * bsc#1225527 * bsc#1225529 * bsc#1225530 * bsc#1225532 * bsc#1225534 * bsc#1225548 * bsc#1225550 * bsc#1225553 * bsc#1225554 * bsc#1225555 * bsc#1225556 * bsc#1225557 * bsc#1225559 * bsc#1225560 * bsc#1225564 * bsc#1225565 * bsc#1225566 * bsc#1225568 * bsc#1225569 * bsc#1225570 * bsc#1225571 * bsc#1225572 * bsc#1225573 * bsc#1225577 * bsc#1225578 * bsc#1225579 * bsc#1225580 * bsc#1225581 * bsc#1225583 * bsc#1225584 * bsc#1225585 * bsc#1225586 * bsc#1225587 * bsc#1225588 * bsc#1225589 * bsc#1225590 * bsc#1225591 * bsc#1225592 * bsc#1225593 * bsc#1225594 * bsc#1225595 * bsc#1225599 * bsc#1225600 * bsc#1225601 * bsc#1225602 * bsc#1225605 * bsc#1225607 * bsc#1225609 * bsc#1225610 * bsc#1225611 * bsc#1225616 * bsc#1225618 * bsc#1225640 * bsc#1225642 * bsc#1225681 * bsc#1225692 * bsc#1225694 * bsc#1225695 * bsc#1225696 * bsc#1225698 * bsc#1225699 * bsc#1225702 * bsc#1225704 * bsc#1225705 * bsc#1225708 * bsc#1225710 * bsc#1225711 * bsc#1225712 * bsc#1225714 * bsc#1225715 * bsc#1225717 * bsc#1225719 * bsc#1225720 * bsc#1225722 * bsc#1225723 * bsc#1225726 * bsc#1225728 * bsc#1225731 * bsc#1225732 * bsc#1225734 * bsc#1225735 * bsc#1225736 * bsc#1225737 * bsc#1225741 * bsc#1225744 * bsc#1225745 * bsc#1225746 * bsc#1225747 * bsc#1225748 * bsc#1225749 * bsc#1225750 * bsc#1225752 * bsc#1225753 * bsc#1225756 * bsc#1225757 * bsc#1225758 * bsc#1225759 * bsc#1225760 * bsc#1225761 * bsc#1225762 * bsc#1225763 * bsc#1225765 * bsc#1225766 * bsc#1225767 * bsc#1225769 * bsc#1225770 * bsc#1225773 * bsc#1225775 * bsc#1225805 * bsc#1225810 * bsc#1225815 * bsc#1225820 * bsc#1225823 * bsc#1225827 * bsc#1225829 * bsc#1225830 * bsc#1225834 * bsc#1225839 * bsc#1225840 * bsc#1225842 * bsc#1225843 * bsc#1225847 * bsc#1225851 * bsc#1225866 * bsc#1225872 * bsc#1225894 * bsc#1225895 * bsc#1225896 * bsc#1225898 * bsc#1225903 * bsc#1225945 * bsc#1226022 * bsc#1226131 * bsc#1226145 * bsc#1226149 * bsc#1226155 * bsc#1226158 * bsc#1226163 * bsc#1226202 * bsc#1226211 * bsc#1226212 * bsc#1226213 * bsc#1226226 * bsc#1226457 * bsc#1226502 * bsc#1226503 * bsc#1226513 * bsc#1226514 * bsc#1226520 * bsc#1226582 * bsc#1226587 * bsc#1226588 * bsc#1226592 * bsc#1226593 * bsc#1226594 * bsc#1226597 * bsc#1226607 * bsc#1226608 * bsc#1226610 * bsc#1226612 * bsc#1226613 * bsc#1226630 * bsc#1226632 * bsc#1226633 * bsc#1226634 * bsc#1226637 * bsc#1226657 * bsc#1226658 * bsc#1226734 * bsc#1226735 * bsc#1226737 * bsc#1226738 * bsc#1226739 * bsc#1226740 * bsc#1226741 * bsc#1226742 * bsc#1226744 * bsc#1226746 * bsc#1226747 * bsc#1226749 * bsc#1226750 * bsc#1226754 * bsc#1226757 * bsc#1226758 * bsc#1226760 * bsc#1226761 * bsc#1226764 * bsc#1226767 * bsc#1226768 * bsc#1226769 * bsc#1226771 * bsc#1226772 * bsc#1226774 * bsc#1226775 * bsc#1226776 * bsc#1226777 * bsc#1226780 * bsc#1226781 * bsc#1226783 * bsc#1226788 * bsc#1226789 * bsc#1226790 * bsc#1226791 * bsc#1226796 * bsc#1226799 * bsc#1226837 * bsc#1226839 * bsc#1226840 * bsc#1226841 * bsc#1226842 * bsc#1226844 * bsc#1226848 * bsc#1226852 * bsc#1226856 * bsc#1226857 * bsc#1226859 * bsc#1226861 * bsc#1226863 * bsc#1226864 * bsc#1226866 * bsc#1226867 * bsc#1226868 * bsc#1226875 * bsc#1226876 * bsc#1226878 * bsc#1226879 * bsc#1226883 * bsc#1226886 * bsc#1226890 * bsc#1226891 * bsc#1226894 * bsc#1226895 * bsc#1226905 * bsc#1226908 * bsc#1226909 * bsc#1226911 * bsc#1226915 * bsc#1226928 * bsc#1226934 * bsc#1226938 * bsc#1226939 * bsc#1226941 * bsc#1226948 * bsc#1226949 * bsc#1226950 * bsc#1226962 * bsc#1226976 * bsc#1226989 * bsc#1226990 * bsc#1226992 * bsc#1226993 * bsc#1226994 * bsc#1226995 * bsc#1226996 * bsc#1227066 * bsc#1227072 * bsc#1227085 * bsc#1227089 * bsc#1227090 * bsc#1227096 * bsc#1227101 * bsc#1227103 * bsc#1227149 * bsc#1227190 * bsc#1227282 * bsc#1227362 * bsc#1227363 * bsc#1227383 * bsc#1227432 * bsc#1227433 * bsc#1227434 * bsc#1227435 * bsc#1227443 * bsc#1227446 * bsc#1227447 * bsc#1227487 * bsc#1227573 * bsc#1227626 * bsc#1227716 * bsc#1227719 * bsc#1227723 * bsc#1227730 * bsc#1227736 * bsc#1227755 * bsc#1227757 * bsc#1227762 * bsc#1227763 * bsc#1227779 * bsc#1227780 * bsc#1227783 * bsc#1227786 * bsc#1227788 * bsc#1227789 * bsc#1227797 * bsc#1227800 * bsc#1227801 * bsc#1227803 * bsc#1227806 * bsc#1227813 * bsc#1227814 * bsc#1227836 * bsc#1227855 * bsc#1227862 * bsc#1227866 * bsc#1227886 * bsc#1227899 * bsc#1227910 * bsc#1227913 * bsc#1227926 * bsc#1228090 * bsc#1228192 * bsc#1228193 * bsc#1228211 * bsc#1228269 * bsc#1228289 * bsc#1228327 * bsc#1228328 * bsc#1228403 * bsc#1228405 * bsc#1228408 * bsc#1228417 * jsc#PED-8111 * jsc#PED-8240 * jsc#PED-8491 * jsc#PED-8570 * jsc#PED-8644 * jsc#PED-8688 * jsc#PED-8701 * jsc#PED-8954 Cross-References: * CVE-2021-47432 * CVE-2022-48772 * CVE-2023-0160 * CVE-2023-38417 * CVE-2023-47210 * CVE-2023-51780 * CVE-2023-52435 * CVE-2023-52458 * CVE-2023-52472 * CVE-2023-52503 * CVE-2023-52616 * CVE-2023-52618 * CVE-2023-52622 * CVE-2023-52631 * CVE-2023-52635 * CVE-2023-52640 * CVE-2023-52641 * CVE-2023-52645 * CVE-2023-52652 * CVE-2023-52653 * CVE-2023-52656 * CVE-2023-52657 * CVE-2023-52658 * CVE-2023-52659 * CVE-2023-52660 * CVE-2023-52661 * CVE-2023-52662 * CVE-2023-52663 * CVE-2023-52664 * CVE-2023-52667 * CVE-2023-52669 * CVE-2023-52670 * CVE-2023-52671 * CVE-2023-52672 * CVE-2023-52673 * CVE-2023-52674 * CVE-2023-52675 * CVE-2023-52676 * CVE-2023-52678 * CVE-2023-52679 * CVE-2023-52680 * CVE-2023-52681 * CVE-2023-52683 * CVE-2023-52685 * CVE-2023-52686 * CVE-2023-52687 * CVE-2023-52690 * CVE-2023-52691 * CVE-2023-52692 * CVE-2023-52693 * CVE-2023-52694 * CVE-2023-52695 * CVE-2023-52696 * CVE-2023-52697 * CVE-2023-52698 * CVE-2023-52699 * CVE-2023-52735 * CVE-2023-52749 * CVE-2023-52750 * CVE-2023-52751 * CVE-2023-52753 * CVE-2023-52754 * CVE-2023-52757 * CVE-2023-52759 * CVE-2023-52762 * CVE-2023-52763 * CVE-2023-52764 * CVE-2023-52765 * CVE-2023-52766 * CVE-2023-52767 * CVE-2023-52768 * CVE-2023-52769 * CVE-2023-52771 * CVE-2023-52772 * CVE-2023-52773 * CVE-2023-52774 * CVE-2023-52775 * CVE-2023-52776 * CVE-2023-52777 * CVE-2023-52780 * CVE-2023-52781 * CVE-2023-52782 * CVE-2023-52783 * CVE-2023-52784 * CVE-2023-52786 * CVE-2023-52787 * CVE-2023-52788 * CVE-2023-52789 * CVE-2023-52791 * CVE-2023-52792 * CVE-2023-52794 * CVE-2023-52795 * CVE-2023-52796 * CVE-2023-52798 * CVE-2023-52799 * CVE-2023-52800 * CVE-2023-52801 * CVE-2023-52803 * CVE-2023-52804 * CVE-2023-52805 * CVE-2023-52806 * CVE-2023-52807 * CVE-2023-52808 * CVE-2023-52809 * CVE-2023-52810 * CVE-2023-52811 * CVE-2023-52812 * CVE-2023-52813 * CVE-2023-52814 * CVE-2023-52815 * CVE-2023-52816 * CVE-2023-52817 * CVE-2023-52818 * CVE-2023-52819 * CVE-2023-52821 * CVE-2023-52825 * CVE-2023-52826 * CVE-2023-52827 * CVE-2023-52829 * CVE-2023-52832 * CVE-2023-52833 * CVE-2023-52834 * CVE-2023-52835 * CVE-2023-52836 * CVE-2023-52837 * CVE-2023-52838 * CVE-2023-52840 * CVE-2023-52841 * CVE-2023-52842 * CVE-2023-52843 * CVE-2023-52844 * CVE-2023-52845 * CVE-2023-52847 * CVE-2023-52849 * CVE-2023-52850 * CVE-2023-52851 * CVE-2023-52853 * CVE-2023-52854 * CVE-2023-52855 * CVE-2023-52856 * CVE-2023-52857 * CVE-2023-52858 * CVE-2023-52860 * CVE-2023-52861 * CVE-2023-52862 * CVE-2023-52863 * CVE-2023-52864 * CVE-2023-52865 * CVE-2023-52866 * CVE-2023-52867 * CVE-2023-52868 * CVE-2023-52869 * CVE-2023-52870 * CVE-2023-52871 * CVE-2023-52872 * CVE-2023-52873 * CVE-2023-52874 * CVE-2023-52875 * CVE-2023-52876 * CVE-2023-52877 * CVE-2023-52878 * CVE-2023-52879 * CVE-2023-52880 * CVE-2023-52881 * CVE-2023-52882 * CVE-2023-52883 * CVE-2023-52884 * CVE-2023-6238 * CVE-2023-7042 * CVE-2024-0639 * CVE-2024-21823 * CVE-2024-22099 * CVE-2024-23848 * CVE-2024-24861 * CVE-2024-25739 * CVE-2024-25741 * CVE-2024-26601 * CVE-2024-26611 * CVE-2024-26614 * CVE-2024-26615 * CVE-2024-26623 * CVE-2024-26625 * CVE-2024-26632 * CVE-2024-26633 * CVE-2024-26635 * CVE-2024-26636 * CVE-2024-26638 * CVE-2024-26641 * CVE-2024-26642 * CVE-2024-26643 * CVE-2024-26650 * CVE-2024-26652 * CVE-2024-26654 * CVE-2024-26656 * CVE-2024-26657 * CVE-2024-26663 * CVE-2024-26665 * CVE-2024-26671 * CVE-2024-26673 * CVE-2024-26674 * CVE-2024-26676 * CVE-2024-26679 * CVE-2024-26684 * CVE-2024-26685 * CVE-2024-26691 * CVE-2024-26704 * CVE-2024-26714 * CVE-2024-26726 * CVE-2024-26731 * CVE-2024-26733 * CVE-2024-26734 * CVE-2024-26737 * CVE-2024-26739 * CVE-2024-26740 * CVE-2024-26742 * CVE-2024-26750 * CVE-2024-26756 * CVE-2024-26758 * CVE-2024-26760 * CVE-2024-26761 * CVE-2024-26764 * CVE-2024-26767 * CVE-2024-26769 * CVE-2024-26772 * CVE-2024-26773 * CVE-2024-26774 * CVE-2024-26775 * CVE-2024-26780 * CVE-2024-26783 * CVE-2024-26785 * CVE-2024-26786 * CVE-2024-26791 * CVE-2024-26793 * CVE-2024-26794 * CVE-2024-26802 * CVE-2024-26805 * CVE-2024-26807 * CVE-2024-26813 * CVE-2024-26814 * CVE-2024-26815 * CVE-2024-26816 * CVE-2024-26822 * CVE-2024-26826 * CVE-2024-26832 * CVE-2024-26836 * CVE-2024-26842 * CVE-2024-26844 * CVE-2024-26845 * CVE-2024-26846 * CVE-2024-26853 * CVE-2024-26854 * CVE-2024-26855 * CVE-2024-26856 * CVE-2024-26857 * CVE-2024-26858 * CVE-2024-26860 * CVE-2024-26861 * CVE-2024-26862 * CVE-2024-26863 * CVE-2024-26866 * CVE-2024-26868 * CVE-2024-26870 * CVE-2024-26878 * CVE-2024-26881 * CVE-2024-26882 * CVE-2024-26883 * CVE-2024-26884 * CVE-2024-26885 * CVE-2024-26889 * CVE-2024-26899 * CVE-2024-26900 * CVE-2024-26901 * CVE-2024-26903 * CVE-2024-26906 * CVE-2024-26909 * CVE-2024-26920 * CVE-2024-26921 * CVE-2024-26922 * CVE-2024-26923 * CVE-2024-26925 * CVE-2024-26928 * CVE-2024-26932 * CVE-2024-26933 * CVE-2024-26934 * CVE-2024-26935 * CVE-2024-26937 * CVE-2024-26938 * CVE-2024-26940 * CVE-2024-26943 * CVE-2024-26944 * CVE-2024-26945 * CVE-2024-26946 * CVE-2024-26948 * CVE-2024-26949 * CVE-2024-26950 * CVE-2024-26951 * CVE-2024-26957 * CVE-2024-26958 * CVE-2024-26960 * CVE-2024-26961 * CVE-2024-26962 * CVE-2024-26963 * CVE-2024-26964 * CVE-2024-26972 * CVE-2024-26973 * CVE-2024-26978 * CVE-2024-26981 * CVE-2024-26982 * CVE-2024-26983 * CVE-2024-26984 * CVE-2024-26986 * CVE-2024-26988 * CVE-2024-26989 * CVE-2024-26990 * CVE-2024-26991 * CVE-2024-26992 * CVE-2024-26993 * CVE-2024-26994 * CVE-2024-26995 * CVE-2024-26996 * CVE-2024-26997 * CVE-2024-26999 * CVE-2024-27000 * CVE-2024-27001 * CVE-2024-27002 * CVE-2024-27003 * CVE-2024-27004 * CVE-2024-27008 * CVE-2024-27012 * CVE-2024-27013 * CVE-2024-27014 * CVE-2024-27015 * CVE-2024-27016 * CVE-2024-27019 * CVE-2024-27020 * CVE-2024-27022 * CVE-2024-27025 * CVE-2024-27027 * CVE-2024-27028 * CVE-2024-27030 * CVE-2024-27031 * CVE-2024-27046 * CVE-2024-27056 * CVE-2024-27057 * CVE-2024-27062 * CVE-2024-27064 * CVE-2024-27065 * CVE-2024-27067 * CVE-2024-27080 * CVE-2024-27388 * CVE-2024-27389 * CVE-2024-27393 * CVE-2024-27395 * CVE-2024-27396 * CVE-2024-27399 * CVE-2024-27400 * CVE-2024-27401 * CVE-2024-27402 * CVE-2024-27404 * CVE-2024-27405 * CVE-2024-27408 * CVE-2024-27410 * CVE-2024-27411 * CVE-2024-27412 * CVE-2024-27413 * CVE-2024-27414 * CVE-2024-27416 * CVE-2024-27417 * CVE-2024-27418 * CVE-2024-27419 * CVE-2024-27431 * CVE-2024-27432 * CVE-2024-27434 * CVE-2024-27435 * CVE-2024-27436 * CVE-2024-33619 * CVE-2024-34777 * CVE-2024-35247 * CVE-2024-35784 * CVE-2024-35786 * CVE-2024-35788 * CVE-2024-35789 * CVE-2024-35790 * CVE-2024-35791 * CVE-2024-35794 * CVE-2024-35795 * CVE-2024-35796 * CVE-2024-35799 * CVE-2024-35800 * CVE-2024-35801 * CVE-2024-35803 * CVE-2024-35804 * CVE-2024-35805 * CVE-2024-35806 * CVE-2024-35807 * CVE-2024-35808 * CVE-2024-35809 * CVE-2024-35810 * CVE-2024-35811 * CVE-2024-35812 * CVE-2024-35813 * CVE-2024-35814 * CVE-2024-35815 * CVE-2024-35817 * CVE-2024-35819 * CVE-2024-35821 * CVE-2024-35822 * CVE-2024-35823 * CVE-2024-35824 * CVE-2024-35825 * CVE-2024-35827 * CVE-2024-35828 * CVE-2024-35829 * CVE-2024-35830 * CVE-2024-35831 * CVE-2024-35833 * CVE-2024-35834 * CVE-2024-35835 * CVE-2024-35836 * CVE-2024-35837 * CVE-2024-35838 * CVE-2024-35841 * CVE-2024-35842 * CVE-2024-35843 * CVE-2024-35845 * CVE-2024-35847 * CVE-2024-35848 * CVE-2024-35849 * CVE-2024-35850 * CVE-2024-35851 * CVE-2024-35852 * CVE-2024-35853 * CVE-2024-35854 * CVE-2024-35857 * CVE-2024-35860 * CVE-2024-35861 * CVE-2024-35862 * CVE-2024-35863 * CVE-2024-35864 * CVE-2024-35865 * CVE-2024-35866 * CVE-2024-35867 * CVE-2024-35868 * CVE-2024-35872 * CVE-2024-35875 * CVE-2024-35877 * CVE-2024-35878 * CVE-2024-35879 * CVE-2024-35880 * CVE-2024-35883 * CVE-2024-35884 * CVE-2024-35885 * CVE-2024-35886 * CVE-2024-35887 * CVE-2024-35889 * CVE-2024-35890 * CVE-2024-35891 * CVE-2024-35892 * CVE-2024-35893 * CVE-2024-35895 * CVE-2024-35896 * CVE-2024-35898 * CVE-2024-35899 * CVE-2024-35900 * CVE-2024-35901 * CVE-2024-35903 * CVE-2024-35904 * CVE-2024-35905 * CVE-2024-35907 * CVE-2024-35908 * CVE-2024-35909 * CVE-2024-35911 * CVE-2024-35912 * CVE-2024-35914 * CVE-2024-35915 * CVE-2024-35916 * CVE-2024-35917 * CVE-2024-35921 * CVE-2024-35922 * CVE-2024-35924 * CVE-2024-35925 * CVE-2024-35926 * CVE-2024-35927 * CVE-2024-35928 * CVE-2024-35930 * CVE-2024-35931 * CVE-2024-35932 * CVE-2024-35933 * CVE-2024-35934 * CVE-2024-35935 * CVE-2024-35936 * CVE-2024-35937 * CVE-2024-35938 * CVE-2024-35940 * CVE-2024-35942 * CVE-2024-35943 * CVE-2024-35944 * CVE-2024-35945 * CVE-2024-35946 * CVE-2024-35947 * CVE-2024-35950 * CVE-2024-35951 * CVE-2024-35952 * CVE-2024-35953 * CVE-2024-35954 * CVE-2024-35955 * CVE-2024-35956 * CVE-2024-35957 * CVE-2024-35958 * CVE-2024-35959 * CVE-2024-35960 * CVE-2024-35961 * CVE-2024-35962 * CVE-2024-35963 * CVE-2024-35964 * CVE-2024-35965 * CVE-2024-35966 * CVE-2024-35967 * CVE-2024-35969 * CVE-2024-35970 * CVE-2024-35971 * CVE-2024-35972 * CVE-2024-35973 * CVE-2024-35974 * CVE-2024-35975 * CVE-2024-35976 * CVE-2024-35977 * CVE-2024-35978 * CVE-2024-35979 * CVE-2024-35981 * CVE-2024-35982 * CVE-2024-35984 * CVE-2024-35986 * CVE-2024-35989 * CVE-2024-35990 * CVE-2024-35991 * CVE-2024-35992 * CVE-2024-35995 * CVE-2024-35997 * CVE-2024-35998 * CVE-2024-35999 * CVE-2024-36002 * CVE-2024-36003 * CVE-2024-36004 * CVE-2024-36005 * CVE-2024-36006 * CVE-2024-36007 * CVE-2024-36008 * CVE-2024-36009 * CVE-2024-36010 * CVE-2024-36011 * CVE-2024-36012 * CVE-2024-36013 * CVE-2024-36014 * CVE-2024-36015 * CVE-2024-36016 * CVE-2024-36017 * CVE-2024-36018 * CVE-2024-36019 * CVE-2024-36020 * CVE-2024-36021 * CVE-2024-36024 * CVE-2024-36025 * CVE-2024-36026 * CVE-2024-36029 * CVE-2024-36030 * CVE-2024-36032 * CVE-2024-36281 * CVE-2024-36477 * CVE-2024-36478 * CVE-2024-36479 * CVE-2024-36880 * CVE-2024-36882 * CVE-2024-36885 * CVE-2024-36887 * CVE-2024-36889 * CVE-2024-36890 * CVE-2024-36891 * CVE-2024-36893 * CVE-2024-36894 * CVE-2024-36895 * CVE-2024-36896 * CVE-2024-36897 * CVE-2024-36898 * CVE-2024-36899 * CVE-2024-36900 * CVE-2024-36901 * CVE-2024-36902 * CVE-2024-36903 * CVE-2024-36904 * CVE-2024-36906 * CVE-2024-36909 * CVE-2024-36910 * CVE-2024-36911 * CVE-2024-36912 * CVE-2024-36913 * CVE-2024-36914 * CVE-2024-36915 * CVE-2024-36916 * CVE-2024-36917 * CVE-2024-36918 * CVE-2024-36919 * CVE-2024-36921 * CVE-2024-36922 * CVE-2024-36923 * CVE-2024-36924 * CVE-2024-36926 * CVE-2024-36928 * CVE-2024-36930 * CVE-2024-36931 * CVE-2024-36934 * CVE-2024-36935 * CVE-2024-36936 * CVE-2024-36937 * CVE-2024-36938 * CVE-2024-36940 * CVE-2024-36942 * CVE-2024-36944 * CVE-2024-36945 * CVE-2024-36946 * CVE-2024-36947 * CVE-2024-36949 * CVE-2024-36950 * CVE-2024-36951 * CVE-2024-36952 * CVE-2024-36955 * CVE-2024-36957 * CVE-2024-36959 * CVE-2024-36960 * CVE-2024-36962 * CVE-2024-36964 * CVE-2024-36965 * CVE-2024-36967 * CVE-2024-36969 * CVE-2024-36971 * CVE-2024-36972 * CVE-2024-36973 * CVE-2024-36975 * CVE-2024-36977 * CVE-2024-36978 * CVE-2024-37021 * CVE-2024-37078 * CVE-2024-37353 * CVE-2024-37354 * CVE-2024-38381 * CVE-2024-38384 * CVE-2024-38385 * CVE-2024-38388 * CVE-2024-38390 * CVE-2024-38391 * CVE-2024-38539 * CVE-2024-38540 * CVE-2024-38541 * CVE-2024-38543 * CVE-2024-38544 * CVE-2024-38546 * CVE-2024-38547 * CVE-2024-38548 * CVE-2024-38549 * CVE-2024-38550 * CVE-2024-38551 * CVE-2024-38552 * CVE-2024-38553 * CVE-2024-38554 * CVE-2024-38555 * CVE-2024-38556 * CVE-2024-38557 * CVE-2024-38558 * CVE-2024-38562 * CVE-2024-38564 * CVE-2024-38565 * CVE-2024-38566 * CVE-2024-38567 * CVE-2024-38568 * CVE-2024-38569 * CVE-2024-38570 * CVE-2024-38571 * CVE-2024-38572 * CVE-2024-38573 * CVE-2024-38575 * CVE-2024-38578 * CVE-2024-38579 * CVE-2024-38580 * CVE-2024-38581 * CVE-2024-38582 * CVE-2024-38583 * CVE-2024-38586 * CVE-2024-38587 * CVE-2024-38588 * CVE-2024-38590 * CVE-2024-38591 * CVE-2024-38592 * CVE-2024-38594 * CVE-2024-38595 * CVE-2024-38597 * CVE-2024-38598 * CVE-2024-38599 * CVE-2024-38600 * CVE-2024-38601 * CVE-2024-38602 * CVE-2024-38603 * CVE-2024-38604 * CVE-2024-38605 * CVE-2024-38608 * CVE-2024-38610 * CVE-2024-38611 * CVE-2024-38615 * CVE-2024-38616 * CVE-2024-38617 * CVE-2024-38618 * CVE-2024-38619 * CVE-2024-38621 * CVE-2024-38622 * CVE-2024-38627 * CVE-2024-38628 * CVE-2024-38629 * CVE-2024-38630 * CVE-2024-38633 * CVE-2024-38634 * CVE-2024-38635 * CVE-2024-38636 * CVE-2024-38659 * CVE-2024-38661 * CVE-2024-38663 * CVE-2024-38664 * CVE-2024-38780 * CVE-2024-39276 * CVE-2024-39277 * CVE-2024-39291 * CVE-2024-39296 * CVE-2024-39301 * CVE-2024-39362 * CVE-2024-39371 * CVE-2024-39463 * CVE-2024-39466 * CVE-2024-39468 * CVE-2024-39469 * CVE-2024-39471 * CVE-2024-39472 * CVE-2024-39473 * CVE-2024-39474 * CVE-2024-39475 * CVE-2024-39479 * CVE-2024-39481 * CVE-2024-39482 * CVE-2024-39487 * CVE-2024-39490 * CVE-2024-39494 * CVE-2024-39496 * CVE-2024-39498 * CVE-2024-39502 * CVE-2024-39504 * CVE-2024-39507 * CVE-2024-40901 * CVE-2024-40906 * CVE-2024-40908 * CVE-2024-40919 * CVE-2024-40923 * CVE-2024-40925 * CVE-2024-40928 * CVE-2024-40931 * CVE-2024-40935 * CVE-2024-40937 * CVE-2024-40940 * CVE-2024-40947 * CVE-2024-40948 * CVE-2024-40953 * CVE-2024-40960 * CVE-2024-40961 * CVE-2024-40966 * CVE-2024-40970 * CVE-2024-40972 * CVE-2024-40975 * CVE-2024-40979 * CVE-2024-40998 * CVE-2024-40999 * CVE-2024-41006 * CVE-2024-41011 * CVE-2024-41013 * CVE-2024-41014 * CVE-2024-41017 * CVE-2024-41090 * CVE-2024-41091 CVSS scores: * CVE-2021-47432 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-48772 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-0160 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-0160 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-38417 ( SUSE ): 4.3 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2023-47210 ( SUSE ): 4.7 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L * CVE-2023-51780 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-51780 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-52435 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52435 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52458 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52458 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52472 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2023-52472 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52503 ( SUSE ): 4.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2023-52616 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52618 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N * CVE-2023-52622 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52631 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52635 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52640 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52641 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52645 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52645 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52652 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2023-52653 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2023-52656 ( SUSE ): 2.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2023-52657 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52658 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52659 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52660 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52661 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N * CVE-2023-52662 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L * CVE-2023-52663 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52664 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52667 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52669 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52670 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52671 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2023-52672 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52673 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52674 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52675 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52676 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-52678 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52679 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52680 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52681 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52683 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52685 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52686 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52687 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52690 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52691 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52692 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52693 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52694 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52695 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52696 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52697 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52698 ( SUSE ): 3.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:L * CVE-2023-52699 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52735 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52749 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52750 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52751 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52753 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52753 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52754 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52757 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52759 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52762 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52763 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52764 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52765 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52766 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2023-52767 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52768 ( SUSE ): 5.6 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:H * CVE-2023-52769 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2023-52769 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-52771 ( SUSE ): 4.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52772 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-52772 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-52773 ( SUSE ): 4.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52773 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52774 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52775 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N * CVE-2023-52776 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N * CVE-2023-52777 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2023-52780 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52781 ( SUSE ): 4.3 CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2023-52782 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52783 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52783 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52784 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52786 ( SUSE ): 3.6 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L * CVE-2023-52787 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52788 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52789 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52791 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52792 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52794 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2023-52795 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2023-52796 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52798 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2023-52799 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52800 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2023-52801 ( SUSE ): 4.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52803 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2023-52804 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2023-52805 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2023-52806 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52806 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52807 ( SUSE ): 5.1 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:H * CVE-2023-52808 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52809 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52809 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52810 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52811 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52812 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2023-52813 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52814 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52814 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52815 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52815 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52816 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52817 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52817 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52818 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2023-52819 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2023-52821 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52821 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52825 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2023-52826 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52827 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2023-52827 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2023-52829 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N * CVE-2023-52832 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52833 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52834 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2023-52835 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2023-52836 ( SUSE ): 0.0 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:N * CVE-2023-52837 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2023-52838 ( SUSE ): 2.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2023-52840 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2023-52841 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52842 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52843 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52844 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52845 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52847 ( SUSE ): 5.8 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2023-52849 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52850 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52851 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52853 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52854 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52855 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52856 ( SUSE ): 4.6 CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52857 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52858 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52860 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52861 ( SUSE ): 4.3 CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52862 ( SUSE ): 4.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52863 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52864 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52865 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52866 ( SUSE ): 6.2 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52867 ( SUSE ): 5.1 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:H * CVE-2023-52868 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52869 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52870 ( SUSE ): 4.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52871 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2023-52872 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52873 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52874 ( SUSE ): 3.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N * CVE-2023-52875 ( SUSE ): 4.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52876 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52877 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52878 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52879 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52880 ( SUSE ): 8.4 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2023-52881 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:L * CVE-2023-52882 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52883 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52884 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2023-6238 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2023-6238 ( NVD ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2023-7042 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2023-7042 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-0639 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-0639 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-21823 ( SUSE ): 6.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2024-22099 ( SUSE ): 5.3 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-22099 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-23848 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2024-23848 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-24861 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2024-24861 ( NVD ): 6.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2024-25739 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-25739 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-25741 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:L * CVE-2024-26601 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26601 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26611 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26614 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26615 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26623 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26625 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26632 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26633 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26635 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2024-26636 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26638 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2024-26641 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2024-26642 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26643 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26650 ( SUSE ): 0.0 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:N * CVE-2024-26652 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26654 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26656 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26657 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26663 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26665 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26671 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26673 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26674 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26676 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26679 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26684 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26685 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26691 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26704 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26714 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26726 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26731 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26733 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26734 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26737 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26739 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26740 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26742 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26750 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26756 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26760 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26764 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-26769 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26772 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26773 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26774 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26775 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26780 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26783 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26785 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26786 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26791 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26793 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26794 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26802 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26805 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26807 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26813 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26814 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26815 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26816 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2024-26822 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26826 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26832 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26836 ( SUSE ): 4.3 CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2024-26842 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26844 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-26845 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26846 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26853 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26854 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26855 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26856 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26857 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26858 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26860 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26861 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26862 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2024-26863 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26866 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26868 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26870 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26878 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26881 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26881 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26882 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26882 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26883 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26883 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26884 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26884 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26885 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26885 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26889 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26899 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26899 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26900 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26900 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26901 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2024-26901 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26903 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26903 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26906 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26909 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26909 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26920 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26921 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26922 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26923 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26925 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26928 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26932 ( SUSE ): 6.6 CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26932 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26933 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26933 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26934 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26934 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26935 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-26937 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-26938 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-26940 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26943 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26944 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26945 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26946 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26948 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26949 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26949 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26950 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26951 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26957 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26958 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26960 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26961 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26962 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26963 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26964 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26972 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26973 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26978 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26978 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26981 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26982 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26983 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26984 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26986 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26986 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26988 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2024-26989 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26990 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N * CVE-2024-26991 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26992 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2024-26993 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L * CVE-2024-26994 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26995 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26996 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26997 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26999 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27000 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-27001 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27002 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27003 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-27004 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-27008 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2024-27012 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27012 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27013 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27013 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27014 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27014 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27015 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27015 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27016 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27016 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27019 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27019 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2024-27020 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27020 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-27022 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27022 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-27025 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2024-27027 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L * CVE-2024-27028 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27030 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2024-27031 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27046 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27056 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27057 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27062 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27064 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27065 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27067 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27080 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2024-27388 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27389 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27393 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27395 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27396 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27399 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27400 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27401 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2024-27402 ( SUSE ): 5.8 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2024-27404 ( SUSE ): 5.8 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2024-27405 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-27408 ( SUSE ): 2.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N * CVE-2024-27410 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27411 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27412 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27413 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-27414 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2024-27416 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27417 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27418 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27419 ( SUSE ): 2.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N * CVE-2024-27431 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27432 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27434 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27435 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-27436 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-33619 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-34777 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2024-35247 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35784 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35786 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35788 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35789 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35790 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35791 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35794 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35795 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35796 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35799 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35800 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35801 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35803 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35804 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35805 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35806 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35807 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35808 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35809 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35810 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35811 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35812 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35813 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35814 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35815 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35817 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35819 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35821 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35822 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-35823 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35824 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35825 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35827 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35828 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35829 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35830 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35831 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35833 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35834 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35835 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35836 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35837 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35838 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35841 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35842 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35843 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35845 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35847 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35848 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35849 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2024-35850 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35851 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35852 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35853 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35854 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35857 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35860 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35861 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35862 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35863 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35864 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35865 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35866 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35867 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35868 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35872 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35875 ( SUSE ): 5.6 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N * CVE-2024-35877 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35878 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35879 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35880 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35883 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35884 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35885 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35886 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35887 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35889 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35890 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35891 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35892 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35893 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35895 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35896 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35898 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35899 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35900 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35901 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35903 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35904 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35905 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35907 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35908 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35909 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35911 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35912 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35914 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35915 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35916 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35917 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35921 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35922 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35924 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2024-35925 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35926 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L * CVE-2024-35927 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35928 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35930 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35931 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35932 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35933 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35934 ( SUSE ): 2.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-35935 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35936 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35937 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2024-35938 ( SUSE ): 2.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-35940 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-35942 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-35943 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35944 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:L * CVE-2024-35945 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35946 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35947 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35950 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35951 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35952 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35953 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35954 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35955 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35956 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35957 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35958 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35959 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35960 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35961 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35962 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35963 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-35964 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35965 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35966 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35967 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35969 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35970 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35971 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35972 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35972 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35973 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35974 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35975 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35976 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35977 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35978 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35978 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35979 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35981 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35982 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35982 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35984 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35984 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35986 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35989 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35990 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35990 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35991 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35992 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35992 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35995 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2024-35997 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35997 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35998 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-35999 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:L * CVE-2024-36002 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36003 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36004 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36005 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36006 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36007 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36008 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36008 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36009 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36010 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36011 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36012 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2024-36013 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36014 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36015 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36016 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2024-36017 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2024-36018 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2024-36019 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L * CVE-2024-36020 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36021 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36024 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36025 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:L * CVE-2024-36026 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36029 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36030 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-36032 ( SUSE ): 2.3 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N * CVE-2024-36281 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36477 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N * CVE-2024-36477 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-36478 ( SUSE ): 4.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36479 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36880 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:L * CVE-2024-36882 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36885 ( SUSE ): 2.3 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:L * CVE-2024-36887 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36889 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N * CVE-2024-36890 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36891 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36891 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36893 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36893 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36894 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-36895 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-36896 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36897 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36897 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36898 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L * CVE-2024-36899 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-36900 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36901 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36901 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36902 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36902 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36903 ( SUSE ): 5.6 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L * CVE-2024-36904 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-36906 ( SUSE ): 0.0 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N * CVE-2024-36909 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2024-36910 ( SUSE ): 6.0 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N * CVE-2024-36911 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2024-36912 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2024-36913 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2024-36914 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36915 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2024-36916 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2024-36917 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36918 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36919 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36921 ( SUSE ): 8.0 CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2024-36922 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36923 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2024-36924 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36926 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36926 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36928 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36930 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36930 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36931 ( SUSE ): 5.1 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:L * CVE-2024-36934 ( SUSE ): 5.1 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:L * CVE-2024-36935 ( SUSE ): 5.1 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:L * CVE-2024-36936 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-36937 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36938 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36938 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36940 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2024-36942 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L * CVE-2024-36944 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36945 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36946 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N * CVE-2024-36947 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2024-36949 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36950 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36951 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36952 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36955 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-36957 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-36959 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36960 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2024-36962 ( SUSE ): 6.2 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36964 ( SUSE ): 7.2 CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2024-36965 ( SUSE ): 5.6 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:H * CVE-2024-36965 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36967 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36967 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36969 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36969 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36971 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-36971 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-36972 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36973 ( SUSE ): 6.2 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36975 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36977 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-36978 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:L * CVE-2024-36978 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-37021 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-37078 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-37353 ( SUSE ): 3.9 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:L/I:L/A:L * CVE-2024-37354 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2024-38381 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2024-38384 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38385 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38388 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-38390 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38391 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-38539 ( SUSE ): 2.3 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:L * CVE-2024-38540 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38541 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2024-38543 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38544 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38546 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38547 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38548 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38549 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38550 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38551 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38552 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2024-38553 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38554 ( SUSE ): 4.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38555 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38556 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38557 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38558 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L * CVE-2024-38562 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38564 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2024-38565 ( SUSE ): 5.7 CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2024-38566 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38567 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38568 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:L * CVE-2024-38569 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:L * CVE-2024-38570 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2024-38570 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-38571 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38571 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38572 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2024-38573 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38575 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38578 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2024-38579 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2024-38580 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38581 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2024-38581 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-38582 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38583 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-38583 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-38586 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38587 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:L * CVE-2024-38588 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38590 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38591 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38592 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38594 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2024-38595 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-38597 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38598 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38599 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2024-38600 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38601 ( SUSE ): 4.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38602 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38603 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38603 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38604 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38605 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38608 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L * CVE-2024-38610 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-38611 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L * CVE-2024-38615 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38616 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38617 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38618 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38619 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38621 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38622 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38627 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38628 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38629 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38630 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2024-38633 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38634 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38635 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38636 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-38659 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:L/A:H * CVE-2024-38661 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38663 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38664 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38664 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-38780 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-38780 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39276 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39277 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2024-39277 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-39291 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39291 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-39296 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39301 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39362 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39371 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39371 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39463 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-39463 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-39466 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39466 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39468 ( SUSE ): 4.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39469 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39471 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39472 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L * CVE-2024-39472 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39473 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39473 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39474 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39474 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39475 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39475 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39479 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2024-39479 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-39481 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39481 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39482 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L * CVE-2024-39482 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39487 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2024-39490 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-39494 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-39494 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-39496 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-39496 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-39498 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39502 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2024-39504 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-39507 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40901 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L * CVE-2024-40906 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40908 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40919 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40923 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40925 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40928 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-40931 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2024-40935 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40937 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-40940 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40947 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40948 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40953 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40960 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40961 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40966 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40970 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40972 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40975 ( SUSE ): 2.1 CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2024-40979 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40998 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-40999 ( SUSE ): 3.6 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L * CVE-2024-41006 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L * CVE-2024-41011 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-41013 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2024-41014 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-41017 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-41090 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H * CVE-2024-41091 ( SUSE ): 6.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H Affected Products: * openSUSE Leap 15.6 * SUSE Linux Enterprise Live Patching 15-SP6 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Real Time Module 15-SP6 An update that solves 783 vulnerabilities, contains eight features and has 143 security fixes can now be installed. ## Description: The SUSE Linux Enterprise 15 SP6 RT kernel was updated to receive various security bugfixes. The following security bugs were fixed: * CVE-2023-0160: Fixed deadlock flaw in BPF that could allow a local user to potentially crash the system (bsc#1209657). * CVE-2023-38417: wifi: iwlwifi: bump FW API to 90 for BZ/SC devices (bsc#1225600). * CVE-2023-47210: wifi: iwlwifi: bump FW API to 90 for BZ/SC devices (bsc#1225601). * CVE-2023-52435: net: prevent mss overflow in skb_segment() (bsc#1220138). * CVE-2023-52458: Fixed check that partition length needs to be aligned with block size (bsc#1220428). * CVE-2023-52503: Fixed tee/amdtee use-after-free vulnerability in amdtee_close_session (bsc#1220915). * CVE-2023-52618: Fixed string overflow in block/rnbd-srv (bsc#1221615). * CVE-2023-52622: ext4: avoid online resizing failures due to oversized flex bg (bsc#1222080). * CVE-2023-52631: Fixed an NULL dereference bug (bsc#1222264 CVE-2023-52631). * CVE-2023-52640: Fixed out-of-bounds in ntfs_listxattr (bsc#1222301). * CVE-2023-52641: Fixed NULL ptr dereference checking at the end of attr_allocate_frame() (bsc#1222303) * CVE-2023-52645: Fixed pmdomain/mediatek race conditions with genpd (bsc#1223033). * CVE-2023-52652: Fixed NTB for possible name leak in ntb_register_device() (bsc#1223686). * CVE-2023-52656: Dropped any code related to SCM_RIGHTS (bsc#1224187). * CVE-2023-52672: pipe: wakeup wr_wait after setting max_usage (bsc#1224614). * CVE-2023-52674: Add clamp() in scarlett2_mixer_ctl_put() (bsc#1224727). * CVE-2023-52659: Fixed to pfn_to_kaddr() not treated as a 64-bit type (bsc#1224442) * CVE-2023-52680: Fixed missing error checks to *_ctl_get() (bsc#1224608). * CVE-2023-52692: Fixed missing error check to scarlett2_usb_set_config() (bsc#1224628). * CVE-2023-52698: Fixed memory leak in netlbl_calipso_add_pass() (CVE-2023-52698 bsc#1224621) * CVE-2023-52699: sysv: don't call sb_bread() with pointers_lock held (bsc#1224659). * CVE-2023-52735: bpf, sockmap: Don't let sock_map_{close,destroy,unhash} call itself (bsc#1225475). * CVE-2023-52751: smb: client: fix use-after-free in smb2_query_info_compound() (bsc#1225489). * CVE-2023-52757: Fixed potential deadlock when releasing mids (bsc#1225548). * CVE-2023-52771: Fixed delete_endpoint() vs parent unregistration race (bsc#1225007). * CVE-2023-52772: Fixed use-after-free in unix_stream_read_actor() (bsc#1224989). * CVE-2023-52775: net/smc: avoid data corruption caused by decline (bsc#1225088). * CVE-2023-52786: ext4: fix racy may inline data check in dio write (bsc#1224939). * CVE-2023-52787: blk-mq: make sure active queue usage is held for bio_integrity_prep() (bsc#1225105). * CVE-2023-52837: nbd: fix uaf in nbd_open (bsc#1224935). * CVE-2023-52843: llc: verify mac len before reading mac header (bsc#1224951). * CVE-2023-52845: tipc: Change nla_policy for bearer-related names to NLA_NUL_STRING (bsc#1225585). * CVE-2023-52855: usb: dwc2: fix possible NULL pointer dereference caused by driver concurrency (bsc#1225583). * CVE-2023-52860: Fixed null pointer dereference in hisi_hns3 (bsc#1224936). * CVE-2023-52875: Add check for mtk_alloc_clk_data (bsc#1225096). * CVE-2023-52881: tcp: do not accept ACK of bytes we never sent (bsc#1225611). * CVE-2023-6238: Fixed kcalloc() arguments order (bsc#1217384). * CVE-2024-21823: Fixed safety flag to struct ends (bsc#1223625). * CVE-2024-23848: Fixed media/cec for possible use-after-free in cec_queue_msg_fh (bsc#1219104). * CVE-2024-25739: Fixed possible crash in create_empty_lvol() in drivers/mtd/ubi/vtbl.c (bsc#1219834). * CVE-2024-26601: Fixed ext4 buddy bitmap corruption via fast commit replay (bsc#1220342). * CVE-2024-26614: Fixed the initialization of accept_queue's spinlocks (bsc#1221293). * CVE-2024-26615: net/smc: fix illegal rmb_desc access in SMC-D connection dump (bsc#1220942). * CVE-2024-26623: pds_core: Prevent race issues involving the adminq (bsc#1221057). * CVE-2024-26625: Call sock_orphan() at release time (bsc#1221086) * CVE-2024-26632: Fixed iterating over an empty bio with bio_for_each_folio_all (bsc#1221635). * CVE-2024-26633: ip6_tunnel: fix NEXTHDR_FRAGMENT handling in ip6_tnl_parse_tlv_enc_lim() (bsc#1221647). * CVE-2024-26635: llc: Drop support for ETH_P_TR_802_2 (bsc#1221656). * CVE-2024-26636: llc: make llc_ui_sendmsg() more robust against bonding changes (bsc#1221659). * CVE-2024-26638: Fixed uninitialize struct msghdr completely (bsc#1221649 CVE-2024-26638). * CVE-2024-26641: ip6_tunnel: make sure to pull inner header in __ip6_tnl_rcv() (bsc#1221654). * CVE-2024-26642: Fixed the set of anonymous timeout flag in netfilter nf_tables (bsc#1221830). * CVE-2024-26643: Fixed mark set as dead when unbinding anonymous set with timeout (bsc#1221829). * CVE-2024-26663: tipc: Check the bearer type before calling tipc_udp_nl_bearer_add() (bsc#1222326). * CVE-2024-26665: tunnels: fix out of bounds access when building IPv6 PMTU error (bsc#1222328). * CVE-2024-26671: Fixed blk-mq IO hang from sbitmap wakeup race (bsc#1222357). * CVE-2024-26673: Fixed netfilter/nft_ct layer 3 and 4 protocol sanitization (bsc#1222368). * CVE-2024-26674: Revert to _ASM_EXTABLE_UA() for {get,put}_user() fixups (bsc#1222378). * CVE-2024-26679: Fixed read sk->sk_family once in inet_recv_error() (bsc#1222385). * CVE-2024-26684: Fixed net/stmmac/xgmac handling of DPP safety error for DMA channels (bsc#1222445). * CVE-2024-26691: KVM: arm64: Fix circular locking dependency (bsc#1222463). * CVE-2024-26704: Fixed a double-free of blocks due to wrong extents moved_len in ext4 (bsc#1222422). * CVE-2024-26726: Fixed invalid drop extent_map for free space inode on write error (bsc#1222532) * CVE-2024-26731: Fixed NULL pointer dereference in sk_psock_verdict_data_ready() (bsc#1222371). * CVE-2024-26733: Fixed an overflow in arp_req_get() in arp (bsc#1222585). * CVE-2024-26734: devlink: fix possible use-after-free and memory leaks in devlink_init() (bsc#1222438). * CVE-2024-26737: Fixed selftests/bpf racing between bpf_timer_cancel_and_free and bpf_timer_cancel (bsc#1222557). * CVE-2024-26740: Fixed use the backlog for mirred ingress (bsc#1222563). * CVE-2024-26760: scsi: target: pscsi: Fix bio_put() for error case (bsc#1222596). * CVE-2024-26772: Fixed ext4 to avoid allocating blocks from corrupted group in ext4_mb_find_by_goal() (bsc#1222613). * CVE-2024-26773: Fixed ext4 block allocation from corrupted group in ext4_mb_try_best_found() (bsc#1222618). * CVE-2024-26774: Fixed dividing by 0 in mb_update_avg_fragment_size() when block bitmap corrupt (bsc#1222622). * CVE-2024-26775: Fixed potential deadlock at set_capacity (bsc#1222627). * CVE-2024-26783: Fixed mm/vmscan bug when calling wakeup_kswapd() with a wrong zone index (bsc#1222615). * CVE-2024-26785: iommufd: Fix protection fault in iommufd_test_syz_conv_iova (bsc#1222779). * CVE-2024-26791: Fixed properly validate device names in btrfs (bsc#1222793) * CVE-2024-26805: Fixed a kernel-infoleak-after-free in __skb_datagram_iter in netlink (bsc#1222630). * CVE-2024-26807: Fixed spi/cadence-qspi NULL pointer reference in runtime PM hooks (bsc#1222801). * CVE-2024-26813: vfio/platform: Create persistent IRQ handlers (bsc#1222809). * CVE-2024-26814: vfio/fsl-mc: Block calling interrupt handler without trigger (bsc#1222810). * CVE-2024-26815: Fixed improper TCA_TAPRIO_TC_ENTRY_INDEX check (bsc#1222635). * CVE-2024-26816: Fixed relocations in .notes section when building with CONFIG_XEN_PV=y (bsc#1222624). * CVE-2024-26822: Set correct id, uid and cruid for multiuser automounts (bsc#1223011). * CVE-2024-26826: mptcp: fix data re-injection from stale subflow (bsc#1223010). * CVE-2024-26832: Fixed missing folio cleanup in writeback race path (bsc#1223007). * CVE-2024-26836: Fixed platform/x86/think-lmi password opcode ordering for workstations (bsc#1222968). * CVE-2024-26844: Fixed WARNING in _copy_from_iter (bsc#1223015). * CVE-2024-26845: scsi: target: core: Add TMF to tmr_list handling (bsc#1223018). * CVE-2024-26860: Fixed a memory leak when rechecking the data (bsc#1223077). * CVE-2024-26862: Fixed packet annotate data-races around ignore_outgoing (bsc#1223111). * CVE-2024-26863: hsr: Fix uninit-value access in hsr_get_node() (bsc#1223021). * CVE-2024-26878: Fixed quota for potential NULL pointer dereference (bsc#1223060). * CVE-2024-26882: Fixed net/ip_tunnel to make sure to pull inner header in ip_tunnel_rcv() (bsc#1223034). * CVE-2024-26883: Fixed bpf stackmap overflow check on 32-bit arches (bsc#1223035). * CVE-2024-26884: Fixed bpf hashtab overflow check on 32-bit arches (bsc#1223189). * CVE-2024-26885: Fixed bpf DEVMAP_HASH overflow check on 32-bit arches (bsc#1223190). * CVE-2024-26899: Fixed deadlock between bd_link_disk_holder and partition scan (bsc#1223045). * CVE-2024-26901: Fixed do_sys_name_to_handle() to use kzalloc() to prevent kernel-infoleak (bsc#1223198). * CVE-2024-26906: Fixed invalid vsyscall page read for copy_from_kernel_nofault() (bsc#1223202). * CVE-2024-26909: Fixed drm bridge use-after-free (bsc#1223143). * CVE-2024-26921: Preserve kabi for sk_buff (bsc#1223138). * CVE-2024-26923: Fixed false-positive lockdep splat for spin_lock() in __unix_gc() (bsc#1223384). * CVE-2024-26925: Release mutex after nft_gc_seq_end from abort path (bsc#1223390). * CVE-2024-26928: Fixed potential UAF in cifs_debug_files_proc_show() (bsc#1223532). * CVE-2024-26944: btrfs: zoned: fix lock ordering in btrfs_zone_activate() (bsc#1223731). * CVE-2024-26945: Fixed nr_cpus < nr_iaa case (bsc#1223732). * CVE-2024-26946: Fixed copy_from_kernel_nofault() to read from unsafe address (bsc#1223669). * CVE-2024-26948: Fixed drm/amd/display by adding dc_state NULL check in dc_state_release (bsc#1223664). * CVE-2024-26958: Fixed UAF in direct writes (bsc#1223653). * CVE-2024-26960: Fixed mm/swap race between free_swap_and_cache() and swapoff() (bsc#1223655). * CVE-2024-26982: Fixed Squashfs inode number check not to be an invalid value of zero (bsc#1223634). * CVE-2024-26991: Fixed overflow lpage_info when checking attributes (bsc#1223695). * CVE-2024-26993: Fixed fs/sysfs reference leak in sysfs_break_active_protection() (bsc#1223693). * CVE-2024-27012: netfilter: nf_tables: restore set elements when delete set fails (bsc#1223804). * CVE-2024-27013: Fixed tun limit printing rate when illegal packet received by tun device (bsc#1223745). * CVE-2024-27014: Fixed net/mlx5e to prevent deadlock while disabling aRFS (bsc#1223735). * CVE-2024-27015: netfilter: flowtable: incorrect pppoe tuple (bsc#1223806). * CVE-2024-27016: netfilter: flowtable: validate pppoe header (bsc#1223807). * CVE-2024-27019: netfilter: nf_tables: Fix potential data-race in __nft_obj_type_get() (bsc#1223813) * CVE-2024-27020: netfilter: nf_tables: Fix potential data-race in __nft_expr_type_get() (bsc#1223815) * CVE-2024-27022: Fixed linking file vma until vma is fully initialized (bsc#1223774). * CVE-2024-27025: nbd: null check for nla_nest_start (bsc#1223778) * CVE-2024-27056: Fixed wifi/iwlwifi/mvm to ensure offloading TID queue exists (bsc#1223822). * CVE-2024-27064: netfilter: nf_tables: Fix a memory leak in nf_tables_updchain (bsc#1223740). * CVE-2024-27065: netfilter: nf_tables: do not compare internal table flags on updates (bsc#1223836). * CVE-2024-27395: Fixed Use-After-Free in ovs_ct_exit (bsc#1224098). * CVE-2024-27396: Fixed Use-After-Free in gtp_dellink (bsc#1224096). * CVE-2024-27401: Fixed user_length taken into account when fetching packet contents (bsc#1224181). * CVE-2024-27402: phonet/pep: fix racy skb_queue_empty() use (bsc#1224414). * CVE-2024-27404: mptcp: fix data races on remote_id (bsc#1224422) * CVE-2024-27408: Fixed race condition in dmaengine w-edma/eDMA (bsc#1224430). * CVE-2024-27414: rtnetlink: fix error logic of IFLA_BRIDGE_FLAGS writing back (bsc#1224439). * CVE-2024-27417: Fixed potential "struct net" leak in inet6_rtm_getaddr() (bsc#1224721) * CVE-2024-27418: Fixed memory leak in mctp_local_output (bsc#1224720) * CVE-2024-27419: Fixed data-races around sysctl_net_busy_read (bsc#1224759) * CVE-2024-27431: Fixed Zero-initialise xdp_rxq_info struct before running XDP program (bsc#1224718). * CVE-2024-35247: fpga: region: add owner module and take its refcount (bsc#1226948). * CVE-2024-35805: dm snapshot: fix lockup in dm_exception_table_exit (bsc#1224743). * CVE-2024-35807: ext4: fix corruption during on-line resize (bsc#1224735). * CVE-2024-35827: io_uring/net: fix overflow check in io_recvmsg_mshot_prep() (bsc#1224606). * CVE-2024-35831: io_uring: Fix release of pinned pages when __io_uaddr_map fails (bsc#1224698). * CVE-2024-35843: iommu/vt-d: Use device rbtree in iopf reporting path (bsc#1224751). * CVE-2024-35848: eeprom: at24: fix memory corruption race condition (bsc#1224612). * CVE-2024-35852: Fixed memory leak when canceling rehash work (bsc#1224502). * CVE-2024-35853: mlxsw: spectrum_acl_tcam: Fix memory leak during rehash (bsc#1224604). * CVE-2024-35854: Fixed possible use-after-free during rehash (bsc#1224636). * CVE-2024-35857: icmp: prevent possible NULL dereferences from icmp_build_probe() (bsc#1224619). * CVE-2024-35860: Struct bpf_link and bpf_link_ops kABI workaround (bsc#1224531). * CVE-2024-35861: Fixed potential UAF in cifs_signal_cifsd_for_reconnect() (bsc#1224766). * CVE-2024-35862: Fixed potential UAF in smb2_is_network_name_deleted() (bsc#1224764). * CVE-2024-35863: Fixed potential UAF in is_valid_oplock_break() (bsc#1224763). * CVE-2024-35864: Fixed potential UAF in smb2_is_valid_lease_break() (bsc#1224765). * CVE-2024-35865: Fixed potential UAF in smb2_is_valid_oplock_break() (bsc#1224668). * CVE-2024-35866: Fixed potential UAF in cifs_dump_full_key() (bsc#1224667). * CVE-2024-35867: Fixed potential UAF in cifs_stats_proc_show() (bsc#1224664). * CVE-2024-35868: Fixed potential UAF in cifs_stats_proc_write() (bsc#1224678). * CVE-2024-35872: Fixed GUP-fast succeeding on secretmem folios (bsc#1224530). * CVE-2024-35877: Fixed VM_PAT handling in COW mappings (bsc#1224525). * CVE-2024-35880: io_uring/kbuf: hold io_buffer_list reference over mmap (bsc#1224523). * CVE-2024-35884: udp: do not accept non-tunnel GSO skbs landing in a tunnel (bsc#1224520). * CVE-2024-35886: ipv6: Fix infinite recursion in fib6_dump_done() (bsc#1224670). * CVE-2024-35890: gro: fix ownership transfer (bsc#1224516). * CVE-2024-35892: net/sched: fix lockdep splat in qdisc_tree_reduce_backlog() (bsc#1224515). * CVE-2024-35893: net/sched: act_skbmod: prevent kernel-infoleak (bsc#1224512) * CVE-2024-35895: Fixed lock inversion deadlock in map delete elem (bsc#1224511). * CVE-2024-35898: netfilter: nf_tables: Fix potential data-race in __nft_flowtable_type_get() (bsc#1224498). * CVE-2024-35899: netfilter: nf_tables: flush pending destroy work before exit_net release (bsc#1224499) * CVE-2024-35900: netfilter: nf_tables: reject new basechain after table flag update (bsc#1224497). * CVE-2024-35903: Fixed IP after emitting call depth accounting (bsc#1224493). * CVE-2024-35908: tls: get psock ref after taking rxlock to avoid leak (bsc#1224490) * CVE-2024-35917: Fixed Fix bpf_plt pointer arithmetic (bsc#1224481). * CVE-2024-35921: Fixed oops when HEVC init fails (bsc#1224477). * CVE-2024-35925: block: prevent division by zero in blk_rq_stat_sum() (bsc#1224661). * CVE-2024-35926: crypto: iaa - Fix async_disable descriptor leak (bsc#1224655). * CVE-2024-35931: Fixed PCI error slot reset during RAS recovery (bsc#1224652). * CVE-2024-35934: net/smc: reduce rtnl pressure in smc_pnet_create_pnetids_list() (bsc#1224641) * CVE-2024-35942: pmdomain: imx8mp-blk-ctrl: imx8mp_blk: Add fdcc clock to hdmimix domain (bsc#1224589). * CVE-2024-35943: Fixed a null pointer dereference in omap_prm_domain_init (bsc#1224649). * CVE-2024-35944: Fixed memcpy() run-time warning in dg_dispatch_as_host() (bsc#1224648). * CVE-2024-35964: Fixed not validating setsockopt user input (bsc#1224581). * CVE-2024-35969: Fixed race condition between ipv6_get_ifaddr and ipv6_del_addr (bsc#1224580). * CVE-2024-35976: Validate user input for XDP_{UMEM|COMPLETION}_FILL_RING (bsc#1224575). * CVE-2024-35979: raid1: fix use-after-free for original bio in raid1_write_request() (bsc#1224572). * CVE-2024-35991: Fixed kABI workaround for struct idxd_evl (bsc#1224553). * CVE-2024-35998: Fixed lock ordering potential deadlock in cifs_sync_mid_result (bsc#1224549). * CVE-2024-35999: Fixed missing lock when picking channel (bsc#1224550). * CVE-2024-36003: ice: fix LAG and VF lock dependency in ice_reset_vf() (bsc#1224544). * CVE-2024-36004: i40e: Do not use WQ_MEM_RECLAIM flag for workqueue (bsc#1224545) * CVE-2024-36005: netfilter: nf_tables: honor table dormant flag from netdev release event path (bsc#1224539). * CVE-2024-36006: Fixed incorrect list API usage (bsc#1224541). * CVE-2024-36007: Fixed warning during rehash (bsc#1224543). * CVE-2024-36008: ipv4: check for NULL idev in ip_route_use_hint() (bsc#1224540). * CVE-2024-36017: rtnetlink: Correct nested IFLA_VF_VLAN_LIST attribute validation (bsc#1225681). * CVE-2024-36024: drm/amd/display: Disable idle reallow as part of command/gpint execution (bsc#1225702). * CVE-2024-36030: Fixed the double free in rvu_npc_freemem() (bsc#1225712) * CVE-2024-36281: net/mlx5: Use mlx5_ipsec_rx_status_destroy to correctly delete status rules (bsc#1226799). * CVE-2024-36478: null_blk: fix null-ptr-dereference while configuring 'power' and 'submit_queues' (bsc#1226841). * CVE-2024-36479: fpga: bridge: add owner module and take its refcount (bsc#1226949). * CVE-2024-36882: mm: use memalloc_nofs_save() in page_cache_ra_order() (bsc#1225723). * CVE-2024-36889: ata: libata-scsi: Fix offsets for the fixed format sense data (bsc#1225746). * CVE-2024-36899: gpiolib: cdev: Fix use after free in lineinfo_changed_notify (bsc#1225737). * CVE-2024-36900: net: hns3: fix kernel crash when devlink reload during initialization (bsc#1225726). * CVE-2024-36901: ipv6: prevent NULL dereference in ip6_output() (bsc#1225711) * CVE-2024-36902: ipv6: fib6_rules: avoid possible NULL dereference in fib6_rule_action() (bsc#1225719). * CVE-2024-36903: ipv6: Fix potential uninit-value access in __ip6_make_skb() (bsc#1225741). * CVE-2024-36904: tcp: Use refcount_inc_not_zero() in tcp_twsk_unique() (bsc#1225732). * CVE-2024-36909: Drivers: hv: vmbus: Do not free ring buffers that couldn't be re-encrypted (bsc#1225744). * CVE-2024-36910: uio_hv_generic: Do not free decrypted memory (bsc#1225717). * CVE-2024-36911: hv_netvsc: Do not free decrypted memory (bsc#1225745). * CVE-2024-36912: Drivers: hv: vmbus: Track decrypted status in vmbus_gpadl (bsc#1225752). * CVE-2024-36913: Drivers: hv: vmbus: Leak pages if set_memory_encrypted() fails (bsc#1225753). * CVE-2024-36914: drm/amd/display: Skip on writeback when it's not applicable (bsc#1225757). * CVE-2024-36915: nfc: llcp: fix nfc_llcp_setsockopt() unsafe copies (bsc#1225758). * CVE-2024-36916: blk-iocost: avoid out of bounds shift (bsc#1225759). * CVE-2024-36917: block: fix overflow in blk_ioctl_discard() (bsc#1225770). * CVE-2024-36919: scsi: bnx2fc: Remove spin_lock_bh while releasing resources after upload (bsc#1225767). * CVE-2024-36923: fs/9p: fix uninitialized values during inode evict (bsc#1225815). * CVE-2024-36934: bna: ensure the copied buf is NUL terminated (bsc#1225760). * CVE-2024-36935: ice: ensure the copied buf is NUL terminated (bsc#1225763). * CVE-2024-36937: xdp: use flags field to disambiguate broadcast redirect (bsc#1225834). * CVE-2024-36938: Fixed NULL pointer dereference in sk_psock_skb_ingress_enqueue (bsc#1225761). * CVE-2024-36945: net/smc: fix neighbour and rtable leak in smc_ib_find_route() (bsc#1225823). * CVE-2024-36946: phonet: fix rtm_phonet_notify() skb allocation (bsc#1225851). * CVE-2024-36957: octeontx2-af: avoid off-by-one read from userspace (bsc#1225762). * CVE-2024-36971: net: fix __dst_negative_advice() race (bsc#1226145). * CVE-2024-36978: net: sched: sch_multiq: fix possible OOB write in multiq_tune() (bsc#1226514). * CVE-2024-37021: fpga: manager: add owner module and take its refcount (bsc#1226950). * CVE-2024-37078: nilfs2: fix potential kernel bug due to lack of writeback flag waiting (bsc#1227066). * CVE-2024-37353: virtio: fixed a double free in vp_del_vqs() (bsc#1226875). * CVE-2024-37354: btrfs: fix crash on racing fsync and size-extending write into prealloc (bsc#1227101). * CVE-2024-38553: net: fec: remove .ndo_poll_controller to avoid deadlock (bsc#1226744). * CVE-2024-38555: net/mlx5: Discard command completions in internal error (bsc#1226607). * CVE-2024-38556: net/mlx5: Add a timeout to acquire the command queue semaphore (bsc#1226774). * CVE-2024-38557: net/mlx5: Reload only IB representors upon lag disable/enable (bsc#1226781). * CVE-2024-38558: net: openvswitch: fix overwriting ct original tuple for ICMPv6 (bsc#1226783). * CVE-2024-38564: bpf: Add BPF_PROG_TYPE_CGROUP_SKB attach type enforcement in BPF_LINK_CREATE (bsc#1226789). * CVE-2024-38566: bpf: Fix verifier assumptions about socket->sk (bsc#1226790). * CVE-2024-38568: drivers/perf: hisi: hns3: Fix out-of-bound access when valid event group (bsc#1226771). * CVE-2024-38569: drivers/perf: hisi_pcie: Fix out-of-bound access when valid event group (bsc#1226772). * CVE-2024-38570: gfs2: Fix potential glock use-after-free on unmount (bsc#1226775). * CVE-2024-38580: epoll: be better about file lifetimes (bsc#1226610). * CVE-2024-38586: r8169: Fix possible ring buffer corruption on fragmented Tx packets (bsc#1226750). * CVE-2024-38594: net: stmmac: move the EST lock to struct stmmac_priv (bsc#1226734). * CVE-2024-38597: eth: sungem: remove .ndo_poll_controller to avoid deadlocks (bsc#1226749). * CVE-2024-38598: md: fix resync softlockup when bitmap size is less than array size (bsc#1226757). * CVE-2024-38603: drivers/perf: hisi: hns3: Actually use devm_add_action_or_reset() (bsc#1226842). * CVE-2024-38604: block: refine the EOF check in blkdev_iomap_begin (bsc#1226866). * CVE-2024-38608: net/mlx5e: Fix netif state handling (bsc#1226746). * CVE-2024-38610: drivers/virt/acrn: fix PFNMAP PTE checks in acrn_vm_ram_map() (bsc#1226758). * CVE-2024-38627: stm class: Fix a double free in stm_register_device() (bsc#1226857). * CVE-2024-38636: f2fs: multidev: fix to recognize valid zero block address (bsc#1226879). * CVE-2024-38659: enic: Validate length of nl attributes in enic_set_vf_port (bsc#1226883). * CVE-2024-38661: s390/ap: Fix crash in AP internal function modify_bitmap() (bsc#1226996). * CVE-2024-39276: ext4: fix mb_cache_entry's e_refcnt leak in ext4_xattr_block_cache_find() (bsc#1226993). * CVE-2024-39301: net/9p: fix uninit-value in p9_client_rpc() (bsc#1226994). * CVE-2024-39371: io_uring: check for non-NULL file pointer in io_file_can_poll() (bsc#1226990). * CVE-2024-39468: smb: client: fix deadlock in smb2_find_smb_tcon() (bsc#1227103. * CVE-2024-39472: xfs: fix log recovery buffer allocation for the legacy h_size fixup (bsc#1227432). * CVE-2024-39474: mm/vmalloc: fix vmalloc which may return null if called with __GFP_NOFAIL (bsc#1227434). * CVE-2024-39482: bcache: fix variable length array abuse in btree_iter (bsc#1227447). * CVE-2024-39487: bonding: Fix out-of-bounds read in bond_option_arp_ip_targets_set() (bsc#1227573) * CVE-2024-39490: ipv6: sr: fix missing sk_buff release in seg6_input_core (bsc#1227626). * CVE-2024-39494: ima: Fix use-after-free on a dentry's dname.name (bsc#1227716). * CVE-2024-39496: btrfs: zoned: fix use-after-free due to race with dev replace (bsc#1227719). * CVE-2024-39498: drm/mst: Fix NULL pointer dereference at drm_dp_add_payload_part2 (bsc#1227723) * CVE-2024-39502: ionic: fix use after netif_napi_del() (bsc#1227755). * CVE-2024-39504: netfilter: nft_inner: validate mandatory meta and payload (bsc#1227757). * CVE-2024-39507: net: hns3: fix kernel crash problem in concurrent scenario (bsc#1227730). * CVE-2024-40901: scsi: mpt3sas: Avoid test/set_bit() operating in non- allocated memory (bsc#1227762). * CVE-2024-40906: net/mlx5: Always stop health timer during driver removal (bsc#1227763). * CVE-2024-40908: bpf: Set run context for rawtp test_run callback (bsc#1227783). * CVE-2024-40919: bnxt_en: Adjust logging of firmware messages in case of released token in __hwrm_send() (bsc#1227779). * CVE-2024-40923: vmxnet3: disable rx data ring on dma allocation failure (bsc#1227786). * CVE-2024-40925: block: fix request.queuelist usage in flush (bsc#1227789). * CVE-2024-40928: net: ethtool: fix the error condition in ethtool_get_phy_stats_ethtool() (bsc#1227788). * CVE-2024-40931: mptcp: ensure snd_una is properly initialized on connect (bsc#1227780). * CVE-2024-40935: cachefiles: flush all requests after setting CACHEFILES_DEAD (bsc#1227797). * CVE-2024-40937: gve: Clear napi->skb before dev_kfree_skb_any() (bsc#1227836). * CVE-2024-40940: net/mlx5: Fix tainted pointer delete is case of flow rules creation fail (bsc#1227800). * CVE-2024-40947: ima: Avoid blocking in RCU read-side critical section (bsc#1227803). * CVE-2024-40948: mm/page_table_check: fix crash on ZONE_DEVICE (bsc#1227801). * CVE-2024-40953: KVM: Fix a data race on last_boosted_vcpu in kvm_vcpu_on_spin() (bsc#1227806). * CVE-2024-40960: ipv6: prevent possible NULL dereference in rt6_probe() (bsc#1227813). * CVE-2024-40961: ipv6: prevent possible NULL deref in fib6_nh_init() (bsc#1227814). * CVE-2024-40966: kABI: tty: add the option to have a tty reject a new ldisc (bsc#1227886). * CVE-2024-40970: Avoid hw_desc array overrun in dw-axi-dmac (bsc#1227899). * CVE-2024-40972: ext4: fold quota accounting into ext4_xattr_inode_lookup_create() (bsc#1227910). * CVE-2024-40975: platform/x86: x86-android-tablets: Unregister devices in reverse order (bsc#1227926). * CVE-2024-40998: ext4: fix uninitialized ratelimit_state->lock access in __ext4_fill_super() (bsc#1227866). * CVE-2024-40999: net: ena: Add validation for completion descriptors consistency (bsc#1227913). * CVE-2024-41006: netrom: Fix a memory leak in nr_heartbeat_expiry() (bsc#1227862). * CVE-2024-41013: xfs: do not walk off the end of a directory data block (bsc#1228405). * CVE-2024-41014: xfs: add bounds checking to xlog_recover_process_data (bsc#1228408). * CVE-2024-41017: jfs: do not walk off the end of ealist (bsc#1228403). * CVE-2024-41090: tap: add missing verification for short frame (bsc#1228328). * CVE-2024-41091: tun: add missing verification for short frame (bsc#1228327). The following non-security bugs were fixed: * 9p: add missing locking around taking dentry fid list (git-fixes) * accel/ivpu: Fix deadlock in context_xa (git-fixes). * ACPI: bus: Indicate support for IRQ ResourceSource thru _OSC (git-fixes). * ACPI: bus: Indicate support for _TFP thru _OSC (git-fixes). * ACPI: bus: Indicate support for the Generic Event Device thru _OSC (git- fixes). * ACPICA: debugger: check status of acpi_evaluate_object() in acpi_db_walk_for_fields() (git-fixes). * ACPICA: Revert "ACPICA: avoid Info: mapping multiple BARs. Your kernel is fine." (git-fixes). * ACPI: CPPC: Fix access width used for PCC registers (git-fixes). * ACPI: CPPC: Fix bit_offset shift in MASK_VAL() macro (git-fixes). * ACPI: CPPC: Use access_width over bit_width for system memory accesses (stable-fixes). * ACPI: disable -Wstringop-truncation (git-fixes). * ACPI: EC: Abort address space access upon error (stable-fixes). * ACPI: EC: Avoid returning AE_OK on errors in address space handler (stable- fixes). * ACPI: EC: Evaluate orphan _REG under EC device (git-fixes). * ACPI: EC: Install address space handler at the namespace root (stable- fixes). * ACPI: Fix Generic Initiator Affinity _OSC bit (git-fixes). * ACPI: LPSS: Advertise number of chip selects via property (git-fixes). * ACPI: processor_idle: Fix invalid comparison with insertion sort for latency (git-fixes). * ACPI: resource: Add Infinity laptops to irq1_edge_low_force_override (stable-fixes). * ACPI: resource: Do IRQ override on Lunnen Ground laptops (stable-fixes). * ACPI: resource: Do IRQ override on TongFang GXxHRXx and GMxHGxx (stable- fixes). * ACPI: scan: Do not increase dep_unmet for already met dependencies (git- fixes). * ACPI: video: Add backlight=native quirk for Lenovo Slim 7 16ARH7 (bsc#1217750). * ACPI: x86: Add PNP_UART1_SKIP quirk for Lenovo Blade2 tablets (stable- fixes). * ACPI: x86: Force StorageD3Enable on more products (stable-fixes). * ACPI: x86: Move acpi_quirk_skip_serdev_enumeration() out of CONFIG_X86_ANDROID_TABLETS (stable-fixes). * Add console: Improve console_srcu_read_flags() comments device property: Add SOFTWARE_NODE() macro for defining software nodes device property: Add fwnode_name_eq() device property: Add fwnode_property_match_property_string() device property: Implement device_is_big_endian() device property: Implement device_is_compatible() nbcon: Provide functions for drivers to acquire console for non-printing. panic: Flush kernel log buffer at the end panic: Mark emergency section in oops panic: Mark emergency section in warn panic: add option to dump blocked tasks in panic_print panic: suppress gnu_printf warning printk: Add @flags argument for console_is_usable() printk: Add function to replay kernel log on consoles printk: Add kthread for all legacy consoles printk: Add non-BKL (nbcon) console basic infrastructure printk: Add notation to console_srcu locking printk: Atomic print in printk context on shutdown printk: Avoid console_lock dance if no legacy or boot consoles printk: Avoid false positive lockdep report for legacy printing printk: Check printk_deferred_enter()/_exit() usage printk: Check valid console index for preferred console printk: Constify name for add_preferred_console() printk: Coordinate direct printing in panic printk: Do not try to parse DEVNAME:0.0 console options printk: Flag register_console() if console is set on command line. printk: Let console_is_usable() handle nbcon printk: Make console_is_usable() available to nbcon printk: Make static printk buffers available to nbcon printk: Properly deal with nbcon consoles on seq init printk: Provide helper for message prepending printk: Provide threadprintk boot argument printk: Reduce pr_flush() pooling time printk: Remove the now superfluous sentinel elements from ctl_table array printk: Save console options for add_preferred_console_match() printk: Track nbcon consoles printk: Track registered boot consoles printk: fix illegal pbufs access for !CONFIG_PRINTK printk: flush consoles before checking progress printk: nbcon: Add acquire/release logic printk: nbcon: Add buffer management printk: nbcon: Add callbacks to synchronize with driver printk: nbcon: Add context to console_is_usable() printk: nbcon: Add detailed doc for write_atomic() printk: nbcon: Add emit function and callback function for atomic printing printk: nbcon: Add helper to assign priority based on CPU state printk: nbcon: Add ownership state functions printk: nbcon: Add printer thread wakeups printk: nbcon: Add sequence handling printk: nbcon: Add unsafe flushing on panic printk: nbcon: Allow drivers to mark unsafe regions and check state. printk: nbcon: Do not rely on proxy headers printk: nbcon: Implement emergency sections printk: nbcon: Introduce printing kthreads printk: nbcon: Provide function to flush using write_atomic() printk: nbcon: Provide function to reacquire ownership printk: nbcon: Remove return value for write_atomic() printk: nbcon: Show replay message on takeover printk: nbcon: Start printing threads printk: nbcon: Use driver synchronization while (un)registering printk: nbcon: Use nbcon consoles in console_flush_all() serial: convert uart sysrq handling to u8 serial: core: Add UPIO_UNKNOWN constant for unknown port type serial: core: Controller id cannot be negative serial: core: Fix serial core port id to not use port->line serial: core: Implement processing in port->lock wrapper serial: core: Introduce wrapper to set @uart_port->cons serial: core: Move struct uart_port::quirks closer to possible serial: core: Provide low-level functions to lock port serial: core: Update uart_poll_timeout() function to return unsigned long. serial: core: Use lock wrappers serial: core: do not kfree device managed data serial: core: fix -EPROBE_DEFER handling in init serial: make uart_insert_char() accept u8s serial: port: Introduce a common helper to read properties tty/sysrq: Replay kernel log messages on consoles via sysrq * Add reference to L3 bsc#1225765 in BPF control flow graph and precision backtrack fixes (bsc#1225756) The L3 bsc#1225765 was created seperately since our customer requires PTF. * admin-guide/hw-vuln/core-scheduling: fix return type of PR_SCHED_CORE_GET (git-fixes). * ahci: asm1064: asm1166: do not limit reported ports (git-fixes). * ahci: asm1064: correct count of reported ports (stable-fixes). * ALSA: aoa: avoid false-positive format truncation warning (git-fixes). * ALSA: core: Fix NULL module pointer assignment at card init (git-fixes). * ALSA: core: Remove debugfs at disconnection (git-fixes). * ALSA: dmaengine_pcm: terminate dmaengine before synchronize (stable-fixes). * ALSA: dmaengine: Synchronize dma channel after drop() (stable-fixes). * ALSA: emux: improve patch ioctl data validation (stable-fixes). * ALSA: firewire-lib: handle quirk to calculate payload quadlets as data block counter (stable-fixes). * ALSA: Fix deadlocks with kctl removals at disconnection (stable-fixes). * ALSA: hda: Add Intel BMG PCI ID and HDMI codec vid (stable-fixes). * ALSA: hda: clarify Copyright information (stable-fixes). * ALSA: hda/conexant: Mute speakers at suspend / shutdown (bsc#1228269). * ALSA: hda: cs35l41: Add support for ASUS ROG 2024 Laptops (stable-fixes). * ALSA: hda: cs35l41: Component should be unbound before deconstruction (git- fixes). * ALSA: hda: cs35l41: Fix swapped l/r audio channels for Lenovo ThinBook 13x Gen4 (git-fixes). * ALSA: hda: cs35l41: Ignore errors when configuring IRQs (stable-fixes). * ALSA: hda: cs35l41: Possible null pointer dereference in cs35l41_hda_unbind() (git-fixes). * ALSA: hda: cs35l41: Remove redundant argument to cs35l41_request_firmware_file() (stable-fixes). * ALSA: hda: cs35l41: Remove Speaker ID for Lenovo Legion slim 7 16ARHA7 (git- fixes). * ALSA: hda: cs35l41: Set the max PCM Gain using tuning setting (stable- fixes). * ALSA: hda: cs35l41: Support HP Omen models without _DSD (stable-fixes). * ALSA: hda: cs35l41: Support Lenovo 13X laptop without _DSD (stable-fixes). * ALSA: hda: cs35l41: Support Lenovo Thinkbook 13x Gen 4 (stable-fixes). * ALSA: hda: cs35l41: Support Lenovo Thinkbook 16P Gen 5 (stable-fixes). * ALSA: hda: cs35l56: Add ACPI device match tables (git-fixes). * ALSA: hda: cs35l56: Component should be unbound before deconstruction (git- fixes). * ALSA: hda: cs35l56: Exit cache-only after cs35l56_wait_for_firmware_boot() (stable-fixes). * ALSA: hda: cs35l56: Fix lifecycle of codec pointer (stable-fixes). * ALSA: hda: cs35l56: Fix lifetime of cs_dsp instance (git-fixes). * ALSA: hda: cs35l56: Set the init_done flag before component_add() (git- fixes). * ALSA: hda/cs_dsp_ctl: Use private_free for control cleanup (git-fixes). * ALSA: hda/generic: Add a helper to mute speakers at suspend/shutdown (bsc#1228269). * ALSA: hda: hda_cs_dsp_ctl: Remove notification of driver write (stable- fixes). * ALSA/hda: intel-dsp-config: Document AVS as dsp_driver option (git-fixes). * ALSA: hda: intel-dsp-config: harden I2C/I2S codec detection (stable-fixes). * ALSA/hda: intel-dsp-config: reduce log verbosity (git-fixes). * ALSA: hda: intel-sdw-acpi: fix usage of device_get_named_child_node() (git- fixes). * ALSA: hda/realtek: Add more codec ID to no shutup pins list (stable-fixes). * ALSA: hda/realtek: add quirk for Clevo V5[46]0TU (stable-fixes). * ALSA: hda/realtek: Add quirk for HP SnowWhite laptops (stable-fixes). * ALSA: hda/realtek: Add quirk for HP Spectre x360 14 eu0000 (stable-fixes). * ALSA: hda/realtek: Add quirk for Lenovo Yoga Pro 7 14AHP9 (stable-fixes). * ALSA: hda/realtek: Add quirk for Lenovo Yoga Pro 7 14ARP8 (stable-fixes). * ALSA: hda/realtek: Add quirks for ASUS Laptops using CS35L56 (stable-fixes). * ALSA: hda/realtek: Add quirks for HP Omen models using CS35L41 (stable- fixes). * ALSA: hda/realtek: Add quirks for Huawei Matebook D14 NBLB-WAX9N (stable- fixes). * ALSA: hda/realtek: Add quirks for Lenovo 13X (stable-fixes). * ALSA: hda/realtek: Add quirks for some Clevo laptops (stable-fixes). * ALSA: hda/realtek: Add sound quirks for Lenovo Legion slim 7 16ARHA7 models (stable-fixes). * ALSA: hda/realtek: Add support for ASUS Zenbook 2024 HN7306W (stable-fixes). * ALSA: hda/realtek: Adjust G814JZR to use SPI init for amp (git-fixes). * ALSA: hda/realtek: cs35l41: Fixup remaining asus strix models (git-fixes). * ALSA: hda/realtek: cs35l41: Support ASUS ROG G634JYR (stable-fixes). * ALSA: hda/realtek: Drop doubly quirk entry for 103c:8a2e (git-fixes). * ALSA: hda/realtek - Enable audio jacks of Haier Boyue G42 with ALC269VC (stable-fixes). * ALSA: hda/realtek: Enable headset mic of JP-IK LEAP W502 with ALC897 (stable-fixes). * ALSA: hda/realtek: Enable headset mic on IdeaPad 330-17IKB 81DM (git-fixes). * ALSA: hda/realtek: Enable headset mic on Positivo SU C1400 (stable-fixes). * ALSA: hda/realtek: Enable Mute LED on HP 250 G7 (stable-fixes). * ALSA: hda/realtek: Fix build error without CONFIG_PM (stable-fixes). * ALSA: hda/realtek: Fix conflicting PCI SSID 17aa:386f for Lenovo Legion models (bsc#1223462). * ALSA: hda/realtek: Fix conflicting quirk for PCI SSID 17aa:3820 (git-fixes). * ALSA: hda/realtek - fixed headset Mic not show (stable-fixes). * ALSA: hda/realtek: Fixes for Asus GU605M and GA403U sound (stable-fixes). * ALSA: hda/realtek - Fix inactive headset mic jack (stable-fixes). * ALSA: hda/realtek: Fix internal speakers for Legion Y9000X 2022 IAH7 (stable-fixes). * ALSA: hda/realtek: Fix mute led of HP Laptop 15-da3001TU (stable-fixes). * ALSA: hda/realtek: fix mute/micmute LEDs do not work for EliteBook 645/665 G11 (stable-fixes). * ALSA: hda/realtek: fix mute/micmute LEDs do not work for ProBook 440/460 G11 (stable-fixes). * ALSA: hda/realtek: fix mute/micmute LEDs do not work for ProBook 445/465 G11 (stable-fixes). * ALSA: hda/realtek: fix the hp playback volume issue for LG machines (stable- fixes). * ALSA: hda/realtek: Fix the speaker output on Samsung Galaxy Book Pro 360 (stable-fixes). * ALSA: hda/realtek: Fix volumn control of ThinkBook 16P Gen4 (git-fixes). * ALSA: hda/realtek: Limit mic boost on N14AP7 (stable-fixes). * ALSA: hda/realtek: Limit mic boost on VAIO PRO PX (stable-fixes). * ALSA: hda/realtek: Remove Framework Laptop 16 from quirks (git-fixes). * ALSA: hda/realtek - Set GPIO3 to default at S4 state for Thinkpad with ALC1318 (stable-fixes). * ALSA: hda/realtek: Support Lenovo Thinkbook 13x Gen 4 (stable-fixes). * ALSA: hda/realtek: Support Lenovo Thinkbook 16P Gen 5 (stable-fixes). * ALSA: hda/relatek: Enable Mute LED on HP Laptop 15-gw0xxx (stable-fixes). * ALSA: hda/tas2781: add locks to kcontrols (git-fixes). * ALSA: hda/tas2781: Add new quirk for Lenovo Hera2 Laptop (stable-fixes). * ALSA: hda/tas2781: Add new vendor_id and subsystem_id to support ThinkPad ICE-1 (stable-fixes). * ALSA: hda: tas2781: Component should be unbound before deconstruction (git- fixes). * ALSA: hda/tas2781: correct the register for pow calibrated data (git-fixes). * ALSA: hda/tas2781: remove digital gain kcontrol (git-fixes). * ALSA: line6: Zero-initialize message buffers (stable-fixes). * ALSA: PCM: Allow resume only for suspended streams (stable-fixes). * ALSA: pcm_dmaengine: Do not synchronize DMA channel when DMA is paused (git- fixes). * ALSA: scarlett2: Add Focusrite Clarett+ 2Pre and 4Pre support (stable- fixes). * ALSA: scarlett2: Add Focusrite Clarett 2Pre and 4Pre USB support (stable- fixes). * ALSA: scarlett2: Add missing error check to scarlett2_config_save() (git- fixes). * ALSA: scarlett2: Add support for Clarett 8Pre USB (stable-fixes). * ALSA: scarlett2: Default mixer driver to enabled (stable-fixes). * ALSA: scarlett2: Move USB IDs out from device_info struct (stable-fixes). * ALSA: seq: Do not clear bank selection at event -> UMP MIDI2 conversion (git-fixes). * ALSA: seq: Fix incorrect UMP type for system messages (git-fixes). * ALSA: seq: Fix missing bank setup between MIDI1/MIDI2 UMP conversion (git- fixes). * ALSA: seq: Fix missing channel at encoding RPN/NRPN MIDI2 messages (git- fixes). * ALSA: seq: Fix missing MSB in MIDI2 SPP conversion (git-fixes). * ALSA: seq: Fix yet another spot for system message conversion (git-fixes). * ALSA: seq: ump: Fix conversion from MIDI2 to MIDI1 UMP messages (git-fixes). * ALSA: seq: ump: Fix missing System Reset message handling (git-fixes). * ALSA: seq: ump: Fix swapped song position pointer data (git-fixes). * ALSA: seq: ump: Skip useless ports for static blocks (git-fixes). * ALSA: sh: aica: reorder cleanup operations to avoid UAF bugs (git-fixes). * ALSA: timer: Set lower bound of start tick time (stable-fixes). * ALSA: ump: Do not accept an invalid UMP protocol number (git-fixes). * ALSA: ump: Do not clear bank selection after sending a program change (git- fixes). * ALSA: ump: Force 1 Group for MIDI1 FBs (git-fixes). * ALSA: ump: Set default protocol when not given explicitly (git-fixes). * ALSA: usb-audio: Add a quirk for Sonix HD USB Camera (stable-fixes). * ALSA: usb-audio: Add sampling rates support for Mbox3 (stable-fixes). * ALSA: usb-audio: Fix for sampling rates support for Mbox3 (stable-fixes). * ALSA: usb-audio: Fix microphone sound on HD webcam (stable-fixes). * ALSA: usb-audio: Move HD Webcam quirk to the right place (git-fixes). * amd/amdkfd: sync all devices to wait all processes being evicted (stable- fixes). * amdkfd: use calloc instead of kzalloc to avoid integer overflow (stable- fixes). * arm64: Add the arm64.no32bit_el0 command line option (jsc#PED-3184). * arm64: asm-bug: Add .align 2 to the end of __BUG_ENTRY (git-fixes). * arm64: bpf: fix 32bit unconditional bswap (git-fixes). * arm64: dts: allwinner: h616: Fix I2C0 pins (git-fixes) * arm64: dts: allwinner: Pine H64: correctly remove reg_gmac_3v3 (git-fixes) * arm64: dts: broadcom: bcmbca: bcm4908: drop invalid switch cells (git-fixes) * arm64: dts: Fix dtc interrupt_provider warnings (git-fixes) * arm64: dts: freescale: imx8mm-verdin: enable hysteresis on slow input (git- fixes) * arm64: dts: hi3798cv200: fix the size of GICR (git-fixes) * arm64: dts: imx8qm-mek: fix gpio number for reg_usdhc2_vmmc (git-fixes) * arm64: dts: imx8qm-ss-dma: fix can lpcg indices (git-fixes) * arm64: dts: imx8-ss-conn: fix usb lpcg indices (git-fixes) * arm64: dts: imx8-ss-conn: fix usdhc wrong lpcg clock order (git-fixes) * arm64: dts: imx8-ss-dma: fix adc lpcg indices (git-fixes) * arm64: dts: imx8-ss-dma: fix can lpcg indices (git-fixes) * arm64: dts: imx8-ss-dma: fix spi lpcg indices (git-fixes) * arm64: dts: imx8-ss-lsio: fix pwm lpcg indices (git-fixes) * arm64: dts: imx93-11x11-evk: Remove the 'no-sdio' property (git-fixes) * arm64: dts: marvell: reorder crypto interrupts on Armada SoCs (git-fixes) * arm64: dts: microchip: sparx5: fix mdio reg (git-fixes) * arm64: dts: rockchip: Add enable-strobe-pulldown to emmc phy on ROCK (git- fixes) * arm64: dts: rockchip: Add mdio and ethernet-phy nodes to (git-fixes) * arm64: dts: rockchip: Add missing power-domains for rk356x vop_mmu (git- fixes) * arm64: dts: rockchip: Add pinctrl for UART0 to rk3308-rock-pi-s (git-fixes) * arm64: dts: rockchip: Add sdmmc related properties on (git-fixes) * arm64: dts: rockchip: Add sound-dai-cells for RK3368 (git-fixes) * arm64: dts: rockchip: Drop invalid mic-in-differential on (git-fixes) * arm64: dts: rockchip: enable internal pull-up for Q7_THRM# on RK3399 (git- fixes) * arm64: dts: rockchip: enable internal pull-up on PCIE_WAKE# for (git-fixes) * arm64: dts: rockchip: enable internal pull-up on Q7_USB_ID for RK3399 (git- fixes) * arm64: dts: rockchip: Fix mic-in-differential usage on (git-fixes) * arm64: dts: rockchip: Fix mic-in-differential usage on rk3566-roc-pc (git- fixes) * arm64: dts: rockchip: fix PMIC interrupt pin on ROCK Pi E (git-fixes) * arm64: dts: rockchip: fix rk3328 hdmi ports node (git-fixes) * arm64: dts: rockchip: fix rk3399 hdmi ports node (git-fixes) * arm64: dts: rockchip: Fix SD NAND and eMMC init on rk3308-rock-pi-s (git- fixes) * arm64: dts: rockchip: Fix the DCDC_REG2 minimum voltage on Quartz64 (git- fixes) * arm64: dts: rockchip: Fix the value of `dlg,jack-det-rate` mismatch (git- fixes) * arm64: dts: rockchip: Increase VOP clk rate on RK3328 (git-fixes) * arm64: dts: rockchip: regulator for sd needs to be always on for (git-fixes) * arm64: dts: rockchip: Remove unsupported node from the Pinebook Pro (git- fixes) * arm64: dts: rockchip: Rename LED related pinctrl nodes on (git-fixes) * arm64: dts: rockchip: set PHY address of MT7531 switch to 0x1f (git-fixes) * arm64/head: Disable MMU at EL2 before clearing HCR_EL2.E2H (git-fixes). * arm64: hibernate: Fix level3 translation fault in swsusp_save() (git-fixes). * arm64/io: add constant-argument check (bsc#1226502 git-fixes) * arm64/io: Provide a WC friendly __iowriteXX_copy() (bsc#1226502) * arm64: mm: Batch dsb and isb when populating pgtables (jsc#PED-8688). * arm64: mm: Do not remap pgtables for allocate vs populate (jsc#PED-8688). * arm64: mm: Do not remap pgtables per-cont(pte|pmd) block (jsc#PED-8688). * arm64/ptrace: Use saved floating point state type to determine SVE (git- fixes) * arm64/sve: Lower the maximum allocation for the SVE ptrace regset (git- fixes) * arm64: tegra: Correct Tegra132 I2C alias (git-fixes) * arm64: tegra: Set the correct PHY mode for MGBE (git-fixes) * ARM: 9381/1: kasan: clear stale stack poison (git-fixes). * ARM: imx: Check return value of devm_kasprintf in imx_mmdc_perf_init (git- fixes). * ARM: imx_v6_v7_defconfig: Restore CONFIG_BACKLIGHT_CLASS_DEVICE (git-fixes). * ARM: OMAP2+: fix N810 MMC gpiod table (git-fixes). * ARM: OMAP2+: fix USB regression on Nokia N8x0 (git-fixes). * arm_pmu: acpi: Add a representative platform device for TRBE (bsc#1220587) * arm_pmu: acpi: Refactor arm_spe_acpi_register_device() (bsc#1220587) * ARM: prctl: reject PR_SET_MDWE on pre-ARMv6 (stable-fixes). * ARM: s5pv210: fix pm.c kernel-doc warning (git-fixes). * asm-generic: make sparse happy with odd-sized put_unaligned_*() (stable- fixes). * ASoC: acp: Support microphone from device Acer 315-24p (git-fixes). * ASoC: amd: acp: add a null check for chip_pdev structure (git-fixes). * ASoC: amd: acp: fix for acp_init function error handling (git-fixes). * ASoC: amd: acp: remove i2s configuration check in acp_i2s_probe() (git- fixes). * ASoC: amd: Adjust error handling in case of absent codec device (git-fixes). * ASoC: amd: yc: Add Lenovo ThinkBook 21J0 into DMI quirk table (stable- fixes). * ASoC: amd: yc: Fix non-functional mic on ASUS M5602RA (stable-fixes). * ASoC: amd: yc: Fix non-functional mic on ASUS M7600RE (stable-fixes). * ASoC: amd: yc: Fix non-functional mic on Lenovo 21J2 (stable-fixes). * ASoC: amd: yc: Revert "Fix non-functional mic on Lenovo 21J2" (stable- fixes). * ASoC: amd: yc: Support mic on Lenovo Thinkpad E16 Gen 2 (bsc#1228269). * ASoC: codecs: wsa881x: set clk_stop_mode1 flag (git-fixes). * ASoC: cs35l56: Accept values greater than 0 as IRQ numbers (git-fixes). * ASoC: cs35l56: Fix unintended bus access while resetting amp (git-fixes). * ASoC: cs35l56: Prevent overwriting firmware ASP config (git-fixes). * ASoC: da7219-aad: fix usage of device_get_named_child_node() (git-fixes). * ASoC: fsl-asoc-card: set priv->pdev before using it (git-fixes). * ASoC: fsl: fsl_qmc_audio: Check devm_kasprintf() returned value (git-fixes). * ASoC: Intel: avs: Fix ASRC module initialization (git-fixes). * ASoC: Intel: avs: Fix potential integer overflow (git-fixes). * ASoC: Intel: avs: Populate board selection with new I2S entries (stable- fixes). * ASoC: Intel: avs: Set name of control as in topology (git-fixes). * ASoC: Intel: avs: ssm4567: Do not ignore route checks (git-fixes). * ASoC: Intel: avs: Test result of avs_get_module_entry() (git-fixes). * ASoC: Intel: bytcr_rt5640: Apply Asus T100TA quirk to Asus T100TAM too (git- fixes). * ASoC: Intel: common: add ACPI matching tables for Arrow Lake (stable-fixes). * ASoC: Intel: common: DMI remap for rebranded Intel NUC M15 (LAPRC710) laptops (stable-fixes). * ASoC: Intel: Disable route checks for Skylake boards (git-fixes). * ASoC: Intel: sof_sdw: add JD2 quirk for HP Omen 14 (stable-fixes). * ASoC: Intel: sof_sdw: add quirk for Dell SKU 0C0F (stable-fixes). * ASoC: Intel: sof-sdw: really remove FOUR_SPEAKER quirk (git-fixes). * ASoC: Intel: use soc_intel_is_byt_cr() only when IOSF_MBI is reachable (git- fixes). * ASoC: kirkwood: Fix potential NULL dereference (git-fixes). * ASoC: max98088: Check for clk_prepare_enable() error (git-fixes). * ASoC: mediatek: Assign dummy when codec not specified for a DAI link (git- fixes). * ASoC: mediatek: mt8192: fix register configuration for tdm (git-fixes). * ASoC: meson: axg-card: make links nonatomic (git-fixes). * ASoC: meson: axg-fifo: use FIELD helpers (stable-fixes). * ASoC: meson: axg-fifo: use threaded irq to check periods (git-fixes). * ASoC: meson: axg-tdm-interface: manage formatters in trigger (git-fixes). * ASoC: meson: cards: select SND_DYNAMIC_MINORS (git-fixes). * ASoC: ops: Fix wraparound for mask in snd_soc_get_volsw (git-fixes). * ASoC: q6apm-lpass-dai: close graph on prepare errors (git-fixes). * ASoC: qcom: Adjust issues in case of DT error in asoc_qcom_lpass_cpu_platform_probe() (git-fixes). * ASoC: rockchip: i2s-tdm: Fix inaccurate sampling rates (git-fixes). * ASoC: rockchip: i2s-tdm: Fix trcm mode by setting clock on right mclk (git- fixes). * ASoC: rt5645: Fix the electric noise due to the CBJ contacts floating (git- fixes). * ASoC: rt5645: Make LattePanda board DMI match more precise (stable-fixes). * ASoC: rt5682-sdw: fix locking sequence (git-fixes). * ASoC: rt711-sdca: fix locking sequence (git-fixes). * ASoC: rt711-sdw: add missing readable registers (stable-fixes). * ASoC: rt711-sdw: fix locking sequence (git-fixes). * ASoC: rt712-sdca-sdw: fix locking sequence (git-fixes). * ASoC: rt715: add vendor clear control register (git-fixes). * ASoC: rt715-sdca: volume step modification (git-fixes). * ASoC: rt722-sdca: add headset microphone vrefo setting (git-fixes). * ASoC: rt722-sdca: modify channel number to support 4 channels (git-fixes). * ASoC: rt722-sdca-sdw: add debounce time for type detection (stable-fixes). * ASoC: rt722-sdca-sdw: add silence detection register as volatile (stable- fixes). * ASoC: rt722-sdca-sdw: fix locking sequence (git-fixes). * ASoC: soc-core.c: Skip dummy codec when adding platforms (stable-fixes). * ASoC: sof: amd: fix for firmware reload failure in Vangogh platform (git- fixes). * ASoC: SOF: amd: Optimize quirk for Valve Galileo (stable-fixes). * ASoC: SOF: imx8m: Fix DSP control regmap retrieval (git-fixes). * ASoC: SOF: Intel: add default firmware library path for LNL (git-fixes). * ASoC: SOF: Intel: hda-dsp: Skip IMR boot on ACE platforms in case of S3 suspend (stable-fixes). * ASoC: SOF: Intel: hda: fix null deref on system suspend entry (git-fixes). * ASoC: SOF: Intel: hda-pcm: Limit the maximum number of periods by MAX_BDL_ENTRIES (stable-fixes). * ASoC: SOF: Intel: lnl: Correct rom_status_reg (git-fixes). * ASoC: SOF: Intel: mtl: call dsp dump when boot retry fails (stable-fixes). * ASoC: SOF: Intel: mtl: Correct rom_status_reg (git-fixes). * ASoC: SOF: Intel: mtl: Disable interrupts when firmware boot failed (git- fixes). * ASoC: SOF: Intel: mtl: Implement firmware boot state check (git-fixes). * ASoC: SOF: ipc4-pcm: Workaround for crashed firmware on system suspend (stable-fixes). * ASoC: SOF: ipc4-topology: Fix input format query of process modules without base extension (git-fixes). * ASoC: SOF: ipc4-topology: Preserve the DMA Link ID for ChainDMA on unprepare (git-fixes). * ASoC: SOF: ipc4-topology: Use correct queue_id for requesting input pin format (stable-fixes). * ASoC: SOF: pcm: Restrict DSP D0i3 during S0ix to IPC3 (stable-fixes). * ASoC: SOF: sof-audio: Skip unprepare for in-use widgets on error rollback (stable-fixes). * ASoC: tas2552: Add TX path for capturing AUDIO-OUT data (git-fixes). * ASoc: tas2781: Enable RCA-based playback without DSP firmware download (git- fixes). * ASoC: tas2781: Fix a warning reported by robot kernel test (git-fixes). * ASoC: TAS2781: Fix tasdev_load_calibrated_data() (git-fixes). * ASoC: tas2781: Fix wrong loading calibrated data sequence (git-fixes). * ASoC: tas2781: mark dvc_tlv with __maybe_unused (git-fixes). * ASoC: tegra: Fix DSPK 16-bit playback (git-fixes). * ASoC: ti: Convert Pandora ASoC to GPIO descriptors (stable-fixes). * ASoC: ti: davinci-mcasp: Fix race condition during probe (git-fixes). * ASoC: ti: davinci-mcasp: Set min period size using FIFO config (stable- fixes). * ASoC: ti: omap-hdmi: Fix too long driver name (stable-fixes). * ASoC: tlv320adc3xxx: Do not strip remove function when driver is builtin (git-fixes). * ASoC: topology: Do not assign fields that are already set (stable-fixes). * ASoC: topology: Fix references to freed memory (stable-fixes). * ASoC: tracing: Export SND_SOC_DAPM_DIR_OUT to its value (git-fixes). * ASoC: wm_adsp: Add missing MODULE_DESCRIPTION() (git-fixes). * ASoC: wm_adsp: Fix missing mutex_lock in wm_adsp_write_ctl() (git-fixes). * ata: ahci: Clean up sysfs file on error (git-fixes). * ata: libata-core: Allow command duration limits detection for ACS-4 drives (git-fixes). * ata: libata-core: Fix double free on error (git-fixes). * ata: libata-core: Fix null pointer dereference on error (git-fixes). * ata: pata_legacy: make legacy_exit() work again (git-fixes). * ata: sata_gemini: Check clk_enable() result (stable-fixes). * ata: sata_mv: Fix PCI device ID table declaration compilation warning (git- fixes). * ata: sata_sx4: fix pdc20621_get_from_dimm() on 64-bit (git-fixes). * ata,scsi: libata-core: Do not leak memory for ata_port struct members (git- fixes). * autofs: use wake_up() instead of wake_up_interruptible(() (bsc#1224166). * auxdisplay: ht16k33: Drop reference after LED registration (git-fixes). * ax25: Fix netdev refcount issue (git-fixes). * ax25: Fix refcount imbalance on inbound connections (git-fixes). * ax25: Fix reference count leak issue of net_device (git-fixes). * ax25: Fix reference count leak issues of ax25_dev (git-fixes). * ax25: fix use-after-free bugs caused by ax25_ds_del_timer (git-fixes). * batman-adv: Avoid infinite loop trying to resize local TT (git-fixes). * batman-adv: bypass empty buckets in batadv_purge_orig_ref() (stable-fixes). * batman-adv: Do not accept TT entries for out-of-spec VIDs (git-fixes). * bitops: add missing prototype check (git-fixes). * blk-cgroup: fix list corruption from reorder of WRITE ->lqueued (bsc#1225605). * blk-cgroup: fix list corruption from resetting io stat (bsc#1225605). * block: fix q->blkg_list corruption during disk rebind (bsc#1223591). * block: Move checking GENHD_FL_NO_PART to bdev_add_partition() (bsc#1226213). * Bluetooth: Add new quirk for broken read key length on ATS2851 (stable- fixes). * Bluetooth: add quirk for broken address properties (git-fixes). * Bluetooth: ath3k: Fix multiple issues reported by checkpatch.pl (stable- fixes). * Bluetooth: btintel: Fixe build regression (git-fixes). * Bluetooth: btintel: Fix null ptr deref in btintel_read_version (stable- fixes). * Bluetooth: btintel: Refactor btintel_set_ppag() (git-fixes). * Bluetooth: btnxpuart: Add handling for boot-signature timeout errors (git- fixes). * Bluetooth: btnxpuart: Enable Power Save feature on startup (stable-fixes). * Bluetooth: btusb: Add Realtek RTL8852BE support ID 0x0bda:0x4853 (stable- fixes). * Bluetooth: btusb: Fix triggering coredump implementation for QCA (git- fixes). * Bluetooth: Fix memory leak in hci_req_sync_complete() (git-fixes). * Bluetooth: Fix TOCTOU in HCI debugfs implementation (git-fixes). * Bluetooth: Fix type of len in {l2cap,sco}_sock_getsockopt_old() (stable- fixes). * Bluetooth: Fix use-after-free bugs caused by sco_sock_timeout (git-fixes). * Bluetooth: hci_bcm4377: Fix msgid release (git-fixes). * Bluetooth: hci_bcm4377: Use correct unit for timeouts (git-fixes). * Bluetooth: hci_core: cancel all works upon hci_unregister_dev() (stable- fixes). * Bluetooth: hci_core: Cancel request on command timeout (stable-fixes). * bluetooth/hci: disallow setting handle bigger than HCI_CONN_HANDLE_MAX (git- fixes). * Bluetooth: hci_event: Fix sending HCI_OP_READ_ENC_KEY_SIZE (git-fixes). * Bluetooth: hci_event: Fix setting of unicast qos interval (git-fixes). * Bluetooth: hci_event: Remove code to removed CONFIG_BT_HS (stable-fixes). * Bluetooth: hci_event: Set QoS encryption from BIGInfo report (git-fixes). * Bluetooth: hci_event: set the conn encrypted before conn establishes (stable-fixes). * Bluetooth: HCI: Fix potential null-ptr-deref (git-fixes). * Bluetooth: hci_sock: Fix not validating setsockopt user input (git-fixes). * Bluetooth: hci_sync: Fix not checking error on hci_cmd_sync_cancel_sync (git-fixes). * Bluetooth: hci_sync: Fix using the same interval and window for Coded PHY (git-fixes). * Bluetooth: hci_sync: Use QoS to determine which PHY to scan (stable-fixes). * Bluetooth: Ignore too large handle values in BIG (git-fixes). * Bluetooth: ISO: Align broadcast sync_timeout with connection timeout (stable-fixes). * Bluetooth: ISO: Check socket flag instead of hcon (git-fixes). * Bluetooth: ISO: Do not reject BT_ISO_QOS if parameters are unset (git- fixes). * Bluetooth: ISO: Fix BIS cleanup (stable-fixes). * Bluetooth: l2cap: Do not double set the HCI_CONN_MGMT_CONNECTED bit (git- fixes). * Bluetooth: L2CAP: Fix not validating setsockopt user input (git-fixes). * Bluetooth: l2cap: fix null-ptr-deref in l2cap_chan_timeout (git-fixes). * Bluetooth: L2CAP: Fix rejecting L2CAP_CONN_PARAM_UPDATE_REQ (git-fixes). * Bluetooth: L2CAP: Fix slab-use-after-free in l2cap_connect() (git-fixes). * Bluetooth: MGMT: Fix failing to MGMT_OP_ADD_UUID/MGMT_OP_REMOVE_UUID (bsc#1221504). * Bluetooth: mgmt: Fix limited discoverable off timeout (stable-fixes). * Bluetooth: msft: fix slab-use-after-free in msft_do_close() (git-fixes). * Bluetooth: qca: add missing firmware sanity checks (git-fixes). * Bluetooth: qca: Fix BT enable failure again for QCA6390 after warm reboot (git-fixes). * Bluetooth: qca: fix device-address endianness (git-fixes). * Bluetooth: qca: Fix error code in qca_read_fw_build_info() (git-fixes). * Bluetooth: qca: fix firmware check error path (git-fixes). * Bluetooth: qca: fix info leak when fetching fw build id (git-fixes). * Bluetooth: qca: fix NULL-deref on non-serdev setup (git-fixes). * Bluetooth: qca: fix NULL-deref on non-serdev suspend (git-fixes). * Bluetooth: qca: fix NVM configuration parsing (git-fixes). * Bluetooth: qca: set power_ctrl_enabled on NULL returned by gpiod_get_optional() (git-fixes). * Bluetooth: Remove usage of the deprecated ida_simple_xx() API (stable- fixes). * Bluetooth: RFCOMM: Fix not validating setsockopt user input (git-fixes). * Bluetooth: SCO: Fix not validating setsockopt user input (git-fixes). * bnx2x: Fix firmware version string character counts (git-fixes). * bnxt_en: Fix error recovery for RoCE ulp client (git-fixes). * bnxt_en: Fix possible memory leak in bnxt_rdma_aux_device_init() (git- fixes). * bnxt_en: Reset PTP tx_avail after possible firmware reset (git-fixes). * bnxt_re: avoid shift undefined behavior in bnxt_qplib_alloc_init_hwq (git- fixes) * bootconfig: Fix the kerneldoc of _xbc_exit() (git-fixes). * bootconfig: use memblock_free_late to free xbc memory to buddy (git-fixes). * bootmem: use kmemleak_free_part_phys in free_bootmem_page (git-fixes). * bootmem: use kmemleak_free_part_phys in put_page_bootmem (git-fixes). * bpf, arm64: fix bug in BPF_LDX_MEMSX (git-fixes) * bpf, arm64: Fix incorrect runtime stats (git-fixes) * bpf: check bpf_func_state->callback_depth when pruning states (bsc#1225903). * bpf: correct loop detection for iterators convergence (bsc#1225903). * bpf: exact states comparison for iterator convergence checks (bsc#1225903). * bpf: extract __check_reg_arg() utility function (bsc#1225903). * bpf: extract same_callsites() as utility function (bsc#1225903). * bpf: extract setup_func_entry() utility function (bsc#1225903). * bpf: fix precision backtracking instruction iteration (bsc#1225756). * bpf: Fix precision tracking for BPF_ALU | BPF_TO_BE | BPF_END (git-fixes). * bpf: handle ldimm64 properly in check_cfg() (bsc#1225756). * bpf: keep track of max number of bpf_loop callback iterations (bsc#1225903). * bpf: move explored_state() closer to the beginning of verifier.c (bsc#1225903). * bpf: print full verifier states on infinite loop detection (bsc#1225903). * bpf: Remove xdp_do_flush_map() (bsc#1214683 (PREEMPT_RT prerequisite backports)). * bpf, scripts: Correct GPL license name (git-fixes). * bpf: verify callbacks as if they are called unknown number of times (bsc#1225903). * bpf: widening for callback iterators (bsc#1225903). * btrfs: add a helper to read the superblock metadata_uuid (git-fixes) * btrfs: add and use helper to check if block group is used (bsc#1220120). * btrfs: add missing mutex_unlock in btrfs_relocate_sys_chunks() (git-fixes) * btrfs: add new unused block groups to the list of unused block groups (bsc#1220120). * btrfs: allow to run delayed refs by bytes to be released instead of count (bsc#1220120). * btrfs: always clear PERTRANS metadata during commit (git-fixes) * btrfs: always print transaction aborted messages with an error level (git- fixes) * btrfs: always reserve space for delayed refs when starting transaction (bsc#1220120). * btrfs: assert correct lock is held at btrfs_select_ref_head() (bsc#1220120). * btrfs: assert delayed node locked when removing delayed item (git-fixes) * btrfs: avoid start and commit empty transaction when flushing qgroups (bsc#1220120). * btrfs: avoid start and commit empty transaction when starting qgroup rescan (bsc#1220120). * btrfs: avoid starting and committing empty transaction when flushing space (bsc#1220120). * btrfs: avoid starting new transaction when flushing delayed items and refs (bsc#1220120). * btrfs: check for BTRFS_FS_ERROR in pending ordered assert (git-fixes) * btrfs: compare the correct fsid/metadata_uuid in btrfs_validate_super (git- fixes) * btrfs: defrag: avoid unnecessary defrag caused by incorrect extent size (git-fixes) * btrfs: defrag: reject unknown flags of btrfs_ioctl_defrag_range_args (git- fixes) * btrfs: do not allow non subvolume root targets for snapshot (git-fixes) * btrfs: do not arbitrarily slow down delalloc if we're committing (git-fixes) * btrfs: do not delete unused block group if it may be used soon (bsc#1220120). * btrfs: do not refill whole delayed refs block reserve when starting transaction (bsc#1220120). * btrfs: do not start transaction when joining with TRANS_JOIN_NOSTART (git- fixes) * btrfs: do not steal space from global rsv after a transaction abort (bsc#1220120). * btrfs: do not warn if discard range is not aligned to sector (git-fixes) * btrfs: ensure fiemap does not race with writes when FIEMAP_FLAG_SYNC is given (bsc#1223285). * btrfs: error out when COWing block using a stale transaction (git-fixes) * btrfs: error out when reallocating block for defrag using a stale transaction (git-fixes) * btrfs: export: handle invalid inode or root reference in btrfs_get_parent() (git-fixes) * btrfs: fail priority metadata ticket with real fs error (bsc#1220120). * btrfs: file_remove_privs needs an exclusive lock in direct io write (git- fixes) * btrfs: fix 64bit compat send ioctl arguments not initializing version member (git-fixes) * btrfs: fix deadlock with fiemap and extent locking (bsc#1223285). * btrfs: fix information leak in btrfs_ioctl_logical_to_ino() (git-fixes) * btrfs: fix kvcalloc() arguments order in btrfs_ioctl_send() (git-fixes) * btrfs: fix lockdep splat and potential deadlock after failure running delayed items (git-fixes) * btrfs: fix off-by-one chunk length calculation at contains_pending_extent() (git-fixes) * btrfs: fix off-by-one when checking chunk map includes logical address (git- fixes) * btrfs: fix race between ordered extent completion and fiemap (bsc#1223285). * btrfs: fix race when detecting delalloc ranges during fiemap (bsc#1223285). * btrfs: fix race when refilling delayed refs block reserve (git-fixes) * btrfs: fix start transaction qgroup rsv double free (git-fixes) * btrfs: fix stripe length calculation for non-zoned data chunk allocation (bsc#1217489). * btrfs: fix wrong block_start calculation for btrfs_drop_extent_map_range() (git-fixes) Dropped hunk in selftests (test_case_7), 92e1229b204d6. * btrfs: free qgroup rsv on io failure (git-fixes) * btrfs: free the allocated memory if btrfs_alloc_page_array() fails (git- fixes) * btrfs: get rid of label and goto at insert_delayed_ref() (bsc#1220120). * btrfs: handle chunk tree lookup error in btrfs_relocate_sys_chunks() (git- fixes) * btrfs: handle errors properly in update_inline_extent_backref() (git-fixes) * btrfs: initialize key where it's used when running delayed data ref (bsc#1220120). * btrfs: log message if extent item not found when running delayed extent op (bsc#1220120). * btrfs: make btrfs_cleanup_fs_roots() static (bsc#1220120). * btrfs: make btrfs_destroy_delayed_refs() return void (bsc#1220120). * btrfs: make btrfs_destroy_marked_extents() return void (bsc#1220120). * btrfs: make btrfs_destroy_pinned_extent() return void (bsc#1220120). * btrfs: make error messages more clear when getting a chunk map (git-fixes) * btrfs: make find_first_extent_bit() return a boolean (bsc#1220120). * btrfs: make find_free_dev_extent() static (bsc#1220120). * btrfs: make insert_delayed_ref() return a bool instead of an int (bsc#1220120). * btrfs: merge find_free_dev_extent() and find_free_dev_extent_start() (bsc#1220120). * btrfs: move btrfs_free_excluded_extents() into block-group.c (bsc#1220120). * btrfs: open code trivial btrfs_add_excluded_extent() (bsc#1220120). * btrfs: output extra debug info if we failed to find an inline backref (git- fixes) * btrfs: pass a space_info argument to btrfs_reserve_metadata_bytes() (bsc#1220120). * btrfs: prevent transaction block reserve underflow when starting transaction (git-fixes) * btrfs: print available space across all block groups when dumping space info (bsc#1220120). * btrfs: print available space for a block group when dumping a space info (bsc#1220120). * btrfs: print block group super and delalloc bytes when dumping space info (bsc#1220120). * btrfs: print target number of bytes when dumping free space (bsc#1220120). * btrfs: qgroup: always free reserved space for extent records (bsc#1216196). * btrfs: qgroup: convert PREALLOC to PERTRANS after record_root_in_trans (git- fixes) * btrfs: record delayed inode root in transaction (git-fixes) * btrfs: reject encoded write if inode has nodatasum flag set (git-fixes) * btrfs: release path before inode lookup during the ino lookup ioctl (git- fixes) * btrfs: remove pointless initialization at btrfs_delayed_refs_rsv_release() (bsc#1220120). * btrfs: remove pointless in_tree field from struct btrfs_delayed_ref_node (bsc#1220120). * btrfs: remove pointless 'ref_root' variable from run_delayed_data_ref() (bsc#1220120). * btrfs: remove redundant BUG_ON() from __btrfs_inc_extent_ref() (bsc#1220120). * btrfs: remove refs_to_add argument from __btrfs_inc_extent_ref() (bsc#1220120). * btrfs: remove refs_to_drop argument from __btrfs_free_extent() (bsc#1220120). * btrfs: remove the refcount warning/check at btrfs_put_delayed_ref() (bsc#1220120). * btrfs: remove unnecessary logic when running new delayed references (bsc#1220120). * btrfs: remove unnecessary prototype declarations at disk-io.c (bsc#1220120). * btrfs: remove unused is_head field from struct btrfs_delayed_ref_node (bsc#1220120). * btrfs: rename add_new_free_space() to btrfs_add_new_free_space() (bsc#1220120). * btrfs: reorder some members of struct btrfs_delayed_ref_head (bsc#1220120). * btrfs: reserve space for delayed refs on a per ref basis (bsc#1220120). * btrfs: reset destination buffer when read_extent_buffer() gets invalid range (git-fixes) * btrfs: return -EUCLEAN for delayed tree ref with a ref count not equals to 1 (git-fixes) * btrfs: return -EUCLEAN if extent item is missing when searching inline backref (bsc#1220120). * btrfs: return real error when orphan cleanup fails due to a transaction abort (bsc#1220120). * btrfs: send: do not issue unnecessary zero writes for trailing hole (bsc#1222459). * btrfs: send: ensure send_fd is writable (git-fixes) * btrfs: send: handle path ref underflow in header iterate_inode_ref() (git- fixes) * btrfs: send: return EOPNOTSUPP on unknown flags (git-fixes) * btrfs: set page extent mapped after read_folio in relocate_one_page (git- fixes) * btrfs: simplify check for extent item overrun at lookup_inline_extent_backref() (bsc#1220120). * btrfs: stop doing excessive space reservation for csum deletion (bsc#1220120). * btrfs: store the error that turned the fs into error state (bsc#1220120). * btrfs: sysfs: validate scrub_speed_max value (git-fixes) * btrfs: tree-checker: fix inline ref size in error messages (git-fixes) * btrfs: update comment for btrfs_join_transaction_nostart() (bsc#1220120). * btrfs: update documentation for add_new_free_space() (bsc#1220120). * btrfs: use a bool to track qgroup record insertion when adding ref head (bsc#1220120). * btrfs: use a single switch statement when initializing delayed ref head (bsc#1220120). * btrfs: use a single variable for return value at lookup_inline_extent_backref() (bsc#1220120). * btrfs: use a single variable for return value at run_delayed_extent_op() (bsc#1220120). * btrfs: use bool type for delayed ref head fields that are used as booleans (bsc#1220120). * btrfs: use the correct superblock to compare fsid in btrfs_validate_super (git-fixes) * btrfs: use u64 for buffer sizes in the tree search ioctls (git-fixes) * btrfs: zoned: do not skip block groups with 100% zone unusable (bsc#1220120). * bus: mhi: ep: check the correct variable in mhi_ep_register_controller() (git-fixes). * bus: mhi: host: allow MHI client drivers to provide the firmware via a pointer (bsc#1227149). * bytcr_rt5640 : inverse jack detect for Archos 101 cesium (stable-fixes). * cachefiles: add output string to cachefiles_obj_[get|put]_ondemand_fd (git- fixes). * cachefiles: remove requests from xarray during flushing requests (bsc#1226588). * can: kvaser_usb: Explicitly initialize family in leafimx driver_info struct (git-fixes). * can: kvaser_usb: fix return value for hif_usb_send_regout (stable-fixes). * can: mcp251xfd: fix infinite loop when xmit fails (git-fixes). * cdrom: rearrange last_media_change check to avoid unintentional overflow (stable-fixes). * ceph: add ceph_cap_unlink_work to fire check_caps() immediately (bsc#1226022). * ceph: always check dir caps asynchronously (bsc#1226022). * ceph: always queue a writeback when revoking the Fb caps (bsc#1226022). * ceph: break the check delayed cap loop every 5s (bsc#1226022). * ceph: fix incorrect kmalloc size of pagevec mempool (bsc#1228417). * ceph: redirty page before returning AOP_WRITEPAGE_ACTIVATE (bsc#1224866). * ceph: stop copying to iter at EOF on sync reads (bsc#1222606). * ceph: switch to use cap_delay_lock for the unlink delay list (bsc#1226022). * char: tpm: Fix possible memory leak in tpm_bios_measurements_open() (git- fixes). * checkpatch: really skip LONG_LINE_* when LONG_LINE is ignored (git-fixes). * cifs: Add a laundromat thread for cached directories (git-fixes, bsc#1225172). * clk: davinci: da8xx-cfgchip: Initialize clk_init_data before use (git- fixes). * clk: Do not hold prepare_lock when calling kref_put() (stable-fixes). * clk: Get runtime PM before walking tree during disable_unused (git-fixes). * clk: Get runtime PM before walking tree for clk_summary (git-fixes). * clk: Initialize struct clk_core kref earlier (stable-fixes). * clk: mediatek: Do a runtime PM get on controllers during probe (git-fixes). * clk: mediatek: mt8183: Only enable runtime PM on mt8183-mfgcfg (git-fixes). * clk: mediatek: mt8365-mm: fix DPI0 parent (git-fixes). * clk: mediatek: pllfh: Do not log error for missing fhctl node (git-fixes). * clk: qcom: clk-alpha-pll: fix rate setting for Stromer PLLs (git-fixes). * clk: qcom: clk-alpha-pll: remove invalid Stromer register offset (git- fixes). * clk: qcom: clk-alpha-pll: set ALPHA_EN bit for Stromer Plus PLLs (git- fixes). * clk: qcom: dispcc-sm6350: fix DisplayPort clocks (git-fixes). * clk: qcom: dispcc-sm8450: fix DisplayPort clocks (git-fixes). * clk: qcom: dispcc-sm8550: fix DisplayPort clocks (git-fixes). * clk: qcom: gcc-sm6350: Fix gpll6* & gpll7 parents (git-fixes). * clk: qcom: mmcc-msm8998: fix venus clock issue (git-fixes). * clk: qcom: reset: Commonize the de/assert functions (stable-fixes). * clk: qcom: reset: Ensure write completion on reset de/assertion (git-fixes). * clk: Remove prepare_lock hold assertion in __clk_release() (git-fixes). * clk: renesas: r8a779a0: Fix CANFD parent clock (git-fixes). * clk: renesas: r9a07g043: Add clock and reset entry for PLIC (git-fixes). * clk: rs9: fix wrong default value for clock amplitude (git-fixes). * clk: samsung: exynosautov9: fix wrong pll clock id value (git-fixes). * clk: Show active consumers of clocks in debugfs (stable-fixes). * clk: sunxi-ng: h6: Reparent CPUX during PLL CPUX rate change (git-fixes). * clocksource/drivers/arm_global_timer: Fix maximum prescaler value (git- fixes). * clocksource/drivers/imx: Fix -Wunused-but-set-variable warning (git-fixes). * comedi: vmk80xx: fix incomplete endpoint checking (git-fixes). * config/arm64: Enable CoreSight PMU drivers (bsc#1228289 jsc#PED-7859) * coresight: trbe: Add a representative coresight_platform_data for (bsc#1220587) * coresight: trbe: Allocate platform data per device (bsc#1220587) * coresight: trbe: Enable ACPI based TRBE devices (bsc#1220587) * counter: linux/counter.h: fix Excess kernel-doc description warning (git- fixes). * counter: ti-eqep: enable clock at probe (git-fixes). * cppc_cpufreq: Fix possible null pointer dereference (git-fixes). * cpufreq: amd-pstate: fix memory leak on CPU EPP exit (stable-fixes). * cpufreq: amd-pstate: Fix the inconsistency in max frequency units (git- fixes). * cpufreq/amd-pstate: Fix the scaling_max_freq setting on shared memory CPPC systems (git-fixes). * cpufreq: brcmstb-avs-cpufreq: ISO C90 forbids mixed declarations (git- fixes). * cpufreq: exit() callback is optional (git-fixes). * cpufreq: ti-cpufreq: Handle deferred probe with dev_err_probe() (git-fixes). * cpumask: Add for_each_cpu_from() (bsc#1225053). * crypto: aead,cipher - zeroize key buffer after use (stable-fixes). * crypto: bcm - Fix pointer arithmetic (git-fixes). * crypto: ccp - Add support for PCI device 0x156E (bsc#1223338). * crypto: ccp - Add support for PCI device 0x17E0 (bsc#1223338). * crypto: ccp - drop platform ifdef checks (git-fixes). * crypto: ccp - Fix null pointer dereference in __sev_snp_shutdown_locked (git-fixes). * crypto: deflate - Add aliases to deflate (bsc#1227190). * crypto: ecc - update ecc_gen_privkey for FIPS 186-5 (bsc#1222782). * crypto: ecdh - explicitly zeroize private_key (stable-fixes). * crypto/ecdh: make ecdh_compute_value() to zeroize the public key (bsc#1222768). * crypto: ecdsa - Fix module auto-load on add-key (git-fixes). * crypto: ecdsa - Fix the public key format description (git-fixes). * crypto/ecdsa: make ecdsa_ecc_ctx_deinit() to zeroize the public key (bsc#1222768). * crypto: ecrdsa - Fix module auto-load on add_key (stable-fixes). * crypto: hisilicon/debugfs - Fix debugfs uninit process issue (stable-fixes). * crypto: hisilicon/qm - Add the err memory release process to qm uninit (stable-fixes). * crypto: hisilicon/sec - Fix memory leak for sec resource release (stable- fixes). * crypto: iaa - Account for cpu-less numa nodes (bsc#1227190). * crypto: lib/mpi - Fix unexpected pointer access in mpi_ec_init (git-fixes). * crypto: qat - extend scope of lock in adf_cfg_add_key_value_param() (git- fixes). * crypto: qat - Fix ADF_DEV_RESET_SYNC memory leak (git-fixes). * crypto: qat - fix ring to service map for dcc in 4xxx (git-fixes). * crypto: qat - improve error logging to be consistent across features (git- fixes). * crypto: qat - relocate and rename get_service_enabled() (stable-fixes). * crypto: qat - specify firmware files for 402xx (git-fixes). * crypto: rsa - add a check for allocation failure (bsc#1222775). * crypto: rsa - allow only odd e and restrict value in FIPS mode (bsc#1222775). * crypto: testmgr - remove unused xts4096 and xts512 algorithms from testmgr.c (bsc#1222769). * crypto: x86/nh-avx2 - add missing vzeroupper (git-fixes). * crypto: x86/sha256-avx2 - add missing vzeroupper (git-fixes). * crypto: x86/sha512-avx2 - add missing vzeroupper (git-fixes). * cxgb4: Properly lock TX queue for the selftest (bsc#1214683 (PREEMPT_RT prerequisite backports)). * cxl/acpi: Fix load failures due to single window creation failure (git- fixes). * cxl/pci: Fix disabling memory if DVSEC CXL Range does not match a CFMWS window (git-fixes). * cxl/region: Fix cxlr_pmem leaks (git-fixes). * cxl/region: Fix memregion leaks in devm_cxl_add_region() (git-fixes). * cxl/test: Add missing vmalloc.h for tools/testing/cxl/test/mem.c (git- fixes). * cxl/trace: Correct DPA field masks for general_media & dram events (git- fixes). * cxl/trace: Properly initialize cxl_poison region name (git-fixes). * dax: alloc_dax() return ERR_PTR(-EOPNOTSUPP) for CONFIG_DAX=n (jsc#PED-5853). * dax/bus.c: replace driver-core lock usage by a local rwsem (jsc#PED-5853). * dax/bus.c: replace several sprintf() with sysfs_emit() (jsc#PED-5853). * decompress_bunzip2: fix rare decompression failure (git-fixes). * device-dax: make dax_bus_type const (jsc#PED-5853). * devres: Fix devm_krealloc() wasting memory (git-fixes). * devres: Fix memory leakage caused by driver API devm_free_percpu() (git- fixes). * dlm: fix user space lkb refcounting (git-fixes). * dlm: fix user space lock decision to copy lvb (git-fixes). * dma-buf: Fix NULL pointer dereference in sanitycheck() (git-fixes). * dma-buf/sw-sync: do not enable IRQ from sync_print_obj() (git-fixes). * dmaengine: axi-dmac: fix possible race in remove() (git-fixes). * dmaengine: idma64: Add check for dma_set_max_seg_size (git-fixes). * dmaengine: idxd: Avoid unnecessary destruction of file_ida (git-fixes). * dmaengine: idxd: Fix oops during rmmod on single-CPU platforms (git-fixes). * dmaengine: idxd: Fix possible Use-After-Free in irq_process_work_list (git- fixes). * dmaengine: ioatdma: Fix error path in ioat3_dma_probe() (git-fixes). * dmaengine: ioatdma: Fix kmemleak in ioat_pci_probe() (git-fixes). * dmaengine: ioatdma: Fix leaking on version mismatch (git-fixes). * dmaengine: ioatdma: Fix missing kmem_cache_destroy() (git-fixes). * dmaengine: owl: fix register access functions (git-fixes). * dmaengine: tegra186: Fix residual calculation (git-fixes). * dmaengine: ti: k3-udma: Fix BCHAN count with UHC and HC channels (git- fixes). * dma: fix call order in dmam_free_coherent (git-fixes). * dma-mapping: benchmark: fix node id validation (git-fixes). * dma-mapping: benchmark: handle NUMA_NO_NODE correctly (git-fixes). * dm/amd/pm: Fix problems with reboot/shutdown for some SMU 13.0.4/13.0.11 users (git-fixes). * dma: xilinx_dpdma: Fix locking (git-fixes). * dm crypt: remove redundant state settings after waking up (jsc#PED-7542). * dm-integrity: set max_integrity_segments in dm_integrity_io_hints (jsc#PED-7542). * dm-multipath: dont't attempt SG_IO on non-SCSI-disks (bsc#1223575). * dm-raid: add a new helper prepare_suspend() in md_personality (jsc#PED-7542). * dm-raid: really frozen sync_thread during suspend (jsc#PED-7542). * dm thin: add braces around conditional code that spans lines (jsc#PED-7542). * dm: update relevant MODULE_AUTHOR entries to latest dm-devel mailing list (jsc#PED-7542). * dm verity: set DM_TARGET_SINGLETON feature flag (jsc#PED-7542). * Docs/admin-guide/mm/damon/usage: fix wrong example of DAMOS filter matching sysfs file (git-fixes). * docs: crypto: async-tx-api: fix broken code example (git-fixes). * docs: kernel_include.py: Cope with docutils 0.21 (stable-fixes). * docs: netdev: Fix typo in Signed-off-by tag (git-fixes). * docs: Restore "smart quotes" for quotes (stable-fixes). * dpll: spec: use proper enum for pin capabilities attribute (git-fixes). * driver core: Introduce device_link_wait_removal() (stable-fixes). * drivers: core: synchronize really_probe() and dev_uevent() (git-fixes). * drivers/nvme: Add quirks for device 126f:2262 (git-fixes). * drivers: soc: xilinx: check return status of get_api_version() (git-fixes). * drivers/xen: Improve the late XenStore init protocol (git-fixes). * drm: add drm_gem_object_is_shared_for_memory_stats() helper (stable-fixes). * drm/amd/amdgpu: Fix potential ioremap() memory leaks in amdgpu_device_init() (stable-fixes). * drm/amd/amdgpu: Fix uninitialized variable warnings (git-fixes). * drm/amd/display: Account for cursor prefetch BW in DML1 mode support (stable-fixes). * drm/amd/display: Add dml2 copy functions (stable-fixes). * drm/amd/display: Add dtbclk access to dcn315 (stable-fixes). * drm/amd/display: Add VCO speed parameter for DCN31 FPU (stable-fixes). * drm/amd/display: Allocate zero bw after bw alloc enable (stable-fixes). * drm/amd/display: Allow dirty rects to be sent to dmub when abm is active (stable-fixes). * drm/amd/display: ASSERT when failing to find index by plane/stream id (stable-fixes). * drm/amd/display: Atom Integrated System Info v2_2 for DCN35 (stable-fixes). * drm/amd/display: Change default size for dummy plane in DML2 (stable-fixes). * drm/amd/display: change dram_clock_latency to 34us for dcn35 (stable-fixes). * drm/amd/display: Check index msg_id before read or write (stable-fixes). * drm/amd/display: Check pipe offset before setting vblank (stable-fixes). * drm/amd/display: Disable seamless boot on 128b/132b encoding (stable-fixes). * drm/amd/display: Do not recursively call manual trigger programming (stable- fixes). * drm/amd/display: Enable colorspace property for MST connectors (git-fixes). * drm/amd/display: Exit idle optimizations before HDCP execution (stable- fixes). * drm/amd/display: Fix array-index-out-of-bounds in dml2/FCLKChangeSupport (stable-fixes). * drm/amd/display: Fix bounds check for dcn35 DcfClocks (git-fixes). * drm/amd/display: Fix DC mode screen flickering on DCN321 (stable-fixes). * drm/amd/display: fix disable otg wa logic in DCN316 (stable-fixes). * drm/amd/display: Fix division by zero in setup_dsc_config (stable-fixes). * drm/amd/display: Fix idle check for shared firmware state (stable-fixes). * drm/amd/display: Fix incorrect DSC instance for MST (stable-fixes). * drm/amd/display: fix input states translation error for dcn35 & dcn351 (stable-fixes). * drm/amd/display: Fix nanosec stat overflow (stable-fixes). * drm/amd/display: Fix noise issue on HDMI AV mute (stable-fixes). * drm/amd/display: Fix overlapping copy within dml_core_mode_programming (stable-fixes). * drm/amd/display: Fix potential index out of bounds in color transformation function (git-fixes). * drm/amd/display: Fix uninitialized variables in DM (stable-fixes). * drm/amd/display: handle range offsets in VRR ranges (stable-fixes). * drm/amd/display: Handle Y carry-over in VCP X.Y calculation (stable-fixes). * drm/amd/display: Init DPPCLK from SMU on dcn32 (stable-fixes). * drm/amd/display: Move 'struct scaler_data' off stack (git-fixes). * drm/amd/display: Override min required DCFCLK in dml1_validate (stable- fixes). * drm/amd/display: Prevent crash when disable stream (stable-fixes). * drm/amd/display: Program VSC SDP colorimetry for all DP sinks >= 1.4 (stable-fixes). * drm/amd/display: Remove MPC rate control logic from DCN30 and above (stable- fixes). * drm/amd/display: Remove pixle rate limit for subvp (stable-fixes). * drm/amd/display: Remove redundant condition in dcn35_calc_blocks_to_gate() (git-fixes). * drm/amd/display: Return the correct HDCP error code (stable-fixes). * drm/amd/display: revert Exit idle optimizations before HDCP execution (stable-fixes). * drm/amd/display: Revert Remove pixle rate limit for subvp (stable-fixes). * drm/amd/display: Send DP_TOTAL_LTTPR_CNT during detection if LTTPR is present (stable-fixes). * drm/amd/display: Send DTBCLK disable message on first commit (git-fixes). * drm/amd/display: Set color_mgmt_changed to true on unsuspend (stable-fixes). * drm/amd/display: Set DCN351 BB and IP the same as DCN35 (stable-fixes). * drm/amd/display: Set VSC SDP Colorimetry same way for MST and SST (stable- fixes). * drm/amd/display: Skip finding free audio for unknown engine_id (stable- fixes). * drm/amd/display: Skip pipe if the pipe idx not set properly (stable-fixes). * drm/amd/display: Use freesync when `DRM_EDID_FEATURE_CONTINUOUS_FREQ` found (stable-fixes). * drm/amd/display: Workaround register access in idle race with cursor (stable-fixes). * drm/amd: Fix shutdown (again) on some SMU v13.0.4/11 platforms (git-fixes). * drm/amd: Flush GFXOFF requests in prepare stage (git-fixes). * drm/amdgpu: add error handle to avoid out-of-bounds (stable-fixes). * drm/amdgpu: always force full reset for SOC21 (stable-fixes). * drm/amdgpu: amdgpu_ttm_gart_bind set gtt bound flag (stable-fixes). * drm/amdgpu: Assign correct bits for SDMA HDP flush (stable-fixes). * drm/amdgpu/atomfirmware: add intergrated info v2.3 table (stable-fixes). * drm/amdgpu/atomfirmware: fix parsing of vram_info (stable-fixes). * drm/amdgpu/atomfirmware: silence UBSAN warning (stable-fixes). * drm/amdgpu: avoid using null object of framebuffer (stable-fixes). * drm/amdgpu: Check if NBIO funcs are NULL in amdgpu_device_baco_exit (git- fixes). * drm/amdgpu/display: Address kdoc for 'is_psr_su' in 'fill_dc_dirty_rects' (git-fixes). * drm/amdgpu: drop setting buffer funcs in sdma442 (git-fixes). * drm/amdgpu: Fix buffer size in gfx_v9_4_3_init_ cp_compute_microcode() and rlc_microcode() (git-fixes). * drm/amdgpu: Fix comparison in amdgpu_res_cpu_visible (git-fixes). * drm/amdgpu: fix deadlock while reading mqd from debugfs (git-fixes). * drm/amdgpu: fix doorbell regression (git-fixes). * drm/amdgpu: fix incorrect number of active RBs for gfx11 (stable-fixes). * drm/amdgpu: Fix leak when GPU memory allocation fails (stable-fixes). * drm/amdgpu: fix locking scope when flushing tlb (stable-fixes). * drm/amdgpu: Fix memory range calculation (git-fixes). * drm/amdgpu: fix mmhub client id out-of-bounds access (git-fixes). * drm/amdgpu: Fix pci state save during mode-1 reset (git-fixes). * drm/amdgpu: Fix signedness bug in sdma_v4_0_process_trap_irq() (git-fixes). * drm/amdgpu: Fix the ring buffer size for queue VM flush (stable-fixes). * drm/amdgpu: fix the warning about the expression (int)size - len (stable- fixes). * drm/amdgpu: fix UBSAN warning in kv_dpm.c (stable-fixes). * drm/amdgpu: fix uninitialized scalar variable warning (stable-fixes). * drm/amdgpu: Fix uninitialized variable warnings (stable-fixes). * drm/amdgpu: fix use-after-free bug (stable-fixes). * drm/amdgpu: Fix VCN allocation in CPX partition (stable-fixes). * drm/amdgpu: fix visible VRAM handling during faults (git-fixes). * drm/amdgpu: Fix VRAM memory accounting (stable-fixes). * drm/amdgpu: implement IRQ_STATE_ENABLE for SDMA v4.4.2 (stable-fixes). * drm/amdgpu: Indicate CU havest info to CP (stable-fixes). * drm/amdgpu: Initialize timestamp for some legacy SOCs (stable-fixes). * drm/amdgpu: init microcode chip name from ip versions (stable-fixes). * drm/amdgpu: make damage clips support configurable (stable-fixes). * drm/amdgpu/mes: fix use-after-free issue (stable-fixes). * drm/amdgpu: once more fix the call oder in amdgpu_ttm_move() v2 (git-fixes). * drm/amdgpu/pm: Check the validity of overdiver power limit (git-fixes). * drm/amdgpu/pm: Fix NULL pointer dereference when get power limit (git- fixes). * drm/amdgpu/pm: Fix the error of pwm1_enable setting (stable-fixes). * drm/amdgpu: Refine IB schedule error logging (stable-fixes). * drm/amdgpu: Remove GC HW IP 9.3.0 from noretry=1 (git-fixes). * drm/amdgpu: remove invalid resource->start check v2 (git-fixes). * drm/amdgpu: Reset dGPU if suspend got aborted (stable-fixes). * drm/amdgpu/sdma5.2: use legacy HDP flush for SDMA2/3 (stable-fixes). * drm/amdgpu: silence UBSAN warning (stable-fixes). * drm/amdgpu: Using uninitialized value *size when calling amdgpu_vce_cs_reloc (stable-fixes). * drm/amdgpu: validate the parameters of bo mapping operations more clearly (git-fixes). * drm/amdkfd: Add VRAM accounting for SVM migration (stable-fixes). * drm/amdkfd: Check cgroup when returning DMABuf info (stable-fixes). * drm/amdkfd: do not allow mapping the MMIO HDP page with large pages (git- fixes). * drm/amdkfd: Fix CU Masking for GFX 9.4.3 (git-fixes). * drm/amdkfd: Fix memory leak in create_process failure (git-fixes). * drm/amdkfd: fix TLB flush after unmap for GFX9.4.2 (stable-fixes). * drm/amdkfd: Flush the process wq before creating a kfd_process (stable- fixes). * drm/amdkfd: Let VRAM allocations go to GTT domain on small APUs (stable- fixes). * drm/amdkfd: range check cp bad op exception interrupts (stable-fixes). * drm/amdkfd: Reset GPU on queue preemption failure (stable-fixes). * drm/amd/pm: Fix aldebaran pcie speed reporting (git-fixes). * drm/amd/pm: fixes a random hang in S4 for SMU v13.0.4/11 (stable-fixes). * drm/amd/pm: remove logically dead code for renoir (git-fixes). * drm/amd/pm: Restore config space after reset (stable-fixes). * drm/amd/swsmu: modify the gfx activity scaling (stable-fixes). * drm/arm/komeda: Fix komeda probe failing if there are no links in the secondary pipeline (git-fixes). * drm/arm/malidp: fix a possible null pointer dereference (git-fixes). * drm/ast: Fix soft lockup (git-fixes). * drm/bridge: anx7625: Do not log an error when DSI host can't be found (git- fixes). * drm: bridge: cdns-mhdp8546: Fix possible null pointer dereference (git- fixes). * drm/bridge: dpc3433: Do not log an error when DSI host can't be found (git- fixes). * drm/bridge: Fix improper bridge init order with pre_enable_prev_first (git- fixes). * drm/bridge: icn6211: Do not log an error when DSI host can't be found (git- fixes). * drm/bridge: it6505: fix hibernate to resume no display issue (git-fixes). * drm/bridge: lt8912b: Do not log an error when DSI host can't be found (git- fixes). * drm/bridge: lt9611: Do not log an error when DSI host can't be found (git- fixes). * drm/bridge: lt9611uxc: Do not log an error when DSI host can't be found (git-fixes). * drm/bridge/panel: Fix runtime warning on panel bridge release (git-fixes). * drm/bridge: samsung-dsim: Set P divider based on min/max of fin pll (git- fixes). * drm/bridge: tc358775: Do not log an error when DSI host can't be found (git- fixes). * drm/bridge: tc358775: fix support for jeida-18 and jeida-24 (git-fixes). * drm/buddy: check range allocation matches alignment (stable-fixes). * drm: Check output polling initialized before disabling (stable-fixes). * drm: Check polling initialized before enabling in drm_helper_probe_single_connector_modes (stable-fixes). * drm/client: Fully protect modes[] with dev->mode_config.mutex (stable- fixes). * drm/connector: Add \n to message about demoting connector force-probes (git- fixes). * drm/display: fix typo (git-fixes). * drm/dp_mst: Fix all mstb marked as not probed after suspend/resume (git- fixes). * drm/etnaviv: fix DMA direction handling for cached RW buffers (git-fixes). * drm/etnaviv: fix tx clock gating on some GC7000 variants (stable-fixes). * drm/exynos: do not return negative values from .get_modes() (stable-fixes). * drm/exynos: dp: drop driver owner initialization (stable-fixes). * drm/exynos: hdmi: report safe 640x480 mode as a fallback when no EDID found (git-fixes). * drm/exynos/vidi: fix memory leak in .get_modes() (stable-fixes). * drm/fbdev-dma: Fix framebuffer mode for big endian devices (git-fixes). * drm/fbdev-dma: Only set smem_start is enable per module option (git-fixes). * drm/fbdev-generic: Do not set physical framebuffer address (git-fixes). * drm/fbdev-generic: Fix framebuffer on big endian devices (git-fixes). * drm: Fix drm_fixp2int_round() making it add 0.5 (git-fixes). * drm/gma500: fix null pointer dereference in cdv_intel_lvds_get_modes (git- fixes). * drm/gma500: fix null pointer dereference in psb_intel_lvds_get_modes (git- fixes). * drm/gma500: Remove lid code (git-fixes). * drm/i915/audio: Fix audio time stamp programming for DP (stable-fixes). * drm/i915/bios: Fix parsing backlight BDB data (git-fixes). * drm/i915/bios: Tolerate devdata==NULL in intel_bios_encoder_supports_dp_dual_mode() (stable-fixes). * drm/i915/cdclk: Fix CDCLK programming order when pipes are active (git- fixes). * drm/i915: Disable port sync when bigjoiner is used (stable-fixes). * drm/i915/display: Use i915_gem_object_get_dma_address to get dma address (stable-fixes). * drm/i915: Do not match JSL in ehl_combo_pll_div_frac_wa_needed() (git- fixes). * drm/i915/dp: Do not switch the LTTPR mode on an active link (git-fixes). * drm/i915/dp: Fix the computation for compressed_bpp for DISPLAY < 13 (git-fixes). * drm/i915/dp: Remove support for UHBR13.5 (git-fixes). * drm/i915/dpt: Make DPT object unshrinkable (git-fixes). * drm/i915/dsb: Fix DSB vblank waits when using VRR (git-fixes). * drm/i915/dsi: Go back to the previous INIT_OTP/DISPLAY_ON order, mostly (git-fixes). * drm/i915: Fix audio component initialization (git-fixes). * drm/i915/gt: Automate CCS Mode setting during engine resets (git-fixes). * drm/i915/gt: Disable HW load balancing for CCS (git-fixes). * drm/i915/gt: Disarm breadcrumbs if engines are already idle (git-fixes). * drm/i915/gt: Do not consider preemption during execlists_dequeue for gen8 (git-fixes). * drm/i915/gt: Do not generate the command streamer for all the CCS (git- fixes). * drm/i915/gt: Enable only one CCS for compute workload (git-fixes). * drm/i915/gt: Fix CCS id's calculation for CCS mode setting (git-fixes). * drm/i915/gt: Fix potential UAF by revoke of fence registers (git-fixes). * drm/i915/gt: Reset queue_priority_hint on parking (git-fixes). * drm/i915/guc: avoid FIELD_PREP warning (git-fixes). * drm/i915/hwmon: Fix locking inversion in sysfs getter (git-fixes). * drm/i915/hwmon: Get rid of devm (stable-fixes). * drm/i915: Include the PLL name in the debug messages (stable-fixes). * drm/i915/lspcon: Separate function to set expected mode (bsc#1193599). * drm/i915/lspcon: Separate lspcon probe and lspcon init (bsc#1193599). * drm/i915/mso: using joiner is not possible with eDP MSO (git-fixes). * drm/i915/mst: Limit MST+DSC to TGL+ (git-fixes). * drm/i915/mst: Reject FEC+MST on ICL (git-fixes). * drm/i915: Pre-populate the cursor physical dma address (git-fixes). * drm/i915: Replace a memset() with zero initialization (stable-fixes). * drm/i915: Stop printing pipe name as hex (stable-fixes). * drm/i915: Suppress old PLL pipe_mask checks for MG/TC/TBT PLLs (stable- fixes). * drm/i915: Try to preserve the current shared_dpll for fastset on type-c ports (stable-fixes). * drm/i915: Use named initializers for DPLL info (stable-fixes). * drm/i915/vrr: Disable VRR when using bigjoiner (stable-fixes). * drm/i915/vrr: Generate VRR "safe window" for DSB (git-fixes). * drm/imx/ipuv3: do not return negative values from .get_modes() (stable- fixes). * drm/komeda: check for error-valued pointer (git-fixes). * drm/lcdif: Do not disable clocks on already suspended hardware (git-fixes). * drm/lima: add mask irq callback to gp and pp (stable-fixes). * drm/lima: fix shared irq handling on driver remove (stable-fixes). * drm/lima: Mark simple_ondemand governor as softdep (git-fixes). * drm/lima: mask irqs in timeout path before hard reset (stable-fixes). * drm/mediatek: Add 0 size check to mtk_drm_gem_obj (git-fixes). * drm/mediatek: Add DRM_MODE_ROTATE_0 to rotation property (git-fixes). * drm/mediatek: Add OVL compatible name for MT8195 (git-fixes). * drm/mediatek: Call drm_atomic_helper_shutdown() at shutdown time (stable- fixes). * drm/mediatek: dp: Fix mtk_dp_aux_transfer return value (git-fixes). * drm/mediatek: Fix bit depth overwritten for mtk_ovl_set bit_depth() (git- fixes). * drm/mediatek: Fix destination alpha error in OVL (git-fixes). * drm/mediatek: Fix XRGB setting error in Mixer (git-fixes). * drm/mediatek: Fix XRGB setting error in OVL (git-fixes). * drm/mediatek: Init `ddp_comp` with devm_kcalloc() (git-fixes). * drm/mediatek: Remove less-than-zero comparison of an unsigned value (git- fixes). * drm/mediatek: Set DRM mode configs accordingly (git-fixes). * drm/mediatek: Support DRM plane alpha in Mixer (git-fixes). * drm/mediatek: Support DRM plane alpha in OVL (git-fixes). * drm/mediatek: Support RGBA8888 and RGBX8888 in OVL on MT8195 (git-fixes). * drm/mediatek: Turn off the layers with zero width or height (git-fixes). * drm/mediatek: Use 8-bit alpha in ETHDR (git-fixes). * drm/meson: dw-hdmi: add bandgap setting for g12 (git-fixes). * drm/meson: dw-hdmi: power up phy on device init (git-fixes). * drm/meson: fix canvas release in bind function (git-fixes). * drm/meson: gate px_clk when setting rate (git-fixes). * drm/meson: vclk: fix calculation of 59.94 fractional rates (git-fixes). * drm/mgag200: Bind I2C lifetime to DRM device (git-fixes). * drm/mgag200: Set DDC timeout in milliseconds (git-fixes). * drm/mipi-dsi: Fix theoretical int overflow in mipi_dsi_dcs_write_seq() (git- fixes). * drm/mipi-dsi: Fix theoretical int overflow in mipi_dsi_generic_write_seq() (git-fixes). * drm/msm/a6xx: Avoid a nullptr dereference when speedbin setting fails (git- fixes). * drm/msm: Add newlines to some debug prints (git-fixes). * drm/msm/adreno: fix CP cycles stat retrieval on a7xx (git-fixes). * drm/msm/dp: allow voltage swing / pre emphasis of 3 (git-fixes). * drm/msm/dp: Avoid a long timeout for AUX transfer if nothing connected (git- fixes). * drm/msm/dp: fix typo in dp_display_handle_port_status_changed() (git-fixes). * drm/msm/dpu: Add callback function pointer check before its call (git- fixes). * drm/msm/dpu: Allow configuring multiple active DSC blocks (git-fixes). * drm/msm/dpu: Always flush the slave INTF on the CTL (git-fixes). * drm/msm/dpu: do not allow overriding data from catalog (git-fixes). * drm/msm/dpu: drop validity checks for clear_pending_flush() ctl op (git- fixes). * drm/msm/dpu: fix encoder irq wait skip (git-fixes). * drm/msm/dpu: make error messages at dpu_core_irq_register_callback() more sensible (git-fixes). * drm/msm/dpu: use devres-managed allocation for MDP TOP (stable-fixes). * drm/msm/dsi: Print dual-DSI-adjusted pclk instead of original mode pclk (git-fixes). * drm/msm/dsi: set VIDEO_COMPRESSION_MODE_CTRL_WC (git-fixes). * drm/msm/mdp5: Remove MDP_CAP_SRC_SPLIT from msm8x53_config (git-fixes). * drm/nouveau/disp: Fix missing backlight control on Macbook 5, 1 (bsc#1223838). * drm/nouveau/dispnv04: fix null pointer dereference in nv17_tv_get_hd_modes (stable-fixes). * drm/nouveau/dispnv04: fix null pointer dereference in nv17_tv_get_ld_modes (stable-fixes). * drm/nouveau: do not attempt to schedule hpd_work on headless cards (git- fixes). * drm/nouveau/dp: Do not probe eDP ports twice harder (stable-fixes). * drm/nouveau/dp: Fix incorrect return code in r535_dp_aux_xfer() (git-fixes). * drm/nouveau/firmware: Fix SG_DEBUG error with nvkm_firmware_ctor() (stable- fixes). * drm/nouveau: fix null pointer dereference in nouveau_connector_get_modes (git-fixes). * drm/nouveau: use tile_mode and pte_kind for VM_BIND bo allocations (git- fixes). * drm: nv04: Fix out of bounds access (git-fixes). * drm/omapdrm: Fix console by implementing fb_dirty (git-fixes). * drm/panel: boe-tv101wum-nl6: Check for errors on the NOP in prepare() (git- fixes). * drm/panel: boe-tv101wum-nl6: If prepare fails, disable GPIO before regulators (git-fixes). * drm/panel: do not return negative error codes from drm_panel_get_modes() (stable-fixes). * drm/panel: himax-hx8394: Handle errors from mipi_dsi_dcs_set_display_on() better (git-fixes). * drm/panel: ili9341: Respect deferred probe (git-fixes). * drm/panel: ili9341: Use predefined error codes (git-fixes). * drm/panel: ilitek-ili9881c: Fix warning with GPIO controllers that sleep (stable-fixes). * drm/panel: ilitek-ili9882t: Check for errors on the NOP in prepare() (git- fixes). * drm/panel: ilitek-ili9882t: If prepare fails, disable GPIO before regulators (git-fixes). * drm/panel: ltk050h3146w: add MIPI_DSI_MODE_VIDEO to LTK050H3148W flags (git- fixes). * drm/panel: ltk050h3146w: drop duplicate commands from LTK050H3148W init (git-fixes). * drm/panel: novatek-nt35950: Do not log an error when DSI host can't be found (git-fixes). * drm: panel-orientation-quirks: Add quirk for Aya Neo KUN (stable-fixes). * drm: panel-orientation-quirks: Add quirk for GPD Win Mini (stable-fixes). * drm: panel-orientation-quirks: Add quirk for Valve Galileo (stable-fixes). * drm/panel: simple: Add missing display timing flags for KOE TX26D202VM0BWA (git-fixes). * drm/panel: simple: Add missing Innolux G121X1-L03 format, flags, connector (git-fixes). * drm/panel: sitronix-st7789v: Add check for of_drm_get_panel_orientation (git-fixes). * drm/panel: sitronix-st7789v: fix display size for jt240mhqs_hwt_ek_e3 panel (git-fixes). * drm/panel: sitronix-st7789v: fix timing for jt240mhqs_hwt_ek_e3 panel (git- fixes). * drm/panel: sitronix-st7789v: tweak timing for jt240mhqs_hwt_ek_e3 panel (git-fixes). * drm/panel: visionox-rm69299: do not unregister DSI device (git-fixes). * drm/panfrost: fix power transition timeout warnings (git-fixes). * drm/panfrost: Fix the error path in panfrost_mmu_map_fault_addr() (git- fixes). * drm/panfrost: Mark simple_ondemand governor as softdep (git-fixes). * drm/prime: Unbreak virtgpu dma-buf export (git-fixes). * drm/probe-helper: warn about negative .get_modes() (stable-fixes). * drm/qxl: Add check for drm_cvt_mode (git-fixes). * drm/qxl: remove unused `count` variable from `qxl_surface_id_alloc()` (git- fixes). * drm/qxl: remove unused variable from `qxl_process_single_command()` (git- fixes). * drm/radeon: check bo_va->bo is non-NULL before using it (stable-fixes). * drm/radeon: fix UBSAN warning in kv_dpm.c (stable-fixes). * drm/radeon: make -fstrict-flex-arrays=3 happy (git-fixes). * drm/radeon/radeon_display: Decrease the size of allocated memory (stable- fixes). * drm/radeon: silence UBSAN warning (v3) (stable-fixes). * drm/rockchip: vop2: Do not divide height twice for YUV (git-fixes). * drm/rockchip: vop2: Fix the port mux of VP2 (git-fixes). * drm/rockchip: vop2: Remove AR30 and AB30 format support (git-fixes). * drm/sched: fix null-ptr-deref in init entity (git-fixes). * drm/shmem-helper: Fix BUG_ON() on mmap(PROT_WRITE, MAP_PRIVATE) (git-fixes). * drm/sun4i: hdmi: Convert encoder to atomic (stable-fixes). * drm/sun4i: hdmi: Move mode_set into enable (stable-fixes). * drm/ttm: Always take the bo delayed cleanup path for imported bos (git- fixes). * drm/ttm: return ENOSPC from ttm_bo_mem_space v3 (stable-fixes). * drm/ttm: stop pooling cached NUMA pages v2 (git-fixes). * drm/udl: Remove DRM_CONNECTOR_POLL_HPD (git-fixes). * drm/vc4: do not check if plane->state->fb == state->fb (stable-fixes). * drm: vc4: Fix possible null pointer dereference (git-fixes). * drm/vc4: hdmi: do not return negative values from .get_modes() (stable- fixes). * drm/vmwgfx: 3D disabled should not effect STDU memory limits (git-fixes). * drm/vmwgfx: Create debugfs ttm_resource_manager entry only if needed (git- fixes). * drm/vmwgfx: Do not memcmp equivalent pointers (git-fixes). * drm/vmwgfx: Enable DMA mappings with SEV (git-fixes). * drm/vmwgfx: Filter modes which exceed graphics memory (git-fixes). * drm/vmwgfx: Fix crtc's atomic check conditional (git-fixes). * drm/vmwgfx: Fix invalid reads in fence signaled events (git-fixes). * drm/vmwgfx: Fix Legacy Display Unit (git-fixes). * drm/vmwgfx: Fix missing HYPERVISOR_GUEST dependency (stable-fixes). * drm/vmwgfx: Fix prime import/export (git-fixes). * drm/vmwgfx: Sort primary plane formats by order of preference (git-fixes). * drm: zynqmp_dpsub: Always register bridge (git-fixes). * drm: zynqmp_dpsub: Fix an error handling path in zynqmp_dpsub_probe() (git- fixes). * drm: zynqmp_kms: Fix AUX bus not getting unregistered (git-fixes). * dt-bindings: clock: qcom: Add missing UFS QREF clocks (git-fixes) * dump_stack: Do not get cpu_sync for panic CPU (bsc#1225607). * dyndbg: fix old BUG_ON in >control parser (stable-fixes). * e1000e: Minor flow correction in e1000_shutdown function (git-fixes). * e1000e: move force SMBUS from enable ulp function to avoid PHY loss issue (git-fixes). * e1000e: Workaround for sporadic MDI error on Meteor Lake systems (git- fixes). * ecryptfs: Fix buffer size for tag 66 packet (git-fixes) * ecryptfs: Reject casefold directory inodes (git-fixes) * EDAC/synopsys: Fix ECC status and IRQ control race condition (git-fixes). * Edit "amdkfd: use calloc instead of kzalloc to avoid integer overflow" Reference CVE and bug numbers. * eeprom: at24: Probe for DDR3 thermal sensor in the SPD case (stable-fixes). * eeprom: digsy_mtc: Fix 93xx46 driver probe failure (git-fixes). * efi: disable mirror feature during crashkernel (stable-fixes). * efi: fix panic in kdump kernel (git-fixes). * efi: libstub: only free priv.runtime_map when allocated (git-fixes). * efi/unaccepted: do not let /proc/vmcore try to access unaccepted memory (git-fixes). * efi/unaccepted: touch soft lockup during memory accept (git-fixes). * efi/x86: Free EFI memory map only when installing a new one (git-fixes). * Enable CONFIG_FIPS_SIGNATURE_SELFTEST (bsc#1222771) * Enable CONFIG_SCHED_CLUSTER=y on arm64 (jsc#PED-8701). * erofs: ensure m_llen is reset to 0 if metadata is invalid (git-fixes). * exfat: fix potential deadlock on __exfat_get_dentry_set (git-fixes). * extcon: max8997: select IRQ_DOMAIN instead of depending on it (git-fixes). * f2fs: fix error path of __f2fs_build_free_nids (git-fixes). * fast_dput(): handle underflows gracefully (git-fixes) * fat: fix uninitialized field in nostale filehandles (git-fixes) * fbdev: fix incorrect address computation in deferred IO (git-fixes). * fbdev: savage: Handle err return when savagefb_check_var failed (git-fixes). * fbdev: sh7760fb: allow modular build (git-fixes). * fbdev: shmobile: fix snprintf truncation (git-fixes). * fbdev: sisfb: hide unused variables (git-fixes). * fbdev: viafb: fix typo in hw_bitblt_1 and hw_bitblt_2 (stable-fixes). * fbmon: prevent division by zero in fb_videomode_from_videomode() (stable- fixes). * filelock: fix potential use-after-free in posix_lock_inode (git-fixes). * firewire: core: use long bus reset on gap count error (stable-fixes). * firewire: ohci: mask bus reset interrupts between ISR and bottom half (stable-fixes). * firmware: arm_scmi: Make raw debugfs entries non-seekable (git-fixes). * firmware: cs_dsp: Fix overflow checking of wmfw header (git-fixes). * firmware: cs_dsp: Prevent buffer overrun when processing V2 alg headers (git-fixes). * firmware: cs_dsp: Return error if block header overflows file (git-fixes). * firmware: cs_dsp: Use strnlen() on name fields in V1 wmfw files (git-fixes). * firmware: cs_dsp: Validate payload length before processing block (git- fixes). * firmware: dmi-id: add a release callback function (git-fixes). * firmware: dmi: Stop decoding on broken entry (stable-fixes). * firmware: psci: Fix return value from psci_system_suspend() (git-fixes). * firmware: raspberrypi: Use correct device for DMA mappings (git-fixes). * firmware: tegra: bpmp: Return directly after a failed kzalloc() in get_filename() (stable-fixes). * firmware: turris-mox-rwtm: Do not complete if there are no waiters (git- fixes). * firmware: turris-mox-rwtm: Fix checking return value of wait_for_completion_timeout() (git-fixes). * firmware: turris-mox-rwtm: Initialize completion before mailbox (git-fixes). * Fix a potential infinite loop in extract_user_to_sg() (git-fixes). * Fix build errors due to new UIO_MEM_DMA_COHERENT mess (git-fixes). * fpga: dfl-pci: add PCI subdevice ID for Intel D5005 card (stable-fixes). * fs/9p: only translate RWX permissions for plain 9P2000 (git-fixes) * fs/9p: translate O_TRUNC into OTRUNC (git-fixes) * fs/file: fix the check in find_next_fd() (git-fixes). * fs: Fix error checking for d_hash_and_lookup() (git-fixes) * fs: indicate request originates from old mount API (git-fixes) * fs/pipe: Fix lockdep false-positive in watchqueue pipe_write() (git-fixes). * fs: relax mount_setattr() permission checks (git-fixes) * fsverity: skip PKCS#7 parser when keyring is empty (git-fixes) * ftrace: Fix possible use-after-free issue in ftrace_location() (git-fixes). * fuse: do not unhash root (bsc#1223946). * fuse: fix root lookup with nonzero generation (bsc#1223945). * fuse: verify {g,u}id mount options correctly (bsc#1228193). * geneve: fix header validation in geneve[6]_xmit_skb (git-fixes). * geneve: make sure to pull inner header in geneve_rx() (git-fixes). * genirq/irqdesc: Prevent use-after-free in irq_find_at_or_after() (git- fixes). * gfs2: convert to ctime accessor functions (git-fixes). * gfs2: Do not forget to complete delayed withdraw (git-fixes). * gfs2: Fix "ignore unlock failures after withdraw" (git-fixes). * gfs2: Fix invalid metadata access in punch_hole (git-fixes). * gfs2: Get rid of gfs2_alloc_blocks generation parameter (git-fixes). * gfs2: Rename gfs2_lookup_{ simple => meta } (git-fixes). * gfs2: Use mapping->gfp_mask for metadata inodes (git-fixes). * gpio: cdev: check for NULL labels when sanitizing them for irqs (git-fixes). * gpio: cdev: fix missed label sanitizing in debounce_setup() (git-fixes). * gpio: cdev: sanitize the label before requesting the interrupt (stable- fixes). * gpio: crystalcove: Use -ENOTSUPP consistently (stable-fixes). * gpio: davinci: Validate the obtained number of IRQs (git-fixes). * gpiolib: cdev: Disallow reconfiguration without direction (uAPI v1) (git- fixes). * gpiolib: cdev: fix uninitialised kfifo (git-fixes). * gpiolib: cdev: relocate debounce_period_us from struct gpio_desc (stable- fixes). * gpiolib: swnode: Remove wrong header inclusion (git-fixes). * gpio: lpc32xx: fix module autoloading (stable-fixes). * gpio: mc33880: Convert comma to semicolon (git-fixes). * gpio: pca953x: fix pca953x_irq_bus_sync_unlock race (stable-fixes). * gpio: tangier: Use correct type for the IRQ chip data (git-fixes). * gpio: tegra186: Fix tegra186_gpio_is_accessible() check (git-fixes). * gpio: tqmx86: fix broken IRQ_TYPE_EDGE_BOTH interrupt type (git-fixes). * gpio: tqmx86: fix typo in Kconfig label (git-fixes). * gpio: tqmx86: introduce shadow register for GPIO output value (git-fixes). * gpio: tqmx86: store IRQ trigger type and unmask status separately (git- fixes). * gpio: wcove: Use -ENOTSUPP consistently (stable-fixes). * gpu: host1x: Do not setup DMA for virtual devices (stable-fixes). * gtp: fix use-after-free and null-ptr-deref in gtp_newlink() (git-fixes). * hfsplus: fix to avoid false alarm of circular locking (git-fixes). * hfsplus: fix uninit-value in copy_name (git-fixes). * HID: Add quirk for Logitech Casa touchpad (stable-fixes). * HID: amd_sfh: Handle "no sensors" in PM operations (git-fixes). * HID: core: remove unnecessary WARN_ON() in implement() (git-fixes). * HID: i2c-hid: remove I2C_HID_READ_PENDING flag to prevent lock-up (git- fixes). * HID: Ignore battery for ELAN touchscreens 2F2C and 4116 (stable-fixes). * HID: input: avoid polling stylus battery on Chromebook Pompom (stable- fixes). * HID: intel-ish-hid: ipc: Add check for pci_alloc_irq_vectors (git-fixes). * HID: intel-ish-hid: ipc: Fix dev_err usage with uninitialized dev->devc (git-fixes). * HID: logitech-dj: allow mice to use all types of reports (git-fixes). * HID: logitech-dj: Fix memory leak in logi_dj_recv_switch_to_dj_mode() (git- fixes). * HID: mcp-2221: cancel delayed_work only when CONFIG_IIO is enabled (stable- fixes). * HID: multitouch: Add required quirk for Synaptics 0xcddc device (stable- fixes). * HID: wacom: Modify pen IDs (git-fixes). * hpet: Support 32-bit userspace (git-fixes). * hwmon: (adt7475) Fix default duty on fan is disabled (git-fixes). * hwmon: (amc6821) add of_match table (stable-fixes). * hwmon: (corsair-cpro) Protect ccp->wait_input_report with a spinlock (git- fixes). * hwmon: (corsair-cpro) Use a separate buffer for sending commands (git- fixes). * hwmon: (corsair-cpro) Use complete_all() instead of complete() in ccp_raw_event() (git-fixes). * hwmon: (intel-m10-bmc-hwmon) Fix multiplier for N6000 board power sensor (git-fixes). * hwmon: (lm70) fix links in doc and comments (git-fixes). * hwmon: (max6697) Fix swapped temp{1,8} critical alarms (git-fixes). * hwmon: (max6697) Fix underflow when writing limit attributes (git-fixes). * hwmon: (pmbus/ucd9000) Increase delay from 250 to 500us (git-fixes). * hwmon: (shtc1) Fix property misspelling (git-fixes). * hwrng: amd - Convert PCIBIOS_* return codes to errnos (git-fixes). * hwrng: core - Fix wrong quality calculation at hw rng registration (git- fixes). * hwtracing: hisi_ptt: Move type check to the beginning of hisi_ptt_pmu_event_init() (git-fixes). * i2c: acpi: Unbind mux adapters before delete (git-fixes). * i2c: at91: Fix the functionality flags of the slave-only interface (git- fixes). * i2c: cadence: Avoid fifo clear after start (git-fixes). * i2c: designware: Fix the functionality flags of the slave-only interface (git-fixes). * i2c: i801: Annotate apanel_addr as __ro_after_init (stable-fixes). * i2c: mark HostNotify target address as used (git-fixes). * i2c: ocores: set IACK bit after core is enabled (git-fixes). * i2c: pnx: Fix potential deadlock warning from del_timer_sync() call in isr (git-fixes). * i2c: pxa: hide unused icr_bits[] variable (git-fixes). * i2c: rcar: bring hardware to known state when probing (git-fixes). * i2c: smbus: fix NULL function pointer dereference (git-fixes). * i2c: synquacer: Fix an error handling path in synquacer_i2c_probe() (git- fixes). * i2c: testunit: avoid re-issued work after read message (git-fixes). * i2c: testunit: correct Kconfig description (git-fixes). * i2c: testunit: discard write requests while old command is running (git- fixes). * i2c: testunit: do not erase registers after STOP (git-fixes). * i3c: master: svc: change ENXIO to EAGAIN when IBI occurs during start frame (git-fixes). * i3c: master: svc: fix invalidate IBI type and miss call client IBI handler (git-fixes). * i40e: disable NAPI right after disabling irqs when handling xsk_pool (git- fixes). * i40e: Enforce software interrupt during busy-poll exit (git-fixes). * i40e: Fix firmware version comparison function (git-fixes). * i40e: fix i40e_count_filters() to count only active/new filters (git-fixes). * i40e: fix: remove needless retries of NVM update (bsc#1227736). * i40e: Fix VF MAC filter removal (git-fixes). * i40e: fix vf may be used uninitialized in this function warning (git-fixes). * i915: make inject_virtual_interrupt() void (stable-fixes). * IB/mlx5: Use __iowrite64_copy() for write combining stores (git-fixes) * ice: fix enabling RX VLAN filtering (git-fixes). * ice: fix memory corruption bug with suspend and rebuild (git-fixes). * ice: fix stats being updated by way too large values (git-fixes). * ice: fix typo in assignment (git-fixes). * ice: fix uninitialized dplls mutex usage (git-fixes). * ice: reconfig host after changing MSI-X on VF (git-fixes). * ice: Refactor FW data type and fix bitmap casting issue (git-fixes). * ice: reorder disabling IRQ and NAPI in ice_qp_dis (git-fixes). * ice: use relative VSI index for VFs instead of PF VSI number (git-fixes). * ice: virtchnl: stop pretending to support RSS over AQ or registers (git- fixes). * ida: make 'ida_dump' static (git-fixes). * idma64: Do not try to serve interrupts when device is powered off (git- fixes). * idpf: disable local BH when scheduling napi for marker packets (git-fixes). * idpf: extend tx watchdog timeout (bsc#1224137). * idpf: fix kernel panic on unknown packet types (git-fixes). * igb: extend PTP timestamp adjustments to i211 (git-fixes). * igb: Fix missing time sync events (git-fixes). * igc: avoid returning frame twice in XDP_REDIRECT (git-fixes). * igc: Fix missing time sync events (git-fixes). * igc: Remove stale comment about Tx timestamping (git-fixes). * iio: accel: fxls8962af: select IIO_BUFFER & IIO_KFIFO_BUF (git-fixes). * iio: accel: mxc4005: allow module autoloading via OF compatible (stable- fixes). * iio: accel: mxc4005: Interrupt handling fixes (git-fixes). * iio: accel: mxc4005: Reset chip on probe() and resume() (stable-fixes). * iio: adc: ad7266: Fix variable checking bug (git-fixes). * iio: adc: ad9467: fix scan type sign (git-fixes). * iio: adc: ad9467: use chip_info variables instead of array (stable-fixes). * iio: adc: ad9467: use spi_get_device_match_data() (stable-fixes). * iio: adc: stm32: Fixing err code to not indicate success (git-fixes). * iio: chemical: bme680: Fix calibration data variable (git-fixes). * iio: chemical: bme680: Fix overflows in compensate() functions (git-fixes). * iio: chemical: bme680: Fix pressure value output (git-fixes). * iio: chemical: bme680: Fix sensor data read operation (git-fixes). * iio: core: Leave private pointer NULL when no private data supplied (git- fixes). * iio: dac: ad5592r: fix temperature channel scaling value (git-fixes). * iio: dummy_evgen: remove Excess kernel-doc comments (git-fixes). * iio: Fix the sorting functionality in iio_gts_build_avail_time_table (git- fixes). * iio: frequency: adrf6780: rm clk provider include (git-fixes). * iio: gts-helper: Fix division loop (git-fixes). * iio:imu: adis16475: Fix sync mode setting (git-fixes). * iio: imu: inv_icm42600: delete unneeded update watermark call (git-fixes). * iio: pressure: bmp280: Fix BMP580 temperature reading (stable-fixes). * iio: pressure: dps310: support negative temperature values (git-fixes). * iio: pressure: Fixes BME280 SPI driver data (git-fixes). * iio: pressure: fix some word spelling errors (stable-fixes). * iio: xilinx-ams: Do not include ams_ctrl_channels in scan_mask (git-fixes). * inet_diag: annotate data-races around inet_diag_table[] (git-fixes). * inet: frags: eliminate kernel-doc warning (git-fixes). * init/main.c: Fix potential static_command_line memory overflow (git-fixes). * init: open /initrd.image with O_LARGEFILE (stable-fixes). * input: Add event code for accessibility key (stable-fixes). * input: Add support for "Do Not Disturb" (stable-fixes). * Input: ads7846 - use spi_device_id table (stable-fixes). * Input: cyapa - add missing input core locking to suspend/resume functions (git-fixes). * Input: elan_i2c - do not leave interrupt disabled on suspend failure (git- fixes). * Input: elantech - fix touchpad state on resume for Lenovo N24 (stable- fixes). * Input: ff-core - prefer struct_size over open coded arithmetic (stable- fixes). * Input: gpio_keys_polled - suppress deferred probe error for gpio (stable- fixes). * Input: i8042 - add Ayaneo Kun to i8042 quirk table (stable-fixes). * Input: ili210x - fix ili251x_read_touch_data() return value (git-fixes). * Input: imagis - use FIELD_GET where applicable (stable-fixes). * Input: ims-pcu - fix printf string overflow (git-fixes). * Input: pm8xxx-vibrator - correct VIB_MAX_LEVELS calculation (git-fixes). * Input: qt1050 - handle CHIP_ID reading error (git-fixes). * Input: silead - Always support 10 fingers (stable-fixes). * Input: synaptics-rmi4 - fail probing if memory allocation for "phys" fails (stable-fixes). * input/touchscreen: imagis: Correct the maximum touch area value (stable- fixes). * Input: xpad - add additional HyperX Controller Identifiers (stable-fixes). * Input: xpad - add support for ASUS ROG RAIKIRI (git-fixes). * Input: xpad - add support for ASUS ROG RAIKIRI PRO (stable-fixes). * Input: xpad - add support for Snakebyte GAMEPADs (stable-fixes). * intel: legacy: Partial revert of field get conversion (git-fixes). * intel_th: pci: Add Granite Rapids SOC support (stable-fixes). * intel_th: pci: Add Granite Rapids support (stable-fixes). * intel_th: pci: Add Lunar Lake support (stable-fixes). * intel_th: pci: Add Meteor Lake-S CPU support (stable-fixes). * intel_th: pci: Add Meteor Lake-S support (stable-fixes). * intel_th: pci: Add Sapphire Rapids SOC support (stable-fixes). * interconnect: qcom: osm-l3: Replace custom implementation of COUNT_ARGS() (git-fixes). * interconnect: qcom: qcm2290: Fix mas_snoc_bimc QoS port assignment (git- fixes). * interconnect: qcom: qcm2290: Fix mas_snoc_bimc RPM master ID (git-fixes). * interconnect: qcom: sc8180x: Mark CO0 BCM keepalive (git-fixes). * interconnect: qcom: sm8550: Enable sync_state (git-fixes). * iomap: clear the per-folio dirty bits on all writeback failures (git-fixes) * iommu/amd: Enhance def_domain_type to handle untrusted device (git-fixes). * iommu/amd: Fix panic accessing amd_iommu_enable_faulting (bsc#1224767). * iommu/amd: Fix sysfs leak in iommu init (git-fixes). * iommu/arm-smmu-v3: Check that the RID domain is S1 in SVA (git-fixes). * iommu/arm-smmu-v3: Free MSIs in case of ENOMEM (git-fixes). * iommu/dma: Force swiotlb_max_mapping_size on an untrusted device (bsc#1224331) * iommu/dma: Trace bounce buffer usage when mapping buffers (git-fixes). * iommufd: Add missing IOMMUFD_DRIVER kconfig for the selftest (git-fixes). * iommufd: Fix iopt_access_list_id overwrite bug (git-fixes). * iommufd/iova_bitmap: Bounds check mapped::pages access (git-fixes). * iommufd/iova_bitmap: Consider page offset for the pages to be pinned (git- fixes). * iommufd/iova_bitmap: Switch iova_bitmap::bitmap to an u8 array (git-fixes). * iommufd: Reject non-zero data_type if no data_len is provided (git-fixes). * iommu: Fix compilation without CONFIG_IOMMU_INTEL (git-fixes). * iommu: Map reserved memory as cacheable if device is coherent (git-fixes). * iommu: mtk: fix module autoloading (git-fixes). * iommu: Return right value in iommu_sva_bind_device() (git-fixes). * iommu: Undo pasid attachment only for the devices that have succeeded (git- fixes). * iommu/vt-d: Allocate DMAR fault interrupts locally (bsc#1224767). * iommu/vt-d: Allocate local memory for page request queue (git-fixes). * iommu/vt-d: Fix WARN_ON in iommu probe path (git-fixes). * iommu/vt-d: Fix wrong use of pasid config (git-fixes). * iommu/vt-d: Improve ITE fault handling if target device isn't present (git- fixes). * iommu/vt-d: Set SSADE when attaching to a parent with dirty tracking (git- fixes). * iommu/vt-d: Use rbtree to track iommu probed devices (git-fixes). * ionic: set adminq irq affinity (git-fixes). * io_uring: clean rings on NO_MMAP alloc fail (git-fixes). * io_uring: clear opcode specific data for an early failure (git-fixes). * io_uring: do not save/restore iowait state (git-fixes). * io_uring: fail NOP if non-zero op flags is passed in (git-fixes). * io_uring: Fix io_cqring_wait() not restoring sigmask on get_timespec64() failure (git-fixes). * io_uring: fix io_queue_proc modifying req->flags (git-fixes). * io_uring: fix mshot io-wq checks (git-fixes). * io_uring: fix mshot read defer taskrun cqe posting (git-fixes). * io_uring: fix poll_remove stalled req completion (git-fixes). * io_uring/io-wq: avoid garbage value of 'match' in io_wq_enqueue() (git- fixes). * io_uring/io-wq: Use set_bit() and test_bit() at worker->flags (git-fixes). * io_uring: kabi cookie remove (bsc#1217384). * io_uring/kbuf: get rid of bl->is_ready (git-fixes). * io_uring/kbuf: get rid of lower BGID lists (git-fixes). Including kabi preservation patch. * io_uring/kbuf: protect io_buffer_list teardown with a reference (git-fixes). Reuses a padding space in the structure. * io_uring/kbuf: rename is_mapped (git-fixes). * io_uring/net: correctly handle multishot recvmsg retry setup (git-fixes). * io_uring/net: correct the type of variable (git-fixes). * io_uring/net: fix sendzc lazy wake polling (git-fixes). * io_uring/net: move receive multishot out of the generic msghdr path (git- fixes). * io_uring/net: restore msg_control on sendzc retry (git-fixes). * io_uring/net: unify how recvmsg and sendmsg copy in the msghdr (git-fixes). * io_uring: remove looping around handling traditional task_work (git-fixes). * io_uring: remove unconditional looping in local task_work handling (git- fixes). * io_uring/rsrc: do not lock while !TASK_RUNNING (git-fixes). * io_uring/rsrc: fix incorrect assignment of iter->nr_segs in io_import_fixed (git-fixes). * io_uring/rw: do not allow multishot reads without NOWAIT support (git- fixes). * io_uring/rw: return IOU_ISSUE_SKIP_COMPLETE for multishot retry (git-fixes). * io_uring/sqpoll: work around a potential audit memory leak (git-fixes). * io_uring/unix: drop usage of io_uring socket (git-fixes). * io_uring: use private workqueue for exit work (git-fixes). * io_uring: use the right type for work_llist empty check (git-fixes). * io-wq: write next_work before dropping acct_lock (git-fixes). * ipmi: ssif_bmc: prevent integer overflow on 32bit systems (git-fixes). * ipv4: annotate data-races around fi->fib_dead (git-fixes). * ipvs: Fix checksumming on GSO of SCTP packets (bsc#1221958) * irqchip/alpine-msi: Fix off-by-one in allocation error path (git-fixes). * irqchip/armada-370-xp: Suppress unused-function warning (git-fixes). * irqchip/gic-v3-its: Do not assume vPE tables are preallocated (git-fixes). * irqchip/gic-v3-its: Fix VSYNC referencing an unmapped VPE on GIC v4.1 (git- fixes). * irqchip/gic-v3-its: Prevent double free on error (git-fixes). * irqchip/loongson-pch-msi: Fix off-by-one on allocation error path (git- fixes). * irqchip/mbigen: Do not use bus_get_dev_root() to find the parent (git- fixes). * irqchip/renesas-rzg2l: Add macro to retrieve TITSR register offset based on register's index (stable-fixes). * irqchip/renesas-rzg2l: Flush posted write in irq_eoi() (git-fixes). * irqchip/renesas-rzg2l: Implement restriction when writing ISCR register (stable-fixes). * irqchip/renesas-rzg2l: Prevent spurious interrupts when setting trigger type (git-fixes). * irqchip/renesas-rzg2l: Rename rzg2l_irq_eoi() (stable-fixes). * irqchip/renesas-rzg2l: Rename rzg2l_tint_eoi() (stable-fixes). * iwlwifi: fw: fix more kernel-doc warnings (bsc#1227149). * iwlwifi: mvm: Drop unused fw_trips_index[] from iwl_mvm_thermal_device (bsc#1227149). * iwlwifi: mvm: Populate trip table before registering thermal zone (bsc#1227149). * iwlwifi: mvm: Use for_each_thermal_trip() for walking trip points (bsc#1227149). * ixgbe: avoid sleeping allocation in ixgbe_ipsec_vf_add_sa() (git-fixes). * ixgbe: {dis, en}able irqs in ixgbe_txrx_ring_{dis, en}able (git-fixes). * jffs2: Fix potential illegal address access in jffs2_free_inode (git-fixes). * jffs2: prevent xattr node from overflowing the eraseblock (git-fixes). * jfs: Fix array-index-out-of-bounds in diFree (git-fixes). * jfs: xattr: fix buffer overflow for invalid xattr (bsc#1227383). * kABI: Adjust trace_iterator.wait_index (git-fixes). * kABI: bpf: verifier kABI workaround (bsc#1225903). * kABI fix of KVM: x86/pmu: Allow programming events that match unsupported arch events (bsc#1225696). * kABI fix of KVM: x86/pmu: Prioritize VMX interception over * kABI fix of KVM: x86: Snapshot if a vCPU's vendor model is AMD vs. Intel compatible (git-fixes). * kabi fix of perf/x86/intel: Expose existence of callback support to KVM (git fixes). * kabi/severities: cleanup and update for WiFi driver entries (bsc#1227149) * kabi/severities: cover all ath/ _drivers (bsc#1227149) All symbols in ath/_ network drivers are local and can be ignored * kabi/severities: cover all mt76 modules (bsc#1227149) * kabi/severities: ignore amd pds internal symbols * kabi/severities: ignore brcmfmac-specific local symbols * kabi/severities: ignore IMS functions They were dropped in previous patches. Noone is supposed to use them. * kabi/severities: Ignore io_uring internal symbols * kabi/severities: ignore kABI changes Realtek WiFi drivers (bsc#1227149) All those symbols are local and used for its own helpers * kabi/severities: ignore TAS2781 symbol drop, it's only locally used * kabi/severities: ignore Wangxun ethernet driver local symbols * kabi/severities: Remove mitigation-related symbols Those are used by the core kernel to implement CPU vulnerabilities mitigation and are not expected to be consumed by 3rd party users. * kabi: Use __iowriteXX_copy_inlined for in-kernel modules (bsc#1226502) * kABI workaround for cs35l56 (git-fixes). * kABI workaround for of driver changes (git-fixes). * kABI workaround for sof_ipc_pcm_ops (git-fixes). * kABI workaround for wireless updates (bsc#1227149). * kasan: disable kasan_non_canonical_hook() for HW tags (git-fixes). * kasan, fortify: properly rename memintrinsics (git-fixes). * kasan: print the original fault addr when access invalid shadow (git-fixes). * kasan/test: avoid gcc warning for intentional overflow (git-fixes). * kbuild: avoid build error when single DTB is turned into composite DTB (git- fixes). * kbuild: Fix build target deb-pkg: ln: failed to create hard link (git- fixes). * kbuild: Install dtb files as 0644 in Makefile.dtbinst (git-fixes). * kbuild: Move -Wenum-{compare-conditional,enum-conversion} into W=1 (stable- fixes). * kconfig: doc: fix a typo in the note about 'imply' (git-fixes). * kconfig: fix comparison to constant symbols, 'm', 'n' (git-fixes). * kconfig: fix infinite loop when expanding a macro at the end of file (git- fixes). * kconfig: gconf: give a proper initial state to the Save button (stable- fixes). * kconfig: remove wrong expr_trans_bool() (stable-fixes). * kcov: do not lose track of remote references during softirqs (git-fixes). * kernel-binary: vdso: Own module_dir * kernel-doc: fix struct_group_tagged() parsing (git-fixes). * kexec: do syscore_shutdown() in kernel_kexec (git-fixes). * KEYS: trusted: Do not use WARN when encode fails (git-fixes). * KEYS: trusted: Fix memory leak in tpm2_key_encode() (git-fixes). * kheaders: explicitly define file modes for archived headers (stable-fixes). * knfsd: LOOKUP can return an illegal error value (git-fixes). * kobject_uevent: Fix OOB access within zap_modalias_env() (git-fixes). * kprobe/ftrace: bail out if ftrace was killed (git-fixes). * kprobe/ftrace: fix build error due to bad function definition (git-fixes). * kprobes: Fix possible use-after-free issue on kprobe registration (git- fixes). * kselftest: Add a ksft_perror() helper (stable-fixes). * kunit: Fix checksum tests on big endian CPUs (git-fixed). * kunit/fortify: Fix mismatched kvalloc()/vfree() usage (git-fixes). * KVM: arm64: Use local TLBI on permission relaxation (bsc#1219478). * KVM: nVMX: Clear EXIT_QUALIFICATION when injecting an EPT Misconfig (git- fixes). * KVM: s390: Check kvm pointer when testing KVM_CAP_S390_HPAGE_1M (git-fixes bsc#1224790). * KVM: SEV-ES: Delegate LBR virtualization to the processor (git-fixes). * KVM: SEV-ES: Disallow SEV-ES guests when X86_FEATURE_LBRV is absent (git- fixes). * KVM: SVM: Add support for allowing zero SEV ASIDs (git-fixes). * KVM: SVM: Flush pages under kvm->lock to fix UAF in svm_register_enc_region() (git-fixes). * KVM: SVM: Use unsigned integers when dealing with ASIDs (git-fixes). * KVM: SVM: WARN on vNMI + NMI window iff NMIs are outright masked (git- fixes). * KVM: VMX: Disable LBR virtualization if the CPU does not support LBR callstacks (git-fixes). * KVM: VMX: Report up-to-date exit qualification to userspace (git-fixes). * KVM: x86: Allow, do not ignore, same-value writes to immutable MSRs (git- fixes). * KVM: x86: Always sync PIR to IRR prior to scanning I/O APIC routes (git- fixes). * KVM: x86: Do not advertise guest.MAXPHYADDR as host.MAXPHYADDR in CPUID (git-fixes). * KVM: x86: Fix broken debugregs ABI for 32 bit kernels (git-fixes). * KVM: x86: Fully re-initialize supported_mce_cap on vendor module load (git- fixes). * KVM: x86: Introduce __kvm_get_hypervisor_cpuid() helper (git-fixes). * KVM: x86: Mark target gfn of emulated atomic instruction as dirty (git- fixes). * KVM: x86/mmu: Do not force emulation of L2 accesses to non-APIC internal slots (git-fixes). * KVM: x86/mmu: Move private vs. shared check above slot validity checks (git- fixes). * KVM: x86/mmu: Restrict KVM_SW_PROTECTED_VM to the TDP MMU (git-fixes). * KVM: x86/mmu: Write-protect L2 SPTEs in TDP MMU when clearing dirty status (git-fixes). * KVM: x86: Only set APICV_INHIBIT_REASON_ABSENT if APICv is enabled (git- fixes). * KVM: x86/pmu: Allow programming events that match unsupported arch events (git-fixes). * KVM: x86/pmu: Always treat Fixed counters as available when supported (git- fixes). * KVM: x86/pmu: Apply "fast" RDPMC only to Intel PMUs (git-fixes). * KVM: x86/pmu: Disable support for adaptive PEBS (git-fixes). * KVM: x86/pmu: Disallow "fast" RDPMC for architectural Intel PMUs (git- fixes). * KVM: x86/pmu: Do not ignore bits 31:30 for RDPMC index on AMD (git-fixes). * KVM: x86/pmu: Do not mask LVTPC when handling a PMI on AMD platforms (git- fixes). * KVM: x86/pmu: Explicitly check NMI from guest to reducee false positives (git-fixes). * KVM: x86/pmu: Prioritize VMX interception over #GP on RDPMC due to bad index (bsc#1226158). * KVM: x86/pmu: Prioritize VMX interception over #GP on RDPMC due to bad index (git-fixes). * KVM: x86/pmu: Set enable bits for GP counters in PERF_GLOBAL_CTRL at "RESET" (git-fixes). * KVM: x86/pmu: Zero out PMU metadata on AMD if PMU is disabled (git-fixes). * KVM: x86: Snapshot if a vCPU's vendor model is AMD vs. Intel compatible (git-fixes). * KVM: x86: Use actual kvm_cpuid.base for clearing KVM_FEATURE_PV_UNHALT (git- fixes). * KVM: x86/xen: fix recursive deadlock in timer injection (git-fixes). * KVM: x86/xen: improve accuracy of Xen timers (git-fixes). * KVM: x86/xen: inject vCPU upcall vector when local APIC is enabled (git- fixes). * KVM: x86/xen: remove WARN_ON_ONCE() with false positives in evtchn delivery (git-fixes). * leds: flash: leds-qcom-flash: Test the correct variable in init (git-fixes). * leds: mt6360: Fix memory leak in mt6360_init_isnk_properties() (git-fixes). * leds: pwm: Disable PWM when going to suspend (git-fixes). * leds: ss4200: Convert PCIBIOS_* return codes to errnos (git-fixes). * leds: triggers: Flush pending brightness before activating trigger (git- fixes). * leds: trigger: Unregister sysfs attributes before calling deactivate() (git- fixes). * libceph: fix race between delayed_work() and ceph_monc_stop() (bsc#1228192). * libnvdimm: Fix ACPI_NFIT in BLK_DEV_PMEM help (jsc#PED-5853). * lib: objagg: Fix general protection fault (git-fixes). * lib: objagg: Fix spelling (git-fixes). * libperf evlist: Avoid out-of-bounds access (git-fixes). * libsubcmd: Fix parse-options memory leak (git-fixes). * lib/test_hmm.c: handle src_pfns and dst_pfns allocation failure (git-fixes). * lib: test_objagg: Fix spelling (git-fixes). * livepatch: Fix missing newline character in klp_resolve_symbols() (bsc#1223539). * locks: fix KASAN: use-after-free in trace_event_raw_event_filelock_lock (git-fixes) * lsm: fix the logic in security_inode_getsecctx() (git-fixes). * mac802154: fix llsec key resources release in mac802154_llsec_key_del (git- fixes). * mac802154: fix time calculation in ieee802154_configure_durations() (git- fixes). * mailbox: mtk-cmdq: Move devm_mbox_controller_register() after devm_pm_runtime_enable() (git-fixes). * maple_tree: fix mas_empty_area_rev() null pointer dereference (git-fixes). * md: add a new helper rdev_has_badblock() (jsc#PED-7542). * md: add a new helper reshape_interrupted() (jsc#PED-7542). * md: changed the switch of RAID_VERSION to if (jsc#PED-7542). * md: check mddev->pers before calling md_set_readonly() (jsc#PED-7542). * md: clean up invalid BUG_ON in md_ioctl (jsc#PED-7542). * md: clean up openers check in do_md_stop() and md_set_readonly() (jsc#PED-7542). * md/dm-raid: do not call md_reap_sync_thread() directly (jsc#PED-7542). * md: Do not clear MD_CLOSING when the raid is about to stop (jsc#PED-7542). * md: do not clear MD_RECOVERY_FROZEN for new dm-raid until resume (jsc#PED-7542). * md: export helper md_is_rdwr() (jsc#PED-7542). * md: export helpers to stop sync_thread (jsc#PED-7542). * md: factor out a helper to sync mddev (jsc#PED-7542). * md: fix kmemleak of rdev->serial (jsc#PED-7542). * md: get rdev->mddev with READ_ONCE() (jsc#PED-7542). * md: merge the check of capabilities into md_ioctl_valid() (jsc#PED-7542). * md: preserve KABI in struct md_personality (jsc#PED-7542). * md/raid1-10: add a helper raid1_check_read_range() (jsc#PED-7542). * md/raid1-10: factor out a new helper raid1_should_read_first() (jsc#PED-7542). * md/raid1: factor out choose_bb_rdev() from read_balance() (jsc#PED-7542). * md/raid1: factor out choose_slow_rdev() from read_balance() (jsc#PED-7542). * md/raid1: factor out helpers to add rdev to conf (jsc#PED-7542). * md/raid1: factor out helpers to choose the best rdev from read_balance() (jsc#PED-7542). * md/raid1: factor out read_first_rdev() from read_balance() (jsc#PED-7542). * md/raid1: factor out the code to manage sequential IO (jsc#PED-7542). * md/raid1: fix choose next idle in read_balance() (jsc#PED-7542). * md/raid1: record nonrot rdevs while adding/removing rdevs to conf (jsc#PED-7542). * md: remove redundant check of 'mddev->sync_thread' (jsc#PED-7542). * md: remove redundant md_wakeup_thread() (jsc#PED-7542). * md: return directly before setting did_set_md_closing (jsc#PED-7542). * md: sync blockdev before stopping raid or setting readonly (jsc#PED-7542). * md: use RCU lock to protect traversal in md_spares_need_change() (jsc#PED-7542). * media: atomisp: ssh_css: Fix a null-pointer dereference in load_video_binaries (git-fixes). * media: cadence: csi2rx: use match fwnode for media link (git-fixes). * media: cec: core: remove length check of Timer Status (stable-fixes). * media: dt-bindings: ovti,ov2680: Fix the power supply names (git-fixes). * media: dvb: as102-fe: Fix as10x_register_addr packing (stable-fixes). * media: dvbdev: Initialize sbuf (stable-fixes). * media: dvb-frontends: tda10048: Fix integer overflow (stable-fixes). * media: dvb-frontends: tda18271c2dd: Remove casting during div (stable- fixes). * media: dvb-usb: dib0700_devices: Add missing release_firmware() (stable- fixes). * media: dvb-usb: Fix unexpected infinite loop in dvb_usb_read_remote_control() (git-fixes). * media: dw2102: Do not translate i2c read into write (stable-fixes). * media: dw2102: fix a potential buffer overflow (git-fixes). * media: flexcop-usb: fix sanity check of bNumEndpoints (git-fixes). * media: i2c: et8ek8: Do not strip remove function when driver is builtin (git-fixes). * media: i2c: Fix imx412 exposure control (git-fixes). * media: imon: Fix race getting ictx->lock (git-fixes). * media: imx-jpeg: Drop initial source change event if capture has been setup (git-fixes). * media: imx-jpeg: Remove some redundant error logs (git-fixes). * media: imx-pxp: Fix ERR_PTR dereference in pxp_probe() (git-fixes). * media: ipu3-cio2: Request IRQ earlier (git-fixes). * media: lgdt3306a: Add a check against null-pointer-def (stable-fixes). * media: mc: Fix flags handling when creating pad links (stable-fixes). * media: mc: Fix graph walk in media_pipeline_start (git-fixes). * media: mc: mark the media devnode as registered from the, start (git-fixes). * media: mc: Rename pad variable to clarify intent (stable-fixes). * media: mxl5xx: Move xpt structures off stack (stable-fixes). * media: ngene: Add dvb_ca_en50221_init return value check (git-fixes). * media: pci: ivtv: Add check for DMA map result (git-fixes). * media: radio-shark2: Avoid led_names truncations (git-fixes). * media: rcar-vin: Fix YUYV8_1X16 handling for CSI-2 (git-fixes). * media: rcar-vin: work around -Wenum-compare-conditional warning (git-fixes). * media: renesas: vsp1: Fix _irqsave and _irq mix (git-fixes). * media: renesas: vsp1: Store RPF partition configuration per RPF instance (git-fixes). * media: rkisp1: Fix IRQ handling due to shared interrupts (stable-fixes). * media: s2255: Use refcount_t instead of atomic_t for num_channels (stable- fixes). * media: sta2x11: fix irq handler cast (stable-fixes). * media: stk1160: fix bounds checking in stk1160_copy_video() (git-fixes). * media: sunxi: a83-mips-csi2: also select GENERIC_PHY (git-fixes). * media: uvcvideo: Add quirk for Logitech Rally Bar (git-fixes). * media: uvcvideo: Fix integer overflow calculating timestamp (git-fixes). * media: uvcvideo: Override default flags (git-fixes). * media: v4l2-core: hold videodev_lock until dev reg, finishes (stable-fixes). * media: v4l2-subdev: Fix stream handling for crop API (git-fixes). * media: v4l: async: Fix NULL pointer dereference in adding ancillary links (git-fixes). * media: v4l: Do not turn on privacy LED if streamon fails (git-fixes). * media: v4l: subdev: Fix typo in documentation (git-fixes). * media: venus: fix use after free in vdec_close (git-fixes). * media: venus: flush all buffers in output plane streamoff (git-fixes). * mei: demote client disconnect warning on suspend to debug (stable-fixes). * mei: me: add arrow lake point H DID (stable-fixes). * mei: me: add arrow lake point S DID (stable-fixes). * mei: me: add lunar lake point M DID (stable-fixes). * mei: me: disable RPL-S on SPS and IGN firmwares (git-fixes). * mei: me: release irq in mei_me_pci_resume error path (git-fixes). * Merge branch 'SLE15-SP6' (7c8fc2c7cc52) into 'SLE15-SP6-RT' * mfd: omap-usb-tll: Use struct_size to allocate tll (git-fixes). * mfd: pm8008: Fix regmap irq chip initialisation (git-fixes). * misc: fastrpc: Avoid updating PD type for capability request (git-fixes). * misc: fastrpc: Copy the complete capability structure to user (git-fixes). * misc: fastrpc: Fix DSP capabilities request (git-fixes). * misc: fastrpc: Fix memory leak in audio daemon attach operation (git-fixes). * misc: fastrpc: Fix ownership reassignment of remote heap (git-fixes). * misc: fastrpc: Restrict untrusted app to attach to privileged PD (git- fixes). * misc: microchip: pci1xxxx: Fix a memory leak in the error handling of gp_aux_bus_probe() (git-fixes). * misc: microchip: pci1xxxx: fix double free in the error handling of gp_aux_bus_probe() (git-fixes). * mISDN: Fix a use after free in hfcmulti_tx() (git-fixes). * mISDN: fix MISDN_TIME_STAMP handling (git-fixes). * mlxbf_gige: call request_irq() after NAPI initialized (git-fixes). * mlxbf_gige: stop interface during shutdown (git-fixes). * mlxbf_gige: stop PHY during open() error paths (git-fixes). * mlxsw: Use refcount_t for reference counting (git-fixes). * mmc: core: Add HS400 tuning in HS400es initialization (stable-fixes). * mmc: core: Add mmc_gpiod_set_cd_config() function (stable-fixes). * mmc: core: Avoid negative index with array access (git-fixes). * mmc: core: Do not force a retune before RPMB switch (stable-fixes). * mmc: core: Initialize mmc_blk_ioc_data (git-fixes). * mmc: davinci: Do not strip remove function when driver is builtin (git- fixes). * mmc: omap: fix broken slot switch lookup (git-fixes). * mmc: omap: fix deferred probe (git-fixes). * mmc: omap: restore original power up/down steps (git-fixes). * mmc: sdhci-acpi: Add quirk to enable pull-up on the card-detect GPIO on Asus T100TA (git-fixes). * mmc: sdhci-acpi: Disable write protect detection on Toshiba WT10-A (stable- fixes). * mmc: sdhci-acpi: Fix Lenovo Yoga Tablet 2 Pro 1380 sdcard slot not working (stable-fixes). * mmc: sdhci-acpi: Sort DMI quirks alphabetically (stable-fixes). * mmc: sdhci: Add support for "Tuning Error" interrupts (stable-fixes). * mmc: sdhci_am654: Add ITAPDLYSEL in sdhci_j721e_4bit_set_clock (git-fixes). * mmc: sdhci_am654: Add OTAP/ITAP delay enable (git-fixes). * mmc: sdhci_am654: Add tuning algorithm for delay chain (git-fixes). * mmc: sdhci_am654: Fix ITAPDLY for HS400 timing (git-fixes). * mmc: sdhci_am654: Write ITAPDLY for DDR52 timing (git-fixes). * mmc: sdhci-brcmstb: check R1_STATUS for erase/trim/discard (git-fixes). * mmc: sdhci: Do not invert write-protect twice (git-fixes). * mmc: sdhci: Do not lock spinlock around mmc_gpio_get_ro() (git-fixes). * mmc: sdhci-msm: pervent access to suspended controller (git-fixes). * mmc: sdhci-omap: re-tuning is needed after a pm transition to support emmc HS200 mode (git-fixes). * mmc: sdhci-pci: Convert PCIBIOS_* return codes to errnos (git-fixes). * mm_init kABI workaround (git-fixes). * mm: memcg: do not periodically flush stats when memcg is disabled (bsc#1222525). * mm: memcg: use larger batches for proactive reclaim (bsc#1222522). * mm,page_owner: check for null stack_record before bumping its refcount (bsc#1222366). * mm,page_owner: Defer enablement of static branch (bsc#1222366). * mm,page_owner: drop unnecessary check (bsc#1222366). * mm,page_owner: Fix accounting of pages when migrating (bsc#1222366). * mm,page_owner: Fix printing of stack records (bsc#1222366). * mm,page_owner: fix recursion (bsc#1222366). * mm,page_owner: Fix refcount imbalance (bsc#1222366). * mm: page_owner: fix wrong information in dump_page_owner (git-fixes). * mm,page_owner: Update metadata for tail pages (bsc#1222366). * mm/slab: make __free(kfree) accept error pointers (git-fixes). * modpost: Add '.ltext' and '.ltext.*' to TEXT_SECTIONS (stable-fixes). * module: do not ignore sysfs_create_link() failures (git-fixes). * mptcp: annotate data-races around msk->rmem_fwd_alloc (git-fixes). * mptcp: fix bogus receive window shrinkage with multiple subflows (git- fixes). * mptcp: move __mptcp_error_report in protocol.c (git-fixes). * mptcp: process pending subflow error on close (git-fixes). * mptcp: Remove unnecessary test for __mptcp_init_sock() (git-fixes). * mt76: connac: move more mt7921/mt7915 mac shared code in connac lib (bsc#1227149). * mt76: mt7996: rely on mt76_sta_stats in mt76_wcid (bsc#1227149). * mtd: core: Report error if first mtd_otp_size() call fails in mtd_otp_nvmem_add() (git-fixes). * mtd: diskonchip: work around ubsan link failure (stable-fixes). * mtd: partitions: redboot: Added conversion of operands to a larger type (stable-fixes). * mtd: rawnand: Bypass a couple of sanity checks during NAND identification (git-fixes). * mtd: rawnand: Ensure ECC configuration is propagated to upper layers (git- fixes). * mtd: rawnand: Fix the nand_read_data_op() early check (git-fixes). * mtd: rawnand: hynix: fixed typo (git-fixes). * mtd: rawnand: rockchip: ensure NVDDR timings are rejected (git-fixes). * mtd: spinand: Add support for 5-byte IDs (stable-fixes). * net: add netdev_lockdep_set_classes() to virtual drivers (git-fixes). * net: annotate data-races around sk->sk_bind_phc (git-fixes). * net: annotate data-races around sk->sk_forward_alloc (git-fixes). * net: annotate data-races around sk->sk_lingertime (git-fixes). * net: annotate data-races around sk->sk_tsflags (git-fixes). * net: bonding: remove kernel-doc comment marker (git-fixes). * net: can: j1939: enhanced error handling for tightly received RTS messages in xtp_rx_rts_session_new (git-fixes). * net: can: j1939: Initialize unused data in j1939_send_one() (git-fixes). * net: can: j1939: recover socket queue on CAN bus error during BAM transmission (git-fixes). * net: cfg802154: fix kernel-doc notation warnings (git-fixes). * net/dcb: check for detached device before executing callbacks (bsc#1215587). * net: dsa: microchip: fix register write order in ksz8_ind_write8() (git- fixes). * net: dsa: mt7530: fix handling of all link-local frames (git-fixes). * net: dsa: mt7530: fix link-local frames that ingress vlan filtering ports (git-fixes). * net: dsa: mt7530: prevent possible incorrect XTAL frequency selection (git- fixes). * net: dsa: mt7530: trap link-local frames regardless of ST Port State (git- fixes). * net: dsa: sja1105: Fix parameters order in sja1110_pcs_mdio_write_c45() (git-fixes). * net: ena: Fix incorrect descriptor free behavior (git-fixes). * net: ena: Fix potential sign extension issue (git-fixes). * net: ena: Fix redundant device NUMA node override (jsc#PED-8688). * net: ena: Move XDP code to its new files (git-fixes). * net: ena: Pass ena_adapter instead of net_device to ena_xmit_common() (git- fixes). * net: ena: Remove ena_select_queue (git-fixes). * net: ena: Set tx_info->xdpf value to NULL (git-fixes). * net: ena: Use tx_ring instead of xdp_ring for XDP channel TX (git-fixes). * net: ena: Wrong missing IO completions check order (git-fixes). * net: ethernet: mtk_eth_soc: fix PPE hanging issue (git-fixes). * net: ethernet: mtk_wed: introduce mtk_wed_buf structure (bsc#1227149). * net: ethernet: mtk_wed: rename mtk_rxbm_desc in mtk_wed_bm_desc (bsc#1227149). * net: ethernet: ti: cpsw: enable mac_managed_pm to fix mdio (git-fixes). * net: fec: Set mac_managed_pm during probe (git-fixes). * net: fill in MODULE_DESCRIPTION()s in kuba@'s modules (bsc#1227149). * netfilter: nf_tables: disable toggling dormant table state more than once (git-fixes). * netfilter: nf_tables: uapi: Describe NFTA_RULE_CHAIN_ID (git-fixes). * netfilter: nft_ct: fix l3num expectations with inet pseudo family (git- fixes). * netfilter: nft_set_rbtree: use read spinlock to avoid datapath contention (git-fixes). * net: hns3: fix index limit to support all queue stats (git-fixes). * net: hns3: fix kernel crash when 1588 is received on HIP08 devices (git- fixes). * net: hns3: fix kernel crash when devlink reload during pf initialization (git-fixes). * net: hns3: fix port duplex configure error in IMP reset (git-fixes). * net: hns3: fix wrong judgment condition issue (git-fixes). * net: hns3: mark unexcuted loopback test result as UNEXECUTED (git-fixes). * net: hns3: Remove io_stop_wc() calls after __iowrite64_copy() (bsc#1226502) * net: hns3: tracing: fix hclgevf trace event strings (git-fixes). * net: ice: Fix potential NULL pointer dereference in ice_bridge_setlink() (git-fixes). * net: ks8851: Handle softirqs at the end of IRQ thread to fix hang (git- fixes). * net: ks8851: Inline ks8851_rx_skb() (git-fixes). * net: ks8851: Queue RX packets in IRQ handler instead of disabling BHs (git- fixes). * net: lan743x: Add set RFE read fifo threshold for PCI1x1x chips (git-fixes). * net: lan743x: disable WOL upon resume to restore full data path operation (git-fixes). * net: lan743x: Support WOL at both the PHY and MAC appropriately (git-fixes). * net: libwx: fix memory leak on free page (git-fixes). * net: llc: fix kernel-doc notation warnings (git-fixes). * net: ll_temac: platform_get_resource replaced by wrong function (git-fixes). * net: mana: Enable MANA driver on ARM64 with 4K page size (jsc#PED-8491). * net: mana: Fix possible double free in error handling path (git-fixes). * net: mana: Fix Rx DMA datasize and skb_over_panic (git-fixes). * net: mana: Fix the extra HZ in mana_hwc_send_request (git-fixes). * net: mediatek: mtk_eth_soc: clear MAC_MCR_FORCE_LINK only when MAC is up (git-fixes). * net/mlx5: Correctly compare pkt reformat ids (git-fixes). * net/mlx5e: Change the warning when ignore_flow_level is not supported (git- fixes). * net/mlx5e: Do not produce metadata freelist entries in Tx port ts WQE xmit (git-fixes). * net/mlx5e: Fix MACsec state loss upon state update in offload path (git- fixes). * net/mlx5e: Fix mlx5e_priv_init() cleanup flow (git-fixes). * net/mlx5e: HTB, Fix inconsistencies with QoS SQs number (git-fixes). * net/mlx5e: RSS, Block changing channels number when RXFH is configured (git- fixes). * net/mlx5e: RSS, Block XOR hash with over 128 channels (git-fixes). * net/mlx5: E-switch, Change flow rule destination checking (git-fixes). * net/mlx5: E-switch, store eswitch pointer before registering devlink_param (git-fixes). * net/mlx5e: Switch to using _bh variant of of spinlock API in port timestamping NAPI poll context (git-fixes). * net/mlx5e: Use a memory barrier to enforce PTP WQ xmit submission tracking occurs after populating the metadata_map (git-fixes). * net/mlx5: Fix fw reporter diagnose output (git-fixes). * net/mlx5: Fix MTMP register capability offset in MCAM register (git-fixes). * net/mlx5: Fix peer devlink set for SF representor devlink port (git-fixes). * net/mlx5: Lag, restore buckets number to default after hash LAG deactivation (git-fixes). * net/mlx5: offset comp irq index in name by one (git-fixes). * net/mlx5: Properly link new fs rules into the tree (git-fixes). * net/mlx5: Register devlink first under devlink lock (git-fixes). * net/mlx5: Restore mistakenly dropped parts in register devlink flow (git- fixes). * net/mlx5: SF, Stop waiting for FW as teardown was called (git-fixes). * net: nfc: remove inappropriate attrs check (stable-fixes). * net: NSH: fix kernel-doc notation warning (git-fixes). * net: pcs: xpcs: Return EINVAL in the internal methods (git-fixes). * net: phy: fix phy_read_poll_timeout argument type in genphy_loopback (git- fixes). * net: phy: micrel: add Microchip KSZ 9477 to the device table (git-fixes). * net: phy: micrel: fix KSZ9477 PHY issues after suspend/resume (git-fixes). * net: phy: micrel: Fix potential null pointer dereference (git-fixes). * net: phy: Micrel KSZ8061: fix errata solution not taking effect problem (git-fixes). * net: phy: micrel: lan8814: Fix when enabling/disabling 1-step timestamping (git-fixes). * net: phy: micrel: set soft_reset callback to genphy_soft_reset for KSZ8061 (git-fixes). * net: phy: microchip: lan87xx: reinit PHY after cable test (git-fixes). * net: phy: mxl-gpy: Remove interrupt mask clearing from config_init (git- fixes). * net: phy: phy_device: Fix PHY LED blinking code comment (git-fixes). * net: phy: phy_device: Prevent nullptr exceptions on ISR (git-fixes). * net: phy: phy_device: Prevent nullptr exceptions on ISR (stable-fixes). * net: ravb: Always process TX descriptor ring (git-fixes). * net: ravb: Let IP-specific receive function to interrogate descriptors (git- fixes). * net: Remove conditional threaded-NAPI wakeup based on task state (bsc#1214683 (PREEMPT_RT prerequisite backports)). * net/smc: bugfix for smcr v2 server connect success statistic (git-fixes). * net/smc: fix documentation of buffer sizes (git-fixes). * net/smc: use smc_lgr_list.lock to protect smc_lgr_list.list iterate in smcr_port_add (git-fixes). * net: smsc95xx: add support for SYS TEC USB-SPEmodule1 (git-fixes). * net: sparx5: Fix use after free inside sparx5_del_mact_entry (git-fixes). * net: sparx5: fix wrong config being used when reconfiguring PCS (git-fixes). * net: sparx5: flower: fix fragment flags handling (git-fixes). * net: stmmac: dwmac-starfive: Add support for JH7100 SoC (git-fixes). * net: stmmac: Fix incorrect dereference in interrupt handlers (git-fixes). * net: stmmac: fix rx queue priority assignment (git-fixes). * net: sunrpc: Fix an off by one in rpc_sockaddr2uaddr() (git-fixes). * net: tcp: fix unexcepted socket die when snd_wnd is 0 (git-fixes). * net: tls: fix returned read length with async decrypt (bsc#1221858). * net: tls: fix use-after-free with partial reads and async (bsc#1221858). * net: tls, fix WARNIING in __sk_msg_free (bsc#1221858). * net: usb: ax88179_178a: avoid the interface always configured as random address (git-fixes). * net: usb: ax88179_178a: avoid writing the mac address before first reading (git-fixes). * net: usb: ax88179_178a: fix link status when link is set to down/up (git- fixes). * net: usb: ax88179_178a: improve link status logs (git-fixes). * net: usb: ax88179_178a: improve reset check (git-fixes). * net: usb: ax88179_178a: stop lying about skb->truesize (git-fixes). * net: usb: qmi_wwan: add Telit FN912 compositions (stable-fixes). * net: usb: qmi_wwan: add Telit FN920C04 compositions (git-fixes). * net:usb:qmi_wwan: support Rolling modules (stable-fixes). * net: usb: rtl8150 fix unintiatilzed variables in rtl8150_get_link_ksettings (git-fixes). * net: usb: smsc95xx: fix changing LED_SEL bit value updated from EEPROM (git- fixes). * net: usb: smsc95xx: stop lying about skb->truesize (git-fixes). * net: usb: sr9700: stop lying about skb->truesize (git-fixes). * net: Use sockaddr_storage for getsockopt(SO_PEERNAME) (git-fixes). * net: veth: do not manipulate GRO when using XDP (git-fixes). * net: wwan: t7xx: Split 64bit accesses to fix alignment issues (git-fixes). * net/x25: fix incorrect parameter validation in the x25_getsockopt() function (git-fixes). * nfc/nci: Add the inconsistency check between the input data length and count (stable-fixes). * nfc: nci: Fix handling of zero-length payload packets in nci_rx_work() (git- fixes). * nfc: nci: Fix kcov check in nci_rx_work() (git-fixes). * nfc: nci: Fix uninit-value in nci_dev_up and nci_ntf_packet (git-fixes). * nfc: nci: Fix uninit-value in nci_rx_work (git-fixes). * nf_conntrack: fix -Wunused-const-variable= (git-fixes). * NFC: trf7970a: disable all regulators on removal (git-fixes). * nfp: flower: handle acti_netdevs allocation failure (git-fixes). * NFS: abort nfs_atomic_open_v23 if name is too long (bsc#1219847). * NFS: add atomic_open for NFSv3 to handle O_TRUNC correctly (bsc#1219847). * NFS: add barriers when testing for NFS_FSDATA_BLOCKED (git-fixes). * nfs: Avoid flushing many pages with NFS_FILE_SYNC (bsc#1218442). * NFS: avoid infinite loop in pnfs_update_layout (bsc#1219633 bsc#1226226). * nfs: Block on write congestion (bsc#1218442). * nfs: Bump default write congestion size (bsc#1218442). * NFSD: change LISTXATTRS cookie encoding to big-endian (git-fixes). * NFSD: Convert the callback workqueue to use delayed_work (git-fixes). * nfsd: do not call locks_release_private() twice concurrently (git-fixes). * nfsd: Fix a regression in nfsd_setattr() (git-fixes). * NFSD: Fix checksum mismatches in the duplicate reply cache (git-fixes). * NFSD: fix LISTXATTRS returning a short list with eof=TRUE (git-fixes). * NFSD: fix LISTXATTRS returning more bytes than maxcount (git-fixes). * NFSD: fix nfsd4_listxattr_validate_cookie (git-fixes). * NFSD: Fix nfsd_clid_class use of __string_len() macro (git-fixes). * nfsd: hold a lighter-weight client reference over CB_RECALL_ANY (git-fixes). * nfsd: optimise recalculate_deny_mode() for a common case (bsc#1217912). * NFSD: Reschedule CB operations when backchannel rpc_clnt is shut down (git- fixes). * NFSD: Reset cb_seq_status after NFS4ERR_DELAY (git-fixes). * NFSD: Retransmit callbacks after client reconnects (git-fixes). * nfs: Drop pointless check from nfs_commit_release_pages() (bsc#1218442). * nfs: drop the incorrect assertion in nfs_swap_rw() (git-fixes). * nfsd: use __fput_sync() to avoid delayed closing of files (bsc#1223380 bsc#1217408). * NFS: Fix an off by one in root_nfs_cat() (git-fixes). * NFS: Fix nfs_netfs_issue_read() xarray locking for writeback interrupt (git- fixes). * nfs: fix panic when nfs4_ff_layout_prepare_ds() fails (git-fixes). * NFS: Fix READ_PLUS when server does not support OP_READ_PLUS (git-fixes). * nfs: fix undefined behavior in nfs_block_bits() (git-fixes). * nfs: Fix up kabi after adding write_congestion_wait (bsc#1218442). * nfs: Handle error of rpc_proc_register() in nfs_net_init() (git-fixes). * nfs: keep server info for remounts (git-fixes). * nfs: Properly initialize server->writeback (bsc#1218442). * NFS: Read unlock folio on nfs_page_create_from_folio() error (git-fixes). * NFSv4.1 enforce rootpath check in fs_location query (git-fixes). * NFSv4.1/pnfs: fix NFS with TLS in pnfs (git-fixes). * NFSv4.2: fix listxattr maximum XDR buffer size (git-fixes). * NFSv4.2: fix nfs4_listxattr kernel BUG at mm/usercopy.c:102 (git-fixes). * NFSv4: Fixup smatch warning for ambiguous return (git-fixes). * NFSv4.x: by default serialize open/close operations (bsc#1223863 bsc#1227362). * nilfs2: add missing check for inode numbers on directory entries (stable- fixes). * nilfs2: avoid undefined behavior in nilfs_cnt32_ge macro (git-fixes). * nilfs2: convert persistent object allocator to use kmap_local (git-fixes). * nilfs2: fix incorrect inode allocation from reserved inodes (git-fixes). * nilfs2: fix inode number range checks (stable-fixes). * nilfs2: fix nilfs_empty_dir() misjudgment and long loop on I/O errors (git- fixes). * nilfs2: fix OOB in nilfs_set_de_type (git-fixes). * nilfs2: fix out-of-range warning (git-fixes). * nilfs2: fix potential bug in end_buffer_async_write (git-fixes). * nilfs2: fix potential hang in nilfs_detach_log_writer() (git-fixes). * nilfs2: fix unexpected freezing of nilfs_segctor_sync() (git-fixes). * nilfs2: fix use-after-free of timer for log writer thread (git-fixes). * nilfs2: make superblock data array index computation sparse friendly (git- fixes). * nilfs2: return the mapped address from nilfs_get_page() (stable-fixes). * nouveau: add an ioctl to report vram usage (stable-fixes). * nouveau: add an ioctl to return vram bar size (stable-fixes). * nouveau/dmem: handle kcalloc() allocation failure (git-fixes). * nouveau: fix devinit paths to only handle display on GSP (git-fixes). * nouveau: fix function cast warning (git-fixes). * nouveau: fix instmem race condition around ptr stores (git-fixes). * nouveau/gsp: do not check devinit disable on GSP (git-fixes). * nouveau: lock the client object tree (stable-fixes). * nouveau: report byte usage in VRAM usage (git-fixes). * nouveau: reset the bo resource bus info after an eviction (git-fixes). * nouveau/uvmm: fix addr/range calcs for remap operations (git-fixes). * nvdimm: make nvdimm_bus_type const (jsc#PED-5853). * nvdimm/pmem: fix leak on dax_add_host() failure (jsc#PED-5853). * nvdimm/pmem: Treat alloc_dax() -EOPNOTSUPP failure as non-fatal (jsc#PED-5853). * nvme: cancel pending I/O if nvme controller is in terminal state (bsc#1226503). * nvme: do not retry authentication failures (bsc#1186716). * nvme-fabrics: short-circuit reconnect retries (bsc#1186716). * nvme-fc: do not wait in vain when unloading module (git-fixes). * nvme: find numa distance only if controller has valid numa id (git-fixes). * nvme: fix multipath batched completion accounting (git-fixes). * nvme: fix nvme_pr_* status code parsing (git-fixes). * nvme: fix reconnection fail due to reserved tag allocation (git-fixes). * nvme: fix warn output about shared namespaces without CONFIG_NVME_MULTIPATH (git-fixes). * nvme-multipath: fix io accounting on failover (git-fixes). * nvme-pci: Add quirk for broken MSIs (git-fixes). * nvme: return kernel error codes for admin queue connect (bsc#1186716). * nvmet-auth: replace pr_debug() with pr_err() to report an error (git-fixes). * nvmet-auth: return the error code to the nvmet_auth_host_hash() callers (git-fixes). * nvme/tcp: Add wq_unbound modparam for nvme_tcp_wq (bsc#1224049). * nvme-tcp: Export the nvme_tcp_wq to sysfs (bsc#1224049). * nvme-tcp: strict pdu pacing to avoid send stalls on TLS (bsc#1221858). * nvmet-fc: abort command when there is no binding (git-fixes). * nvmet-fc: defer cleanup using RCU properly (git-fixes). * nvmet-fc: hold reference on hostport match (git-fixes). * nvmet-fcloop: swap the list_add_tail arguments (git-fixes). * nvmet-fc: release reference on target port (git-fixes). * nvmet: fix ns enable/disable possible hang (git-fixes). * nvmet: fix nvme status code when namespace is disabled (git-fixes). * nvmet: lock config semaphore when accessing DH-HMAC-CHAP key (bsc#1186716). * nvmet-passthru: propagate status from id override functions (git-fixes). * nvmet: prevent sprintf() overflow in nvmet_subsys_nsid_exists() (git-fixes). * nvmet: return DHCHAP status codes from nvmet_setup_auth() (bsc#1186716). * nvmet-tcp: fix nvme tcp ida memory leak (git-fixes). * nvmet-tcp: fix possible memory leak when tearing down a controller (git- fixes). * ocfs2: adjust enabling place for la window (bsc#1219224). * ocfs2: fix DIO failure due to insufficient transaction credits (git-fixes). * ocfs2: fix races between hole punching and AIO+DIO (git-fixes). * ocfs2: fix sparse warnings (bsc#1219224). * ocfs2: improve write IO performance when fragmentation is high (bsc#1219224). * ocfs2: speed up chain-list searching (bsc#1219224). * ocfs2: use coarse time for new created files (git-fixes). * octeontx2-af: Add array index check (git-fixes). * octeontx2-af: Fix devlink params (git-fixes). * octeontx2-af: Fix issue with loading coalesced KPU profiles (git-fixes). * octeontx2-af: Fix NIX SQ mode and BP config (git-fixes). * Octeontx2-af: fix pause frame configuration in GMP mode (git-fixes). * octeontx2-af: Use matching wake_up API variant in CGX command interface (git-fixes). * octeontx2-af: Use separate handlers for interrupts (git-fixes). * octeontx2: Detect the mbox up or down message via register (git-fixes). * octeontx2-pf: check negative error code in otx2_open() (git-fixes). * octeontx2-pf: fix FLOW_DIS_IS_FRAGMENT implementation (git-fixes). * octeontx2-pf: Fix transmit scheduler resource leak (git-fixes). * octeontx2-pf: Send UP messages to VF only when VF is up (git-fixes). * octeontx2-pf: Use default max_active works instead of one (git-fixes). * octeontx2-pf: Wait till detach_resources msg is complete (git-fixes). * of: dynamic: Synchronize of_changeset_destroy() with the devlink removals (git-fixes). * of: module: add buffer overflow check in of_modalias() (git-fixes). * of: module: prevent NULL pointer dereference in vsnprintf() (stable-fixes). * of: property: Add in-ports/out-ports support to of_graph_get_port_parent() (stable-fixes). * of: property: fix typo in io-channels (git-fixes). * of: property: fw_devlink: Fix stupid bug in remote-endpoint parsing (git- fixes). * of: property: Improve finding the consumer of a remote-endpoint property (git-fixes). * of: property: Improve finding the supplier of a remote-endpoint property (git-fixes). * of: unittest: Fix compile in the non-dynamic case (git-fixes). * orangefs: fix out-of-bounds fsid access (git-fixes). * overflow: Allow non-type arg to type_max() and type_min() (stable-fixes). * PCI/AER: Block runtime suspend when handling errors (stable-fixes). * PCI/ASPM: Update save_state when configuration changes (bsc#1226915) * PCI/ASPM: Use RMW accessors for changing LNKCTL (git-fixes). * PCI: Clear Secondary Status errors after enumeration (bsc#1226928) * PCI: Delay after FLR of Solidigm P44 Pro NVMe (stable-fixes). * PCI: Disable D3cold on Asus B1400 PCI-NVMe bridge (stable-fixes). * PCI: Do not wait for disconnected devices when resuming (git-fixes). * PCI/DPC: Fix use-after-free on concurrent DPC and hot-removal (git-fixes). * PCI/DPC: Quirk PIO log size for Intel Raptor Lake Root Ports (stable-fixes). * PCI/DPC: Use FIELD_GET() (stable-fixes). * PCI: dwc: ep: Fix DBI access failure for drivers requiring refclk from host (git-fixes). * PCI: dwc: Fix index 0 incorrectly being interpreted as a free ATU slot (git- fixes). * PCI: dw-rockchip: Fix initial PERST# GPIO value (git-fixes). * PCI/EDR: Align EDR_PORT_DPC_ENABLE_DSM with PCI Firmware r3.3 (git-fixes). * PCI/EDR: Align EDR_PORT_LOCATE_DSM with PCI Firmware r3.3 (git-fixes). * PCI: endpoint: Clean up error handling in vpci_scan_bus() (git-fixes). * PCI: endpoint: Fix error handling in epf_ntb_epc_cleanup() (git-fixes). * PCI: endpoint: pci-epf-test: Make use of cached 'epc_features' in pci_epf_test_core_init() (git-fixes). * PCI: Execute quirk_enable_clear_retrain_link() earlier (stable-fixes). * PCI: Extend ACS configurability (bsc#1228090). * PCI: Fix resource double counting on remove & rescan (git-fixes). * PCI: Fix typos in docs and comments (stable-fixes). * PCI: hv: Fix ring buffer size calculation (git-fixes). * PCI: Introduce cleanup helpers for device reference counts and locks (stable-fixes). * PCI: keystone: Do not enable BAR 0 for AM654x (git-fixes). * PCI: keystone: Fix NULL pointer dereference in case of DT error in ks_pcie_setup_rc_app_regs() (git-fixes). * PCI: keystone: Relocate ks_pcie_set/clear_dbi_mode() (git-fixes). * PCI: Make link retraining use RMW accessors for changing LNKCTL (git-fixes). * PCI/MSI: Fix UAF in msi_capability_init (git-fixes). * PCI/PM: Avoid D3cold for HP Pavilion 17 PC/1972 PCIe Ports (stable-fixes). * PCI/PM: Drain runtime-idle callbacks before driver removal (stable-fixes). * PCI: qcom: Add support for sa8775p SoC (git-fixes). * PCI: qcom: Disable ASPM L0s for sc8280xp, sa8540p and sa8295p (git-fixes). * PCI: qcom-ep: Disable resources unconditionally during PERST# assert (git- fixes). * PCI: rcar: Demote WARN() to dev_warn_ratelimited() in rcar_pcie_wakeup() (git-fixes). * PCI: rockchip-ep: Remove wrong mask on subsys_vendor_id (git-fixes). * PCI: rockchip: Use GPIOD_OUT_LOW flag while requesting ep_gpio (git-fixes). * PCI: rpaphp: Error out on busy status from get-sensor-state (bsc#1223369 ltc#205888). * PCI: Simplify pcie_capability_clear_and_set_word() to ..._clear_word() (stable-fixes). * PCI: switchtec: Add support for PCIe Gen5 devices (stable-fixes). * PCI: switchtec: Use normal comment style (stable-fixes). * PCI: tegra194: Fix probe path for Endpoint mode (git-fixes). * PCI: tegra194: Set EP alignment restriction for inbound ATU (git-fixes). * PCI: vmd: Create domain symlink before pci_bus_add_devices() (bsc#1227363). * peci: linux/peci.h: fix Excess kernel-doc description warning (git-fixes). * perf annotate: Fix annotation_calc_lines() to pass correct address to get_srcline() (git-fixes). * perf annotate: Get rid of duplicate --group option item (git-fixes). * perf auxtrace: Fix multiple use of --itrace option (git-fixes). * perf bench internals inject-build-id: Fix trap divide when collecting just one DSO (git-fixes). * perf bench uprobe: Remove lib64 from libc.so.6 binary path (git-fixes). * perf bpf: Clean up the generated/copied vmlinux.h (git-fixes). * perf daemon: Fix file leak in daemon_session__control (git-fixes). * perf docs: Document bpf event modifier (git-fixes). * perf: Enqueue SIGTRAP always via task_work (bsc#1214683 (PREEMPT_RT prerequisite backports)). * perf evsel: Fix duplicate initialization of data->id in evsel__parse_sample() (git-fixes). * perf expr: Fix "has_event" function for metric style events (git-fixes). * perf intel-pt: Fix unassigned instruction op (discovered by MemorySanitizer) (git-fixes). * perf jevents: Drop or simplify small integer values (git-fixes). * perf list: fix short description for some cache events (git-fixes). * perf lock contention: Add a missing NULL check (git-fixes). * perf metric: Do not remove scale from counts (git-fixes). * perf: Move irq_work_queue() where the event is prepared (bsc#1214683 (PREEMPT_RT prerequisite backports)). * perf pmu: Count sys and cpuid JSON events separately (git fixes). * perf pmu: Fix a potential memory leak in perf_pmu__lookup() (git-fixes). * perf pmu: Treat the msr pmu as software (git-fixes). * perf print-events: make is_event_supported() more robust (git-fixes). * perf probe: Add missing libgen.h header needed for using basename() (git- fixes). * perf record: Check conflict between '\--timestamp-filename' option and pipe mode before recording (git-fixes). * perf record: Fix debug message placement for test consumption (git-fixes). * perf record: Fix possible incorrect free in record__switch_output() (git- fixes). * perf: Remove perf_swevent_get_recursion_context() from perf_pending_task() (bsc#1214683 (PREEMPT_RT prerequisite backports)). * perf report: Avoid SEGV in report__setup_sample_type() (git-fixes). * perf sched timehist: Fix -g/--call-graph option failure (git-fixes). * perf script: Show also errors for --insn-trace option (git-fixes). * perf: Split __perf_pending_irq() out of perf_pending_irq() (bsc#1214683 (PREEMPT_RT prerequisite backports)). * perf srcline: Add missed addr2line closes (git-fixes). * perf stat: Avoid metric-only segv (git-fixes). * perf stat: Do not display metric header for non-leader uncore events (git- fixes). * perf stat: Do not fail on metrics on s390 z/VM systems (git-fixes). * perf symbols: Fix ownership of string in dso__load_vmlinux() (git-fixes). * perf tests: Apply attributes to all events in object code reading test (git- fixes). * perf test shell arm_coresight: Increase buffer size for Coresight basic tests (git-fixes). * perf tests: Make data symbol test wait for perf to start (bsc#1220045). * perf tests: Make "test data symbol" more robust on Neoverse N1 (git-fixes). * perf tests: Skip data symbol test if buf1 symbol is missing (bsc#1220045). * perf thread: Fixes to thread__new() related to initializing comm (git- fixes). * perf thread_map: Free strlist on normal path in thread_map__new_by_tid_str() (git-fixes). * perf top: Uniform the event name for the hybrid machine (git-fixes). * perf top: Use evsel's cpus to replace user_requested_cpus (git-fixes). * perf ui browser: Avoid SEGV on title (git fixes). * perf ui browser: Do not save pointer to stack memory (git-fixes). * perf vendor events amd: Add Zen 4 memory controller events (git-fixes). * perf vendor events amd: Fix Zen 4 cache latency events (git-fixes). * perf/x86/amd/core: Avoid register reset when CPU is dead (git-fixes). * perf/x86/amd/lbr: Discard erroneous branch entries (git-fixes). * perf/x86/amd/lbr: Use freeze based on availability (git-fixes). * perf/x86: Fix out of range data (git-fixes). * perf/x86/intel/ds: Do not clear ->pebs_data_cfg for the last PEBS event (git-fixes). * perf/x86/intel: Expose existence of callback support to KVM (git-fixes). * phy: cadence-torrent: Check return value on register read (git-fixes). * phy: freescale: imx8m-pcie: fix pcie link-up instability (git-fixes). * phy: marvell: a3700-comphy: Fix hardcoded array size (git-fixes). * phy: marvell: a3700-comphy: Fix out of bounds read (git-fixes). * phy: rockchip: naneng-combphy: Fix mux on rk3588 (git-fixes). * phy: rockchip-snps-pcie3: fix bifurcation on rk3588 (git-fixes). * phy: rockchip-snps-pcie3: fix clearing PHP_GRF_PCIESEL_CON bits (git-fixes). * phy: ti: tusb1210: Resolve charger-det crash if charger psy is unregistered (git-fixes). * pinctrl: armada-37xx: remove an unused variable (git-fixes). * pinctrl: baytrail: Fix selecting gpio pinctrl state (git-fixes). * pinctrl: core: fix possible memory leak when pinctrl_enable() fails (git- fixes). * pinctrl: devicetree: fix refcount leak in pinctrl_dt_to_map() (git-fixes). * pinctrl: fix deadlock in create_pinctrl() when handling -EPROBE_DEFER (git- fixes). * pinctrl: freescale: mxs: Fix refcount of child (git-fixes). * pinctrl: mediatek: paris: Fix PIN_CONFIG_INPUT_SCHMITT_ENABLE readback (git- fixes). * pinctrl: mediatek: paris: Rework support for PIN_CONFIG_{INPUT,OUTPUT}_ENABLE (git-fixes). * pinctrl/meson: fix typo in PDM's pin name (git-fixes). * pinctrl: pinctrl-aspeed-g6: Fix register offset for pinconf of GPIOR-T (git- fixes). * pinctrl: qcom: pinctrl-sm7150: Fix sdc1 and ufs special pins regs (git- fixes). * pinctrl: qcom: spmi-gpio: drop broken pm8008 support (git-fixes). * pinctrl: renesas: checker: Limit cfg reg enum checks to provided IDs (stable-fixes). * pinctrl: renesas: r8a779g0: Fix CANFD5 suffix (git-fixes). * pinctrl: renesas: r8a779g0: Fix FXR_TXEN[AB] suffixes (git-fixes). * pinctrl: renesas: r8a779g0: Fix (H)SCIF1 suffixes (git-fixes). * pinctrl: renesas: r8a779g0: Fix (H)SCIF3 suffixes (git-fixes). * pinctrl: renesas: r8a779g0: Fix IRQ suffixes (git-fixes). * pinctrl: renesas: r8a779g0: FIX PWM suffixes (git-fixes). * pinctrl: renesas: r8a779g0: Fix TCLK suffixes (git-fixes). * pinctrl: renesas: r8a779g0: Fix TPU suffixes (git-fixes). * pinctrl: rockchip: fix pinmux bits for RK3328 GPIO2-B pins (git-fixes). * pinctrl: rockchip: fix pinmux bits for RK3328 GPIO3-B pins (git-fixes). * pinctrl: rockchip: fix pinmux reset in rockchip_pmx_set (git-fixes). * pinctrl: rockchip: use dedicated pinctrl type for RK3328 (git-fixes). * pinctrl: single: fix possible memory leak when pinctrl_enable() fails (git- fixes). * pinctrl: ti: ti-iodelay: fix possible memory leak when pinctrl_enable() fails (git-fixes). * platform/chrome: cros_ec_debugfs: fix wrong EC message version (git-fixes). * platform/chrome: cros_ec_uart: properly fix race condition (git-fixes). * platform/x86/amd/pmc: Extend Framework 13 quirk to more BIOSes (stable- fixes). * platform/x86: dell-smbios: Fix wrong token data in sysfs (git-fixes). * platform/x86/intel/tpmi: Handle error from tpmi_process_info() (stable- fixes). * platform/x86/intel-uncore-freq: Do not present root domain on error (git- fixes). * platform/x86: ISST: Add Grand Ridge to HPM CPU list (stable-fixes). * platform/x86: ISST: Add Granite Rapids-D to HPM CPU list (stable-fixes). * platform/x86: lg-laptop: Change ACPI device id (stable-fixes). * platform/x86: lg-laptop: Remove LGEX0815 hotkey handling (stable-fixes). * platform/x86: lg-laptop: Use ACPI device handle when evaluating WMAB/WMBB (stable-fixes). * platform/x86: thinkpad_acpi: Take hotkey_mutex during hotkey_exit() (git- fixes). * platform/x86: toshiba_acpi: Add quirk for buttons on Z830 (stable-fixes). * platform/x86: toshiba_acpi: Fix array out-of-bounds access (git-fixes). * platform/x86: toshiba_acpi: Fix quickstart quirk handling (git-fixes). * platform/x86: touchscreen_dmi: Add an extra entry for a variant of the Chuwi Vi8 tablet (stable-fixes). * platform/x86: touchscreen_dmi: Add info for GlobalSpace SolT IVW 11.6" tablet (stable-fixes). * platform/x86: touchscreen_dmi: Add info for the EZpad 6s Pro (stable-fixes). * platform/x86: wireless-hotkey: Add support for LG Airplane Button (stable- fixes). * platform/x86: x86-android-tablets: Fix acer_b1_750_goodix_gpios name (stable-fixes). * platform/x86: xiaomi-wmi: Fix race condition when reporting key events (git- fixes). * PM / devfreq: Synchronize devfreq_monitor_[start/stop] (stable-fixes). * PM: s2idle: Make sure CPUs will wakeup directly on resume (git-fixes). * pNFS/filelayout: fixup pNfs allocation modes (git-fixes). * Port "certs: Move RSA self-test data to separate file". * powerpc/64s/radix/kfence: map __kfence_pool at page granularity (bsc#1223570 ltc#205770). * powerpc: Avoid nmi_enter/nmi_exit in real mode interrupt (bsc#1221645 ltc#205739 bsc#1223191). * powerpc/crypto/chacha-p10: Fix failure on non Power10 (bsc#1218205). * powerpc/eeh: Permanently disable the removed device (bsc#1223991 ltc#205740). * powerpc/hv-gpci: Fix the H_GET_PERF_COUNTER_INFO hcall return value checks (git-fixes). * powerpc/prom: Add CPU info to hardware description string later (bsc#1215199). * powerpc/pseries: Fix scv instruction crash with kexec (bsc#1194869). * powerpc/pseries/lparcfg: drop error message from guest name lookup (bsc#1187716 ltc#193451 git-fixes). * powerpc/pseries: make max polling consistent for longer H_CALLs (bsc#1215199). * powerpc/pseries/vio: Do not return ENODEV if node or compatible missing (bsc#1220783). * powerpc/rtas: Prevent Spectre v1 gadget construction in sys_rtas() (bsc#1227487). * powerpc/uaccess: Fix build errors seen with GCC 13/14 (bsc#1194869). * powerpc/uaccess: Use YZ asm constraint for ld (bsc#1194869). * power: rt9455: hide unused rt9455_boost_voltage_values (git-fixes). * power: supply: ab8500: Fix error handling when calling iio_read_channel_processed() (git-fixes). * power: supply: cros_usbpd: provide ID table for avoiding fallback match (stable-fixes). * power: supply: ingenic: Fix some error handling paths in ingenic_battery_get_property() (git-fixes). * power: supply: mt6360_charger: Fix of_match for usb-otg-vbus regulator (git- fixes). * ppdev: Add an error check in register_device (git-fixes). * prctl: generalize PR_SET_MDWE support check to be per-arch (bsc#1225610). * Preparation update to v6.10-rc3-rt5 ((bsc#1214683 (PREEMPT_RT prerequisite backports)). * printk: Add this_cpu_in_panic() (bsc#1225607). * printk: Adjust mapping for 32bit seq macros (bsc#1225607). * printk: Avoid non-panic CPUs writing to ringbuffer (bsc#1225607). * printk: Consolidate console deferred printing (bsc#1225607). * printk: Disable passing console lock owner completely during panic() (bsc#1225607). * printk: Do not take console lock for console_flush_on_panic() (bsc#1225607). * printk: For @suppress_panic_printk check for other CPU in panic (bsc#1225607). * printk: Keep non-panic-CPUs out of console lock (bsc#1225607). * printk: Let no_printk() use _printk() (bsc#1225618). * printk: nbcon: Relocate 32bit seq macros (bsc#1225607). * printk: Reduce console_unblank() usage in unsafe scenarios (bsc#1225607). * printk: Rename abandon_console_lock_in_panic() to other_cpu_in_panic() (bsc#1225607). * printk: ringbuffer: Clarify special lpos values (bsc#1225607). * printk: ringbuffer: Cleanup reader terminology (bsc#1225607). * printk: ringbuffer: Do not skip non-finalized records with prb_next_seq() (bsc#1225607). * printk: ringbuffer: Skip non-finalized records in panic (bsc#1225607). * printk: Update @console_may_schedule in console_trylock_spinning() (bsc#1225616). * printk: Use prb_first_seq() as base for 32bit seq macros (bsc#1225607). * printk: Wait for all reserved records with pr_flush() (bsc#1225607). * proc/kcore: do not try to access unaccepted memory (git-fixes). * pstore: inode: Convert mutex usage to guard(mutex) (stable-fixes). * pstore: inode: Only d_invalidate() is needed (git-fixes). * pstore/zone: Add a null pointer check to the psz_kmsg_read (stable-fixes). * pwm: img: fix pwm clock lookup (git-fixes). * pwm: sti: Prepare removing pwm_chip from driver data (stable-fixes). * pwm: sti: Simplify probe function using devm functions (git-fixes). * pwm: stm32: Always do lazy disabling (git-fixes). * qibfs: fix dentry leak (git-fixes) * r8169: fix issue caused by buggy BIOS on certain boards with RTL8168d (git- fixes). * r8169: skip DASH fw status checks when DASH is disabled (git-fixes). * random: handle creditable entropy from atomic process context (git-fixes). * RAS/AMD/ATL: Fix MI300 bank hash (bsc#1225300). * RAS/AMD/ATL: Use system settings for MI300 DRAM to normalized address translation (bsc#1225300). * RAS/AMD/FMPM: Avoid NULL ptr deref in get_saved_records() (jsc#PED-7619). * RAS/AMD/FMPM: Fix build when debugfs is not enabled (jsc#PED-7619). * RAS/AMD/FMPM: Safely handle saved records of various sizes (jsc#PED-7619). * RDMA/bnxt_re: Fix the max msix vectors macro (git-fixes) * RDMA/cm: add timeout to cm_destroy_id wait (git-fixes) * RDMA/cma: Fix kmemleak in rdma_core observed during blktests nvme/rdma use siw (git-fixes) * RDMA/cm: Print the old state when cm_destroy_id gets timeout (git-fixes) * RDMA/hns: Add max_ah and cq moderation capacities in query_device() (git- fixes) * RDMA/hns: Fix deadlock on SRQ async events. (git-fixes) * RDMA/hns: Fix GMV table pagesize (git-fixes) * RDMA/hns: Fix return value in hns_roce_map_mr_sg (git-fixes) * RDMA/hns: Fix UAF for cq async event (git-fixes) * RDMA/hns: Modify the print level of CQE error (git-fixes) * RDMA/hns: Use complete parentheses in macros (git-fixes) * RDMA/IPoIB: Fix format truncation compilation errors (git-fixes) * RDMA/mana_ib: Fix bug in creation of dma regions (git-fixes). * RDMA/mana_ib: Ignore optional access flags for MRs (git-fixes). * RDMA/mlx5: Add check for srq max_sge attribute (git-fixes) * RDMA/mlx5: Adding remote atomic access flag to updatable flags (git-fixes) * RDMA/mlx5: Change check for cacheable mkeys (git-fixes) * RDMA/mlx5: Ensure created mkeys always have a populated rb_key (git-fixes) * RDMA/mlx5: Fix port number for counter query in multi-port configuration (git-fixes) * RDMA/mlx5: Fix unwind flow as part of mlx5_ib_stage_init_init (git-fixes) * RDMA/mlx5: Follow rb_key.ats when creating new mkeys (git-fixes) * RDMA/mlx5: Remove extra unlock on error path (git-fixes) * RDMA/mlx5: Uncacheable mkey has neither rb_key or cache_ent (git-fixes) * RDMA/restrack: Fix potential invalid address access (git-fixes) * RDMA/rxe: Allow good work requests to be executed (git-fixes) * RDMA/rxe: Fix data copy for IB_SEND_INLINE (git-fixes) * RDMA/rxe: Fix incorrect rxe_put in error path (git-fixes) * RDMA/rxe: Fix responder length checking for UD request packets (git-fixes) * RDMA/rxe: Fix seg fault in rxe_comp_queue_pkt (git-fixes) * RDMA/rxe: Fix the problem "mutex_destroy missing" (git-fixes) * README.BRANCH: Remove copy of branch name * Reapply "drm/qxl: simplify qxl_fence_wait" (stable-fixes). * Refresh ARM (bsc#1214683 (PREEMPT_RT prerequisite backports)). * Refresh kabi workaround ath updates (bsc#1227149#) * Refresh the previous ASoC patch, landed in subsystem tree (bsc#1228269) * regmap: Add regmap_read_bypassed() (git-fixes). * regmap-i2c: Subtract reg size from max_write (stable-fixes). * regmap: kunit: Ensure that changed bytes are actually different (stable- fixes). * regmap: maple: Fix cache corruption in regcache_maple_drop() (git-fixes). * regmap: maple: Fix uninitialized symbol 'ret' warnings (git-fixes). * regulator: bd71815: fix ramp values (git-fixes). * regulator: bd71828: Do not overwrite runtime voltages (git-fixes). * regulator: change devm_regulator_get_enable_optional() stub to return Ok (git-fixes). * regulator: change stubbed devm_regulator_get_enable to return Ok (git- fixes). * regulator: core: fix debugfs creation regression (git-fixes). * regulator: core: Fix modpost error "regulator_get_regmap" undefined (git- fixes). * regulator: irq_helpers: duplicate IRQ name (stable-fixes). * regulator: mt6360: De-capitalize devicetree regulator subnodes (git-fixes). * regulator: tps65132: Add of_match table (stable-fixes). * regulator: vqmmc-ipq4019: fix module autoloading (stable-fixes). * remoteproc: imx_rproc: Fix refcount mistake in imx_rproc_addr_init (git- fixes). * remoteproc: imx_rproc: Skip over memory region when node value is NULL (git- fixes). * remoteproc: k3-r5: Do not allow core1 to power up before core0 via sysfs (git-fixes). * remoteproc: k3-r5: Fix IPC-only mode detection (git-fixes). * remoteproc: k3-r5: Jump to error handling labels in start/stop errors (git- fixes). * remoteproc: k3-r5: Wait for core0 power-up before powering up core1 (git- fixes). * remoteproc: mediatek: Make sure IPI buffer fits in L2TCM (git-fixes). * remoteproc: stm32: Fix incorrect type assignment returned by stm32_rproc_get_loaded_rsc_tablef (git-fixes). * remoteproc: stm32_rproc: Fix mailbox interrupts queuing (git-fixes). * remoteproc: virtio: Fix wdg cannot recovery remote processor (git-fixes). * Remove NTFSv3 from configs (bsc#1224429) References: bsc#1224429 comment#3 We only support fuse version of the NTFS-3g driver. Disable NTFSv3 from all configs. This was enabled in d016c04d731 ("Bump to 6.4 kernel (jsc#PED-4593)") * Replace with mainline and sort * Revert "ACPI: PM: Block ASUS B1400CEAE from suspend to idle by default" (stable-fixes). * Revert "ASoC: SOF: Intel: hda-dai-ops: only allocate/release streams for first CPU DAI" (stable-fixes). * Revert "ASoC: SOF: Intel: hda-dai-ops: reset device count for SoundWire DAIs" (stable-fixes). * Revert "build initrd without systemd" (bsc#1195775)" * Revert "drm/amd/amdgpu: Fix potential ioremap() memory leaks in amdgpu_device_init()" (stable-fixes). * Revert "drm/amd/display: Fix sending VSC (+ colorimetry) packets for DP/eDP displays without PSR" (stable-fixes). * Revert "drm/amdkfd: fix gfx_target_version for certain 11.0.3 devices" (stable-fixes). * Revert "drm/bridge: tc358767: Set default CLRSIPO count" (stable-fixes). * Revert "drm/bridge: ti-sn65dsi83: Fix enable error path" (git-fixes). * Revert "drm/nouveau/firmware: Fix SG_DEBUG error with nvkm_firmware_ctor()" (stable-fixes). * Revert "drm/qxl: simplify qxl_fence_wait" (git-fixes). * Revert "gfs2: fix glock shrinker ref issues" (git-fixes). * Revert "iommu/amd: Enable PCI/IMS" (git-fixes). * Revert "iommu/vt-d: Enable PCI/IMS" (git-fixes). * Revert "leds: led-core: Fix refcount leak in of_led_get()" (git-fixes). * Revert "net/mlx5: Block entering switchdev mode with ns inconsistency" (git- fixes). * Revert "net/mlx5e: Check the number of elements before walk TC rhashtable" (git-fixes). * Revert "PCI/MSI: Provide IMS (Interrupt Message Store) support" (git-fixes). * Revert "PCI/MSI: Provide pci_ims_alloc/free_irq()" (git-fixes). * Revert "PCI/MSI: Provide stubs for IMS functions" (git-fixes). * Revert "selinux: introduce an initial SID for early boot processes" (bsc#1208593) It caused a regression on ALP-current branch, kernel-obs-qa build failed. * Revert "serial: core: only stop transmit when HW fifo is empty" (git-fixes). * Revert "usb: cdc-wdm: close race between read and workqueue" (git-fixes). * Revert "usb: musb: da8xx: Set phy in OTG mode by default" (stable-fixes). * Revert "usb: phy: generic: Get the vbus supply" (git-fixes). * Revert "wifi: ath11k: call ath11k_mac_fils_discovery() without condition" (bsc#1227149). * Revert "wifi: ath12k: use ATH12K_PCI_IRQ_DP_OFFSET for DP IRQ" (bsc#1227149). * Revert "wifi: iwlwifi: bump FW API to 90 for BZ/SC devices" (bsc#1227149). * ring-buffer: Do not set shortest_full when full target is hit (git-fixes). * ring-buffer: Fix a race between readers and resize checks (git-fixes). * ring-buffer: Fix full_waiters_pending in poll (git-fixes). * ring-buffer: Fix resetting of shortest_full (git-fixes). * ring-buffer: Fix waking up ring buffer readers (git-fixes). * ring-buffer: Make wake once of ring_buffer_wait() more robust (git-fixes). * ring-buffer: use READ_ONCE() to read cpu_buffer->commit_page in concurrent environment (git-fixes). * ring-buffer: Use wait_event_interruptible() in ring_buffer_wait() (git- fixes). * rpcrdma: fix handling for RDMA_CM_EVENT_DEVICE_REMOVAL (git-fixes). * rpm/kernel-obs-build.spec.in: Add iso9660 (bsc#1226212) Some builds do not just create an iso9660 image, but also mount it during build. * rpm/kernel-obs-build.spec.in: Add networking modules for docker (bsc#1226211) docker needs more networking modules, even legacy iptable_nat and _filter. * rpm/kernel-obs-build.spec.in: Include algif_hash, aegis128 and xts modules afgif_hash is needed by some packages (e.g. iwd) for tests, xts is used for LUKS2 volumes by default and aegis128 is useful as AEAD cipher for LUKS2. Wrap the long line to make it readable. * rtc: abx80x: Fix return value of nvmem callback on read (git-fixes). * rtc: cmos: Fix return value of nvmem callbacks (git-fixes). * rtc: interface: Add RTC offset to alarm after fix-up (git-fixes). * rtc: isl1208: Fix return value of nvmem callbacks (git-fixes). * rtc: mt6397: select IRQ_DOMAIN instead of depending on it (git-fixes). * s390/bpf: Emit a barrier for BPF_FETCH instructions (git-fixes bsc#1224792). * s390/cio: Ensure the copied buf is NUL terminated (git-fixes bsc#1223869). * s390/cio: fix tracepoint subchannel type field (git-fixes bsc#1224793). * s390/cpacf: Make use of invalid opcode produce a link error (git-fixes bsc#1227072). * s390/cpacf: Split and rework cpacf query functions (git-fixes bsc#1225133). * s390: Implement __iowrite32_copy() (bsc#1226502) * s390/ipl: Fix incorrect initialization of len fields in nvme reipl block (git-fixes bsc#1225136). * s390/ipl: Fix incorrect initialization of nvme dump block (git-fixes bsc#1225134). * s390/ism: Properly fix receive message buffer allocation (git-fixes bsc#1223590). * s390/mm: Fix clearing storage keys for huge pages (git-fixes bsc#1223871). * s390/mm: Fix storage key clearing for guest huge pages (git-fixes bsc#1223872). * s390/qeth: Fix kernel panic after setting hsuid (git-fixes bsc#1223874). * s390: Stop using weak symbols for __iowrite64_copy() (bsc#1226502) * s390/vdso: Add CFI for RA register to asm macro vdso_func (git-fixes bsc#1223870). * s390/vdso: drop '-fPIC' from LDFLAGS (git-fixes bsc#1223593). * s390/vtime: fix average steal time calculation (git-fixes bsc#1221783). * s390/zcrypt: fix reference counting on zcrypt card objects (git-fixes bsc#1223592). * saa7134: Unchecked i2c_transfer function result fixed (git-fixes). * sched/balancing: Rename newidle_balance() => sched_balance_newidle() (bsc#1222173). * sched/core: Fix incorrect initialization of the 'burst' parameter in cpu_max_write() (bsc#1226791). * sched/debug: Update stale reference to sched_debug.c (bsc#1214683 (PREEMPT_RT prerequisite backports)). * sched/fair: Check root_domain::overload value before update (bsc#1222173). * sched/fair: Use helper functions to access root_domain::overload (bsc#1222173). * sched/psi: Select KERNFS as needed (git-fixes). * sched/topology: Optimize topology_span_sane() (bsc#1225053). * scsi: bfa: Fix function pointer type mismatch for hcb_qe->cbfn (git-fixes). * scsi: core: Consult supported VPD page list prior to fetching page (git- fixes). * scsi: core: Fix unremoved procfs host directory regression (git-fixes). * scsi: csiostor: Avoid function pointer casts (git-fixes). * scsi: hisi_sas: Modify the deadline for ata_wait_after_reset() (git-fixes). * scsi: libsas: Add a helper sas_get_sas_addr_and_dev_type() (git-fixes). * scsi: libsas: Fix disk not being scanned in after being removed (git-fixes). * scsi: lpfc: Add support for 32 byte CDBs (bsc#1225842). * scsi: lpfc: Change default logging level for unsolicited CT MIB commands (bsc#1225842). * scsi: lpfc: Clear deferred RSCN processing flag when driver is unloading (bsc#1225842). * scsi: lpfc: Copyright updates for 14.4.0.1 patches (bsc#1221777). * scsi: lpfc: Copyright updates for 14.4.0.2 patches (bsc#1225842). * scsi: lpfc: Correct size for cmdwqe/rspwqe for memset() (bsc#1221777). * scsi: lpfc: Correct size for wqe for memset() (bsc#1221777). * scsi: lpfc: Define lpfc_dmabuf type for ctx_buf ptr (bsc#1221777). * scsi: lpfc: Define lpfc_nodelist type for ctx_ndlp ptr (bsc#1221777). * scsi: lpfc: Define types in a union for generic void *context3 ptr (bsc#1221777). * scsi: lpfc: Introduce rrq_list_lock to protect active_rrq_list (bsc#1225842). * scsi: lpfc: Move NPIV's transport unregistration to after resource clean up (bsc#1221777). * scsi: lpfc: Release hbalock before calling lpfc_worker_wake_up() (bsc#1221777). * scsi: lpfc: Remove IRQF_ONESHOT flag from threaded IRQ handling (bsc#1221777 bsc#1217959). * scsi: lpfc: Remove unnecessary log message in queuecommand path (bsc#1221777). * scsi: lpfc: Replace hbalock with ndlp lock in lpfc_nvme_unregister_port() (bsc#1221777). * scsi: lpfc: Update logging of protection type for T10 DIF I/O (bsc#1225842). * scsi: lpfc: Update lpfc_ramp_down_queue_handler() logic (bsc#1221777). * scsi: lpfc: Update lpfc version to 14.4.0.1 (bsc#1221777). * scsi: lpfc: Update lpfc version to 14.4.0.2 (bsc#1225842). * scsi: lpfc: Use a dedicated lock for ras_fwlog state (bsc#1221777). * scsi: mpt3sas: Prevent sending diag_reset when the controller is ready (git- fixes). * scsi: mylex: Fix sysfs buffer lengths (git-fixes). * scsi: qla2xxx: Change debug message during driver unload (bsc1221816). * scsi: qla2xxx: Delay I/O Abort on PCI error (bsc1221816). * scsi: qla2xxx: Fix command flush on cable pull (bsc1221816). * scsi: qla2xxx: Fix double free of fcport (bsc1221816). * scsi: qla2xxx: Fix double free of the ha->vp_map pointer (bsc1221816). * scsi: qla2xxx: Fix N2N stuck connection (bsc1221816). * scsi: qla2xxx: Fix off by one in qla_edif_app_getstats() (git-fixes). * scsi: qla2xxx: NVME|FCP prefer flag not being honored (bsc1221816). * scsi: qla2xxx: Prevent command send on chip reset (bsc1221816). * scsi: qla2xxx: Split FCE|EFT trace control (bsc1221816). * scsi: qla2xxx: Update manufacturer detail (bsc1221816). * scsi: qla2xxx: Update version to 10.02.09.200-k (bsc1221816). * scsi: sd: Unregister device if device_add_disk() failed in sd_probe() (git- fixes). * scsi: sg: Avoid race in error handling & drop bogus warn (git-fixes). * scsi: sg: Avoid sg device teardown race (git-fixes). * scsi: smartpqi: Fix disable_managed_interrupts (git-fixes). * sctp: annotate data-races around sk->sk_wmem_queued (git-fixes). * sdhci-of-dwcmshc: disable PM runtime in dwcmshc_remove() (git-fixes). * selftests/binderfs: use the Makefile's rules, not Make's implicit rules (git-fixes). * selftests/bpf: add edge case backtracking logic test (bsc#1225756). * selftests/bpf: precision tracking test for BPF_NEG and BPF_END (bsc#1225756). * selftests/bpf: test case for callback_depth states pruning logic (bsc#1225903). * selftests/bpf: test if state loops are detected in a tricky case (bsc#1225903). * selftests/bpf: tests for iterating callbacks (bsc#1225903). * selftests/bpf: tests with delayed read/precision makrs in loop body (bsc#1225903). * selftests/bpf: test widening for iterating callbacks (bsc#1225903). * selftests/bpf: track string payload offset as scalar in strobemeta (bsc#1225903). * selftests/bpf: track tcp payload offset as scalar in xdp_synproxy (bsc#1225903). * selftests: default to host arch for LLVM builds (git-fixes). * selftests: fix OOM in msg_zerocopy selftest (git-fixes). * selftests: forwarding: Fix ping failure due to short timeout (git-fixes). * selftests/ftrace: Fix event filter target_func selection (stable-fixes). * selftests/ftrace: Limit length in subsystem-enable tests (git-fixes). * selftests: hsr: Extend the testsuite to also cover HSRv1 (bsc#1214683 (PREEMPT_RT prerequisite backports)). * selftests: hsr: Reorder the testsuite (bsc#1214683 (PREEMPT_RT prerequisite backports)). * selftests: hsr: Use `let' properly (bsc#1214683 (PREEMPT_RT prerequisite backports)). * selftests/kcmp: remove unused open mode (git-fixes). * selftests: kselftest: Fix build failure with NOLIBC (git-fixes). * selftests: kselftest: Mark functions that unconditionally call exit() as __noreturn (git-fixes). * selftests: make order checking verbose in msg_zerocopy selftest (git-fixes). * selftests/mm: compaction_test: fix incorrect write of zero to nr_hugepages (git-fixes). * selftests/mm: fix build warnings on ppc64 (stable-fixes). * selftests: mptcp: add ms units for tc-netem delay (stable-fixes). * selftests: net: bridge: increase IGMP/MLD exclude timeout membership interval (git-fixes). * selftests/net: convert test_bridge_neigh_suppress.sh to run it in unique namespace (stable-fixes). * selftests: net: kill smcrouted in the cleanup logic in amt.sh (git-fixes). * selftests: net: move amt to socat for better compatibility (git-fixes). * selftests/pidfd: Fix config for pidfd_setns_test (git-fixes). * selftests/powerpc/dexcr: Add -no-pie to hashchk tests (git-fixes). * selftests/powerpc/papr-vpd: Fix missing variable initialization (jsc#PED-4486 git-fixes). * selftests/resctrl: fix clang build failure: use LOCAL_HDRS (git-fixes). * selftests/sigaltstack: Fix ppc64 GCC build (git-fixes). * selftests: sud_test: return correct emulated syscall value on RISC-V (stable-fixes). * selftests: test_bridge_neigh_suppress.sh: Fix failures due to duplicate MAC (git-fixes). * selftests: timers: Convert posix_timers test to generate KTAP output (stable-fixes). * selftests: timers: Fix abs() warning in posix_timers test (git-fixes). * selftests: timers: Fix posix_timers ksft_print_msg() warning (git-fixes). * selftests: timers: Fix valid-adjtimex signed left-shift undefined behavior (stable-fixes). * selftests/timers/posix_timers: Reimplement check_timer_distribution() (git- fixes). * selftests: vxlan_mdb: Fix failures with old libnet (git-fixes). * selinux: avoid dereference of garbage after mount failure (git-fixes). * selinux: introduce an initial SID for early boot processes (bsc#1208593). * serial: 8250_bcm7271: use default_mux_rate if possible (git-fixes). * serial: 8250_dw: Revert: Do not reclock if already at correct rate (git- fixes). * serial: 8250_exar: Do not remove GPIO device on suspend (git-fixes). * serial: 8520_mtk: Set RTS on shutdown for Rx in-band wakeup (git-fixes). * serial: bcm63xx-uart: fix tx after conversion to uart_port_tx_limited() (git-fixes). * serial: core: Fix atomicity violation in uart_tiocmget (git-fixes). * serial: core: introduce uart_port_tx_limited_flags() (git-fixes). * serial: core: only stop transmit when HW fifo is empty (git-fixes). * serial: exar: adding missing CTI and Exar PCI ids (stable-fixes). * serial: imx: Introduce timeout when waiting on transmitter empty (stable- fixes). * serial: imx: Raise TX trigger level to 8 (stable-fixes). * serial: kgdboc: Fix NMI-safety problems from keyboard reset code (stable- fixes). * serial: Lock console when calling into driver before registration (git- fixes). * serial: max3100: Fix bitwise types (git-fixes). * serial: max3100: Lock port->lock when calling uart_handle_cts_change() (git- fixes). * serial: max310x: fix NULL pointer dereference in I2C instantiation (git- fixes). * serial: max310x: fix syntax error in IRQ error message (git-fixes). * serial: mxs-auart: add spinlock around changing cts state (git-fixes). * serial: pch: Do not disable interrupts while acquiring lock in ISR (bsc#1214683 (PREEMPT_RT prerequisite backports)). * serial: pch: Do not initialize uart_port's spin_lock (bsc#1214683 (PREEMPT_RT prerequisite backports)). * serial: pch: Invoke handle_rx_to() directly (bsc#1214683 (PREEMPT_RT prerequisite backports)). * serial: pch: Make push_rx() return void (bsc#1214683 (PREEMPT_RT prerequisite backports)). * serial/pmac_zilog: Remove flawed mitigation for rx irq flood (git-fixes). * serial: sc16is7xx: add proper sched.h include for sched_set_fifo() (git- fixes). * serial: sc16is7xx: fix bug in sc16is7xx_set_baud() when using prescaler (git-fixes). * serial: sh-sci: protect invalidating RXDMA on shutdown (git-fixes). * serial: stm32: Reset .throttled state in .startup() (git-fixes). * SEV: disable SEV-ES DebugSwap by default (git-fixes). * slimbus: core: Remove usage of the deprecated ida_simple_xx() API (git- fixes). * slimbus: qcom-ngd-ctrl: Add timeout for wait operation (git-fixes). * smb3: allow controlling length of time directory entries are cached with dir leases (git-fixes, bsc#1225172). * smb3: allow controlling maximum number of cached directories (git-fixes, bsc#1225172). * smb3: do not start laundromat thread when dir leases disabled (git-fixes, bsc#1225172). * smb: client: do not start laundromat thread on nohandlecache (git-fixes, bsc#1225172). * smb: client: make laundromat a delayed worker (git-fixes, bsc#1225172). * smb: client: prevent new fids from being removed by laundromat (git-fixes, bsc#1225172). * soc: fsl: qbman: Always disable interrupts when taking cgr_lock (git-fixes). * soc: fsl: qbman: Use raw spinlock for cgr_lock (git-fixes). * sock_diag: annotate data-races around sock_diag_handlers[family] (git- fixes). * soc: mediatek: cmdq: Fix typo of CMDQ_JUMP_RELATIVE (git-fixes). * soc: microchip: Fix POLARFIRE_SOC_SYS_CTRL input prompt (stable-fixes). * soc: qcom: pdr: fix parsing of domains lists (git-fixes). * soc: qcom: pdr: protect locator_addr with the main mutex (git-fixes). * soc: qcom: pmic_glink: do not traverse clients list without a lock (git- fixes). * soc: qcom: pmic_glink: Handle the return value of pmic_glink_init (git- fixes). * soc: qcom: pmic_glink: Make client-lock non-sleeping (git-fixes). * soc: qcom: pmic_glink: notify clients about the current state (git-fixes). * soc: qcom: rpmh-rsc: Enhance check for VRM in-flight request (git-fixes). * soc: qcom: rpmh-rsc: Ensure irqs are not disabled by rpmh_rsc_send_data() callers (git-fixes). * soc: ti: wkup_m3_ipc: Send NULL dummy message instead of pointer message (stable-fixes). * soc: xilinx: rename cpu_number1 to dummy_cpu_number (git-fixes). * soundwire: amd: fix for wake interrupt handling for clockstop mode (git- fixes). * soundwire: cadence: fix invalid PDI offset (stable-fixes). * speakup: Avoid crash on very long word (git-fixes). * speakup: Fix 8bit characters from direct synth (git-fixes). * speakup: Fix sizeof() vs ARRAY_SIZE() bug (git-fixes). * spi: atmel-quadspi: Add missing check for clk_prepare (git-fixes). * spi: cadence: Ensure data lines set to low during dummy-cycle period (stable-fixes). * spi: Do not mark message DMA mapped when no transfer in it is (git-fixes). * spi: fix null pointer dereference within spi_sync (git-fixes). * spi: imx: Do not expect DMA for i.MX{25,35,50,51,53} cspi devices (stable- fixes). * spi: intel-pci: Add support for Lunar Lake-M SPI serial flash (stable- fixes). * spi: lm70llp: fix links in doc and comments (git-fixes). * spi: lpspi: Avoid potential use-after-free in probe() (git-fixes). * spi: mchp-pci1xxx: Fix a possible null pointer dereference in pci1xxx_spi_probe (git-fixes). * spi: microchip-core: defer asserting chip select until just before write to TX FIFO (git-fixes). * spi: microchip-core: ensure TX and RX FIFOs are empty at start of a transfer (git-fixes). * spi: microchip-core: fix the issues in the isr (git-fixes). * spi: microchip-core: only disable SPI controller when register value change requires it (git-fixes). * spi: microchip-core-qspi: fix setting spi bus clock rate (git-fixes). * spi: mux: set ctlr->bits_per_word_mask (stable-fixes). * spi: spidev: add correct compatible for Rohm BH2228FV (git-fixes). * spi: spi-fsl-lpspi: remove redundant spi_controller_put call (git-fixes). * spi: spi-microchip-core: Fix the number of chip selects supported (git- fixes). * spi: spi-mt65xx: Fix NULL pointer access in interrupt handler (git-fixes). * spi: stm32: Do not warn about spurious interrupts (git-fixes). * spi: stm32: qspi: Clamp stm32_qspi_get_mode() output to CCR_BUSWIDTH_4 (git- fixes). * spi: stm32: qspi: Fix dual flash mode sanity test in stm32_qspi_setup() (git-fixes). * spi: xilinx: Fix kernel documentation in the xilinx_spi.h (git-fixes). * spmi: hisi-spmi-controller: Do not override device identifier (git-fixes). * ssb: Fix potential NULL pointer dereference in ssb_device_uevent() (stable- fixes). * staging: vc04_services: changen strncpy() to strscpy_pad() (stable-fixes). * staging: vc04_services: fix information leak in create_component() (git- fixes). * staging: vt6655: Remove unused declaration of RFbAL7230SelectChannelPostProcess() (git-fixes). * stmmac: Clear variable when destroying workqueue (git-fixes). * struct acpi_ec kABI workaround (git-fixes). * SUNRPC: avoid soft lockup when transmitting UDP to reachable server (bsc#1225272). * SUNRPC: fix a memleak in gss_import_v2_context (git-fixes). * SUNRPC: Fix gss_free_in_token_pages() (git-fixes). * SUNRPC: Fix loop termination condition in gss_free_in_token_pages() (git- fixes). * sunrpc: fix NFSACL RPC retry on soft mount (git-fixes). * SUNRPC: fix some memleaks in gssx_dec_option_array (git-fixes). * SUNRPC: return proper error from gss_wrap_req_priv (git-fixes). * supported.conf: Add APM X-Gene SoC hardware monitoring driver (bsc#1223265 jsc#PED-8570) * supported.conf: Add support for v4l2-dv-timings (jsc#PED-8644) * supported.conf: mark orangefs as optional We do not support orangefs at all (and it is already marked as such), but since there are no SLE consumers of it, mark it as optional. * supported.conf: mark ufs as unsupported UFS is an unsupported filesystem, mark it as such. We still keep it around (not marking as optional), to accommodate any potential migrations from BSD systems. * supported.conf: mark vdpa modules supported (jsc#PED-8954) * supported.conf: support tcp_dctcp module (jsc#PED-8111) * supported.conf: update for mt76 stuff (bsc#1227149) * swiotlb: extend buffer pre-padding to alloc_align_mask if necessary (bsc#1224331) * swiotlb: Fix alignment checks when both allocation and DMA masks are (bsc#1224331) * swiotlb: Fix double-allocation of slots due to broken alignment (bsc#1224331) * swiotlb: Honour dma_alloc_coherent() alignment in swiotlb_alloc() (bsc#1224331) * swiotlb: use the calculated number of areas (git-fixes). * tcp: Dump bound-only sockets in inet_diag (bsc#1204562). * Temporarily drop KVM patch that caused a regression (bsc#1226158) * thermal: devfreq_cooling: Fix perf state when calculate dfc res_util (git- fixes). * thermal/drivers/mediatek/lvts_thermal: Check NULL ptr on lvts_data (stable- fixes). * thermal/drivers/mediatek/lvts_thermal: Return error in case of invalid efuse data (git-fixes). * thermal/drivers/qcom/lmh: Check for SCM availability at probe (git-fixes). * thermal/drivers/tsens: Fix null pointer dereference (git-fixes). * thermal/of: Assume polling-delay(-passive) 0 when absent (stable-fixes). * thunderbolt: Avoid notify PM core about runtime PM resume (stable-fixes). * thunderbolt: debugfs: Fix margin debugfs node creation condition (git- fixes). * thunderbolt: Do not create DisplayPort tunnels on adapters of the same router (git-fixes). * thunderbolt: Fix wake configurations after device unplug (stable-fixes). * thunderbolt: Introduce tb_path_deactivate_hop() (stable-fixes). * thunderbolt: Introduce tb_port_reset() (stable-fixes). * thunderbolt: Make tb_switch_reset() support Thunderbolt 2, 3 and USB4 routers (stable-fixes). * thunderbolt: Reset only non-USB4 host routers in resume (git-fixes). * tls: break out of main loop when PEEK gets a non-data record (bsc#1221858). * tls: do not skip over different type records from the rx_list (bsc#1221858). * tls: fix peeking with sync+async decryption (bsc#1221858). * tls: stop recv() if initial process_rx_list gave us non-DATA (bsc#1221858). * tools/arch/x86/intel_sdsi: Fix maximum meter bundle length (git-fixes). * tools/arch/x86/intel_sdsi: Fix meter_certificate decoding (git-fixes). * tools/arch/x86/intel_sdsi: Fix meter_show display (git-fixes). * tools/latency-collector: Fix -Wformat-security compile warns (git-fixes). * tools/memory-model: Fix bug in lock.cat (git-fixes). * tools/power/cpupower: Fix Pstate frequency reporting on AMD Family 1Ah CPUs (stable-fixes). * tools/power turbostat: Expand probe_intel_uncore_frequency() (bsc#1221765). * tools/power/turbostat: Fix uncore frequency file string (bsc#1221765). * tools/power turbostat: Remember global max_die_id (stable-fixes). * tools: ynl: do not leak mcast_groups on init error (git-fixes). * tools: ynl: fix handling of multiple mcast groups (git-fixes). * tools: ynl: make sure we always pass yarg to mnl_cb_run (git-fixes). * tpm_tis: Do _not_ flush uninitialized work (git-fixes). * tpm_tis_spi: Account for SPI header when allocating TPM SPI xfer buffer (git-fixes). * tracefs: Add missing lockdown check to tracefs_create_dir() (git-fixes). * tracing: Add MODULE_DESCRIPTION() to preemptirq_delay_test (git-fixes). * tracing: Build event generation tests only as modules (git-fixes). * tracing: Have saved_cmdlines arrays all in one allocation (git-fixes). * tracing: hide unused ftrace_event_id_fops (git-fixes). * tracing/net_sched: Fix tracepoints that save qdisc_dev() as a string (git- fixes). * tracing/net_sched: NULL pointer dereference in perf_trace_qdisc_reset() (git-fixes). * tracing: Remove precision vsnprintf() check from print event (git-fixes). * tracing/ring-buffer: Fix wait_on_pipe() race (git-fixes). * tracing: Use .flush() call to wake up readers (git-fixes). * tty: mcf: MCF54418 has 10 UARTS (git-fixes). * tty: n_gsm: fix missing receive state reset after mode switch (git-fixes). * tty: n_gsm: fix possible out-of-bounds in gsm0_receive() (git-fixes). * tty: n_tty: Fix buffer offsets when lookahead is used (git-fixes). * tty: serial: samsung: fix tx_empty() to return TIOCSER_TEMT (git-fixes). * tty: vt: fix 20 vs 0x20 typo in EScsiignore (git-fixes). * ubifs: dbg_check_idx_size: Fix kmemleak if loading znode failed (git-fixes). * ubifs: fix sort function prototype (git-fixes). * ubifs: Queue up space reservation tasks if retrying many times (git-fixes). * ubifs: Remove unreachable code in dbg_check_ltab_lnum (git-fixes). * ubifs: Set page uptodate in the correct place (git-fixes). * Update config files: adjust for Arm CONFIG_MT798X_WMAC (bsc#1227149) * Update config files (bsc#1227282). Update the CONFIG_LSM option to include the selinux LSM in the default set of LSMs. The selinux LSM will not get enabled because it is preceded by apparmor, which is the first exclusive LSM. Updating CONFIG_LSM resolves failures that result in the system not booting up when "security=selinux selinux=1" is passed to the kernel and SELinux policies are installed. * Update config files. Disable N_GSM (jsc#PED-8240). * Update config files for mt76 stuff (bsc#1227149) * Update config files: update for the realtek wifi driver updates (bsc#1227149) * USB: Add USB_QUIRK_NO_SET_INTF quirk for START BP-850k (stable-fixes). * usb: aqc111: stop lying about skb->truesize (git-fixes). * usb: atm: cxacru: fix endpoint checking in cxacru_bind() (git-fixes). * usb: audio-v2: Correct comments for struct uac_clock_selector_descriptor (git-fixes). * usb: cdc-wdm: close race between read and workqueue (git-fixes). * USB: class: cdc-wdm: Fix CPU lockup caused by excessive log messages (git- fixes). * USB: core: Add hub_get() and hub_put() routines (stable-fixes). * USB: core: Fix access violation during port device removal (git-fixes). * USB: core: Fix deadlock in port "disable" sysfs attribute (stable-fixes). * USB: core: Fix deadlock in usb_deauthorize_interface() (git-fixes). * USB: core: Fix duplicate endpoint bug by clearing reserved bits in the descriptor (git-fixes). * usb: Disable USB3 LPM at shutdown (stable-fixes). * usb: dwc2: gadget: Fix exiting from clock gating (git-fixes). * usb: dwc2: gadget: LPM flow fix (git-fixes). * usb: dwc2: host: Fix dereference issue in DDMA completion flow (git-fixes). * usb: dwc2: host: Fix hibernation flow (git-fixes). * usb: dwc2: host: Fix ISOC flow in DDMA mode (git-fixes). * usb: dwc2: host: Fix remote wakeup from hibernation (git-fixes). * usb: dwc3-am62: Disable wakeup at remove (git-fixes). * usb: dwc3-am62: fix module unload/reload behavior (git-fixes). * usb: dwc3-am62: Rename private data (git-fixes). * usb: dwc3: core: Add DWC31 version 2.00a controller (stable-fixes). * usb: dwc3: core: Prevent phy suspend during init (Git-fixes). * usb: dwc3: core: remove lock of otg mode during gadget suspend/resume to avoid deadlock (git-fixes). * usb: dwc3: core: Workaround for CSR read timeout (stable-fixes). * usb: dwc3: pci: add support for the Intel Panther Lake (stable-fixes). * usb: dwc3: pci: Do not set "linux,phy_charger_detect" property on Lenovo Yoga Tab2 1380 (stable-fixes). * usb: dwc3: pci: Drop duplicate ID (git-fixes). * usb: dwc3: Properly set system wakeup (git-fixes). * usb: dwc3: Wait unconditionally after issuing EndXfer command (git-fixes). * usb: Fix regression caused by invalid ep0 maxpacket in virtual SuperSpeed device (bsc#1220569). * usb: fotg210: Add missing kernel doc description (git-fixes). * usb: gadget: aspeed_udc: fix device address configuration (git-fixes). * usb: gadget: composite: fix OS descriptors w_value logic (git-fixes). * usb: gadget: configfs: Prevent OOB read/write in usb_string_copy() (stable- fixes). * usb: gadget: f_fs: Fix a race condition when processing setup packets (git- fixes). * usb: gadget: f_fs: Fix race between aio_cancel() and AIO request complete (git-fixes). * usb: gadget: f_ncm: Fix UAF ncm object at re-bind after usb ep transport error (stable-fixes). * usb: gadget: function: Remove usage of the deprecated ida_simple_xx() API (stable-fixes). * usb: gadget: net2272: Use irqflags in the call to net2272_probe_fin (git- fixes). * usb: gadget: printer: fix races against disable (git-fixes). * usb: gadget: printer: SS+ support (stable-fixes). * usb: gadget: u_audio: Clear uac pointer when freed (git-fixes). * usb: gadget: u_audio: Fix race condition use of controls after free during gadget unbind (git-fixes). * usb: gadget: uvc: configfs: ensure guid to be valid before set (stable- fixes). * usb: gadget: uvc: mark incomplete frames with UVC_STREAM_ERR (stable-fixes). * usb: gadget: uvc: use correct buffer size when parsing configfs lists (git- fixes). * usb: misc: uss720: check for incompatible versions of the Belkin F5U002 (stable-fixes). * usb: musb: da8xx: fix a resource leak in probe() (git-fixes). * usb: ohci: Prevent missed ohci interrupts (git-fixes). * usb: phy: generic: Get the vbus supply (git-fixes). * USB: serial: add device ID for VeriFone adapter (stable-fixes). * USB: serial: cp210x: add ID for MGP Instruments PDS100 (stable-fixes). * USB: serial: cp210x: add pid/vid for TDK NC0110013M and MM0110113M (stable- fixes). * USB: serial: ftdi_sio: add support for GMC Z216C Adapter IR-USB (stable- fixes). * USB: serial: mos7840: fix crash on resume (git-fixes). * USB: serial: option: add Fibocom FM135-GL variants (stable-fixes). * USB: serial: option: add Fibocom FM350-GL (stable-fixes). * USB: serial: option: add Lonsung U8300/U9300 product (stable-fixes). * USB: serial: option: add MeiG Smart SLM320 product (stable-fixes). * USB: serial: option: add Rolling RW101-GL and RW135-GL support (stable- fixes). * USB: serial: option: add Rolling RW350-GL variants (stable-fixes). * USB: serial: option: add support for Fibocom FM650/FG650 (stable-fixes). * USB: serial: option: add support for Foxconn T99W651 (stable-fixes). * USB: serial: option: add Telit FN912 rmnet compositions (stable-fixes). * USB: serial: option: add Telit FN920C04 rmnet compositions (stable-fixes). * USB: serial: option: add Telit generic core-dump composition (stable-fixes). * USB: serial: option: support Quectel EM060K sub-models (stable-fixes). * usb: sl811-hcd: only defined function checkdone if QUIRK2 is defined (stable-fixes). * usb-storage: alauda: Check whether the media is initialized (git-fixes). * usb: typec: Return size of buffer if pd_set operation succeeds (git-fixes). * usb: typec: tcpci: add generic tcpci fallback compatible (stable-fixes). * usb: typec: tcpm: Check for port partner validity before consuming it (git- fixes). * usb: typec: tcpm: clear pd_event queue in PORT_RESET (git-fixes). * usb: typec: tcpm: Correct port source pdo array in pd_set callback (git- fixes). * usb: typec: tcpm: Correct the PDO counting in pd_set (git-fixes). * usb: typec: tcpm: fix double-free issue in tcpm_port_unregister_pd() (git- fixes). * usb: typec: tcpm: fix use-after-free case in tcpm_register_source_caps (git- fixes). * usb: typec: tcpm: Ignore received Hard Reset in TOGGLING state (git-fixes). * usb: typec: tcpm: unregister existing source caps before re-registration (git-fixes). * usb: typec: tipd: fix event checking for tps6598x (git-fixes). * usb: typec: ucsi: Ack also failed Get Error commands (git-fixes). * usb: typec: ucsi: Ack unsupported commands (stable-fixes). * usb: typec: ucsi_acpi: Refactor and fix DELL quirk (git-fixes). * usb: typec: ucsi: always register a link to USB PD device (git-fixes). * usb: typec: ucsi: Check for notifications after init (git-fixes). * usb: typec: ucsi: Clean up UCSI_CABLE_PROP macros (git-fixes). * usb: typec: ucsi: Clear EVENT_PENDING under PPM lock (git-fixes). * usb: typec: ucsi: Clear UCSI_CCI_RESET_COMPLETE before reset (stable-fixes). * usb: typec: ucsi: displayport: Fix potential deadlock (git-fixes). * usb: typec: ucsi: Fix connector check on init (git-fixes). * usb: typec: ucsi: Fix race between typec_switch and role_switch (git-fixes). * usb: typec: ucsi_glink: drop special handling for CCI_BUSY (stable-fixes). * usb: typec: ucsi: glink: fix child node release in probe function (git- fixes). * usb: typec: ucsi: Limit read size on v1.2 (stable-fixes). * usb: typec: ucsi: Never send a lone connector change ack (stable-fixes). * usb: typec: ucsi: simplify partner's PD caps registration (git-fixes). * USB: UAS: return ENODEV when submit urbs fail with device not attached (stable-fixes). * usb: ucsi: stm32: fix command completion handling (git-fixes). * usb: udc: remove warning when queue disabled ep (stable-fixes). * USB: xen-hcd: Traverse host/ when CONFIG_USB_XEN_HCD is selected (git- fixes). * usb: xhci: Add error handling in xhci_map_urb_for_dma (git-fixes). * usb: xhci: correct return value in case of STS_HCE (git-fixes). * usb: xhci: Implement xhci_handshake_check_state() helper. * usb: xhci-plat: Do not include xhci.h (stable-fixes). * usb: xhci: prevent potential failure in handle_tx_event() for Transfer events without TRB (stable-fixes). * vboxsf: Avoid an spurious warning if load_nls_xxx() fails (git-fixes). * vboxsf: explicitly deny setlease attempts (stable-fixes). * vdpa/mlx5: Allow CVQ size changes (git-fixes). * vdpa_sim: reset must not run (git-fixes). * veth: try harder when allocating queue memory (git-fixes). * vhost: Add smp_rmb() in vhost_enable_notify() (git-fixes). * vhost: Add smp_rmb() in vhost_vq_avail_empty() (git-fixes). * virtio-blk: Ensure no requests in virtqueues before deleting vqs (git- fixes). * virtio_net: avoid data-races on dev->stats fields (git-fixes). * virtio_net: checksum offloading handling fix (git-fixes). * virtio_net: Do not send RSS key if it is not supported (git-fixes). * virtio: treat alloc_dax() -EOPNOTSUPP failure as non-fatal (bsc#1223944). * VMCI: Fix an error handling path in vmci_guest_probe_device() (git-fixes). * VMCI: Fix possible memcpy() run-time warning in vmci_datagram_invoke_guest_handler() (stable-fixes). * vmci: prevent speculation leaks by sanitizing event in event_deliver() (git- fixes). * vmlinux.lds.h: catch .bss..L* sections into BSS") (git-fixes). * vsock/virtio: fix packet delivery to tap device (git-fixes). * watchdog: bd9576: Drop "always-running" property (git-fixes). * watchdog: cpu5wdt.c: Fix use-after-free bug caused by cpu5wdt_trigger (git- fixes). * watchdog: rti_wdt: Set min_hw_heartbeat_ms to accommodate a safety margin (git-fixes). * watchdog: rzg2l_wdt: Check return status of pm_runtime_put() (git-fixes). * watchdog: rzg2l_wdt: Use pm_runtime_resume_and_get() (git-fixes). * watchdog: rzn1: Convert comma to semicolon (git-fixes). * watchdog: sa1100: Fix PTR_ERR_OR_ZERO() vs NULL check in sa1100dog_probe() (git-fixes). * wifi: add HAS_IOPORT dependencies (bsc#1227149). * wifi: ar5523: enable proper endpoint verification (git-fixes). * wifi: ar5523: Remove unnecessary (void*) conversions (bsc#1227149). * wifi: ath10/11/12k: Use alloc_ordered_workqueue() to create ordered workqueues (bsc#1227149). * wifi: ath10k: add missing wmi_10_4_feature_mask documentation (bsc#1227149). * wifi: ath10k: add support to allow broadcast action frame RX (bsc#1227149). * wifi: ath10k: Annotate struct ath10k_ce_ring with __counted_by (bsc#1227149). * wifi: ath10k: consistently use kstrtoX_from_user() functions (bsc#1227149). * wifi: ath10k: Convert to platform remove callback returning void (bsc#1227149). * wifi: ath10k: correctly document enum wmi_tlv_tx_pause_id (bsc#1227149). * wifi: ath10k: Drop checks that are always false (bsc#1227149). * wifi: ath10k: Drop cleaning of driver data from probe error path and remove (bsc#1227149). * wifi: ath10k: drop HTT_DATA_TX_STATUS_DOWNLOAD_FAIL (bsc#1227149). * wifi: ath10k: Fix a few spelling errors (bsc#1227149). * wifi: ath10k: Fix an error code problem in ath10k_dbg_sta_write_peer_debug_trigger() (git-fixes). * wifi: ath10k: Fix enum ath10k_fw_crash_dump_type kernel-doc (bsc#1227149). * wifi: ath10k: Fix htt_data_tx_completion kernel-doc warning (bsc#1227149). * wifi: ath10k: fix htt_q_state_conf & htt_q_state kernel-doc (bsc#1227149). * wifi: ath10k: fix QCOM_RPROC_COMMON dependency (git-fixes). * wifi: ath10k: fix Wvoid-pointer-to-enum-cast warning (bsc#1227149). * wifi: ath10k: improve structure padding (bsc#1227149). * wifi: ath10k: indicate to mac80211 scan complete with aborted flag for ATH10K_SCAN_STARTING state (bsc#1227149). * wifi: ath10k: poll service ready message before failing (git-fixes). * wifi: ath10k: populate board data for WCN3990 (git-fixes). * wifi: ath10k: remove ath10k_htc_record::pauload[] (bsc#1227149). * wifi: ath10k: remove duplicate memset() in 10.4 TDLS peer update (bsc#1227149). * wifi: ath10k: remove struct wmi_pdev_chanlist_update_event (bsc#1227149). * wifi: ath10k: Remove unnecessary (void*) conversions (bsc#1227149). * wifi: ath10k: Remove unused struct ath10k_htc_frame (bsc#1227149). * wifi: ath10k: remove unused template structs (bsc#1227149). * wifi: ath10k: replace deprecated strncpy with memcpy (bsc#1227149). * wifi: ath10k: replace ENOTSUPP with EOPNOTSUPP (bsc#1227149). * wifi: ath10k: simplify __ath10k_htt_tx_txq_recalc() (bsc#1227149). * wifi: ath10k: simplify ath10k_peer_create() (bsc#1227149). * wifi: ath10k: Update Qualcomm Innovation Center, Inc. copyrights (bsc#1227149). * wifi: ath10k: Use DECLARE_FLEX_ARRAY() for ath10k_htc_record (bsc#1227149). * wifi: ath10k: use flexible array in struct wmi_host_mem_chunks (bsc#1227149). * wifi: ath10k: use flexible array in struct wmi_tdls_peer_capabilities (bsc#1227149). * wifi: ath10k: use flexible arrays for WMI start scan TLVs (bsc#1227149). * wifi: ath10k: Use list_count_nodes() (bsc#1227149). * wifi: ath11k: add chip id board name while searching board-2.bin for WCN6855 (bsc#1227149). * wifi: ath11k: Add coldboot calibration support for QCN9074 (bsc#1227149). * wifi: ath11k: add firmware-2.bin support (bsc#1227149). * wifi: ath11k: add handler for WMI_VDEV_SET_TPC_POWER_CMDID (bsc#1227149). * wifi: ath11k: Add HTT stats for PHY reset case (bsc#1227149). * wifi: ath11k: add parse of transmit power envelope element (bsc#1227149). * wifi: ath11k: add parsing of phy bitmap for reg rules (bsc#1227149). * wifi: ath11k: add support for QCA2066 (bsc#1227149). * wifi: ath11k: add support to select 6 GHz regulatory type (bsc#1227149). * wifi: ath11k: add WMI event debug messages (bsc#1227149). * wifi: ath11k: add WMI_TLV_SERVICE_EXT_TPC_REG_SUPPORT service bit (bsc#1227149). * wifi: ath11k: Allow ath11k to boot without caldata in ftm mode (bsc#1227149). * wifi: ath11k: ath11k_debugfs_register(): fix format-truncation warning (bsc#1227149). * wifi: ath11k: avoid forward declaration of ath11k_mac_start_vdev_delay() (bsc#1227149). * wifi: ath11k: call ath11k_mac_fils_discovery() without condition (bsc#1227149). * wifi: ath11k: Consistently use ath11k_vif_to_arvif() (bsc#1227149). * wifi: ath11k: Consolidate WMI peer flags (bsc#1227149). * wifi: ath11k: constify MHI channel and controller configs (bsc#1227149). * wifi: ath11k: Convert to platform remove callback returning void (bsc#1227149). * wifi: ath11k: debug: add ATH11K_DBG_CE (bsc#1227149). * wifi: ath11k: debug: remove unused ATH11K_DBG_ANY (bsc#1227149). * wifi: ath11k: debug: use all upper case in ATH11k_DBG_HAL (bsc#1227149). * wifi: ath11k: decrease MHI channel buffer length to 8KB (bsc#1207948). * wifi: ath11k: document HAL_RX_BUF_RBM_SW4_BM (bsc#1227149). * wifi: ath11k: Do not directly use scan_flags in struct scan_req_params (bsc#1227149). * wifi: ath11k: do not force enable power save on non-running vdevs (git- fixes). * wifi: ath11k: do not use %pK (bsc#1227149). * wifi: ath11k: dp: cleanup debug message (bsc#1227149). * wifi: ath11k: driver settings for MBSSID and EMA (bsc#1227149). * wifi: ath11k: drop NULL pointer check in ath11k_update_per_peer_tx_stats() (bsc#1227149). * wifi: ath11k: drop redundant check in ath11k_dp_rx_mon_dest_process() (bsc#1227149). * wifi: ath11k: EMA beacon support (bsc#1227149). * wifi: ath11k: enable 36 bit mask for stream DMA (bsc#1227149). * wifi: ath11k: factory test mode support (bsc#1227149). * wifi: ath11k: fill parameters for vdev set tpc power WMI command (bsc#1227149). * wifi: ath11k: Fix a few spelling errors (bsc#1227149). * wifi: ath11k: fix a possible dead lock caused by ab->base_lock (bsc#1227149). * wifi: ath11k: Fix ath11k_htc_record flexible record (bsc#1227149). * wifi: ath11k: fix ath11k_mac_op_remain_on_channel() stack usage (bsc#1227149). * wifi: ath11k: fix CAC running state during virtual interface start (bsc#1227149). * wifi: ath11k: fix connection failure due to unexpected peer delete (bsc#1227149). * wifi: ath11k: fix IOMMU errors on buffer rings (bsc#1227149). * wifi: ath11k: fix RCU documentation in ath11k_mac_op_ipv6_changed() (git- fixes). * wifi: ath11k: fix tid bitmap is 0 in peer rx mu stats (bsc#1227149). * wifi: ath11k: fix WCN6750 firmware crash caused by 17 num_vdevs (bsc#1227149). * wifi: ath11k: fix wrong definition of CE ring's base address (git-fixes). * wifi: ath11k: fix wrong handling of CCMP256 and GCMP ciphers (git-fixes). * wifi: ath11k: fix Wvoid-pointer-to-enum-cast warning (bsc#1227149). * wifi: ath11k: hal: cleanup debug message (bsc#1227149). * wifi: ath11k: htc: cleanup debug messages (bsc#1227149). * wifi: ath11k: initialize eirp_power before use (bsc#1227149). * wifi: ath11k: Introduce and use ath11k_sta_to_arsta() (bsc#1227149). * wifi: ath11k: mac: fix struct ieee80211_sband_iftype_data handling (bsc#1227149). * wifi: ath11k: MBSSID beacon support (bsc#1227149). * wifi: ath11k: MBSSID configuration during vdev create/start (bsc#1227149). * wifi: ath11k: MBSSID parameter configuration in AP mode (bsc#1227149). * wifi: ath11k: mhi: add a warning message for MHI_CB_EE_RDDM crash (bsc#1227149). * wifi: ath11k: move pci.ops registration ahead (bsc#1227149). * wifi: ath11k: move power type check to ASSOC stage when connecting to 6 GHz AP (bsc#1227149). * wifi: ath11k: move references from rsvd2 to info fields (bsc#1227149). * wifi: ath11k: pci: cleanup debug logging (bsc#1227149). * wifi: ath11k: print debug level in debug messages (bsc#1227149). * wifi: ath11k: provide address list if chip supports 2 stations (bsc#1227149). * wifi: ath11k: qmi: refactor ath11k_qmi_m3_load() (bsc#1227149). * wifi: ath11k: Really consistently use ath11k_vif_to_arvif() (bsc#1227149). * wifi: ath11k: refactor ath11k_wmi_tlv_parse_alloc() (bsc#1227149). * wifi: ath11k: refactor setting country code logic (stable-fixes). * wifi: ath11k: refactor vif parameter configurations (bsc#1227149). * wifi: ath11k: Relocate the func ath11k_mac_bitrate_mask_num_ht_rates() and change hweight16 to hweight8 (bsc#1227149). * wifi: ath11k: rely on mac80211 debugfs handling for vif (bsc#1227149). * wifi: ath11k: Remove ath11k_base::bd_api (bsc#1227149). * wifi: ath11k: remove ath11k_htc_record::pauload[] (bsc#1227149). * wifi: ath11k: Remove cal_done check during probe (bsc#1227149). * wifi: ath11k: remove invalid peer create logic (bsc#1227149). * wifi: ath11k: remove manual mask names from debug messages (bsc#1227149). * wifi: ath11k: Remove obsolete struct wmi_peer_flags_map *peer_flags (bsc#1227149). * wifi: ath11k: Remove scan_flags union from struct scan_req_params (bsc#1227149). * wifi: ath11k: Remove struct ath11k::ops (bsc#1227149). * wifi: ath11k: remove unnecessary (void*) conversions (bsc#1227149). * wifi: ath11k: Remove unneeded semicolon (bsc#1227149). * wifi: ath11k: remove unsupported event handlers (bsc#1227149). * wifi: ath11k: Remove unused declarations (bsc#1227149). * wifi: ath11k: remove unused function ath11k_tm_event_wmi() (bsc#1227149). * wifi: ath11k: remove unused members of 'struct ath11k_base' (bsc#1227149). * wifi: ath11k: remove unused scan_events from struct scan_req_params (bsc#1227149). * wifi: ath11k: Remove unused struct ath11k_htc_frame (bsc#1227149). * wifi: ath11k: rename ath11k_start_vdev_delay() (bsc#1227149). * wifi: ath11k: rename MBSSID fields in wmi_vdev_up_cmd (bsc#1227149). * wifi: ath11k: rename the sc naming convention to ab (bsc#1227149). * wifi: ath11k: rename the wmi_sc naming convention to wmi_ab (bsc#1227149). * wifi: ath11k: replace ENOTSUPP with EOPNOTSUPP (bsc#1227149). * wifi: ath11k: restore country code during resume (git-fixes). * wifi: ath11k: save max transmit power in vdev start response event from firmware (bsc#1227149). * wifi: ath11k: save power spectral density(PSD) of regulatory rule (bsc#1227149). * wifi: ath11k: Send HT fixed rate in WMI peer fixed param (bsc#1227149). * wifi: ath11k: simplify ath11k_mac_validate_vht_he_fixed_rate_settings() (bsc#1227149). * wifi: ath11k: simplify the code with module_platform_driver (bsc#1227149). * wifi: ath11k: Split coldboot calibration hw_param (bsc#1227149). * wifi: ath11k: store cur_regulatory_info for each radio (bsc#1227149). * wifi: ath11k: support 2 station interfaces (bsc#1227149). * wifi: ath11k: update proper pdev/vdev id for testmode command (bsc#1227149). * wifi: ath11k: Update Qualcomm Innovation Center, Inc. copyrights (bsc#1227149). * wifi: ath11k: update regulatory rules when connect to AP on 6 GHz band for station (bsc#1227149). * wifi: ath11k: update regulatory rules when interface added (bsc#1227149). * wifi: ath11k: Use device_get_match_data() (bsc#1227149). * wifi: ath11k: use kstrtoul_from_user() where appropriate (bsc#1227149). * wifi: ath11k: Use list_count_nodes() (bsc#1227149). * wifi: ath11k: use RCU when accessing struct inet6_dev::ac_list (bsc#1227149). * wifi: ath11k: use select for CRYPTO_MICHAEL_MIC (bsc#1227149). * wifi: ath11k: use WMI_VDEV_SET_TPC_POWER_CMDID when EXT_TPC_REG_SUPPORT for 6 GHz (bsc#1227149). * wifi: ath11k: wmi: add unified command debug messages (bsc#1227149). * wifi: ath11k: wmi: cleanup error handling in ath11k_wmi_send_init_country_cmd() (bsc#1227149). * wifi: ath11k: wmi: use common error handling style (bsc#1227149). * wifi: ath11k: workaround too long expansion sparse warnings (bsc#1227149). * wifi: ath12k: add 320 MHz bandwidth enums (bsc#1227149). * wifi: ath12k: add ath12k_qmi_free_resource() for recovery (bsc#1227149). * wifi: ath12k: add CE and ext IRQ flag to indicate irq_handler (bsc#1227149). * wifi: ath12k: add EHT PHY modes (bsc#1227149). * wifi: ath12k: add fallback board name without variant while searching board-2.bin (bsc#1227149). * wifi: ath12k: add firmware-2.bin support (bsc#1227149). * wifi: ath12k: add handler for scan event WMI_SCAN_EVENT_DEQUEUED (bsc#1227149). * wifi: ath12k: add keep backward compatibility of PHY mode to avoid firmware crash (bsc#1227149). * wifi: ath12k: Add logic to write QRTR node id to scratch (bsc#1227149). * wifi: ath12k: add MAC id support in WBM error path (bsc#1227149). * wifi: ath12k: Add missing qmi_txn_cancel() calls (bsc#1227149). * wifi: ath12k: add MLO header in peer association (bsc#1227149). * wifi: ath12k: add msdu_end structure for WCN7850 (bsc#1227149). * wifi: ath12k: add P2P IE in beacon template (bsc#1227149). * wifi: ath12k: add parsing of phy bitmap for reg rules (bsc#1227149). * wifi: ath12k: add processing for TWT disable event (bsc#1227149). * wifi: ath12k: add processing for TWT enable event (bsc#1227149). * wifi: ath12k: add qmi_cnss_feature_bitmap field to hardware parameters (bsc#1227149). * wifi: ath12k: add QMI PHY capability learn support (bsc#1227149). * wifi: ath12k: add rcu lock for ath12k_wmi_p2p_noa_event() (bsc#1227149). * wifi: ath12k: add read variant from SMBIOS for download board data (bsc#1227149). * wifi: ath12k: add string type to search board data in board-2.bin for WCN7850 (bsc#1227149). * wifi: ath12k: add support for BA1024 (bsc#1227149). * wifi: ath12k: add support for collecting firmware log (bsc#1227149). * wifi: ath12k: add support for hardware rfkill for WCN7850 (bsc#1227149). * wifi: ath12k: add support for peer meta data version (bsc#1227149). * wifi: ath12k: add support one MSI vector (bsc#1227149). * wifi: ath12k: Add support to parse new WMI event for 6 GHz regulatory (bsc#1227149). * wifi: ath12k: add support to search regdb data in board-2.bin for WCN7850 (bsc#1227149). * wifi: ath12k: add wait operation for tx management packets for flush from mac80211 (bsc#1227149). * wifi: ath12k: add WMI support for EHT peer (bsc#1227149). * wifi: ath12k: advertise P2P dev support for WCN7850 (bsc#1227149). * wifi: ath12k: allow specific mgmt frame tx while vdev is not up (bsc#1227149). * wifi: ath12k: ath12k_start_vdev_delay(): convert to use ar (bsc#1227149). * wifi: ath12k: avoid deadlock by change ieee80211_queue_work for regd_update_work (bsc#1227149). * wifi: ath12k: avoid duplicated vdev stop (git-fixes). * wifi: ath12k: avoid explicit HW conversion argument in Rxdma replenish (bsc#1227149). * wifi: ath12k: avoid explicit mac id argument in Rxdma replenish (bsc#1227149). * wifi: ath12k: avoid explicit RBM id argument in Rxdma replenish (bsc#1227149). * wifi: ath12k: avoid repeated hw access from ar (bsc#1227149). * wifi: ath12k: avoid repeated wiphy access from hw (bsc#1227149). * wifi: ath12k: call ath12k_mac_fils_discovery() without condition (bsc#1227149). * wifi: ath12k: change DMA direction while mapping reinjected packets (git- fixes). * wifi: ath12k: change interface combination for P2P mode (bsc#1227149). * wifi: ath12k: change MAC buffer ring size to 2048 (bsc#1227149). * wifi: ath12k: change to initialize recovery variables earlier in ath12k_core_reset() (bsc#1227149). * wifi: ath12k: change to treat alpha code na as world wide regdomain (bsc#1227149). * wifi: ath12k: change to use dynamic memory for channel list of scan (bsc#1227149). * wifi: ath12k: change WLAN_SCAN_PARAMS_MAX_IE_LEN from 256 to 512 (bsc#1227149). * wifi: ath12k: check hardware major version for WCN7850 (bsc#1227149). * wifi: ath12k: check M3 buffer size as well whey trying to reuse it (bsc#1227149). * wifi: ath12k: configure puncturing bitmap (bsc#1227149). * wifi: ath12k: configure RDDM size to MHI for device recovery (bsc#1227149). * wifi: ath12k: Consistently use ath12k_vif_to_arvif() (bsc#1227149). * wifi: ath12k: Consolidate WMI peer flags (bsc#1227149). * wifi: ath12k: Correct 6 GHz frequency value in rx status (git-fixes). * wifi: ath12k: correct the data_type from QMI_OPT_FLAG to QMI_UNSIGNED_1_BYTE for mlo_capable (bsc#1227149). * wifi: ath12k: delete the timer rx_replenish_retry during rmmod (bsc#1227149). * wifi: ath12k: designating channel frequency for ROC scan (bsc#1227149). * wifi: ath12k: disable QMI PHY capability learn in split-phy QCN9274 (bsc#1227149). * wifi: ath12k: do not drop data frames from unassociated stations (bsc#1227149). * wifi: ath12k: Do not drop tx_status in failure case (git-fixes). * wifi: ath12k: do not restore ASPM in case of single MSI vector (bsc#1227149). * wifi: ath12k: Do not use scan_flags from struct ath12k_wmi_scan_req_arg (bsc#1227149). * wifi: ath12k: drop failed transmitted frames from metric calculation (git- fixes). * wifi: ath12k: drop NULL pointer check in ath12k_update_per_peer_tx_stats() (bsc#1227149). * wifi: ath12k: enable 320 MHz bandwidth for 6 GHz band in EHT PHY capability for WCN7850 (bsc#1227149). * wifi: ath12k: enable 802.11 power save mode in station mode (bsc#1227149). * wifi: ath12k: enable IEEE80211_HW_SINGLE_SCAN_ON_ALL_BANDS for WCN7850 (bsc#1227149). * wifi: ath12k: Enable Mesh support for QCN9274 (bsc#1227149). * wifi: ath12k: fetch correct pdev id from WMI_SERVICE_READY_EXT_EVENTID (bsc#1227149). * wifi: ath12k: Fix a few spelling errors (bsc#1227149). * wifi: ath12k: fix broken structure wmi_vdev_create_cmd (bsc#1227149). * wifi: ath12k: fix conf_mutex in ath12k_mac_op_unassign_vif_chanctx() (bsc#1227149). * wifi: ath12k: fix debug messages (bsc#1227149). * wifi: ath12k: fix fetching MCBC flag for QCN9274 (bsc#1227149). * wifi: ath12k: fix firmware assert during insmod in memory segment mode (bsc#1227149). * wifi: ath12k: fix firmware crash during reo reinject (git-fixes). * wifi: ath12k: fix invalid m3 buffer address (bsc#1227149). * wifi: ath12k: fix invalid memory access while processing fragmented packets (git-fixes). * wifi: ath12k: fix kernel crash during resume (bsc#1227149). * wifi: ath12k: fix license in p2p.c and p2p.h (bsc#1227149). * wifi: ath12k: fix out-of-bound access of qmi_invoke_handler() (git-fixes). * wifi: ath12k: fix PCI read and write (bsc#1227149). * wifi: ath12k: fix peer metadata parsing (git-fixes). * wifi: ath12k: fix potential wmi_mgmt_tx_queue race condition (bsc#1227149). * wifi: ath12k: fix radar detection in 160 MHz (bsc#1227149). * wifi: ath12k: fix recovery fail while firmware crash when doing channel switch (bsc#1227149). * wifi: ath12k: fix the error handler of rfkill config (bsc#1227149). * wifi: ath12k: fix the issue that the multicast/broadcast indicator is not read correctly for WCN7850 (bsc#1227149). * wifi: ath12k: fix the problem that down grade phy mode operation (bsc#1227149). * wifi: ath12k: Fix tx completion ring (WBM2SW) setup failure (git-fixes). * wifi: ath12k: Fix uninitialized use of ret in ath12k_mac_allocate() (bsc#1227149). * wifi: ath12k: fix WARN_ON during ath12k_mac_update_vif_chan (bsc#1227149). * wifi: ath12k: fix wrong definition of CE ring's base address (git-fixes). * wifi: ath12k: fix wrong definitions of hal_reo_update_rx_queue (bsc#1227149). * wifi: ath12k: get msi_data again after request_irq is called (bsc#1227149). * wifi: ath12k: implement handling of P2P NoA event (bsc#1227149). * wifi: ath12k: implement remain on channel for P2P mode (bsc#1227149). * wifi: ath12k: increase vdev setup timeout (bsc#1227149). * wifi: ath12k: indicate NON MBSSID vdev by default during vdev start (bsc#1227149). * wifi: ath12k: indicate scan complete for scan canceled when scan running (bsc#1227149). * wifi: ath12k: indicate to mac80211 scan complete with aborted flag for ATH12K_SCAN_STARTING state (bsc#1227149). * wifi: ath12k: Introduce and use ath12k_sta_to_arsta() (bsc#1227149). * wifi: ath12k: Introduce the container for mac80211 hw (bsc#1227149). * wifi: ath12k: Make QMI message rules const (bsc#1227149). * wifi: ath12k: move HE capabilities processing to a new function (bsc#1227149). * wifi: ath12k: move peer delete after vdev stop of station for WCN7850 (bsc#1227149). * wifi: ath12k: Optimize the mac80211 hw data access (bsc#1227149). * wifi: ath12k: parse WMI service ready ext2 event (bsc#1227149). * wifi: ath12k: peer assoc for 320 MHz (bsc#1227149). * wifi: ath12k: prepare EHT peer assoc parameters (bsc#1227149). * wifi: ath12k: propagate EHT capabilities to userspace (bsc#1227149). * wifi: ath12k: Read board id to support split-PHY QCN9274 (bsc#1227149). * wifi: ath12k: refactor ath12k_bss_assoc() (bsc#1227149). * wifi: ath12k: refactor ath12k_mac_allocate() and ath12k_mac_destroy() (bsc#1227149). * wifi: ath12k: refactor ath12k_mac_op_ampdu_action() (bsc#1227149). * wifi: ath12k: refactor ath12k_mac_op_config() (bsc#1227149). * wifi: ath12k: refactor ath12k_mac_op_configure_filter() (bsc#1227149). * wifi: ath12k: refactor ath12k_mac_op_conf_tx() (bsc#1227149). * wifi: ath12k: refactor ath12k_mac_op_flush() (bsc#1227149). * wifi: ath12k: refactor ath12k_mac_op_start() (bsc#1227149). * wifi: ath12k: refactor ath12k_mac_op_stop() (bsc#1227149). * wifi: ath12k: refactor ath12k_mac_op_update_vif_offload() (bsc#1227149). * wifi: ath12k: refactor ath12k_mac_register() and ath12k_mac_unregister() (bsc#1227149). * wifi: ath12k: refactor ath12k_mac_setup_channels_rates() (bsc#1227149). * wifi: ath12k: refactor ath12k_wmi_tlv_parse_alloc() (bsc#1227149). * wifi: ath12k: refactor DP Rxdma ring structure (bsc#1227149). * wifi: ath12k: refactor multiple MSI vector implementation (bsc#1227149). * wifi: ath12k: refactor QMI MLO host capability helper function (bsc#1227149). * wifi: ath12k: Refactor the mac80211 hw access from link/radio (bsc#1227149). * wifi: ath12k: refactor the rfkill worker (bsc#1227149). * wifi: ath12k: register EHT mesh capabilities (bsc#1227149). * wifi: ath12k: relax list iteration in ath12k_mac_vif_unref() (bsc#1227149). * wifi: ath12k: relocate ath12k_dp_pdev_pre_alloc() call (bsc#1227149). * wifi: ath12k: Remove ath12k_base::bd_api (bsc#1227149). * wifi: ath12k: remove hal_desc_sz from hw params (bsc#1227149). * wifi: ath12k: Remove obsolete struct wmi_peer_flags_map *peer_flags (bsc#1227149). * wifi: ath12k: remove redundant memset() in ath12k_hal_reo_qdesc_setup() (bsc#1227149). * wifi: ath12k: Remove some dead code (bsc#1227149). * wifi: ath12k: Remove struct ath12k::ops (bsc#1227149). * wifi: ath12k: remove the unused scan_events from ath12k_wmi_scan_req_arg (bsc#1227149). * wifi: ath12k: Remove unnecessary struct qmi_txn initializers (bsc#1227149). * wifi: ath12k: Remove unnecessary (void*) conversions (bsc#1227149). * wifi: ath12k: remove unused ATH12K_BD_IE_BOARD_EXT (bsc#1227149). * wifi: ath12k: Remove unused declarations (bsc#1227149). * wifi: ath12k: Remove unused scan_flags from struct ath12k_wmi_scan_req_arg (bsc#1227149). * wifi: ath12k: rename HE capabilities setup/copy functions (bsc#1227149). * wifi: ath12k: rename the sc naming convention to ab (bsc#1227149). * wifi: ath12k: rename the wmi_sc naming convention to wmi_ab (bsc#1227149). * wifi: ath12k: replace ENOTSUPP with EOPNOTSUPP (bsc#1227149). * wifi: ath12k: send WMI_PEER_REORDER_QUEUE_SETUP_CMDID when ADDBA session starts (bsc#1227149). * wifi: ath12k: Set default beacon mode to burst mode (bsc#1227149). * wifi: ath12k: set IRQ affinity to CPU0 in case of one MSI vector (bsc#1227149). * wifi: ath12k: set PERST pin no pull request for WCN7850 (bsc#1227149). * wifi: ath12k: split hal_ops to support RX TLVs word mask compaction (bsc#1227149). * wifi: ath12k: subscribe required word mask from rx tlv (bsc#1227149). * wifi: ath12k: support default regdb while searching board-2.bin for WCN7850 (bsc#1227149). * wifi: ath12k: trigger station disconnect on hardware restart (bsc#1227149). * wifi: ath12k: use ATH12K_PCI_IRQ_DP_OFFSET for DP IRQ (bsc#1227149). * wifi: ath12k: use correct flag field for 320 MHz channels (bsc#1227149). * wifi: ath12k: Use initializers for QMI message buffers (bsc#1227149). * wifi: ath12k: Use msdu_end to check MCBC (bsc#1227149). * wifi: ath12k: Use pdev_id rather than mac_id to get pdev (bsc#1227149). * wifi: ath12k: use select for CRYPTO_MICHAEL_MIC (bsc#1227149). * wifi: ath12k: WMI support to process EHT capabilities (bsc#1227149). * wifi: ath5k: ath5k_hw_get_median_noise_floor(): use swap() (bsc#1227149). * wifi: ath5k: Convert to platform remove callback returning void (bsc#1227149). * wifi: ath5k: remove phydir check from ath5k_debug_init_device() (bsc#1227149). * wifi: ath5k: Remove redundant dev_err() (bsc#1227149). * wifi: ath5k: remove unnecessary (void*) conversions (bsc#1227149). * wifi: ath5k: remove unused ath5k_eeprom_info::ee_antenna (bsc#1227149). * wifi: ath5k: replace deprecated strncpy with strscpy (bsc#1227149). * wifi: ath6kl: Remove error checking for debugfs_create_dir() (bsc#1227149). * wifi: ath6kl: remove unnecessary (void*) conversions (bsc#1227149). * wifi: ath6kl: replace deprecated strncpy with memcpy (bsc#1227149). * wifi: ath9k: avoid using uninitialized array (bsc#1227149). * wifi: ath9k: clean up function ath9k_hif_usb_resume (bsc#1227149). * wifi: ath9k: consistently use kstrtoX_from_user() functions (bsc#1227149). * wifi: ath9k: Convert to platform remove callback returning void (bsc#1227149). * wifi: ath9k: delete some unused/duplicate macros (bsc#1227149). * wifi: ath9k: fix LNA selection in ath_ant_try_scan() (stable-fixes). * wifi: ath9k: fix parameter check in ath9k_init_debug() (bsc#1227149). * wifi: ath9k_htc: fix format-truncation warning (bsc#1227149). * wifi: ath9k: remove redundant assignment to variable ret (bsc#1227149). * wifi: ath9k: Remove unnecessary ternary operators (bsc#1227149). * wifi: ath9k: Remove unnecessary (void*) conversions (bsc#1227149). * wifi: ath9k: Remove unused declarations (bsc#1227149). * wifi: ath9k: reset survey of current channel after a scan started (bsc#1227149). * wifi: ath9k: simplify ar9003_hw_process_ini() (bsc#1227149). * wifi: ath9k: use u32 for txgain indexes (bsc#1227149). * wifi: ath9k: work around memset overflow warning (bsc#1227149). * wifi: ath: dfs_pattern_detector: Use flex array to simplify code (bsc#1227149). * wifi: ath: remove unused-but-set parameter (bsc#1227149). * wifi: ath: Use is_multicast_ether_addr() to check multicast Ether address (bsc#1227149). * wifi: ath: work around false-positive stringop-overread warning (bsc#1227149). * wifi: atk10k: Do not opencode ath10k_pci_priv() in ath10k_ahb_priv() (bsc#1227149). * wifi: atmel: remove unused ioctl function (bsc#1227149). * wifi: b43: silence sparse warnings (bsc#1227149). * wifi: brcm80211: replace deprecated strncpy with strscpy (bsc#1227149). * wifi: brcmfmac: Add DMI nvram filename quirk for ACEPC W5 Pro (stable- fixes). * wifi: brcmfmac: add linefeed at end of file (bsc#1227149). * wifi: brcmfmac: add per-vendor feature detection callback (stable-fixes). * wifi: brcmfmac: allow per-vendor event handling (bsc#1227149). * wifi: brcmfmac: Annotate struct brcmf_gscan_config with __counted_by (bsc#1227149). * wifi: brcmfmac: cfg80211: Use WSEC to set SAE password (stable-fixes). * wifi: brcmfmac: Demote vendor-specific attach/detach messages to info (git- fixes). * wifi: brcmfmac: Detect corner error case earlier with log (bsc#1227149). * wifi: brcmfmac: do not cast hidden SSID attribute value to boolean (bsc#1227149). * wifi: brcmfmac: do not pass hidden SSID attribute as value directly (bsc#1227149). * wifi: brcmfmac: export firmware interface functions (bsc#1227149). * wifi: brcmfmac: firmware: Annotate struct brcmf_fw_request with __counted_by (bsc#1227149). * wifi: brcmfmac: fix format-truncation warnings (bsc#1227149). * wifi: brcmfmac: fix gnu_printf warnings (bsc#1227149). * wifi: brcmfmac: fweh: Add __counted_by for struct brcmf_fweh_queue_item and use struct_size() (bsc#1227149). * wifi: brcmfmac: fweh: Fix boot crash on Raspberry Pi 4 (bsc#1227149). * wifi: brcmfmac: move feature overrides before feature_disable (bsc#1227149). * wifi: brcmfmac: pcie: handle randbuf allocation failure (git-fixes). * wifi: brcmsmac: cleanup SCB-related data types (bsc#1227149). * wifi: brcmsmac: fix gnu_printf warnings (bsc#1227149). * wifi: brcmsmac: LCN PHY code is used for BCM4313 2G-only device (git-fixes). * wifi: brcmsmac: phy: Remove unreachable code (bsc#1227149). * wifi: brcmsmac: remove more unused data types (bsc#1227149). * wifi: brcmsmac: remove unused data type (bsc#1227149). * wifi: brcmsmac: replace deprecated strncpy with memcpy (bsc#1227149). * wifi: brcmsmac: silence sparse warnings (bsc#1227149). * wifi: brcmutil: use helper function pktq_empty() instead of open code (bsc#1227149). * wifi: carl9170: add a proper sanity check for endpoints (git-fixes). * wifi: carl9170: re-fix fortified-memset warning (git-fixes). * wifi: carl9170: Remove redundant assignment to pointer super (bsc#1227149). * wifi: carl9170: remove unnecessary (void*) conversions (bsc#1227149). * wifi: cfg80211: add a flag to disable wireless extensions (bsc#1227149). * wifi: cfg80211: add BSS usage reporting (bsc#1227149). * wifi: cfg80211: add local_state_change to deauth trace (bsc#1227149). * wifi: cfg80211: add locked debugfs wrappers (bsc#1227149). * wifi: cfg80211: address several kerneldoc warnings (bsc#1227149). * wifi: cfg80211: add RNR with reporting AP information (bsc#1227149). * wifi: cfg80211: Add support for setting TID to link mapping (bsc#1227149). * wifi: cfg80211: add support for SPP A-MSDUs (bsc#1227149). * wifi: cfg80211: Allow AP/P2PGO to indicate port authorization to peer STA/P2PClient (bsc#1227149). * wifi: cfg80211: allow reg update by driver even if wiphy->regd is set (bsc#1227149). * wifi: cfg80211: annotate iftype_data pointer with sparse (bsc#1227149). * wifi: cfg80211: avoid double free if updating BSS fails (bsc#1227149). * wifi: cfg80211: call reg_call_notifier on beacon hints (bsc#1227149). * wifi: cfg80211: check A-MSDU format more carefully (stable-fixes). * wifi: cfg80211: check RTNL when iterating devices (bsc#1227149). * wifi: cfg80211: check wiphy mutex is held for wdev mutex (bsc#1227149). * wifi: cfg80211: consume both probe response and beacon IEs (bsc#1227149). * wifi: cfg80211: detect stuck ECSA element in probe resp (bsc#1227149). * wifi: cfg80211: ensure cfg80211_bss_update frees IEs on error (bsc#1227149). * wifi: cfg80211: export DFS CAC time and usable state helper functions (bsc#1227149). * wifi: cfg80211: expose nl80211_chan_width_to_mhz for wide sharing (bsc#1227149). * wifi: cfg80211: Extend support for scanning while MLO connected (bsc#1227149). * wifi: cfg80211: fix 6 GHz scan request building (stable-fixes). * wifi: cfg80211: fix CQM for non-range use (bsc#1227149). * wifi: cfg80211: fix header kernel-doc typos (bsc#1227149). * wifi: cfg80211: fix kernel-doc for wiphy_delayed_work_flush() (bsc#1227149). * wifi: cfg80211: fix rdev_dump_mpp() arguments order (stable-fixes). * wifi: cfg80211: fix spelling & punctutation (bsc#1227149). * wifi: cfg80211: fix the order of arguments for trace events of the tx_rx_evt class (stable-fixes). * wifi: cfg80211: fix typo in cfg80211_calculate_bitrate_he() (git-fixes). * wifi: cfg80211: Fix typo in documentation (bsc#1227149). * wifi: cfg80211: fully move wiphy work to unbound workqueue (git-fixes). * wifi: cfg80211: generate an ML element for per-STA profiles (bsc#1227149). * wifi: cfg80211: handle 2x996 RU allocation in cfg80211_calculate_bitrate_he() (git-fixes). * wifi: cfg80211: Handle specific BSSID in 6GHz scanning (bsc#1227149). * wifi: cfg80211: handle UHB AP and STA power type (bsc#1227149). * wifi: cfg80211: hold wiphy lock in cfg80211_any_wiphy_oper_chan() (bsc#1227149). * wifi: cfg80211: hold wiphy mutex for send_interface (bsc#1227149). * wifi: cfg80211: improve documentation for flag fields (bsc#1227149). * wifi: cfg80211: Include operating class 137 in 6GHz band (bsc#1227149). * wifi: cfg80211: introduce cfg80211_ssid_eq() (bsc#1227149). * wifi: cfg80211: Lock wiphy in cfg80211_get_station (git-fixes). * wifi: cfg80211: make read-only array centers_80mhz static const (bsc#1227149). * wifi: cfg80211: make RX assoc data const (bsc#1227149). * wifi: cfg80211: modify prototype for change_beacon (bsc#1227149). * wifi: cfg80211: OWE DH IE handling offload (bsc#1227149). * wifi: cfg80211: pmsr: use correct nla_get_uX functions (git-fixes). * wifi: cfg80211: reg: describe return values in kernel-doc (bsc#1227149). * wifi: cfg80211: reg: fix various kernel-doc issues (bsc#1227149). * wifi: cfg80211: reg: hold wiphy mutex for wdev iteration (bsc#1227149). * wifi: cfg80211: reg: Support P2P operation on DFS channels (bsc#1227149). * wifi: cfg80211: remove scan_width support (bsc#1227149). * wifi: cfg80211: remove wdev mutex (bsc#1227149). * wifi: cfg80211: rename UHB to 6 GHz (bsc#1227149). * wifi: cfg80211: Replace ENOTSUPP with EOPNOTSUPP (bsc#1227149). * wifi: cfg80211: report per-link errors during association (bsc#1227149). * wifi: cfg80211: report unprotected deauth/disassoc in wowlan (bsc#1227149). * wifi: cfg80211: restrict NL80211_ATTR_TXQ_QUANTUM values (git-fixes). * wifi: cfg80211: save power spectral density(psd) of regulatory rule (bsc#1227149). * wifi: cfg80211: Schedule regulatory check on BSS STA channel change (bsc#1227149). * wifi: cfg80211: set correct param change count in ML element (bsc#1227149). * wifi: cfg80211: sme: hold wiphy lock for wdev iteration (bsc#1227149). * wifi: cfg80211: sort certificates in build (bsc#1227149). * wifi: cfg80211: split struct cfg80211_ap_settings (bsc#1227149). * wifi: cfg80211: Update the default DSCP-to-UP mapping (bsc#1227149). * wifi: cfg80211: validate HE operation element parsing (bsc#1227149). * wifi: cfg80211: wext: add extra SIOCSIWSCAN data check (stable-fixes). * wifi: cfg80211: wext: convert return value to kernel-doc (bsc#1227149). * wifi: cfg80211: wext: set ssids=NULL for passive scans (git-fixes). * wifi: cw1200: Avoid processing an invalid TIM IE (bsc#1227149). * wifi: cw1200: Convert to GPIO descriptors (bsc#1227149). * wifi: cw1200: fix __le16 sparse warnings (bsc#1227149). * wifi: cw1200: restore endian swapping (bsc#1227149). * wifi: drivers: Explicitly include correct DT includes (bsc#1227149). * wifi: fill in MODULE_DESCRIPTION()s for ar5523 (bsc#1227149). * wifi: fill in MODULE_DESCRIPTION()s for Broadcom WLAN (bsc#1227149). * wifi: fill in MODULE_DESCRIPTION()s for mt76 drivers (bsc#1227149). * wifi: fill in MODULE_DESCRIPTION()s for p54spi (bsc#1227149). * wifi: fill in MODULE_DESCRIPTION()s for wcn36xx (bsc#1227149). * wifi: fill in MODULE_DESCRIPTION()s for wilc1000 (bsc#1227149). * wifi: fill in MODULE_DESCRIPTION()s for wl1251 and wl12xx (bsc#1227149). * wifi: fill in MODULE_DESCRIPTION()s for wl18xx (bsc#1227149). * wifi: fill in MODULE_DESCRIPTION()s for wlcore (bsc#1227149). * wifi: hostap: Add __counted_by for struct prism2_download_data and use struct_size() (bsc#1227149). * wifi: hostap: fix stringop-truncations GCC warning (bsc#1227149). * wifi: hostap: remove unused ioctl function (bsc#1227149). * wifi: ieee80211: add definitions for negotiated TID to Link map (bsc#1227149). * wifi: ieee80211: add UL-bandwidth definition of trigger frame (bsc#1227149). * wifi: ieee80211: check for NULL in ieee80211_mle_size_ok() (stable-fixes). * wifi: ieee80211: fix ieee80211_mle_basic_sta_prof_size_ok() (git-fixes). * wifi: iwlmei: do not send nic info with invalid mac address (bsc#1227149). * wifi: iwlmei: do not send SAP messages if AMT is disabled (bsc#1227149). * wifi: iwlmei: send driver down SAP message only if wiamt is enabled (bsc#1227149). * wifi: iwlmei: send HOST_GOES_DOWN message even if wiamt is disabled (bsc#1227149). * wifi: iwlmvm: fw: Add new OEM vendor to tas approved list (bsc#1227149). * wifi: iwlwifi: abort scan when rfkill on but device enabled (bsc#1227149). * wifi: iwlwifi: add HONOR to PPAG approved list (bsc#1227149). * wifi: iwlwifi: add mapping of a periphery register crf for WH RF (bsc#1227149). * wifi: iwlwifi: add new RF support for wifi7 (bsc#1227149). * wifi: iwlwifi: add Razer to ppag approved list (bsc#1227149). * wifi: iwlwifi: Add rf_mapping of new wifi7 devices (bsc#1227149). * wifi: iwlwifi: add support for activating UNII-1 in WW via BIOS (bsc#1227149). * wifi: iwlwifi: add support for a wiphy_work rx handler (bsc#1227149). * wifi: iwlwifi: Add support for new 802.11be device (bsc#1227149). * wifi: iwlwifi: add support for new ini region types (bsc#1227149). * wifi: iwlwifi: Add support for PPAG cmd v5 and PPAG revision 3 (bsc#1227149). * wifi: iwlwifi: add support for SNPS DPHYIP region type (bsc#1227149). * wifi: iwlwifi: adjust rx_phyinfo debugfs to MLO (bsc#1227149). * wifi: iwlwifi: always have 'uats_enabled' (bsc#1227149). * wifi: iwlwifi: api: clean up some kernel-doc/typos (bsc#1227149). * wifi: iwlwifi: api: dbg-tlv: fix up kernel-doc (bsc#1227149). * wifi: iwlwifi: api: fix a small upper/lower-case typo (bsc#1227149). * wifi: iwlwifi: api: fix center_freq label in PHY diagram (bsc#1227149). * wifi: iwlwifi: api: fix constant version to match FW (bsc#1227149). * wifi: iwlwifi: api: fix kernel-doc reference (bsc#1227149). * wifi: iwlwifi: bump FW API to 84 for AX/BZ/SC devices (bsc#1227149). * wifi: iwlwifi: bump FW API to 86 for AX/BZ/SC devices (bsc#1227149). * wifi: iwlwifi: bump FW API to 87 for AX/BZ/SC devices (bsc#1227149). * wifi: iwlwifi: bump FW API to 88 for AX/BZ/SC devices (bsc#1227149). * wifi: iwlwifi: cancel session protection only if there is one (bsc#1227149). * wifi: iwlwifi: change link id in time event to s8 (bsc#1227149). * wifi: iwlwifi: check for kmemdup() return value in iwl_parse_tlv_firmware() (bsc#1227149). * wifi: iwlwifi: cleanup BT Shared Single Antenna code (bsc#1227149). * wifi: iwlwifi: cleanup sending PER_CHAIN_LIMIT_OFFSET_CMD (bsc#1227149). * wifi: iwlwifi: cleanup uefi variables loading (bsc#1227149). * wifi: iwlwifi: clear link_id in time_event (bsc#1227149). * wifi: iwlwifi: dbg_ini: move iwl_dbg_tlv_free outside of debugfs ifdef (git- fixes). * wifi: iwlwifi: dbg-tlv: avoid extra allocation/copy (bsc#1227149). * wifi: iwlwifi: dbg-tlv: use struct_size() for allocation (bsc#1227149). * wifi: iwlwifi: disable 160 MHz based on subsystem device ID (bsc#1227149). * wifi: iwlwifi: disable eSR when BT is active (bsc#1227149). * wifi: iwlwifi: disable multi rx queue for 9000 (bsc#1227149). * wifi: iwlwifi: do not check TAS block list size twice (bsc#1227149). * wifi: iwlwifi: Do not mark DFS channels as NO-IR (bsc#1227149). * wifi: iwlwifi: do not use TRUE/FALSE with bool (bsc#1227149). * wifi: iwlwifi: drop NULL pointer check in iwl_mvm_tzone_set_trip_temp() (bsc#1227149). * wifi: iwlwifi: dvm: remove kernel-doc warnings (bsc#1227149). * wifi: iwlwifi: error-dump: fix kernel-doc issues (bsc#1227149). * wifi: iwlwifi: Extract common prph mac/phy regions data dump logic (bsc#1227149). * wifi: iwlwifi: fail NIC access fast on dead NIC (bsc#1227149). * wifi: iwlwifi: fix #ifdef CONFIG_ACPI check (bsc#1227149). * wifi: iwlwifi: fix iwl_mvm_get_valid_rx_ant() (git-fixes). * wifi: iwlwifi: fix opmode start/stop race (bsc#1227149). * wifi: iwlwifi: fix some kernel-doc issues (bsc#1227149). * wifi: iwlwifi: Fix spelling mistake "SESION" -> "SESSION" (bsc#1227149). * wifi: iwlwifi: fix system commands group ordering (bsc#1227149). * wifi: iwlwifi: fix the rf step and flavor bits range (bsc#1227149). * wifi: iwlwifi: fw: Add support for UATS table in UHB (bsc#1227149). * wifi: iwlwifi: fw: allow vmalloc for PNVM image (bsc#1227149). * wifi: iwlwifi: fw: dbg: ensure correct config name sizes (bsc#1227149). * wifi: iwlwifi: fw: disable firmware debug asserts (bsc#1227149). * wifi: iwlwifi: fw: do not always use FW dump trig (git-fixes). * wifi: iwlwifi: fw: file: clean up kernel-doc (bsc#1227149). * wifi: iwlwifi: fw: file: do not use [0] for variable arrays (bsc#1227149). * wifi: iwlwifi: fw: fix compiler warning for NULL string print (bsc#1227149). * wifi: iwlwifi: fw: fix compile w/o CONFIG_ACPI (git-fixes). * wifi: iwlwifi: fw: Fix debugfs command sending (bsc#1227149). * wifi: iwlwifi: fw: increase fw_version string size (bsc#1227149). * wifi: iwlwifi: fw: reconstruct the API/CAPA enum number (bsc#1227149). * wifi: iwlwifi: fw: replace deprecated strncpy with strscpy_pad (bsc#1227149). * wifi: iwlwifi: handle per-phy statistics from fw (bsc#1227149). * wifi: iwlwifi: implement can_activate_links callback (bsc#1227149). * wifi: iwlwifi: implement enable/disable for China 2022 regulatory (bsc#1227149). * wifi: iwlwifi: implement GLAI ACPI table loading (bsc#1227149). * wifi: iwlwifi: iwl-fh.h: fix kernel-doc issues (bsc#1227149). * wifi: iwlwifi: iwlmvm: handle unprotected deauth/disassoc in d3 (bsc#1227149). * wifi: iwlwifi: iwl-trans.h: clean up kernel-doc (bsc#1227149). * wifi: iwlwifi: load b0 version of ucode for HR1/HR2 (bsc#1227149). * wifi: iwlwifi: make TB reallocation a debug message (bsc#1227149). * wifi: iwlwifi: make time_events MLO aware (bsc#1227149). * wifi: iwlwifi: mei: return error from register when not built (bsc#1227149). * wifi: iwlwifi: mvm: add a debugfs hook to clear the monitor data (bsc#1227149). * wifi: iwlwifi: mvm: add a debug print when we get a BAR (bsc#1227149). * wifi: iwlwifi: mvm: add a per-link debugfs (bsc#1227149). * wifi: iwlwifi: mvm: add a print when sending RLC command (bsc#1227149). * wifi: iwlwifi: mvm: Add basic link selection logic (bsc#1227149). * wifi: iwlwifi: mvm: add start mac ctdp sum calculation debugfs handler (bsc#1227149). * wifi: iwlwifi: mvm: add support for new wowlan_info_notif (bsc#1227149). * wifi: iwlwifi: mvm: Add support for removing responder TKs (bsc#1227149). * wifi: iwlwifi: mvm: add support for TID to link mapping neg request (bsc#1227149). * wifi: iwlwifi: mvm: add US/Canada MCC to API (bsc#1227149). * wifi: iwlwifi: mvm: advertise MLO only if EHT is enabled (bsc#1227149). * wifi: iwlwifi: mvm: advertise support for protected ranging negotiation (bsc#1227149). * wifi: iwlwifi: mvm: advertise support for SCS traffic description (bsc#1227149). * wifi: iwlwifi: mvm: allocate STA links only for active links (git-fixes). * wifi: iwlwifi: mvm: Allow DFS concurrent operation (bsc#1227149). * wifi: iwlwifi: mvm: always update keys in D3 exit (bsc#1227149). * wifi: iwlwifi: mvm: avoid garbage iPN (bsc#1227149). * wifi: iwlwifi: mvm: calculate EMLSR mode after connection (bsc#1227149). * wifi: iwlwifi: mvm: check AP supports EMLSR (bsc#1227149). * wifi: iwlwifi: mvm: check for iwl_mvm_mld_update_sta() errors (bsc#1227149). * wifi: iwlwifi: mvm: check link more carefully (bsc#1227149). * wifi: iwlwifi: mvm: check n_ssids before accessing the ssids (git-fixes). * wifi: iwlwifi: mvm: check own capabilities for EMLSR (bsc#1227149). * wifi: iwlwifi: mvm: cleanup MLO and non-MLO unification code (bsc#1227149). * wifi: iwlwifi: mvm: combine condition/warning (bsc#1227149). * wifi: iwlwifi: mvm: Configure the link mapping for non-MLD FW (bsc#1227149). * wifi: iwlwifi: mvm: consider having one active link (bsc#1227149). * wifi: iwlwifi: mvm: const-ify chandef pointers (bsc#1227149). * wifi: iwlwifi: mvm: Correctly report TSF data in scan complete (bsc#1227149). * wifi: iwlwifi: mvm: cycle FW link on chanctx removal (bsc#1227149). * wifi: iwlwifi: mvm: d3: avoid intermediate/early mutex unlock (bsc#1227149). * wifi: iwlwifi: mvm: d3: disconnect on GTK rekey failure (bsc#1227149). * wifi: iwlwifi: mvm: d3: fix WoWLAN command version lookup (stable-fixes). * wifi: iwlwifi: mvm: d3: implement suspend with MLO (bsc#1227149). * wifi: iwlwifi: mvm: debugfs for fw system stats (bsc#1227149). * wifi: iwlwifi: mvm: Declare support for secure LTF measurement (bsc#1227149). * wifi: iwlwifi: mvm: define RX queue sync timeout as a macro (bsc#1227149). * wifi: iwlwifi: mvm: disable MLO for the time being (bsc#1227149). * wifi: iwlwifi: mvm: disallow puncturing in US/Canada (bsc#1227149). * wifi: iwlwifi: mvm: disconnect long CSA only w/o alternative (bsc#1227149). * wifi: iwlwifi: mvm: disconnect station vifs if recovery failed (bsc#1227149). * wifi: iwlwifi: mvm: do not abort queue sync in CT-kill (bsc#1227149). * wifi: iwlwifi: mvm: do not add dummy phy context (bsc#1227149). * wifi: iwlwifi: mvm: do not always disable EMLSR due to BT coex (bsc#1227149). * wifi: iwlwifi: mvm: do not do duplicate detection for nullfunc packets (bsc#1227149). * wifi: iwlwifi: mvm: do not initialize csa_work twice (git-fixes). * wifi: iwlwifi: mvm: do not limit VLP/AFC to UATS-enabled (git-fixes). * wifi: iwlwifi: mvm: do not read past the mfuart notifcation (git-fixes). * wifi: iwlwifi: mvm: do not send BT_COEX_CI command on new devices (bsc#1227149). * wifi: iwlwifi: mvm: do not send NDPs for new tx devices (bsc#1227149). * wifi: iwlwifi: mvm: do not send STA_DISABLE_TX_CMD for newer firmware (bsc#1227149). * wifi: iwlwifi: mvm: do not send the smart fifo command if not needed (bsc#1227149). * wifi: iwlwifi: mvm: do not set trigger frame padding in AP mode (bsc#1227149). * wifi: iwlwifi: mvm: do not support reduced tx power on ack for new devices (bsc#1227149). * wifi: iwlwifi: mvm: do not wake up rx_sync_waitq upon RFKILL (git-fixes). * wifi: iwlwifi: mvm: Do not warn if valid link pair was not found (bsc#1227149). * wifi: iwlwifi: mvm: Do not warn on invalid link on scan complete (bsc#1227149). * wifi: iwlwifi: mvm: enable FILS DF Tx on non-PSC channel (bsc#1227149). * wifi: iwlwifi: mvm: enable HE TX/RX <242 tone RU on new RFs (bsc#1227149). * wifi: iwlwifi: mvm: expand queue sync warning messages (bsc#1227149). * wifi: iwlwifi: mvm: extend alive timeout to 2 seconds (bsc#1227149). * wifi: iwlwifi: mvm: Extend support for P2P service discovery (bsc#1227149). * wifi: iwlwifi: mvm: fix a battery life regression (bsc#1227149). * wifi: iwlwifi: mvm: fix a crash on 7265 (bsc#1227149). * wifi: iwlwifi: mvm: fix active link counting during recovery (git-fixes). * wifi: iwlwifi: mvm: fix check in iwl_mvm_sta_fw_id_mask (git-fixes). * wifi: iwlwifi: mvm: Fix FTM initiator flags (bsc#1227149). * wifi: iwlwifi: mvm: fix kernel-doc (bsc#1227149). * wifi: iwlwifi: mvm: fix link ID management (bsc#1227149). * wifi: iwlwifi: mvm: fix recovery flow in CSA (bsc#1227149). * wifi: iwlwifi: mvm: fix regdb initialization (bsc#1227149). * wifi: iwlwifi: mvm: fix ROC version check (bsc#1227149). * wifi: iwlwifi: mvm: fix SB CFG check (bsc#1227149). * wifi: iwlwifi: mvm: Fix scan abort handling with HW rfkill (stable-fixes). * wifi: iwlwifi: mvm: fix the key PN index (bsc#1227149). * wifi: iwlwifi: mvm: fix the PHY context resolution for p2p device (bsc#1227149). * wifi: iwlwifi: mvm: fix thermal kernel-doc (bsc#1227149). * wifi: iwlwifi: mvm: fix the TXF mapping for BZ devices (bsc#1227149). * wifi: iwlwifi: mvm: Fix unreachable code path (bsc#1227149). * wifi: iwlwifi: mvm: fold the ref++ into iwl_mvm_phy_ctxt_add (bsc#1227149). * wifi: iwlwifi: mvm: guard against invalid STA ID on removal (stable-fixes). * wifi: iwlwifi: mvm: handle BA session teardown in RF-kill (stable-fixes). * wifi: iwlwifi: mvm: Handle BIGTK cipher in kek_kck cmd (stable-fixes). * wifi: iwlwifi: mvm: handle debugfs names more carefully (bsc#1227149). * wifi: iwlwifi: mvm: handle link-STA allocation in restart (bsc#1227149). * wifi: iwlwifi: mvm: implement new firmware API for statistics (bsc#1227149). * wifi: iwlwifi: mvm: implement ROC version 3 (bsc#1227149). * wifi: iwlwifi: mvm: include link ID when releasing frames (git-fixes). * wifi: iwlwifi: mvm: increase session protection after CSA (bsc#1227149). * wifi: iwlwifi: mvm: init vif works only once (git-fixes). * wifi: iwlwifi: mvm: introduce esr_disable_reason (bsc#1227149). * wifi: iwlwifi: mvm: introduce PHY_CONTEXT_CMD_API_VER_5 (bsc#1227149). * wifi: iwlwifi: mvm: iterate active links for STA queues (bsc#1227149). * wifi: iwlwifi: mvm: Keep connection in case of missed beacons during RX (bsc#1227149). * wifi: iwlwifi: mvm: limit EHT 320 MHz MCS for STEP URM (bsc#1227149). * wifi: iwlwifi: mvm: limit pseudo-D3 to 60 seconds (bsc#1227149). * wifi: iwlwifi: mvm: log dropped frames (bsc#1227149). * wifi: iwlwifi: mvm: log dropped packets due to MIC error (bsc#1227149). * wifi: iwlwifi: mvm: make functions public (bsc#1227149). * wifi: iwlwifi: mvm: make pldr_sync AX210 specific (bsc#1227149). * wifi: iwlwifi: mvm: make "pldr_sync" mode effective (bsc#1227149). * wifi: iwlwifi: mvm: move BA notif messages before action (bsc#1227149). * wifi: iwlwifi: mvm: move listen interval to constants (bsc#1227149). * wifi: iwlwifi: mvm: move RU alloc B2 placement (bsc#1227149). * wifi: iwlwifi: mvm: offload IGTK in AP if BIGTK is supported (bsc#1227149). * wifi: iwlwifi: mvm: partially support PHY context version 6 (bsc#1227149). * wifi: iwlwifi: mvm: pick the version of SESSION_PROTECTION_NOTIF (bsc#1227149). * wifi: iwlwifi: mvm: properly set 6 GHz channel direct probe option (stable- fixes). * wifi: iwlwifi: mvm: reduce maximum RX A-MPDU size (bsc#1227149). * wifi: iwlwifi: mvm: refactor duplicate chanctx condition (bsc#1227149). * wifi: iwlwifi: mvm: refactor TX rate handling (bsc#1227149). * wifi: iwlwifi: mvm: remove EHT code from mac80211.c (bsc#1227149). * wifi: iwlwifi: mvm: remove flags for enable/disable beacon filter (bsc#1227149). * wifi: iwlwifi: mvm: remove IWL_MVM_STATUS_NEED_FLUSH_P2P (bsc#1227149). * wifi: iwlwifi: mvm: remove old PASN station when adding a new one (git- fixes). * wifi: iwlwifi: mvm: remove one queue sync on BA session stop (bsc#1227149). * wifi: iwlwifi: mvm: remove set_tim callback for MLD ops (bsc#1227149). * wifi: iwlwifi: mvm: remove stale STA link data during restart (stable- fixes). * wifi: iwlwifi: mvm: Return success if link could not be removed (bsc#1227149). * wifi: iwlwifi: mvm: return uid from iwl_mvm_build_scan_cmd (git-fixes). * wifi: iwlwifi: mvm: revert gen2 TX A-MPDU size to 64 (git-fixes). * wifi: iwlwifi: mvm: rework debugfs handling (bsc#1227149). * wifi: iwlwifi: mvm: rfi: fix potential response leaks (git-fixes). * wifi: iwlwifi: mvm: select STA mask only for active links (git-fixes). * wifi: iwlwifi: mvm: set properly mac header (git-fixes). * wifi: iwlwifi: mvm: show dump even for pldr_sync (bsc#1227149). * wifi: iwlwifi: mvm: show skb_mac_gso_segment() failure reason (bsc#1227149). * wifi: iwlwifi: mvm: simplify the reorder buffer (bsc#1227149). * wifi: iwlwifi: mvm: skip adding debugfs symlink for reconfig (bsc#1227149). * wifi: iwlwifi: mvm: support CSA with MLD (bsc#1227149). * wifi: iwlwifi: mvm: support flush on AP interfaces (bsc#1227149). * wifi: iwlwifi: mvm: support injection antenna control (bsc#1227149). * wifi: iwlwifi: mvm: support iwl_dev_tx_power_cmd_v8 (bsc#1227149). * wifi: iwlwifi: mvm: support set_antenna() (bsc#1227149). * wifi: iwlwifi: mvm: support SPP A-MSDUs (bsc#1227149). * wifi: iwlwifi: mvm: unlock mvm if there is no primary link (bsc#1227149). * wifi: iwlwifi: mvm: use correct address 3 in A-MSDU (stable-fixes). * wifi: iwlwifi: mvm: use fast balance scan in case of an active P2P GO (bsc#1227149). * wifi: iwlwifi: mvm: Use the link ID provided in scan request (bsc#1227149). * wifi: iwlwifi: mvm: use the new command to clear the internal buffer (bsc#1227149). * wifi: iwlwifi: mvm: work around A-MSDU size problem (bsc#1227149). * wifi: iwlwifi: no power save during transition to D3 (bsc#1227149). * wifi: iwlwifi: nvm-parse: advertise common packet padding (bsc#1227149). * wifi: iwlwifi: nvm: parse the VLP/AFC bit from regulatory (bsc#1227149). * wifi: iwlwifi: pcie: Add new PCI device id and CNVI (bsc#1227149). * wifi: iwlwifi: pcie: Add the PCI device id for new hardware (stable-fixes). * wifi: iwlwifi: pcie: clean up device removal work (bsc#1227149). * wifi: iwlwifi: pcie: clean up gen1/gen2 TFD unmap (bsc#1227149). * wifi: iwlwifi: pcie: clean up WFPM control bits (bsc#1227149). * wifi: iwlwifi: pcie: do not allow hw-rfkill to stop device on gen2 (bsc#1227149). * wifi: iwlwifi: pcie: dump CSRs before removal (bsc#1227149). * wifi: iwlwifi: pcie: enable TOP fatal error interrupt (bsc#1227149). * wifi: iwlwifi: pcie: fix kernel-doc issues (bsc#1227149). * wifi: iwlwifi: pcie: fix RB status reading (stable-fixes). * wifi: iwlwifi: pcie: get_crf_id() can be void (bsc#1227149). * wifi: iwlwifi: pcie: give up mem read if HW is dead (bsc#1227149). * wifi: iwlwifi: pcie: move gen1 TB handling to header (bsc#1227149). * wifi: iwlwifi: pcie: point invalid TFDs to invalid data (bsc#1227149). * wifi: iwlwifi: pcie: propagate iwl_pcie_gen2_apm_init() error (bsc#1227149). * wifi: iwlwifi: pcie: (re-)assign BAR0 on driver bind (bsc#1227149). * wifi: iwlwifi: pcie: rescan bus if no parent (bsc#1227149). * wifi: iwlwifi: prepare for reading DSM from UEFI (bsc#1227149). * wifi: iwlwifi: prepare for reading PPAG table from UEFI (bsc#1227149). * wifi: iwlwifi: prepare for reading SAR tables from UEFI (bsc#1227149). * wifi: iwlwifi: prepare for reading SPLC from UEFI (bsc#1227149). * wifi: iwlwifi: prepare for reading TAS table from UEFI (bsc#1227149). * wifi: iwlwifi: properly check if link is active (bsc#1227149). * wifi: iwlwifi: properly set WIPHY_FLAG_SUPPORTS_EXT_KEK_KCK (stable-fixes). * wifi: iwlwifi: queue: fix kernel-doc (bsc#1227149). * wifi: iwlwifi: queue: improve warning for no skb in reclaim (bsc#1227149). * wifi: iwlwifi: queue: move iwl_txq_gen2_set_tb() up (bsc#1227149). * wifi: iwlwifi: read DSM func 2 for specific RF types (bsc#1227149). * wifi: iwlwifi: read DSM functions from UEFI (bsc#1227149). * wifi: iwlwifi: read ECKV table from UEFI (bsc#1227149). * wifi: iwlwifi: read mac step from aux register (bsc#1227149). * wifi: iwlwifi: read PPAG table from UEFI (bsc#1227149). * wifi: iwlwifi: read SAR tables from UEFI (bsc#1227149). * wifi: iwlwifi: read SPLC from UEFI (bsc#1227149). * wifi: iwlwifi: read txq->read_ptr under lock (stable-fixes). * wifi: iwlwifi: read WRDD table from UEFI (bsc#1227149). * wifi: iwlwifi: read WTAS table from UEFI (bsc#1227149). * wifi: iwlwifi: reconfigure TLC during HW restart (git-fixes). * wifi: iwlwifi: refactor RX tracing (bsc#1227149). * wifi: iwlwifi: remove async command callback (bsc#1227149). * wifi: iwlwifi: remove dead-code (bsc#1227149). * wifi: iwlwifi: remove 'def_rx_queue' struct member (bsc#1227149). * wifi: iwlwifi: remove extra kernel-doc (bsc#1227149). * wifi: iwlwifi: remove Gl A-step remnants (bsc#1227149). * wifi: iwlwifi: remove memory check for LMAC error address (bsc#1227149). * wifi: iwlwifi: remove retry loops in start (bsc#1227149). * wifi: iwlwifi: remove unused function prototype (bsc#1227149). * wifi: iwlwifi: remove WARN from read_mem32() (bsc#1227149). * wifi: iwlwifi: replace ENOTSUPP with EOPNOTSUPP (bsc#1227149). * wifi: iwlwifi: return negative -EINVAL instead of positive EINVAL (bsc#1227149). * wifi: iwlwifi: rfi: use a single DSM function for all RFI configurations (bsc#1227149). * wifi: iwlwifi: send EDT table to FW (bsc#1227149). * wifi: iwlwifi: separate TAS 'read-from-BIOS' and 'send-to-FW' flows (bsc#1227149). * wifi: iwlwifi: simplify getting DSM from ACPI (bsc#1227149). * wifi: iwlwifi: skip affinity setting on non-SMP (bsc#1227149). * wifi: iwlwifi: skip opmode start retries on dead transport (bsc#1227149). * wifi: iwlwifi: small cleanups in PPAG table flows (bsc#1227149). * wifi: iwlwifi: support link command version 2 (bsc#1227149). * wifi: iwlwifi: support link_id in SESSION_PROTECTION cmd (bsc#1227149). * wifi: iwlwifi: support link id in SESSION_PROTECTION_NOTIF (bsc#1227149). * wifi: iwlwifi: take send-DSM-to-FW flows out of ACPI ifdef (bsc#1227149). * wifi: iwlwifi: take SGOM and UATS code out of ACPI ifdef (bsc#1227149). * wifi: iwlwifi: trace full frames with TX status request (bsc#1227149). * wifi: iwlwifi: update context info structure definitions (bsc#1227149). * wifi: iwlwifi: Use request_module_nowait (bsc#1227149). * wifi: iwlwifi: use system_unbound_wq for debug dump (bsc#1227149). * wifi: iwlwifi: validate PPAG table when sent to FW (bsc#1227149). * wifi: lib80211: remove unused variables iv32 and iv16 (bsc#1227149). * wifi: libertas: add missing calls to cancel_work_sync() (bsc#1227149). * wifi: libertas: cleanup SDIO reset (bsc#1227149). * wifi: libertas: Follow renaming of SPI "master" to "controller" (bsc#1227149). * wifi: libertas: handle possible spu_write_u16() errors (bsc#1227149). * wifi: libertas: prefer kstrtoX() for simple integer conversions (bsc#1227149). * wifi: libertas: simplify list operations in free_if_spi_card() (bsc#1227149). * wifi: libertas: use convenient lists to manage SDIO packets (bsc#1227149). * wifi: mac80211: add a driver callback to add vif debugfs (bsc#1227149). * wifi: mac80211: add a driver callback to check active_links (bsc#1227149). * wifi: mac80211: add a flag to disallow puncturing (bsc#1227149). * wifi: mac80211: add back SPDX identifier (bsc#1227149). * wifi: mac80211: Add __counted_by for struct ieee802_11_elems and use struct_size() (bsc#1227149). * wifi: mac80211: add ieee80211_tdls_sta_link_id() (stable-fixes). * wifi: mac80211: additions to change_beacon() (bsc#1227149). * wifi: mac80211: add link id to ieee80211_gtk_rekey_add() (bsc#1227149). * wifi: mac80211: add link id to mgd_prepare_tx() (bsc#1227149). * wifi: mac80211: add more ops assertions (bsc#1227149). * wifi: mac80211: add more warnings about inserting sta info (bsc#1227149). * wifi: mac80211: add/remove driver debugfs entries as appropriate (bsc#1227149). * wifi: mac80211: address some kerneldoc warnings (bsc#1227149). * wifi: mac80211: add support for mld in ieee80211_chswitch_done (bsc#1227149). * wifi: mac80211: add support for parsing TID to Link mapping element (bsc#1227149). * wifi: mac80211: add support for SPP A-MSDUs (bsc#1227149). * wifi: mac80211: allow 64-bit radiotap timestamps (bsc#1227149). * wifi: mac80211: allow for_each_sta_active_link() under RCU (bsc#1227149). * wifi: mac80211: apply mcast rate only if interface is up (stable-fixes). * wifi: mac80211: Avoid address calculations via out of bounds array indexing (stable-fixes). * wifi: mac80211: cancel multi-link reconf work on disconnect (git-fixes). * wifi: mac80211: chanctx emulation set CHANGE_CHANNEL when in_reconfig (git- fixes). * wifi: mac80211: check/clear fast rx for non-4addr sta VLAN changes (stable- fixes). * wifi: mac80211: check EHT/TTLM action frame length (bsc#1227149). * wifi: mac80211: Check if we had first beacon with relevant links (bsc#1227149). * wifi: mac80211: check wiphy mutex in ops (bsc#1227149). * wifi: mac80211: cleanup airtime arithmetic with ieee80211_sta_keep_active() (bsc#1227149). * wifi: mac80211: clean up assignments to pointer cache (stable-fixes). * wifi: mac80211: cleanup auth_data only if association continues (bsc#1227149). * wifi: mac80211: convert A-MPDU work to wiphy work (bsc#1227149). * wifi: mac80211: correctly parse Spatial Reuse Parameter Set element (git- fixes). * wifi: mac80211: correctly set active links upon TTLM (bsc#1227149). * wifi: mac80211: correcty limit wider BW TDLS STAs (git-fixes). * wifi: mac80211: debugfs: lock wiphy instead of RTNL (bsc#1227149). * wifi: mac80211: describe return values in kernel-doc (bsc#1227149). * wifi: mac80211: disable softirqs for queued frame handling (git-fixes). * wifi: mac80211: do not connect to an AP while it's in a CSA process (bsc#1227149). * wifi: mac80211: Do not force off-channel for management Tx with MLO (bsc#1227149). * wifi: mac80211: Do not include crypto/algapi.h (bsc#1227149). * wifi: mac80211: do not re-add debugfs entries during resume (bsc#1227149). * wifi: mac80211: do not select link ID if not provided in scan request (bsc#1227149). * wifi: mac80211: do not set ESS capab bit in assoc request (bsc#1227149). * wifi: mac80211: do not use rate mask for scanning (stable-fixes). * wifi: mac80211: drop robust action frames before assoc (bsc#1227149). * wifi: mac80211: drop spurious WARN_ON() in ieee80211_ibss_csa_beacon() (bsc#1227149). * wifi: mac80211: ensure beacon is non-S1G prior to extracting the beacon timestamp field (stable-fixes). * wifi: mac80211: ethtool: always hold wiphy mutex (bsc#1227149). * wifi: mac80211: ethtool: hold wiphy mutex (bsc#1227149). * wifi: mac80211: expand __ieee80211_data_to_8023() status (bsc#1227149). * wifi: mac80211: Extend support for scanning while MLO connected (bsc#1227149). * wifi: mac80211: extend wiphy lock in interface removal (bsc#1227149). * wifi: mac80211: fix advertised TTLM scheduling (bsc#1227149). * wifi: mac80211: fix a expired vs. cancel race in roc (bsc#1227149). * wifi: mac80211: fix another key installation error path (bsc#1227149). * wifi: mac80211: fix BA session teardown race (bsc#1227149). * wifi: mac80211: fix BSS_CHANGED_UNSOL_BCAST_PROBE_RESP (bsc#1227149). * wifi: mac80211: fix change_address deadlock during unregister (bsc#1227149). * wifi: mac80211: fix channel switch link data (bsc#1227149). * wifi: mac80211: Fix deadlock in ieee80211_sta_ps_deliver_wakeup() (git- fixes). * wifi: mac80211: fix driver debugfs for vif type change (bsc#1227149). * wifi: mac80211: fix error path key leak (bsc#1227149). * wifi: mac80211: fixes in FILS discovery updates (bsc#1227149). * wifi: mac80211: fix header kernel-doc typos (bsc#1227149). * wifi: mac80211: fix ieee80211_bss_*_flags kernel-doc (stable-fixes). * wifi: mac80211: fix ieee80211_drop_unencrypted_mgmt return type/value (bsc#1227149). * wifi: mac80211: fix monitor channel with chanctx emulation (bsc#1227149). * wifi: mac80211: fix potential key leak (bsc#1227149). * wifi: mac80211: fix prep_connection error path (stable-fixes). * wifi: mac80211: Fix SMPS handling in the context of MLO (bsc#1227149). * wifi: mac80211: fix SMPS status handling (bsc#1227149). * wifi: mac80211: fix spelling typo in comment (bsc#1227149). * wifi: mac80211: fix TXQ error path and cleanup (bsc#1227149). * wifi: mac80211: fix UBSAN noise in ieee80211_prep_hw_scan() (stable-fixes). * wifi: mac80211: fix unaligned le16 access (git-fixes). * wifi: mac80211: fix unsolicited broadcast probe config (bsc#1227149). * wifi: mac80211: fix various kernel-doc issues (bsc#1227149). * wifi: mac80211: flush STA queues on unauthorization (bsc#1227149). * wifi: mac80211: flush wiphy work where appropriate (bsc#1227149). * wifi: mac80211: handle debugfs when switching to/from MLO (bsc#1227149). * wifi: mac80211: handle tasklet frames before stopping (stable-fixes). * wifi: mac80211: hold wiphy_lock around concurrency checks (bsc#1227149). * wifi: mac80211: hold wiphy lock in netdev/link debugfs (bsc#1227149). * wifi: mac80211_hwsim: init peer measurement result (git-fixes). * wifi: mac80211: improve CSA/ECSA connection refusal (bsc#1227149). * wifi: mac80211: initialize SMPS mode correctly (bsc#1227149). * wifi: mac80211: lock wiphy for aggregation debugfs (bsc#1227149). * wifi: mac80211: lock wiphy in IP address notifier (bsc#1227149). * wifi: mac80211: make mgd_protect_tdls_discover MLO-aware (bsc#1227149). * wifi: mac80211: mesh: Fix leak of mesh_preq_queue objects (git-fixes). * wifi: mac80211: mesh: fix some kdoc warnings (bsc#1227149). * wifi: mac80211: mesh: init nonpeer_pm to active by default in mesh sdata (stable-fixes). * wifi: mac80211: mesh: Remove unused function declaration mesh_ids_set_default() (bsc#1227149). * wifi: mac80211: move color change finalize to wiphy work (bsc#1227149). * wifi: mac80211: move CSA finalize to wiphy work (bsc#1227149). * wifi: mac80211: move DFS CAC work to wiphy work (bsc#1227149). * wifi: mac80211: move dynamic PS to wiphy work (bsc#1227149). * wifi: mac80211: move filter reconfig to wiphy work (bsc#1227149). * wifi: mac80211: move key tailroom work to wiphy work (bsc#1227149). * wifi: mac80211: move link activation work to wiphy work (bsc#1227149). * wifi: mac80211: move monitor work to wiphy work (bsc#1227149). * wifi: mac80211: move TDLS work to wiphy work (bsc#1227149). * wifi: mac80211: move tspec work to wiphy work (bsc#1227149). * wifi: mac80211: Notify the low level driver on change in MLO valid links (bsc#1227149). * wifi: mac80211: Print local link address during authentication (bsc#1227149). * wifi: mac80211: process and save negotiated TID to Link mapping request (bsc#1227149). * wifi: mac80211: purge TX queues in flush_queues flow (bsc#1227149). * wifi: mac80211: Recalc offload when monitor stop (git-fixes). * wifi: mac80211: reduce iflist_mtx (bsc#1227149). * wifi: mac80211: reject MLO channel configuration if not supported (bsc#1227149). * wifi: mac80211: relax RCU check in for_each_vif_active_link() (bsc#1227149). * wifi: mac80211: remove ampdu_mlme.mtx (bsc#1227149). * wifi: mac80211: remove chanctx_mtx (bsc#1227149). * wifi: mac80211: remove key_mtx (bsc#1227149). * wifi: mac80211: remove link before AP (git-fixes). * wifi: mac80211: remove local->mtx (bsc#1227149). * wifi: mac80211: remove redundant ML element check (bsc#1227149). * wifi: mac80211: remove RX_DROP_UNUSABLE (bsc#1227149). * wifi: mac80211: remove shifted rate support (bsc#1227149). * wifi: mac80211: remove sta_mtx (bsc#1227149). * wifi: mac80211: remove unnecessary struct forward declaration (bsc#1227149). * wifi: mac80211: Remove unused function declarations (bsc#1227149). * wifi: mac80211: Rename and update IEEE80211_VIF_DISABLE_SMPS_OVERRIDE (bsc#1227149). * wifi: mac80211: rename ieee80211_tx_status() to ieee80211_tx_status_skb() (bsc#1227149). * wifi: mac80211: rename struct cfg80211_rx_assoc_resp to cfg80211_rx_assoc_resp_data (bsc#1227149). * wifi: mac80211: Replace ENOTSUPP with EOPNOTSUPP (bsc#1227149). * wifi: mac80211: report per-link error during association (bsc#1227149). * wifi: mac80211: reset negotiated TTLM on disconnect (git-fixes). * wifi: mac80211: rework ack_frame_id handling a bit (bsc#1227149). * wifi: mac80211: rework RX timestamp flags (bsc#1227149). * wifi: mac80211: rx.c: fix sentence grammar (bsc#1227149). * wifi: mac80211: Sanity check tx bitrate if not provided by driver (bsc#1227149). * wifi: mac80211: Schedule regulatory channels check on bandwith change (bsc#1227149). * wifi: mac80211: set wiphy for virtual monitors (bsc#1227149). * wifi: mac80211: simplify non-chanctx drivers (bsc#1227149). * wifi: mac80211: Skip association timeout update after comeback rejection (bsc#1227149). * wifi: mac80211: split ieee80211_drop_unencrypted_mgmt() return value (bsc#1227149). * wifi: mac80211: sta_info.c: fix sentence grammar (bsc#1227149). * wifi: mac80211: support antenna control in injection (bsc#1227149). * wifi: mac80211: support handling of advertised TID-to-link mapping (bsc#1227149). * wifi: mac80211: take MBSSID/EHT data also from probe resp (bsc#1227149). * wifi: mac80211: take wiphy lock for MAC addr change (bsc#1227149). * wifi: mac80211: tx: clarify conditions in if statement (bsc#1227149). * wifi: mac80211: update beacon counters per link basis (bsc#1227149). * wifi: mac80211: update some locking documentation (bsc#1227149). * wifi: mac80211: update the rx_chains after set_antenna() (bsc#1227149). * wifi: mac80211: use bandwidth indication element for CSA (bsc#1227149). * wifi: mac80211: use deflink and fix typo in link ID check (bsc#1227149). * wifi: mac80211: use wiphy locked debugfs for sdata/link (bsc#1227149). * wifi: mac80211: use wiphy locked debugfs helpers for agg_status (bsc#1227149). * wifi: mt7601u: delete dead code checking debugfs returns (bsc#1227149). * wifi: mt7601u: replace strlcpy() with strscpy() (bsc#1227149). * wifi: mt76: add ability to explicitly forbid LED registration with DT (bsc#1227149). * wifi: mt76: add DMA mapping error check in mt76_alloc_txwi() (bsc#1227149). * wifi: mt76: add support for providing eeprom in nvmem cells (bsc#1227149). * wifi: mt76: add tx_nss histogram to ethtool stats (bsc#1227149). * wifi: mt76: Annotate struct mt76_rx_tid with __counted_by (bsc#1227149). * wifi: mt76: change txpower init to per-phy (bsc#1227149). * wifi: mt76: check sta rx control frame to multibss capability (bsc#1227149). * wifi: mt76: check txs format before getting skb by pid (bsc#1227149). * wifi: mt76: check vif type before reporting cca and csa (bsc#1227149). * wifi: mt76: connac: add beacon duplicate TX mode support for mt7996 (bsc#1227149). * wifi: mt76: connac: add beacon protection support for mt7996 (bsc#1227149). * wifi: mt76: connac: add connac3 mac library (bsc#1227149). * wifi: mt76: connac: add data field in struct tlv (bsc#1227149). * wifi: mt76: connac: add eht support for phy mode config (bsc#1227149). * wifi: mt76: connac: add eht support for tx power (bsc#1227149). * wifi: mt76: connac: add firmware support for mt7992 (bsc#1227149). * wifi: mt76: connac: add MBSSID support for mt7996 (bsc#1227149). * wifi: mt76: connac: add more unified command IDs (bsc#1227149). * wifi: mt76: connac: add more unified event IDs (bsc#1227149). * wifi: mt76: connac: add new definition of tx descriptor (bsc#1227149). * wifi: mt76: connac: add support for dsp firmware download (bsc#1227149). * wifi: mt76: connac: add support to set ifs time by mcu command (bsc#1227149). * wifi: mt76: connac: add thermal protection support for mt7996 (bsc#1227149). * wifi: mt76: connac: check for null before dereferencing (bsc#1227149). * wifi: mt76: connac: export functions for mt7925 (bsc#1227149). * wifi: mt76: connac: introduce helper for mt7925 chipset (bsc#1227149). * wifi: mt76: connac: set correct muar_idx for mt799x chipsets (bsc#1227149). * wifi: mt76: connac: set fixed_bw bit in TX descriptor for fixed rate frames (bsc#1227149). * wifi: mt76: connac: use muar idx 0xe for non-mt799x as well (bsc#1227149). * wifi: mt76: Convert to platform remove callback returning void (bsc#1227149). * wifi: mt76: disable HW AMSDU when using fixed rate (bsc#1227149). * wifi: mt76: dma: introduce __mt76_dma_queue_reset utility routine (bsc#1227149). * wifi: mt76: enable UNII-4 channel 177 support (bsc#1227149). * wifi: mt76: fix race condition related to checking tx queue fill status (bsc#1227149). * wifi: mt76: fix the issue of missing txpwr settings from ch153 to ch177 (bsc#1227149). * wifi: mt76: fix typo in mt76_get_of_eeprom_from_nvmem function (bsc#1227149). * wifi: mt76: increase MT_QFLAG_WED_TYPE size (bsc#1227149). * wifi: mt76: introduce mt76_queue_is_wed_tx_free utility routine (bsc#1227149). * wifi: mt76: introduce wed pointer in mt76_queue (bsc#1227149). * wifi: mt76: limit support of precal loading for mt7915 to MTD only (bsc#1227149). * wifi: mt76: make mt76_get_of_eeprom static again (bsc#1227149). * wifi: mt76: mmio: move mt76_mmio_wed_{init,release}_rx_buf in common code (bsc#1227149). * wifi: mt76: move ampdu_state in mt76_wcid (bsc#1227149). * wifi: mt76: move mt76_mmio_wed_offload_{enable,disable} in common code (bsc#1227149). * wifi: mt76: move mt76_net_setup_tc in common code (bsc#1227149). * wifi: mt76: move rate info in mt76_vif (bsc#1227149). * wifi: mt76: move wed reset common code in mt76 module (bsc#1227149). * wifi: mt76: mt7603: add missing register initialization for MT7628 (bsc#1227149). * wifi: mt76: mt7603: add wpdma tx eof flag for PSE client reset (git-fixes). * wifi: mt76: mt7603: disable A-MSDU tx support on MT7628 (bsc#1227149). * wifi: mt76: mt7603: fix beacon interval after disabling a single vif (bsc#1227149). * wifi: mt76: mt7603: fix tx filter/flush function (bsc#1227149). * wifi: mt76: mt7603: fix tx queue of loopback packets (git-fixes). * wifi: mt76: mt7603: rely on shared poll_list field (bsc#1227149). * wifi: mt76: mt7603: rely on shared sta_poll_list and sta_poll_lock (bsc#1227149). * wifi: mt76: mt7615: add missing chanctx ops (bsc#1227149). * wifi: mt76: mt7615: enable BSS_CHANGED_MU_GROUPS support (bsc#1227149). * wifi: mt76: mt7615: rely on shared poll_list field (bsc#1227149). * wifi: mt76: mt7615: rely on shared sta_poll_list and sta_poll_lock (bsc#1227149). * wifi: mt76: mt76_connac3: move lmac queue enumeration in mt76_connac3_mac.h (bsc#1227149). * wifi: mt76: mt76x02: fix return value check in mt76x02_mac_process_rx (bsc#1227149). * wifi: mt76: mt76x2u: add netgear wdna3100v3 to device table (bsc#1227149). * wifi: mt76: mt7915: accumulate mu-mimo ofdma muru stats (bsc#1227149). * wifi: mt76: mt7915: add locking for accessing mapped registers (bsc#1227149). * wifi: mt76: mt7915: add missing chanctx ops (bsc#1227149). * wifi: mt76: mt7915: add support for MT7981 (bsc#1227149). * wifi: mt76: mt7915 add tc offloading support (bsc#1227149). * wifi: mt76: mt7915: also MT7981 is 3T3R but nss2 on 5 GHz band (bsc#1227149). * wifi: mt76: mt7915: disable WFDMA Tx/Rx during SER recovery (bsc#1227149). * wifi: mt76: mt7915: drop return in mt7915_sta_statistics (bsc#1227149). * wifi: mt76: mt7915: fix EEPROM offset of TSSI flag on MT7981 (bsc#1227149). * wifi: mt76: mt7915: fix error recovery with WED enabled (bsc#1227149). * wifi: mt76: mt7915: fix monitor mode issues (bsc#1227149). * wifi: mt76: mt7915: move mib_stats structure in mt76.h (bsc#1227149). * wifi: mt76: mt7915: move poll_list in mt76_wcid (bsc#1227149). * wifi: mt76: mt7915: move sta_poll_list and sta_poll_lock in mt76_dev (bsc#1227149). * wifi: mt76: mt7915: report tx retries/failed counts for non-WED path (bsc#1227149). * wifi: mt76: mt7915: update mpdu density capability (bsc#1227149). * wifi: mt76: mt7915: update mt798x_wmac_adie_patch_7976 (bsc#1227149). * wifi: mt76: mt7915: workaround too long expansion sparse warnings (git- fixes). * wifi: mt76: mt7921: add 6GHz power type support for clc (bsc#1227149). * wifi: mt76: mt7921: convert acpisar and clc pointers to void (bsc#1227149). * wifi: mt76: mt7921: enable set txpower for UNII-4 (bsc#1227149). * wifi: mt76: mt7921e: report tx retries/failed counts in tx free event (bsc#1227149). * wifi: mt76: mt7921: fix 6GHz disabled by the missing default CLC config (bsc#1227149). * wifi: mt76: mt7921: fix a potential association failure upon resuming (bsc#1227149). * wifi: mt76: mt7921: fix CLC command timeout when suspend/resume (bsc#1227149). * wifi: mt76: mt7921: fix kernel panic by accessing invalid 6GHz channel info (bsc#1227149). * wifi: mt76: mt7921: fix suspend issue on MediaTek COB platform (bsc#1227149). * wifi: mt76: mt7921: fix the unfinished command of regd_notifier before suspend (bsc#1227149). * wifi: mt76: mt7921: fix wrong 6Ghz power type (bsc#1227149). * wifi: mt76: mt7921: get regulatory information from the clc event (bsc#1227149). * wifi: mt76: mt7921: get rid of MT7921_RESET_TIMEOUT marco (bsc#1227149). * wifi: mt76: mt7921: make mt7921_mac_sta_poll static (bsc#1227149). * wifi: mt76: mt7921: move acpi_sar code in mt792x-lib module (bsc#1227149). * wifi: mt76: mt7921: move common register definition in mt792x_regs.h (bsc#1227149). * wifi: mt76: mt7921: move connac nic capability handling to mt7921 (bsc#1227149). * wifi: mt76: mt7921: move debugfs shared code in mt792x-lib module (bsc#1227149). * wifi: mt76: mt7921: move dma shared code in mt792x-lib module (bsc#1227149). * wifi: mt76: mt7921: move hif_ops macro in mt792x.h (bsc#1227149). * wifi: mt76: mt7921: move init shared code in mt792x-lib module (bsc#1227149). * wifi: mt76: mt7921: move mac shared code in mt792x-lib module (bsc#1227149). * wifi: mt76: mt7921: move mt7921_dma_init in pci.c (bsc#1227149). * wifi: mt76: mt7921: move mt7921u_disconnect mt792x-lib (bsc#1227149). * wifi: mt76: mt7921: move mt792x_hw_dev in mt792x.h (bsc#1227149). * wifi: mt76: mt7921: move mt792x_mutex_{acquire/release} in mt792x.h (bsc#1227149). * wifi: mt76: mt7921: move runtime-pm pci code in mt792x-lib (bsc#1227149). * wifi: mt76: mt7921: move shared runtime-pm code on mt792x-lib (bsc#1227149). * wifi: mt76: mt7921: reduce the size of MCU firmware download Rx queue (bsc#1227149). * wifi: mt76: mt7921: rely on mib_stats shared definition (bsc#1227149). * wifi: mt76: mt7921: rely on shared poll_list field (bsc#1227149). * wifi: mt76: mt7921: rely on shared sta_poll_list and sta_poll_lock (bsc#1227149). * wifi: mt76: mt7921: remove macro duplication in regs.h (bsc#1227149). * wifi: mt76: mt7921: rename mt7921_dev in mt792x_dev (bsc#1227149). * wifi: mt76: mt7921: rename mt7921_hif_ops in mt792x_hif_ops (bsc#1227149). * wifi: mt76: mt7921: rename mt7921_phy in mt792x_phy (bsc#1227149). * wifi: mt76: mt7921: rename mt7921_sta in mt792x_sta (bsc#1227149). * wifi: mt76: mt7921: rename mt7921_vif in mt792x_vif (bsc#1227149). * wifi: mt76: mt7921s: fix potential hung tasks during chip recovery (stable- fixes). * wifi: mt76: mt7921: support 5.9/6GHz channel config in acpi (bsc#1227149). * wifi: mt76: mt7921: Support temp sensor (bsc#1227149). * wifi: mt76: mt7921: update the channel usage when the regd domain changed (bsc#1227149). * wifi: mt76: mt7925: add flow to avoid chip bt function fail (bsc#1227149). * wifi: mt76: mt7925: add Mediatek Wi-Fi7 driver for mt7925 chips (bsc#1227149). * wifi: mt76: mt7925: add support to set ifs time by mcu command (bsc#1227149). * wifi: mt76: mt7925e: fix use-after-free in free_irq() (bsc#1227149). * wifi: mt76: mt7925: ensure 4-byte alignment for suspend & wow command (bsc#1227149). * wifi: mt76: mt7925: fix connect to 80211b mode fail in 2Ghz band (bsc#1227149). * wifi: mt76: mt7925: fix fw download fail (bsc#1227149). * wifi: mt76: mt7925: fix mcu query command fail (bsc#1227149). * wifi: mt76: mt7925: fix SAP no beacon issue in 5Ghz and 6Ghz band (bsc#1227149). * wifi: mt76: mt7925: fix the wrong data type for scan command (bsc#1227149). * wifi: mt76: mt7925: fix the wrong header translation config (bsc#1227149). * wifi: mt76: mt7925: fix typo in mt7925_init_he_caps (bsc#1227149). * wifi: mt76: mt7925: fix wmm queue mapping (bsc#1227149). * wifi: mt76: mt7925: fix WoW failed in encrypted mode (bsc#1227149). * wifi: mt76: mt7925: remove iftype from mt7925_init_eht_caps signature (bsc#1227149). * wifi: mt76: mt7925: support temperature sensor (bsc#1227149). * wifi: mt76: mt7925: update PCIe DMA settings (bsc#1227149). * wifi: mt76: mt792x: add the illegal value check for mtcl table of acpi (bsc#1227149). * wifi: mt76: mt792x: fix ethtool warning (bsc#1227149). * wifi: mt76: mt792x: introduce mt792x_irq_map (bsc#1227149). * wifi: mt76: mt792x: introduce mt792x-lib module (bsc#1227149). * wifi: mt76: mt792x: introduce mt792x-usb module (bsc#1227149). * wifi: mt76: mt792x: move more dma shared code in mt792x_dma (bsc#1227149). * wifi: mt76: mt792x: move mt7921_load_firmware in mt792x-lib module (bsc#1227149). * wifi: mt76: mt792x: move MT7921_PM_TIMEOUT and MT7921_HW_SCAN_TIMEOUT in common code (bsc#1227149). * wifi: mt76: mt792x: move mt7921_skb_add_usb_sdio_hdr in mt792x module (bsc#1227149). * wifi: mt76: mt792x: move shared structure definition in mt792x.h (bsc#1227149). * wifi: mt76: mt792x: move some common usb code in mt792x module (bsc#1227149). * wifi: mt76: mt792x: support mt7925 chip init (bsc#1227149). * wifi: mt76: mt792xu: enable dmashdl support (bsc#1227149). * wifi: mt76: mt792x: update the country list of EU for ACPI SAR (bsc#1227149). * wifi: mt76: mt7996: add DMA support for mt7992 (bsc#1227149). * wifi: mt76: mt7996: add locking for accessing mapped registers (stable- fixes). * wifi: mt76: mt7996: Add mcu commands for getting sta tx statistic (bsc#1227149). * wifi: mt76: mt7996: add muru support (bsc#1227149). * wifi: mt76: mt7996: add sanity checks for background radar trigger (stable- fixes). * wifi: mt76: mt7996: add support for variants with auxiliary RX path (bsc#1227149). * wifi: mt76: mt7996: add thermal sensor device support (bsc#1227149). * wifi: mt76: mt7996: add txpower setting support (bsc#1227149). * wifi: mt76: mt7996: add TX statistics for EHT mode in debugfs (bsc#1227149). * wifi: mt76: mt7996: adjust interface num and wtbl size for mt7992 (bsc#1227149). * wifi: mt76: mt7996: adjust WFDMA settings to improve performance (bsc#1227149). * wifi: mt76: mt7996: align the format of fixed rate command (bsc#1227149). * wifi: mt76: mt7996: check txs format before getting skb by pid (bsc#1227149). * wifi: mt76: mt7996: disable AMSDU for non-data frames (stable-fixes). * wifi: mt76: mt7996: disable WFDMA Tx/Rx during SER recovery (bsc#1227149). * wifi: mt76: mt7996: drop return in mt7996_sta_statistics (bsc#1227149). * wifi: mt76: mt7996: enable BSS_CHANGED_MU_GROUPS support (bsc#1227149). * wifi: mt76: mt7996: enable PPDU-TxS to host (bsc#1227149). * wifi: mt76: mt7996: enable VHT extended NSS BW feature (bsc#1227149). * wifi: mt76: mt7996: ensure 4-byte alignment for beacon commands (bsc#1227149). * wifi: mt76: mt7996: fix alignment of sta info event (bsc#1227149). * wifi: mt76: mt7996: fix fortify warning (bsc#1227149). * wifi: mt76: mt7996: fix fw loading timeout (bsc#1227149). * wifi: mt76: mt7996: fix mt7996_mcu_all_sta_info_event struct packing (bsc#1227149). * wifi: mt76: mt7996: fix potential memory leakage when reading chip temperature (bsc#1227149). * wifi: mt76: mt7996: fix size of txpower MCU command (bsc#1227149). * wifi: mt76: mt7996: fix uninitialized variable in mt7996_irq_tasklet() (bsc#1227149). * wifi: mt76: mt7996: fix uninitialized variable in parsing txfree (bsc#1227149). * wifi: mt76: mt7996: get tx_retries and tx_failed from txfree (bsc#1227149). * wifi: mt76: mt7996: handle IEEE80211_RC_SMPS_CHANGED (bsc#1227149). * wifi: mt76: mt7996: increase tx token size (bsc#1227149). * wifi: mt76: mt7996: introduce mt7996_band_valid() (bsc#1227149). * wifi: mt76: mt7996: mark GCMP IGTK unsupported (bsc#1227149). * wifi: mt76: mt7996: move radio ctrl commands to proper functions (bsc#1227149). * wifi: mt76: mt7996: only set vif teardown cmds at remove interface (bsc#1227149). * wifi: mt76: mt7996: rely on mib_stats shared definition (bsc#1227149). * wifi: mt76: mt7996: rely on shared poll_list field (bsc#1227149). * wifi: mt76: mt7996: rely on shared sta_poll_list and sta_poll_lock (bsc#1227149). * wifi: mt76: mt7996: remove periodic MPDU TXS request (bsc#1227149). * wifi: mt76: mt7996: remove TXS queue setting (bsc#1227149). * wifi: mt76: mt7996: rework ampdu params setting (bsc#1227149). * wifi: mt76: mt7996: rework register offsets for mt7992 (bsc#1227149). * wifi: mt76: mt7996: set DMA mask to 36 bits for boards with more than 4GB of RAM (bsc#1227149). * wifi: mt76: mt7996: support more options for mt7996_set_bitrate_mask() (bsc#1227149). * wifi: mt76: mt7996: support mt7992 eeprom loading (bsc#1227149). * wifi: mt76: mt7996: support per-band LED control (bsc#1227149). * wifi: mt76: mt7996: switch to mcu command for TX GI report (bsc#1227149). * wifi: mt76: mt7996: Use DECLARE_FLEX_ARRAY() and fix -Warray-bounds warnings (bsc#1227149). * wifi: mt76: mt7996: use u16 for val field in mt7996_mcu_set_rro signature (bsc#1227149). * wifi: mt76: permit to load precal from NVMEM cell for mt7915 (bsc#1227149). * wifi: mt76: permit to use alternative cell name to eeprom NVMEM load (bsc#1227149). * wifi: mt76: reduce spin_lock_bh held up in mt76_dma_rx_cleanup (bsc#1227149). * wifi: mt76: Remove redundant assignment to variable tidno (bsc#1227149). * wifi: mt76: Remove unnecessary (void*) conversions (bsc#1227149). * wifi: mt76: replace skb_put with skb_put_zero (stable-fixes). * wifi: mt76: Replace strlcpy() with strscpy() (bsc#1227149). * wifi: mt76: report non-binding skb tx rate when WED is active (bsc#1227149). * wifi: mt76: set page_pool napi pointer for mmio devices (bsc#1227149). * wifi: mt76: split get_of_eeprom in subfunction (bsc#1227149). * wifi: mt76: usb: create a dedicated queue for psd traffic (bsc#1227149). * wifi: mt76: usb: store usb endpoint in mt76_queue (bsc#1227149). * wifi: mt76: use atomic iface iteration for pre-TBTT work (bsc#1227149). * wifi: mt76: use chainmask for power delta calculation (bsc#1227149). * wifi: mt76: Use PTR_ERR_OR_ZERO() to simplify code (bsc#1227149). * wifi: mwifiex: cleanup adapter data (bsc#1227149). * wifi: mwifiex: cleanup private data structures (bsc#1227149). * wifi: mwifiex: cleanup struct mwifiex_sdio_mpa_rx (bsc#1227149). * wifi: mwifiex: drop BUG_ON from TX paths (bsc#1227149). * wifi: mwifiex: Drop unused headers (bsc#1227149). * wifi: mwifiex: fix comment typos in SDIO module (bsc#1227149). * wifi: mwifiex: Fix interface type change (git-fixes). * wifi: mwifiex: followup PCIE and related cleanups (bsc#1227149). * wifi: mwifiex: handle possible mwifiex_write_reg() errors (bsc#1227149). * wifi: mwifiex: handle possible sscanf() errors (bsc#1227149). * wifi: mwifiex: mwifiex_process_sleep_confirm_resp(): remove unused priv variable (bsc#1227149). * wifi: mwifiex: prefer strscpy() over strlcpy() (bsc#1227149). * wifi: mwifiex: Refactor 1-element array into flexible array in struct mwifiex_ie_types_chan_list_param_set (bsc#1227149). * wifi: mwifiex: Replace one-element array with flexible-array member in struct mwifiex_ie_types_rxba_sync (bsc#1227149). * wifi: mwifiex: Set WIPHY_FLAG_NETNS_OK flag (bsc#1227149). * wifi: mwifiex: simplify PCIE write operations (bsc#1227149). * wifi: mwifiex: use cfg80211_ssid_eq() instead of mwifiex_ssid_cmp() (bsc#1227149). * wifi: mwifiex: Use default @max_active for workqueues (bsc#1227149). * wifi: mwifiex: Use helpers to check multicast addresses (bsc#1227149). * wifi: mwifiex: use is_zero_ether_addr() instead of ether_addr_equal() (bsc#1227149). * wifi: mwifiex: use kstrtoX_from_user() in debugfs handlers (bsc#1227149). * wifi: mwifiex: Use list_count_nodes() (bsc#1227149). * wifi: mwifiex: use MODULE_FIRMWARE to add firmware files metadata (bsc#1227149). * wifi: mwl8k: initialize cmd->addr[] properly (git-fixes). * wifi: nl80211: additions to NL80211_CMD_SET_BEACON (bsc#1227149). * wifi: nl80211: allow reporting wakeup for unprot deauth/disassoc (bsc#1227149). * wifi: nl80211: Avoid address calculations via out of bounds array indexing (git-fixes). * wifi: nl80211: do not free NULL coalescing rule (git-fixes). * wifi: nl80211: Extend del pmksa support for SAE and OWE security (bsc#1227149). * wifi: nl80211: fixes to FILS discovery updates (bsc#1227149). * wifi: nl80211: refactor nl80211_send_mlme_event() arguments (bsc#1227149). * wifi: nl80211: Remove unused declaration nl80211_pmsr_dump_results() (bsc#1227149). * wifi: p54: Add missing MODULE_FIRMWARE macro (bsc#1227149). * wifi: p54: Annotate struct p54_cal_database with __counted_by (bsc#1227149). * wifi: p54: fix GCC format truncation warning with wiphy->fw_version (bsc#1227149). * wifi: plfxlc: Drop unused include (bsc#1227149). * wifi: radiotap: add bandwidth definition of EHT U-SIG (bsc#1227149). * wifi: remove unused argument of ieee80211_get_tdls_action() (bsc#1227149). * wifi: rsi: fix restricted __le32 degrades to integer sparse warnings (bsc#1227149). * wifi: rsi: rsi_91x_coex: Remove unnecessary (void*) conversions (bsc#1227149). * wifi: rsi: rsi_91x_debugfs: Remove unnecessary (void*) conversions (bsc#1227149). * wifi: rsi: rsi_91x_hal: Remove unnecessary conversions (bsc#1227149). * wifi: rsi: rsi_91x_mac80211: Remove unnecessary conversions (bsc#1227149). * wifi: rsi: rsi_91x_main: Remove unnecessary (void*) conversions (bsc#1227149). * wifi: rsi: rsi_91x_sdio_ops: Remove unnecessary (void*) conversions (bsc#1227149). * wifi: rsi: rsi_91x_sdio: Remove unnecessary (void*) conversions (bsc#1227149). * wifi: rsi: rsi_91x_usb_ops: Remove unnecessary (void*) conversions (bsc#1227149). * wifi: rsi: rsi_91x_usb: Remove unnecessary (void*) conversions (bsc#1227149). * wifi: rt2x00: correct MAC_SYS_CTRL register RX mask in R-Calibration (bsc#1227149). * wifi: rt2x00: disable RTS threshold for rt2800 by default (bsc#1227149). * wifi: rt2x00: fix MT7620 low RSSI issue (bsc#1227149). * wifi: rt2x00: fix rt2800 watchdog function (bsc#1227149). * wifi: rt2x00: fix the typo in comments (bsc#1227149). * wifi: rt2x00: improve MT7620 register initialization (bsc#1227149). * wifi: rt2x00: introduce DMA busy check watchdog for rt2800 (bsc#1227149). * wifi: rt2x00: limit MT7620 TX power based on eeprom calibration (bsc#1227149). * wifi: rt2x00: make watchdog param per device (bsc#1227149). * wifi: rt2x00: remove redundant check if u8 array element is less than zero (bsc#1227149). * wifi: rt2x00: remove useless code in rt2x00queue_create_tx_descriptor() (bsc#1227149). * wifi: rt2x00: rework MT7620 channel config function (bsc#1227149). * wifi: rt2x00: rework MT7620 PA/LNA RF calibration (bsc#1227149). * wifi: rt2x00: silence sparse warnings (bsc#1227149). * wifi: rt2x00: Simplify bool conversion (bsc#1227149). * wifi: rt2x00: simplify rt2x00crypto_rx_insert_iv() (bsc#1227149). * wifi: rtl8xxxu: 8188e: convert usage of priv->vif to priv->vifs[0] (bsc#1227149). * wifi: rtl8xxxu: 8188f: Limit TX power index (git-fixes). * wifi: rtl8xxxu: Actually use macid in rtl8xxxu_gen2_report_connect (bsc#1227149). * wifi: rtl8xxxu: Add a description about the device ID 0x7392:0xb722 (bsc#1227149). * wifi: rtl8xxxu: Add beacon functions (bsc#1227149). * wifi: rtl8xxxu: add hw crypto support for AP mode (bsc#1227149). * wifi: rtl8xxxu: add macids for STA mode (bsc#1227149). * wifi: rtl8xxxu: add missing number of sec cam entries for all variants (bsc#1227149). * wifi: rtl8xxxu: Add parameter force to rtl8xxxu_refresh_rate_mask (bsc#1227149). * wifi: rtl8xxxu: Add parameter macid to update_rate_mask (bsc#1227149). * wifi: rtl8xxxu: Add parameter role to report_connect (bsc#1227149). * wifi: rtl8xxxu: Add set_tim() callback (bsc#1227149). * wifi: rtl8xxxu: Add sta_add() and sta_remove() callbacks (bsc#1227149). * wifi: rtl8xxxu: Add start_ap() callback (bsc#1227149). * wifi: rtl8xxxu: Add TP-Link TL-WN823N V2 (bsc#1227149). * wifi: rtl8xxxu: Allow creating interface in AP mode (bsc#1227149). * wifi: rtl8xxxu: Allow setting rts threshold to -1 (bsc#1227149). * wifi: rtl8xxxu: check vif before using in rtl8xxxu_tx() (bsc#1227149). * wifi: rtl8xxxu: Clean up filter configuration (bsc#1227149). * wifi: rtl8xxxu: convert EN_DESC_ID of TX descriptor to le32 type (bsc#1227149). * wifi: rtl8xxxu: Declare AP mode support for 8188f (bsc#1227149). * wifi: rtl8xxxu: declare concurrent mode support for 8188f (bsc#1227149). * wifi: rtl8xxxu: do not parse CFO, if both interfaces are connected in STA mode (bsc#1227149). * wifi: rtl8xxxu: Enable AP mode for RTL8192EU (bsc#1227149). * wifi: rtl8xxxu: Enable AP mode for RTL8192FU (bsc#1227149). * wifi: rtl8xxxu: Enable AP mode for RTL8710BU (RTL8188GU) (bsc#1227149). * wifi: rtl8xxxu: Enable AP mode for RTL8723BU (bsc#1227149). * wifi: rtl8xxxu: enable channel switch support (bsc#1227149). * wifi: rtl8xxxu: Enable hw seq for mgmt/non-QoS data frames (bsc#1227149). * wifi: rtl8xxxu: enable MFP support with security flag of RX descriptor (bsc#1227149). * wifi: rtl8xxxu: extend check for matching bssid to both interfaces (bsc#1227149). * wifi: rtl8xxxu: extend wifi connected check to both interfaces (bsc#1227149). * wifi: rtl8xxxu: fix error messages (bsc#1227149). * wifi: rtl8xxxu: Fix LED control code of RTL8192FU (bsc#1227149). * wifi: rtl8xxxu: fix mixed declarations in rtl8xxxu_set_aifs() (bsc#1227149). * wifi: rtl8xxxu: Fix off by one initial RTS rate (bsc#1227149). * wifi: rtl8xxxu: Fix the TX power of RTL8192CU, RTL8723AU (stable-fixes). * wifi: rtl8xxxu: make instances of iface limit and combination to be static const (bsc#1227149). * wifi: rtl8xxxu: make supporting AP mode only on port 0 transparent (bsc#1227149). * wifi: rtl8xxxu: mark TOTOLINK N150UA V5/N150UA-B as tested (bsc#1227149). * wifi: rtl8xxxu: prepare supporting two virtual interfaces (bsc#1227149). * wifi: rtl8xxxu: Put the macid in txdesc (bsc#1227149). * wifi: rtl8xxxu: remove assignment of priv->vif in rtl8xxxu_bss_info_changed() (bsc#1227149). * wifi: rtl8xxxu: remove obsolete priv->vif (bsc#1227149). * wifi: rtl8xxxu: Remove usage of ieee80211_get_tx_rate() (bsc#1227149). * wifi: rtl8xxxu: Remove usage of tx_info->control.rates[0].flags (bsc#1227149). * wifi: rtl8xxxu: Rename some registers (bsc#1227149). * wifi: rtl8xxxu: rtl8xxxu_rx_complete(): remove unnecessary return (bsc#1227149). * wifi: rtl8xxxu: Select correct queue for beacon frames (bsc#1227149). * wifi: rtl8xxxu: Set maximum number of supported stations (bsc#1227149). * wifi: rtl8xxxu: support multiple interface in start_ap() (bsc#1227149). * wifi: rtl8xxxu: support multiple interfaces in {add,remove}_interface() (bsc#1227149). * wifi: rtl8xxxu: support multiple interfaces in bss_info_changed() (bsc#1227149). * wifi: rtl8xxxu: support multiple interfaces in configure_filter() (bsc#1227149). * wifi: rtl8xxxu: support multiple interfaces in set_aifs() (bsc#1227149). * wifi: rtl8xxxu: support multiple interfaces in update_beacon_work_callback() (bsc#1227149). * wifi: rtl8xxxu: support multiple interfaces in watchdog_callback() (bsc#1227149). * wifi: rtl8xxxu: Support new chip RTL8192FU (bsc#1227149). * wifi: rtl8xxxu: support setting bssid register for multiple interfaces (bsc#1227149). * wifi: rtl8xxxu: support setting linktype for both interfaces (bsc#1227149). * wifi: rtl8xxxu: support setting mac address register for both interfaces (bsc#1227149). * wifi: rtl8xxxu: Support USB RX aggregation for the newer chips (bsc#1227149). * wifi: rtl8xxxu: update rate mask per sta (bsc#1227149). * wifi: rtlwifi: cleanup few rtlxxx_tx_fill_desc() routines (bsc#1227149). * wifi: rtlwifi: cleanup few rtlxxxx_set_hw_reg() routines (bsc#1227149). * wifi: rtlwifi: cleanup struct rtl_hal (bsc#1227149). * wifi: rtlwifi: cleanup struct rtl_phy (bsc#1227149). * wifi: rtlwifi: cleanup struct rtl_ps_ctl (bsc#1227149). * wifi: rtlwifi: cleanup USB interface (bsc#1227149). * wifi: rtlwifi: Convert to use PCIe capability accessors (bsc#1227149). * wifi: rtlwifi: drop chk_switch_dmdp() from HAL interface (bsc#1227149). * wifi: rtlwifi: drop fill_fake_txdesc() from HAL interface (bsc#1227149). * wifi: rtlwifi: drop pre_fill_tx_bd_desc() from HAL interface (bsc#1227149). * wifi: rtlwifi: drop unused const_amdpci_aspm (bsc#1227149). * wifi: rtlwifi: Ignore IEEE80211_CONF_CHANGE_RETRY_LIMITS (bsc#1227149). * wifi: rtlwifi: Remove bridge vendor/device ids (bsc#1227149). * wifi: rtlwifi: remove misused flag from HAL data (bsc#1227149). * wifi: rtlwifi: Remove rtl_intf_ops.read_efuse_byte (bsc#1227149). * wifi: rtlwifi: remove unreachable code in rtl92d_dm_check_edca_turbo() (bsc#1227149). * wifi: rtlwifi: remove unused dualmac control leftovers (bsc#1227149). * wifi: rtlwifi: Remove unused PCI related defines and struct (bsc#1227149). * wifi: rtlwifi: remove unused timer and related code (bsc#1227149). * wifi: rtlwifi: rtl8192cu: Fix 2T2R chip type detection (bsc#1227149). * wifi: rtlwifi: rtl8192cu: Fix TX aggregation (bsc#1227149). * wifi: rtlwifi: rtl8192de: Do not read register in _rtl92de_query_rxphystatus (bsc#1227149). * wifi: rtlwifi: rtl8192de: Fix 5 GHz TX power (stable-fixes). * wifi: rtlwifi: rtl8192de: Fix endianness issue in RX path (stable-fixes). * wifi: rtlwifi: rtl8192de: Fix low speed with WPA3-SAE (stable-fixes). * wifi: rtlwifi: rtl8723: Remove unused function rtl8723_cmd_send_packet() (bsc#1227149). * wifi: rtlwifi: rtl8821ae: Access full PMCS reg and use pci_regs.h (bsc#1227149). * wifi: rtlwifi: rtl8821ae: Add pdev into _rtl8821ae_clear_pci_pme_status() (bsc#1227149). * wifi: rtlwifi: rtl8821ae: phy: remove some useless code (bsc#1227149). * wifi: rtlwifi: rtl8821ae: phy: using calculate_bit_shift() (bsc#1227149). * wifi: rtlwifi: rtl8821ae: Remove unnecessary PME_Status bit set (bsc#1227149). * wifi: rtlwifi: rtl8821ae: Reverse PM Capability exists check (bsc#1227149). * wifi: rtlwifi: rtl8821ae: Use pci_find_capability() (bsc#1227149). * wifi: rtlwifi: rtl92ee_dm_dynamic_primary_cca_check(): fix typo in function name (bsc#1227149). * wifi: rtlwifi: rtl_usb: Store the endpoint addresses (bsc#1227149). * wifi: rtlwifi: rtl_usb: Use sync register writes (bsc#1227149). * wifi: rtlwifi: set initial values for unexpected cases of USB endpoint priority (bsc#1227149). * wifi: rtlwifi: simplify LED management (bsc#1227149). * wifi: rtlwifi: simplify rtl_action_proc() and rtl_tx_agg_start() (bsc#1227149). * wifi: rtlwifi: simplify TX command fill callbacks (bsc#1227149). * wifi: rtlwifi: Speed up firmware loading for USB (bsc#1227149). * wifi: rtlwifi: use convenient list_count_nodes() (bsc#1227149). * wifi: rtlwifi: use eth_broadcast_addr() to assign broadcast address (bsc#1227149). * wifi: rtlwifi: use helper function rtl_get_hdr() (bsc#1227149). * wifi: rtlwifi: use unsigned long for bt_coexist_8723 timestamp (bsc#1227149). * wifi: rtlwifi: use unsigned long for rtl_bssid_entry timestamp (bsc#1227149). * wifi: rtw88: 8821c: tweak CCK TX filter setting for SRRC regulation (bsc#1227149). * wifi: rtw88: 8821cu: Fix connection failure (stable-fixes). * wifi: rtw88: 8821c: update TX power limit to V67 (bsc#1227149). * wifi: rtw88: 8822ce: refine power parameters for RFE type 5 (bsc#1227149). * wifi: rtw88: 8822c: update TX power limit to V70 (bsc#1227149). * wifi: rtw88: add missing unwind goto for __rtw_download_firmware() (bsc#1227149). * wifi: rtw88: Add missing VID/PIDs for 8811CU and 8821CU (stable-fixes). * wifi: rtw88: Add support for the SDIO based RTL8723DS chipset (bsc#1227149). * wifi: rtw88: debug: add to check if debug mask is enabled (bsc#1227149). * wifi: rtw88: debug: remove wrapper of rtw_dbg() (bsc#1227149). * wifi: rtw88: dump firmware debug information in abnormal state (bsc#1227149). * wifi: rtw88: Fix action frame transmission fail before association (bsc#1227149). * wifi: rtw88: Fix AP mode incorrect DTIM behavior (bsc#1227149). * wifi: rtw88: fix incorrect error codes in rtw_debugfs_copy_from_user (bsc#1227149). * wifi: rtw88: fix incorrect error codes in rtw_debugfs_set_* (bsc#1227149). * wifi: rtw88: fix not entering PS mode after AP stops (bsc#1227149). * wifi: rtw88: fix typo rtw8822cu_probe (bsc#1227149). * wifi: rtw88: process VO packets without workqueue to avoid PTK rekey failed (bsc#1227149). * wifi: rtw88: refine register based H2C command (bsc#1227149). * wifi: rtw88: regd: configure QATAR and UK (bsc#1227149). * wifi: rtw88: regd: update regulatory map to R64-R42 (bsc#1227149). * wifi: rtw88: remove unused and set but unused leftovers (bsc#1227149). * wifi: rtw88: remove unused USB bulkout size set (bsc#1227149). * wifi: rtw88: rtw8723d: Implement RTL8723DS (SDIO) efuse parsing (bsc#1227149). * wifi: rtw88: simplify __rtw_tx_work() (bsc#1227149). * wifi: rtw88: simplify vif iterators (bsc#1227149). * wifi: rtw88: Skip high queue in hci_flush (bsc#1227149). * wifi: rtw88: Stop high queue during scan (bsc#1227149). * wifi: rtw88: use cfg80211_ssid_eq() instead of rtw_ssid_equal() (bsc#1227149). * wifi: rtw88: use kstrtoX_from_user() in debugfs handlers (bsc#1227149). * wifi: rtw88: Use random MAC when efuse MAC invalid (bsc#1227149). * wifi: rtw88: use struct instead of macros to set TX desc (bsc#1227149). * wifi: rtw89: 52c: rfk: disable DPK during MCC (bsc#1227149). * wifi: rtw89: 52c: rfk: refine MCC channel info notification (bsc#1227149). * wifi: rtw89: 8851b: add 8851B basic chip_info (bsc#1227149). * wifi: rtw89: 8851b: add 8851be to Makefile and Kconfig (bsc#1227149). * wifi: rtw89: 8851b: add basic power on function (bsc#1227149). * wifi: rtw89: 8851b: add BT coexistence support function (bsc#1227149). * wifi: rtw89: 8851b: add DLE mem and HFC quota (bsc#1227149). * wifi: rtw89: 8851b: add MAC configurations to chip_info (bsc#1227149). * wifi: rtw89: 8851b: add NCTL post table (bsc#1227149). * wifi: rtw89: 8851b: add RF configurations (bsc#1227149). * wifi: rtw89: 8851b: add set channel function (bsc#1227149). * wifi: rtw89: 8851b: add set_channel_rf() (bsc#1227149). * wifi: rtw89: 8851b: add support WoWLAN to 8851B (bsc#1227149). * wifi: rtw89: 8851b: add to parse efuse content (bsc#1227149). * wifi: rtw89: 8851b: add to read efuse version to recognize hardware version B (bsc#1227149). * wifi: rtw89: 8851b: add TX power related functions (bsc#1227149). * wifi: rtw89: 8851b: configure CRASH_TRIGGER feature for 8851B (bsc#1227149). * wifi: rtw89: 8851b: configure GPIO according to RFE type (bsc#1227149). * wifi: rtw89: 8851b: configure to force 1 TX power value (bsc#1227149). * wifi: rtw89: 8851be: add 8851BE PCI entry and fill PCI capabilities (bsc#1227149). * wifi: rtw89: 8851b: enable hw_scan support (bsc#1227149). * wifi: rtw89: 8851b: fill BB related capabilities to chip_info (bsc#1227149). * wifi: rtw89: 8851b: rfk: add AACK (bsc#1227149). * wifi: rtw89: 8851b: rfk: add DACK (bsc#1227149). * wifi: rtw89: 8851b: rfk: add DPK (bsc#1227149). * wifi: rtw89: 8851b: rfk: add IQK (bsc#1227149). * wifi: rtw89: 8851b: rfk: add LCK track (bsc#1227149). * wifi: rtw89: 8851b: rfk: add RCK (bsc#1227149). * wifi: rtw89: 8851b: rfk: add RX DCK (bsc#1227149). * wifi: rtw89: 8851b: rfk: add TSSI (bsc#1227149). * wifi: rtw89: 8851b: rfk: Fix spelling mistake KIP_RESOTRE -> KIP_RESTORE (bsc#1227149). * wifi: rtw89: 8851b: rfk: update IQK to version 0x8 (bsc#1227149). * wifi: rtw89: 8851b: update RF radio A parameters to R28 (bsc#1227149). * wifi: rtw89: 8851b: update TX power tables to R28 (bsc#1227149). * wifi: rtw89: 8851b: update TX power tables to R34 (bsc#1227149). * wifi: rtw89: 8851b: update TX power tables to R37 (bsc#1227149). * wifi: rtw89: 8852b: fix definition of KIP register number (git-fixes). * wifi: rtw89: 8852b: update TX power tables to R35 (bsc#1227149). * wifi: rtw89: 8852b: update TX power tables to R36 (bsc#1227149). * wifi: rtw89: 8852c: add quirk to set PCI BER for certain platforms (bsc#1227149). * wifi: rtw89: 8852c: declare to support two chanctx (bsc#1227149). * wifi: rtw89: 8852c: Fix TSSI causes transmit power inaccuracy (bsc#1227149). * wifi: rtw89: 8852c: read RX gain offset from efuse for 6GHz channels (bsc#1227149). * wifi: rtw89: 8852c: Update bandedge parameters for better performance (bsc#1227149). * wifi: rtw89: 8852c: update RF radio A/B parameters to R63 (bsc#1227149). * wifi: rtw89: 8852c: update TX power tables to R63 with 6 GHz power type (1 of 3) (bsc#1227149). * wifi: rtw89: 8852c: update TX power tables to R63 with 6 GHz power type (2 of 3) (bsc#1227149). * wifi: rtw89: 8852c: update TX power tables to R63 with 6 GHz power type (3 of 3) (bsc#1227149). * wifi: rtw89: 8852c: update TX power tables to R67 (bsc#1227149). * wifi: rtw89: 8922a: add 8922A basic chip info (bsc#1227149). * wifi: rtw89: 8922a: add BTG functions to assist BT coexistence to control TX/RX (bsc#1227149). * wifi: rtw89: 8922a: add chip_ops::bb_preinit to enable BB before downloading firmware (bsc#1227149). * wifi: rtw89: 8922a: add chip_ops::cfg_txrx_path (bsc#1227149). * wifi: rtw89: 8922a: add chip_ops::{enable,disable}_bb_rf (bsc#1227149). * wifi: rtw89: 8922a: add chip_ops related to BB init (bsc#1227149). * wifi: rtw89: 8922a: add chip_ops::rfk_hw_init (bsc#1227149). * wifi: rtw89: 8922a: add chip_ops::rfk_init_late to do initial RF calibrations later (bsc#1227149). * wifi: rtw89: 8922a: add chip_ops to get thermal value (bsc#1227149). * wifi: rtw89: 8922a: add coexistence helpers of SW grant (bsc#1227149). * wifi: rtw89: 8922a: add helper of set_channel (bsc#1227149). * wifi: rtw89: 8922a: add ieee80211_ops::hw_scan (bsc#1227149). * wifi: rtw89: 8922a: add more fields to beacon H2C command to support multi- links (bsc#1227149). * wifi: rtw89: 8922a: add NCTL pre-settings for WiFi 7 chips (bsc#1227149). * wifi: rtw89: 8922a: add power on/off functions (bsc#1227149). * wifi: rtw89: 8922a: add register definitions of H2C, C2H, page, RRSR and EDCCA (bsc#1227149). * wifi: rtw89: 8922a: add RF read/write v2 (bsc#1227149). * wifi: rtw89: 8922a: add SER IMR tables (bsc#1227149). * wifi: rtw89: 8922a: add set_channel BB part (bsc#1227149). * wifi: rtw89: 8922a: add set_channel MAC part (bsc#1227149). * wifi: rtw89: 8922a: add set_channel RF part (bsc#1227149). * wifi: rtw89: 8922a: add TX power related ops (bsc#1227149). * wifi: rtw89: 8922a: configure CRASH_TRIGGER FW feature (bsc#1227149). * wifi: rtw89: 8922a: correct register definition and merge IO for ctrl_nbtg_bt_tx() (bsc#1227149). * wifi: rtw89: 8922a: declare to support two chanctx (bsc#1227149). * wifi: rtw89: 8922a: dump MAC registers when SER occurs (bsc#1227149). * wifi: rtw89: 8922ae: add 8922AE PCI entry and basic info (bsc#1227149). * wifi: rtw89: 8922ae: add v2 interrupt handlers for 8922AE (bsc#1227149). * wifi: rtw89: 8922a: extend and add quota number (bsc#1227149). * wifi: rtw89: 8922a: hook handlers of TX/RX descriptors to chip_ops (bsc#1227149). * wifi: rtw89: 8922a: implement AP mode related reg for BE generation (bsc#1227149). * wifi: rtw89: 8922a: implement {stop,resume}_sch_tx and cfg_ppdu (bsc#1227149). * wifi: rtw89: 8922a: read efuse content from physical map (bsc#1227149). * wifi: rtw89: 8922a: read efuse content via efuse map struct from logic map (bsc#1227149). * wifi: rtw89: 8922a: rfk: implement chip_ops to call RF calibrations (bsc#1227149). * wifi: rtw89: 8922a: set chip_ops FEM and GPIO to NULL (bsc#1227149). * wifi: rtw89: 8922a: set memory heap address for secure firmware (bsc#1227149). * wifi: rtw89: 8922a: set RX gain along with set_channel operation (bsc#1227149). * wifi: rtw89: 8922a: update BA CAM number to 24 (bsc#1227149). * wifi: rtw89: 8922a: update the register used in DIG and the DIG flow (bsc#1227149). * wifi: rtw89: acpi: process 6 GHz band policy from DSM (bsc#1227149). * wifi: rtw89: add C2H event handlers of RFK log and report (bsc#1227149). * wifi: rtw89: add C2H RA event V1 to support WiFi 7 chips (bsc#1227149). * wifi: rtw89: add CFO XTAL registers field to support 8851B (bsc#1227149). * wifi: rtw89: add chip_info::chip_gen to determine chip generation (bsc#1227149). * wifi: rtw89: add chip_info::txwd_info size to generalize TX WD submit (bsc#1227149). * wifi: rtw89: add chip_ops::h2c_ba_cam() to configure BA CAM (bsc#1227149). * wifi: rtw89: add chip_ops::query_rxdesc() and rxd_len as helpers to support newer chips (bsc#1227149). * wifi: rtw89: add chip_ops::update_beacon to abstract update beacon operation (bsc#1227149). * wifi: rtw89: add DBCC H2C to notify firmware the status (bsc#1227149). * wifi: rtw89: add EHT capabilities for WiFi 7 chips (bsc#1227149). * wifi: rtw89: add EHT radiotap in monitor mode (bsc#1227149). * wifi: rtw89: Add EHT rate mask as parameters of RA H2C command (bsc#1227149). * wifi: rtw89: add EVM and SNR statistics to debugfs (bsc#1227149). * wifi: rtw89: add EVM for antenna diversity (bsc#1227149). * wifi: rtw89: add firmware H2C command of BA CAM V1 (bsc#1227149). * wifi: rtw89: add firmware parser for v1 format (bsc#1227149). * wifi: rtw89: add firmware suit for BB MCU 0/1 (bsc#1227149). * wifi: rtw89: add function prototype for coex request duration (bsc#1227149). * wifi: rtw89: add H2C command to download beacon frame for WiFi 7 chips (bsc#1227149). * wifi: rtw89: add H2C RA command V1 to support WiFi 7 chips (bsc#1227149). * wifi: rtw89: add mac_gen pointer to access mac port registers (bsc#1227149). * wifi: rtw89: add mlo_dbcc_mode for WiFi 7 chips (bsc#1227149). * wifi: rtw89: add new H2C command to pause/sleep transmitting by MAC ID (bsc#1227149). * wifi: rtw89: add new H2C for PS mode in 802.11be chip (bsc#1227149). * wifi: rtw89: add reserved size as factor of DLE used size (bsc#1227149). * wifi: rtw89: add RSSI based antenna diversity (bsc#1227149). * wifi: rtw89: add RSSI statistics for the case of antenna diversity to debugfs (bsc#1227149). * wifi: rtw89: add subband index of primary channel to struct rtw89_chan (bsc#1227149). * wifi: rtw89: add to display hardware rates v1 histogram in debugfs (bsc#1227149). * wifi: rtw89: add to fill TX descriptor for firmware command v2 (bsc#1227149). * wifi: rtw89: add to fill TX descriptor v2 (bsc#1227149). * wifi: rtw89: add to parse firmware elements of BB and RF tables (bsc#1227149). * wifi: rtw89: add to query RX descriptor format v2 (bsc#1227149). * wifi: rtw89: add tx_wake notify for 8851B (bsc#1227149). * wifi: rtw89: add wait/completion for abort scan (bsc#1227149). * wifi: rtw89: add XTAL SI for WiFi 7 chips (bsc#1227149). * wifi: rtw89: adjust init_he_cap() to add EHT cap into iftype_data (bsc#1227149). * wifi: rtw89: advertise missing extended scan feature (bsc#1227149). * wifi: rtw89: avoid stringop-overflow warning (bsc#1227149). * wifi: rtw89: call rtw89_chan_get() by vif chanctx if aware of vif (bsc#1227149). * wifi: rtw89: chan: add sub-entity swap function to cover replacing (bsc#1227149). * wifi: rtw89: change naming of BA CAM from V1 to V0_EXT (bsc#1227149). * wifi: rtw89: change qutoa to DBCC by default for WiFi 7 chips (bsc#1227149). * wifi: rtw89: change supported bandwidths of chip_info to bit mask (bsc#1227149). * wifi: rtw89: chan: MCC take reconfig into account (bsc#1227149). * wifi: rtw89: chan: move handling from add/remove to assign/unassign for MLO (bsc#1227149). * wifi: rtw89: chan: support MCC on Wi-Fi 7 chips (bsc#1227149). * wifi: rtw89: chan: tweak bitmap recalc ahead before MLO (bsc#1227149). * wifi: rtw89: chan: tweak weight recalc ahead before MLO (bsc#1227149). * wifi: rtw89: cleanup firmware elements parsing (bsc#1227149). * wifi: rtw89: cleanup private data structures (bsc#1227149). * wifi: rtw89: cleanup rtw89_iqk_info and related code (bsc#1227149). * wifi: rtw89: coex: add annotation __counted_by() for struct rtw89_btc_btf_set_slot_table (bsc#1227149). * wifi: rtw89: coex: add annotation __counted_by() to struct rtw89_btc_btf_set_mon_reg (bsc#1227149). * wifi: rtw89: coex: Add Bluetooth RSSI level information (bsc#1227149). * wifi: rtw89: coex: add BTC ctrl_info version 7 and related logic (bsc#1227149). * wifi: rtw89: coex: Add coexistence policy to decrease WiFi packet CRC-ERR (bsc#1227149). * wifi: rtw89: coex: add init_info H2C command format version 7 (bsc#1227149). * wifi: rtw89: coex: Add Pre-AGC control to enhance Wi-Fi RX performance (bsc#1227149). * wifi: rtw89: coex: add return value to ensure H2C command is success or not (bsc#1227149). * wifi: rtw89: coex: fix configuration for shared antenna for 8922A (bsc#1227149). * wifi: rtw89: coex: Fix wrong Wi-Fi role info and FDDT parameter members (bsc#1227149). * wifi: rtw89: coex: Record down Wi-Fi initial mode information (bsc#1227149). * wifi: rtw89: coex: Reorder H2C command index to align with firmware (bsc#1227149). * wifi: rtw89: coex: Set Bluetooth scan low-priority when Wi-Fi link/scan (bsc#1227149). * wifi: rtw89: coex: Still show hardware grant signal info even Wi-Fi is PS (bsc#1227149). * wifi: rtw89: coex: To improve Wi-Fi performance while BT is idle (bsc#1227149). * wifi: rtw89: coex: Translate antenna configuration from ID to string (bsc#1227149). * wifi: rtw89: coex: Update BTG control related logic (bsc#1227149). * wifi: rtw89: coex: Update coexistence policy for Wi-Fi LPS (bsc#1227149). * wifi: rtw89: coex: Update RF parameter control setting logic (bsc#1227149). * wifi: rtw89: coex: use struct assignment to replace memcpy() to append TDMA content (bsc#1227149). * wifi: rtw89: coex: When Bluetooth not available do not set power/gain (bsc#1227149). * wifi: rtw89: configure PPDU max user by chip (bsc#1227149). * wifi: rtw89: consider RX info for WiFi 7 chips (bsc#1227149). * wifi: rtw89: consolidate registers of mac port to struct (bsc#1227149). * wifi: rtw89: correct aSIFSTime for 6GHz band (stable-fixes). * wifi: rtw89: correct PHY register offset for PHY-1 (bsc#1227149). * wifi: rtw89: correct the DCFO tracking flow to improve CFO compensation (bsc#1227149). * wifi: rtw89: debug: add debugfs entry to disable dynamic mechanism (bsc#1227149). * wifi: rtw89: debug: add FW log component for scan (bsc#1227149). * wifi: rtw89: debug: add to check if debug mask is enabled (bsc#1227149). * wifi: rtw89: debug: remove wrapper of rtw89_debug() (bsc#1227149). * wifi: rtw89: debug: show txpwr table according to chip gen (bsc#1227149). * wifi: rtw89: debug: txpwr table access only valid page according to chip (bsc#1227149). * wifi: rtw89: debug: txpwr table supports Wi-Fi 7 chips (bsc#1227149). * wifi: rtw89: declare EXT NSS BW of VHT capability (bsc#1227149). * wifi: rtw89: declare MCC in interface combination (bsc#1227149). * wifi: rtw89: define hardware rate v1 for WiFi 7 chips (bsc#1227149). * wifi: rtw89: differentiate narrow_bw_ru_dis setting according to chip gen (bsc#1227149). * wifi: rtw89: disable RTS when broadcast/multicast (bsc#1227149). * wifi: rtw89: download firmware with five times retry (bsc#1227149). * wifi: rtw89: drop TIMING_BEACON_ONLY and sync beacon TSF by self (bsc#1227149). * wifi: rtw89: enlarge supported length of read_reg debugfs entry (bsc#1227149). * wifi: rtw89: extend PHY status parser to support WiFi 7 chips (bsc#1227149). * wifi: rtw89: Fix array index mistake in rtw89_sta_info_get_iter() (git- fixes). * wifi: rtw89: fix a width vs precision bug (bsc#1227149). * wifi: rtw89: Fix clang -Wimplicit-fallthrough in rtw89_query_sar() (bsc#1227149). * wifi: rtw89: fix disabling concurrent mode TX hang issue (bsc#1227149). * wifi: rtw89: fix HW scan not aborting properly (git-fixes). * wifi: rtw89: fix HW scan timeout due to TSF sync issue (bsc#1227149). * wifi: rtw89: fix misbehavior of TX beacon in concurrent mode (bsc#1227149). * wifi: rtw89: fix not entering PS mode after AP stops (bsc#1227149). * wifi: rtw89: fix null pointer access when abort scan (stable-fixes). * wifi: rtw89: fix spelling typo of IQK debug messages (bsc#1227149). * wifi: rtw89: fix typo of rtw89_fw_h2c_mcc_macid_bitmap() (bsc#1227149). * wifi: rtw89: fw: add checking type for variant type of firmware (bsc#1227149). * wifi: rtw89: fw: add chip_ops to update CMAC table to associated station (bsc#1227149). * wifi: rtw89: fw: add definition of H2C command and C2H event for MRC series (bsc#1227149). * wifi: rtw89: fw: add H2C command to reset CMAC table for WiFi 7 (bsc#1227149). * wifi: rtw89: fw: add H2C command to reset DMAC table for WiFi 7 (bsc#1227149). * wifi: rtw89: fw: add H2C command to update security CAM v2 (bsc#1227149). * wifi: rtw89: fw: add version field to BB MCU firmware element (bsc#1227149). * wifi: rtw89: fw: consider checksum length of security data (bsc#1227149). * wifi: rtw89: fw: download firmware with key data for secure boot (bsc#1227149). * wifi: rtw89: fw: extend JOIN H2C command to support WiFi 7 chips (bsc#1227149). * wifi: rtw89: fw: extend program counter dump for Wi-Fi 7 chip (bsc#1227149). * wifi: rtw89: fw: fill CMAC table to associated station for WiFi 7 chips (bsc#1227149). * wifi: rtw89: fw: generalize download firmware flow by mac_gen pointers (bsc#1227149). * wifi: rtw89: fw: implement MRC H2C command functions (bsc#1227149). * wifi: rtw89: fw: implement supported functions of download firmware for WiFi 7 chips (bsc#1227149). * wifi: rtw89: fw: load TX power track tables from fw_element (bsc#1227149). * wifi: rtw89: fw: move polling function of firmware path ready to an individual function (bsc#1227149). * wifi: rtw89: fw: parse secure section from firmware file (bsc#1227149). * wifi: rtw89: fw: propagate an argument include_bb for BB MCU firmware (bsc#1227149). * wifi: rtw89: fw: read firmware secure information from efuse (bsc#1227149). * wifi: rtw89: fw: refine download flow to support variant firmware suits (bsc#1227149). * wifi: rtw89: fw: scan offload prohibit all 6 GHz channel if no 6 GHz sband (bsc#1227149). * wifi: rtw89: fw: update TX AMPDU parameter to CMAC table (bsc#1227149). * wifi: rtw89: fw: use struct to fill BA CAM H2C commands (bsc#1227149). * wifi: rtw89: fw: use struct to fill JOIN H2C command (bsc#1227149). * wifi: rtw89: get data rate mode/NSS/MCS v1 from RX descriptor (bsc#1227149). * wifi: rtw89: indicate TX power by rate table inside RFE parameter (bsc#1227149). * wifi: rtw89: indicate TX shape table inside RFE parameter (bsc#1227149). * wifi: rtw89: initialize antenna for antenna diversity (bsc#1227149). * wifi: rtw89: initialize multi-channel handling (bsc#1227149). * wifi: rtw89: introduce infrastructure of firmware elements (bsc#1227149). * wifi: rtw89: introduce realtek ACPI DSM method (bsc#1227149). * wifi: rtw89: Introduce Time Averaged SAR (TAS) feature (bsc#1227149). * wifi: rtw89: introduce v1 format of firmware header (bsc#1227149). * wifi: rtw89: load BB parameters to PHY-1 (bsc#1227149). * wifi: rtw89: load RFK log format string from firmware file (bsc#1227149). * wifi: rtw89: load TX power by rate when RFE parms setup (bsc#1227149). * wifi: rtw89: load TX power related tables from FW elements (bsc#1227149). * wifi: rtw89: mac: add coexistence helpers {cfg/get}_plt (bsc#1227149). * wifi: rtw89: mac: add feature_init to initialize BA CAM V1 (bsc#1227149). * wifi: rtw89: mac: add flags to check if CMAC and DMAC are enabled (bsc#1227149). * wifi: rtw89: mac: add mac_gen_def::band1_offset to map MAC band1 register address (bsc#1227149). * wifi: rtw89: mac: add registers of MU-EDCA parameters for WiFi 7 chips (bsc#1227149). * wifi: rtw89: mac: add suffix _ax to MAC functions (bsc#1227149). * wifi: rtw89: mac: add sys_init and filter option for WiFi 7 chips (bsc#1227149). * wifi: rtw89: mac: add to access efuse for WiFi 7 chips (bsc#1227149). * wifi: rtw89: mac: add to get DLE reserved quota (bsc#1227149). * wifi: rtw89: mac: check queue empty according to chip gen (bsc#1227149). * wifi: rtw89: mac: correct MUEDCA setting for MAC-1 (bsc#1227149). * wifi: rtw89: mac: define internal memory address for WiFi 7 chip (bsc#1227149). * wifi: rtw89: mac: define register address of rx_filter to generalize code (bsc#1227149). * wifi: rtw89: mac: do bf_monitor only if WiFi 6 chips (bsc#1227149). * wifi: rtw89: mac: Fix spelling mistakes "notfify" -> "notify" (bsc#1227149). * wifi: rtw89: mac: functions to configure hardware engine and quota for WiFi 7 chips (bsc#1227149). * wifi: rtw89: mac: generalize code to indirectly access WiFi internal memory (bsc#1227149). * wifi: rtw89: mac: generalize register of MU-EDCA switch according to chip gen (bsc#1227149). * wifi: rtw89: mac: get TX power control register according to chip gen (bsc#1227149). * wifi: rtw89: mac: handle C2H receive/done ACK in interrupt context (bsc#1227149). * wifi: rtw89: mac: implement MRC C2H event handling (bsc#1227149). * wifi: rtw89: mac: implement to configure TX/RX engines for WiFi 7 chips (bsc#1227149). * wifi: rtw89: mac: move code related to hardware engine to individual functions (bsc#1227149). * wifi: rtw89: mac: refine SER setting during WiFi CPU power on (bsc#1227149). * wifi: rtw89: mac: reset PHY-1 hardware when going to enable/disable (bsc#1227149). * wifi: rtw89: mac: return held quota of DLE when changing MAC-1 (bsc#1227149). * wifi: rtw89: mac: set bf_assoc capabilities according to chip gen (bsc#1227149). * wifi: rtw89: mac: set bfee_ctrl() according to chip gen (bsc#1227149). * wifi: rtw89: mac: update RTS threshold according to chip gen (bsc#1227149). * wifi: rtw89: mac: use mac_gen pointer to access about efuse (bsc#1227149). * wifi: rtw89: mac: use pointer to access functions of hardware engine and quota (bsc#1227149). * wifi: rtw89: mcc: consider and determine BT duration (bsc#1227149). * wifi: rtw89: mcc: deal with beacon NoA if GO exists (bsc#1227149). * wifi: rtw89: mcc: deal with BT slot change (bsc#1227149). * wifi: rtw89: mcc: deal with P2P PS change (bsc#1227149). * wifi: rtw89: mcc: decide pattern and calculate parameters (bsc#1227149). * wifi: rtw89: mcc: fill fundamental configurations (bsc#1227149). * wifi: rtw89: mcc: fix NoA start time when GO is auxiliary (bsc#1227149). * wifi: rtw89: mcc: initialize start flow (bsc#1227149). * wifi: rtw89: mcc: track beacon offset and update when needed (bsc#1227149). * wifi: rtw89: mcc: trigger FW to start/stop MCC (bsc#1227149). * wifi: rtw89: mcc: update role bitmap when changed (bsc#1227149). * wifi: rtw89: modify the register setting and the flow of CFO tracking (bsc#1227149). * wifi: rtw89: move software DCFO compensation setting to proper position (bsc#1227149). * wifi: rtw89: only reset BB/RF for existing WiFi 6 chips while starting up (bsc#1227149). * wifi: rtw89: packet offload wait for FW response (bsc#1227149). * wifi: rtw89: parse and print out RFK log from C2H events (bsc#1227149). * wifi: rtw89: parse EHT information from RX descriptor and PPDU status packet (bsc#1227149). * wifi: rtw89: parse TX EHT rate selected by firmware from RA C2H report (bsc#1227149). * wifi: rtw89: pause/proceed MCC for ROC and HW scan (bsc#1227149). * wifi: rtw89: pci: add LTR v2 for WiFi 7 chip (bsc#1227149). * wifi: rtw89: pci: add new RX ring design to determine full RX ring efficiently (bsc#1227149). * wifi: rtw89: pci: add PCI generation information to pci_info for each chip (bsc#1227149). * wifi: rtw89: pci: add pre_deinit to be called after probe complete (bsc#1227149). * wifi: rtw89: pci: correct interrupt mitigation register for 8852CE (bsc#1227149). * wifi: rtw89: pci: correct TX resource checking for PCI DMA channel of firmware command (git-fixes). * wifi: rtw89: pci: define PCI ring address for WiFi 7 chips (bsc#1227149). * wifi: rtw89: pci: enlarge RX DMA buffer to consider size of RX descriptor (stable-fixes). * wifi: rtw89: pci: fix interrupt enable mask for HALT C2H of RTL8851B (bsc#1227149). * wifi: rtw89: pci: generalize code of PCI control DMA IO for WiFi 7 (bsc#1227149). * wifi: rtw89: pci: generalize interrupt status bits of interrupt handlers (bsc#1227149). * wifi: rtw89: pci: implement PCI CLK/ASPM/L1SS for WiFi 7 chips (bsc#1227149). * wifi: rtw89: pci: implement PCI mac_post_init for WiFi 7 chips (bsc#1227149). * wifi: rtw89: pci: implement PCI mac_pre_init for WiFi 7 chips (bsc#1227149). * wifi: rtw89: pci: interrupt v2 refine IMR for SER (bsc#1227149). * wifi: rtw89: pci: reset BDRAM according to chip gen (bsc#1227149). * wifi: rtw89: pci: stop/start DMA for level 1 recovery according to chip gen (bsc#1227149). * wifi: rtw89: pci: update interrupt mitigation register for 8922AE (bsc#1227149). * wifi: rtw89: pci: update SER timer unit and timeout time (bsc#1227149). * wifi: rtw89: pci: use DBI function for 8852AE/8852BE/8851BE (bsc#1227149). * wifi: rtw89: pci: use gen_def pointer to configure mac_{pre,post}_init and clear PCI ring index (bsc#1227149). * wifi: rtw89: pci: validate RX tag for RXQ and RPQ (bsc#1227149). * wifi: rtw89: phy: add BB wrapper of TX power for WiFi 7 chips (bsc#1227149). * wifi: rtw89: phy: add parser to support RX gain dynamic setting flow (bsc#1227149). * wifi: rtw89: phy: add phy_gen_def::cr_base to support WiFi 7 chips (bsc#1227149). * wifi: rtw89: phy: change naming related BT coexistence functions (bsc#1227149). * wifi: rtw89: phy: dynamically adjust EDCCA threshold (bsc#1227149). * wifi: rtw89: phy: extend TX power common stuffs for Wi-Fi 7 chips (bsc#1227149). * wifi: rtw89: phy: generalize valid bit of BSS color (bsc#1227149). * wifi: rtw89: phy: ignore special data from BB parameter file (bsc#1227149). * wifi: rtw89: phy: modify register setting of ENV_MNTR, PHYSTS and DIG (bsc#1227149). * wifi: rtw89: phy: move bb_gain_info used by WiFi 6 chips to union (bsc#1227149). * wifi: rtw89: phy: print out RFK log with formatted string (bsc#1227149). * wifi: rtw89: phy: rate pattern handles HW rate by chip gen (bsc#1227149). * wifi: rtw89: phy: refine helpers used for raw TX power (bsc#1227149). * wifi: rtw89: phy: set channel_info for WiFi 7 chips (bsc#1227149). * wifi: rtw89: phy: set TX power by rate according to chip gen (bsc#1227149). * wifi: rtw89: phy: set TX power limit according to chip gen (bsc#1227149). * wifi: rtw89: phy: set TX power offset according to chip gen (bsc#1227149). * wifi: rtw89: phy: set TX power RU limit according to chip gen (bsc#1227149). * wifi: rtw89: prepare scan leaf functions for wifi 7 ICs (bsc#1227149). * wifi: rtw89: process regulatory for 6 GHz power type (bsc#1227149). * wifi: rtw89: provide functions to configure NoA for beacon update (bsc#1227149). * wifi: rtw89: recognize log format from firmware file (bsc#1227149). * wifi: rtw89: reference quota mode when setting Tx power (bsc#1227149). * wifi: rtw89: Refine active scan behavior in 6 GHz (bsc#1227149). * wifi: rtw89: refine add_chan H2C command to encode_bits (bsc#1227149). * wifi: rtw89: refine bandwidth 160MHz uplink OFDMA performance (bsc#1227149). * wifi: rtw89: refine clearing supported bands to check 2/5 GHz first (bsc#1227149). * wifi: rtw89: refine element naming used by queue empty check (bsc#1227149). * wifi: rtw89: refine H2C command that pause transmitting by MAC ID (bsc#1227149). * wifi: rtw89: refine hardware scan C2H events (bsc#1227149). * wifi: rtw89: refine packet offload delete flow of 6 GHz probe (bsc#1227149). * wifi: rtw89: refine packet offload handling under SER (bsc#1227149). * wifi: rtw89: refine remain on channel flow to improve P2P connection (bsc#1227149). * wifi: rtw89: refine rtw89_correct_cck_chan() by rtw89_hw_to_nl80211_band() (bsc#1227149). * wifi: rtw89: refine uplink trigger based control mechanism (bsc#1227149). * wifi: rtw89: regd: configure Thailand in regulation type (bsc#1227149). * wifi: rtw89: regd: handle policy of 6 GHz according to BIOS (bsc#1227149). * wifi: rtw89: regd: judge 6 GHz according to chip and BIOS (bsc#1227149). * wifi: rtw89: regd: judge UNII-4 according to BIOS and chip (bsc#1227149). * wifi: rtw89: regd: update regulatory map to R64-R40 (bsc#1227149). * wifi: rtw89: regd: update regulatory map to R64-R43 (bsc#1227149). * wifi: rtw89: regd: update regulatory map to R65-R44 (bsc#1227149). * wifi: rtw89: release bit in rtw89_fw_h2c_del_pkt_offload() (bsc#1227149). * wifi: rtw89: return failure if needed firmware elements are not recognized (bsc#1227149). * wifi: rtw89: rfk: add a completion to wait RF calibration report from C2H event (bsc#1227149). * wifi: rtw89: rfk: add H2C command to trigger DACK (bsc#1227149). * wifi: rtw89: rfk: add H2C command to trigger DPK (bsc#1227149). * wifi: rtw89: rfk: add H2C command to trigger IQK (bsc#1227149). * wifi: rtw89: rfk: add H2C command to trigger RX DCK (bsc#1227149). * wifi: rtw89: rfk: add H2C command to trigger TSSI (bsc#1227149). * wifi: rtw89: rfk: add H2C command to trigger TXGAPK (bsc#1227149). * wifi: rtw89: rfk: disable driver tracking during MCC (bsc#1227149). * wifi: rtw89: rfk: send channel information to firmware for RF calibrations (bsc#1227149). * wifi: rtw89: sar: let caller decide the center frequency to query (bsc#1227149). * wifi: rtw89: scan offload wait for FW done ACK (bsc#1227149). * wifi: rtw89: ser: L1 add pre-M0 and post-M0 states (bsc#1227149). * wifi: rtw89: ser: reset total_sta_assoc and tdls_peer when L2 (bsc#1227149). * wifi: rtw89: set capability of TX antenna diversity (bsc#1227149). * wifi: rtw89: Set default CQM config if not present (bsc#1227149). * wifi: rtw89: set entry size of address CAM to H2C field by chip (bsc#1227149). * wifi: rtw89: set TX power without precondition during setting channel (bsc#1227149). * wifi: rtw89: show EHT rate in debugfs (bsc#1227149). * wifi: rtw89: support firmware log with formatted text (bsc#1227149). * wifi: rtw89: support U-NII-4 channels on 5GHz band (bsc#1227149). * wifi: rtw89: suppress the log for specific SER called CMDPSR_FRZTO (bsc#1227149). * wifi: rtw89: tweak H2C TX waiting function for SER (bsc#1227149). * wifi: rtw89: TX power stuffs replace confusing naming of _max with _num (bsc#1227149). * wifi: rtw89: update DMA function with different generation (bsc#1227149). * wifi: rtw89: Update EHT PHY beamforming capability (bsc#1227149). * wifi: rtw89: update ps_state register for chips with different generation (bsc#1227149). * wifi: rtw89: update scan C2H messages for wifi 7 IC (bsc#1227149). * wifi: rtw89: update suspend/resume for different generation (bsc#1227149). * wifi: rtw89: use chip_info::small_fifo_size to choose debug_mask (bsc#1227149). * wifi: rtw89: use flexible array member in rtw89_btc_btf_tlv (bsc#1227149). * wifi: rtw89: use PLCP information to match BSS_COLOR and AID (bsc#1227149). * wifi: rtw89: use struct and le32_get_bits() to access received PHY status IEs (bsc#1227149). * wifi: rtw89: use struct and le32_get_bits() to access RX descriptor (bsc#1227149). * wifi: rtw89: use struct and le32_get_bits to access RX info (bsc#1227149). * wifi: rtw89: use struct rtw89_phy_sts_ie0 instead of macro to access PHY IE0 status (bsc#1227149). * wifi: rtw89: use struct to access firmware C2H event header (bsc#1227149). * wifi: rtw89: use struct to access RA report (bsc#1227149). * wifi: rtw89: use struct to access register-based H2C/C2H (bsc#1227149). * wifi: rtw89: use struct to fill H2C command to download beacon frame (bsc#1227149). * wifi: rtw89: use struct to parse firmware header (bsc#1227149). * wifi: rtw89: use struct to set RA H2C command (bsc#1227149). * wifi: rtw89: wow: move release offload packet earlier for WoWLAN mode (bsc#1227149). * wifi: rtw89: wow: refine WoWLAN flows of HCI interrupts and low power mode (bsc#1227149). * wifi: rtw89: wow: set security engine options for 802.11ax chips only (bsc#1227149). * wifi: rtw89: wow: update config mac function with different generation (bsc#1227149). * wifi: rtw89: wow: update WoWLAN reason register for different chips (bsc#1227149). * wifi: rtw89: wow: update WoWLAN status register for different generation (bsc#1227149). * wifi: ti: wlcore: sdio: Drop unused include (bsc#1227149). * wifi: virt_wifi: avoid reporting connection success with wrong SSID (git- fixes). * wifi: virt_wifi: do not use strlen() in const context (git-fixes). * wifi: wcn36xx: Annotate struct wcn36xx_hal_ind_msg with __counted_by (bsc#1227149). * wifi: wcn36xx: Convert to platform remove callback returning void (bsc#1227149). * wifi: wcn36xx: remove unnecessary (void*) conversions (bsc#1227149). * wifi: wext: avoid extra calls to strlen() in ieee80211_bss() (bsc#1227149). * wifi: wfx: allow to send frames during ROC (bsc#1227149). * wifi: wfx: fix power_save setting when AP is stopped (bsc#1227149). * wifi: wfx: implement wfx_remain_on_channel() (bsc#1227149). * wifi: wfx: introduce hif_scan_uniq() (bsc#1227149). * wifi: wfx: move wfx_skb_*() out of the header file (bsc#1227149). * wifi: wfx: relocate wfx_rate_mask_to_hw() (bsc#1227149). * wifi: wfx: scan_lock is global to the device (bsc#1227149). * wifi: wfx: simplify exclusion between scan and Rx filters (bsc#1227149). * wifi: wfx: Use devm_kmemdup to replace devm_kmalloc + memcpy (bsc#1227149). * wifi: wil6210: fw: Replace zero-length arrays with DECLARE_FLEX_ARRAY() helper (bsc#1227149). * wifi: wil6210: wmi: Replace zero-length array with DECLARE_FLEX_ARRAY() helper (bsc#1227149). * wifi: wilc1000: add back-off algorithm to balance tx queue packets (bsc#1227149). * wifi: wilc1000: add missing read critical sections around vif list traversal (bsc#1227149). * wifi: wilc1000: add SPI commands retry mechanism (bsc#1227149). * wifi: wilc1000: always release SDIO host in wilc_sdio_cmd53() (bsc#1227149). * wifi: wilc1000: cleanup struct wilc_conn_info (bsc#1227149). * wifi: wilc1000: correct CRC7 calculation (bsc#1227149). * wifi: wilc1000: fix declarations ordering (bsc#1227149). * wifi: wilc1000: fix driver_handler when committing initial configuration (bsc#1227149). * wifi: wilc1000: fix ies_len type in connect path (git-fixes). * wifi: wilc1000: fix incorrect power down sequence (bsc#1227149). * wifi: wilc1000: Increase ASSOC response buffer (bsc#1227149). * wifi: wilc1000: remove AKM suite be32 conversion for external auth request (bsc#1227149). * wifi: wilc1000: remove setting msg.spi (bsc#1227149). * wifi: wilc1000: Remove unused declarations (bsc#1227149). * wifi: wilc1000: remove use of has_thrpt_enh3 flag (bsc#1227149). * wifi: wilc1000: set preamble size to auto as default in wilc_init_fw_config() (bsc#1227149). * wifi: wilc1000: simplify remain on channel support (bsc#1227149). * wifi: wilc1000: simplify wilc_scan() (bsc#1227149). * wifi: wilc1000: split deeply nested RCU list traversal in dedicated helper (bsc#1227149). * wifi: wilc1000: use SRCU instead of RCU for vif list traversal (bsc#1227149). * wifi: wilc1000: validate chip id during bus probe (bsc#1227149). * wifi: wl1251: replace deprecated strncpy with strscpy (bsc#1227149). * wifi: wl18xx: replace deprecated strncpy with strscpy (bsc#1227149). * wifi: wlcore: boot: replace deprecated strncpy with strscpy (bsc#1227149). * wifi: wlcore: main: replace deprecated strncpy with strscpy (bsc#1227149). * wifi: wlcore: sdio: Rate limit wl12xx_sdio_raw_{read,write}() failures warns (bsc#1227149). * wifi: wlcore: sdio: Use module_sdio_driver macro to simplify the code (bsc#1227149). * wifi: zd1211rw: fix typo "tranmits" (bsc#1227149). * wifi: zd1211rw: remove __nocast from zd_addr_t (bsc#1227149). * wifi: zd1211rw: silence sparse warnings (bsc#1227149). * wireguard: netlink: access device through ctx instead of peer (git-fixes). * wireguard: netlink: check for dangling peer via is_dead instead of empty list (git-fixes). * wireguard: receive: annotate data-race around receiving_counter.counter (git-fixes). * wlcore: spi: Remove redundant of_match_ptr() (bsc#1227149). * Workaround broken chacha crypto fallback (bsc#1218205). * work around gcc bugs with 'asm goto' with outputs (git-fixes). * X.509: Fix the parser of extended key usage for length (bsc#1218820). * x86/amd_nb: Check for invalid SMN reads (git-fixes). * x86/apic: Force native_apic_mem_read() to use the MOV instruction (git- fixes). * x86/asm: Fix build of UML with KASAN (git-fixes). * x86/asm: Remove the __iomem annotation of movdir64b()'s dst argument (git- fixes). * x86/bhi: Avoid warning in #DB handler due to BHI mitigation :(git-fixes). * x86/boot: Ignore NMIs during very early boot (git-fixes). * x86/bugs: Fix BHI retpoline check (git-fixes). * x86/bugs: Fix the SRSO mitigation on Zen3/4 (git-fixes). * x86/bugs: Remove default case for fully switched enums (git-fixes). * x86/calldepth: Rename __x86_return_skl() to call_depth_return_thunk() (git- fixes). * x86/coco: Require seeding RNG with RDRAND on CoCo systems (git-fixes). * x86/cpu: Add model number for Intel Arrow Lake mobile processor (git-fixes). * x86/CPU/AMD: Add models 0x10-0x1f to the Zen5 range (git-fixes). * x86/cpufeatures: Fix dependencies for GFNI, VAES, and VPCLMULQDQ (git- fixes). * x86/cpu: Provide default cache line size if not enumerated (git-fixes). * x86/csum: clean up `csum_partial' further (git-fixes). * x86/csum: Fix clang -Wuninitialized in csum_partial() (git-fixes). * x86/csum: Improve performance of `csum_partial` (git-fixes). * x86/csum: Remove unnecessary odd handling (git-fixes). * x86/efistub: Add missing boot_params for mixed mode compat entry (git- fixes). * x86/efistub: Call mixed mode boot services on the firmware's stack (git- fixes). * x86/fpu: Fix AMD X86_BUG_FXSAVE_LEAK fixup (git-fixes). * x86/fpu: Keep xfd_state in sync with MSR_IA32_XFD (git-fixes). * x86/head/64: Move the __head definition to <asm/init.h> (git-fixes). * x86/hyperv: Allow 15-bit APIC IDs for VTL platforms (git-fixes). * x86/hyperv: Use per cpu initial stack for vtl context (git-fixes). * x86/insn: Add VEX versions of VPDPBUSD, VPDPBUSDS, VPDPWSSD and VPDPWSSDS (git-fixes). * x86/insn: Fix PUSH instruction in x86 instruction decoder opcode map (git- fixes). * x86/kconfig: Add as-instr64 macro to properly evaluate AS_WRUSS (git-fixes). * x86/Kconfig: Remove CONFIG_AMD_MEM_ENCRYPT_ACTIVE_BY_DEFAULT (git-fixes). * x86/kconfig: Select ARCH_WANT_FRAME_POINTERS again when UNWINDER_FRAME_POINTER=y (git-fixes). * x86/kexec: Fix bug with call depth tracking (git-fixes). * x86/kvm/Kconfig: Have KVM_AMD_SEV select ARCH_HAS_CC_PLATFORM (git-fixes). * x86/mce: Dynamically size space for machine check records (bsc#1222241). * x86/mce: Make sure to grab mce_sysfs_mutex in set_bank() (git-fixes). * x86/mce: Mark fatal MCE's page as poison to avoid panic in the kdump kernel (git-fixes). * x86/nmi: Drop unused declaration of proc_nmi_enabled() (git-fixes). * x86/nmi: Fix the inverse "in NMI handler" check (git-fixes). * x86/nospec: Refactor UNTRAIN_RET[_*] (git-fixes). * x86/pm: Work around false positive kmemleak report in msr_build_context() (git-fixes). * x86/purgatory: Switch to the position-independent small code model (git- fixes). * x86/resctrl: Read supported bandwidth sources from CPUID (git-fixes). * x86/resctrl: Remove redundant variable in mbm_config_write_domain() (git- fixes). * x86/rethunk: Use SYM_CODE_START[_LOCAL]_NOALIGN macros (git-fixes). * x86/retpoline: Add NOENDBR annotation to the SRSO dummy return thunk (git- fixes). * x86/retpoline: Do the necessary fixup to the Zen3/4 srso return thunk for !SRSO (git-fixes). * x86/sev: Fix position dependent variable references in startup code (git- fixes). * x86/shstk: Make return uprobe work with shadow stack (git-fixes). * x86/speculation, objtool: Use absolute relocations for annotations (git- fixes). * x86/srso: Disentangle rethunk-dependent options (git-fixes). * x86/srso: Fix unret validation dependencies (git-fixes). * x86/srso: Improve i-cache locality for alias mitigation (git-fixes). * x86/srso: Print actual mitigation if requested mitigation isn't possible (git-fixes). * x86/srso: Remove 'pred_cmd' label (git-fixes). * x86/srso: Unexport untraining functions (git-fixes). * x86: Stop using weak symbols for __iowrite32_copy() (bsc#1226502) * x86/tdx: Preserve shared bit on mprotect() (git-fixes). * x86/tsc: Trust initial offset in architectural TSC-adjust MSRs (bsc#1222015 bsc#1226962). * x86/uaccess: Fix missed zeroing of ia32 u64 get_user() range checking (git- fixes). * x86/xen: Add some null pointer checking to smp.c (git-fixes). * x86/xen: attempt to inflate the memory balloon on PVH (git-fixes). * xdp, bonding: Fix feature flags when there are no slave devs anymore (git- fixes). * xen/events: drop xen_allocate_irqs_dynamic() (git-fixes). * xen/events: fix error code in xen_bind_pirq_msi_to_irq() (git-fixes). * xen/events: increment refcnt only if event channel is refcounted (git- fixes). * xen/events: modify internal [un]bind interfaces (git-fixes). * xen/events: reduce externally visible helper functions (git-fixes). * xen/events: remove some simple helpers from events_base.c (git-fixes). * xen: evtchn: Allow shared registration of IRQ handers (git-fixes). * xen/evtchn: avoid WARN() when unbinding an event channel (git-fixes). * xen-netfront: Add missing skb_mark_for_recycle (git-fixes). * xen/x86: add extra pages to unpopulated-alloc if available (git-fixes). * xfs: Add cond_resched to block unmap range and reflink remap path (bsc#1228211). * xfs: add lock protection when remove perag from radix tree (git-fixes). * xfs: allow extent free intents to be retried (git-fixes). * xfs: fix perag leak when growfs fails (git-fixes). * xfs: force all buffers to be written during btree bulk load (git-fixes). * xfs: make xchk_iget safer in the presence of corrupt inode btrees (git- fixes). * xfs: pass the xfs_defer_pending object to iop_recover (git-fixes). * xfs: recompute growfsrtfree transaction reservation while growing rt volume (git-fixes). * xfs: transfer recovered intent item ownership in ->iop_recover (git-fixes). * xfs: use roundup_pow_of_two instead of ffs during xlog_find_tail (git- fixes). * xfs: use xfs_defer_pending objects to recover intent items (git-fixes). * xhci: add helper that checks for unhandled events on a event ring (git- fixes). * xhci: always resume roothubs if xHC was reset during resume (stable-fixes). * xhci: Apply broken streams quirk to Etron EJ188 xHCI host (stable-fixes). * xhci: Apply reset resume quirk to Etron EJ188 xHCI host (stable-fixes). * xhci: Handle TD clearing for multiple streams case (git-fixes). * xhci: remove unnecessary event_ring_deq parameter from xhci_handle_event() (git-fixes). * xhci: Set correct transferred length for cancelled bulk transfers (stable- fixes). * xhci: simplify event ring dequeue tracking for transfer events (git-fixes). * xsk: Add truesize to skb_add_rx_frag() (bsc#1214683 (PREEMPT_RT prerequisite backports)). ## Special Instructions and Notes: * Please reboot the system after installing this update. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2024-2973=1 * SUSE Linux Enterprise Live Patching 15-SP6 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP6-2024-2973=1 * SUSE Real Time Module 15-SP6 zypper in -t patch SUSE-SLE-Module-RT-15-SP6-2024-2973=1 ## Package List: * openSUSE Leap 15.6 (x86_64) * kernel-rt-extra-debuginfo-6.4.0-150600.10.5.1 * gfs2-kmp-rt-6.4.0-150600.10.5.1 * kernel-rt-debuginfo-6.4.0-150600.10.5.1 * kernel-rt_debug-livepatch-devel-6.4.0-150600.10.5.1 * reiserfs-kmp-rt-6.4.0-150600.10.5.1 * cluster-md-kmp-rt-6.4.0-150600.10.5.1 * kernel-rt_debug-devel-6.4.0-150600.10.5.1 * reiserfs-kmp-rt-debuginfo-6.4.0-150600.10.5.1 * kernel-rt_debug-debugsource-6.4.0-150600.10.5.1 * cluster-md-kmp-rt-debuginfo-6.4.0-150600.10.5.1 * kselftests-kmp-rt-debuginfo-6.4.0-150600.10.5.1 * kernel-rt_debug-vdso-6.4.0-150600.10.5.1 * kernel-rt-vdso-6.4.0-150600.10.5.1 * kernel-rt-devel-debuginfo-6.4.0-150600.10.5.1 * gfs2-kmp-rt-debuginfo-6.4.0-150600.10.5.1 * kernel-rt-devel-6.4.0-150600.10.5.1 * kernel-rt-vdso-debuginfo-6.4.0-150600.10.5.1 * kernel-rt_debug-devel-debuginfo-6.4.0-150600.10.5.1 * ocfs2-kmp-rt-6.4.0-150600.10.5.1 * kselftests-kmp-rt-6.4.0-150600.10.5.1 * kernel-rt_debug-debuginfo-6.4.0-150600.10.5.1 * kernel-rt_debug-vdso-debuginfo-6.4.0-150600.10.5.1 * kernel-rt-livepatch-devel-6.4.0-150600.10.5.1 * kernel-rt-optional-debuginfo-6.4.0-150600.10.5.1 * dlm-kmp-rt-6.4.0-150600.10.5.1 * kernel-rt-extra-6.4.0-150600.10.5.1 * dlm-kmp-rt-debuginfo-6.4.0-150600.10.5.1 * kernel-rt-debugsource-6.4.0-150600.10.5.1 * kernel-syms-rt-6.4.0-150600.10.5.1 * kernel-rt-optional-6.4.0-150600.10.5.1 * ocfs2-kmp-rt-debuginfo-6.4.0-150600.10.5.1 * openSUSE Leap 15.6 (noarch) * kernel-devel-rt-6.4.0-150600.10.5.1 * kernel-source-rt-6.4.0-150600.10.5.1 * openSUSE Leap 15.6 (nosrc x86_64) * kernel-rt_debug-6.4.0-150600.10.5.1 * kernel-rt-6.4.0-150600.10.5.1 * SUSE Linux Enterprise Live Patching 15-SP6 (x86_64) * kernel-livepatch-SLE15-SP6-RT_Update_1-debugsource-1-150600.1.5.1 * kernel-livepatch-6_4_0-150600_10_5-rt-1-150600.1.5.1 * kernel-livepatch-6_4_0-150600_10_5-rt-debuginfo-1-150600.1.5.1 * SUSE Real Time Module 15-SP6 (x86_64) * kernel-rt_debug-debugsource-6.4.0-150600.10.5.1 * kernel-rt_debug-devel-debuginfo-6.4.0-150600.10.5.1 * ocfs2-kmp-rt-6.4.0-150600.10.5.1 * gfs2-kmp-rt-6.4.0-150600.10.5.1 * cluster-md-kmp-rt-debuginfo-6.4.0-150600.10.5.1 * kernel-rt-debuginfo-6.4.0-150600.10.5.1 * dlm-kmp-rt-6.4.0-150600.10.5.1 * kernel-syms-rt-6.4.0-150600.10.5.1 * dlm-kmp-rt-debuginfo-6.4.0-150600.10.5.1 * kernel-rt-debugsource-6.4.0-150600.10.5.1 * cluster-md-kmp-rt-6.4.0-150600.10.5.1 * kernel-rt-devel-debuginfo-6.4.0-150600.10.5.1 * gfs2-kmp-rt-debuginfo-6.4.0-150600.10.5.1 * kernel-rt_debug-debuginfo-6.4.0-150600.10.5.1 * kernel-rt-devel-6.4.0-150600.10.5.1 * kernel-rt_debug-devel-6.4.0-150600.10.5.1 * ocfs2-kmp-rt-debuginfo-6.4.0-150600.10.5.1 * SUSE Real Time Module 15-SP6 (noarch) * kernel-devel-rt-6.4.0-150600.10.5.1 * kernel-source-rt-6.4.0-150600.10.5.1 * SUSE Real Time Module 15-SP6 (nosrc x86_64) * kernel-rt_debug-6.4.0-150600.10.5.1 * kernel-rt-6.4.0-150600.10.5.1 ## References: * https://www.suse.com/security/cve/CVE-2021-47432.html * https://www.suse.com/security/cve/CVE-2022-48772.html * https://www.suse.com/security/cve/CVE-2023-0160.html * https://www.suse.com/security/cve/CVE-2023-38417.html * https://www.suse.com/security/cve/CVE-2023-47210.html * https://www.suse.com/security/cve/CVE-2023-51780.html * https://www.suse.com/security/cve/CVE-2023-52435.html * https://www.suse.com/security/cve/CVE-2023-52458.html * https://www.suse.com/security/cve/CVE-2023-52472.html * https://www.suse.com/security/cve/CVE-2023-52503.html * https://www.suse.com/security/cve/CVE-2023-52616.html * https://www.suse.com/security/cve/CVE-2023-52618.html * https://www.suse.com/security/cve/CVE-2023-52622.html * https://www.suse.com/security/cve/CVE-2023-52631.html * https://www.suse.com/security/cve/CVE-2023-52635.html * https://www.suse.com/security/cve/CVE-2023-52640.html * https://www.suse.com/security/cve/CVE-2023-52641.html * https://www.suse.com/security/cve/CVE-2023-52645.html * https://www.suse.com/security/cve/CVE-2023-52652.html * https://www.suse.com/security/cve/CVE-2023-52653.html * https://www.suse.com/security/cve/CVE-2023-52656.html * https://www.suse.com/security/cve/CVE-2023-52657.html * https://www.suse.com/security/cve/CVE-2023-52658.html * https://www.suse.com/security/cve/CVE-2023-52659.html * https://www.suse.com/security/cve/CVE-2023-52660.html * https://www.suse.com/security/cve/CVE-2023-52661.html * https://www.suse.com/security/cve/CVE-2023-52662.html * https://www.suse.com/security/cve/CVE-2023-52663.html * https://www.suse.com/security/cve/CVE-2023-52664.html * https://www.suse.com/security/cve/CVE-2023-52667.html * https://www.suse.com/security/cve/CVE-2023-52669.html * https://www.suse.com/security/cve/CVE-2023-52670.html * https://www.suse.com/security/cve/CVE-2023-52671.html * https://www.suse.com/security/cve/CVE-2023-52672.html * https://www.suse.com/security/cve/CVE-2023-52673.html * https://www.suse.com/security/cve/CVE-2023-52674.html * https://www.suse.com/security/cve/CVE-2023-52675.html * https://www.suse.com/security/cve/CVE-2023-52676.html * https://www.suse.com/security/cve/CVE-2023-52678.html * https://www.suse.com/security/cve/CVE-2023-52679.html * https://www.suse.com/security/cve/CVE-2023-52680.html * https://www.suse.com/security/cve/CVE-2023-52681.html * https://www.suse.com/security/cve/CVE-2023-52683.html * https://www.suse.com/security/cve/CVE-2023-52685.html * https://www.suse.com/security/cve/CVE-2023-52686.html * https://www.suse.com/security/cve/CVE-2023-52687.html * https://www.suse.com/security/cve/CVE-2023-52690.html * https://www.suse.com/security/cve/CVE-2023-52691.html * https://www.suse.com/security/cve/CVE-2023-52692.html * https://www.suse.com/security/cve/CVE-2023-52693.html * https://www.suse.com/security/cve/CVE-2023-52694.html * https://www.suse.com/security/cve/CVE-2023-52695.html * https://www.suse.com/security/cve/CVE-2023-52696.html * https://www.suse.com/security/cve/CVE-2023-52697.html * https://www.suse.com/security/cve/CVE-2023-52698.html * https://www.suse.com/security/cve/CVE-2023-52699.html * https://www.suse.com/security/cve/CVE-2023-52735.html * https://www.suse.com/security/cve/CVE-2023-52749.html * https://www.suse.com/security/cve/CVE-2023-52750.html * https://www.suse.com/security/cve/CVE-2023-52751.html * https://www.suse.com/security/cve/CVE-2023-52753.html * https://www.suse.com/security/cve/CVE-2023-52754.html * https://www.suse.com/security/cve/CVE-2023-52757.html * https://www.suse.com/security/cve/CVE-2023-52759.html * https://www.suse.com/security/cve/CVE-2023-52762.html * https://www.suse.com/security/cve/CVE-2023-52763.html * https://www.suse.com/security/cve/CVE-2023-52764.html * https://www.suse.com/security/cve/CVE-2023-52765.html * https://www.suse.com/security/cve/CVE-2023-52766.html * https://www.suse.com/security/cve/CVE-2023-52767.html * https://www.suse.com/security/cve/CVE-2023-52768.html * https://www.suse.com/security/cve/CVE-2023-52769.html * https://www.suse.com/security/cve/CVE-2023-52771.html * https://www.suse.com/security/cve/CVE-2023-52772.html * https://www.suse.com/security/cve/CVE-2023-52773.html * https://www.suse.com/security/cve/CVE-2023-52774.html * https://www.suse.com/security/cve/CVE-2023-52775.html * https://www.suse.com/security/cve/CVE-2023-52776.html * https://www.suse.com/security/cve/CVE-2023-52777.html * https://www.suse.com/security/cve/CVE-2023-52780.html * https://www.suse.com/security/cve/CVE-2023-52781.html * https://www.suse.com/security/cve/CVE-2023-52782.html * https://www.suse.com/security/cve/CVE-2023-52783.html * https://www.suse.com/security/cve/CVE-2023-52784.html * https://www.suse.com/security/cve/CVE-2023-52786.html * https://www.suse.com/security/cve/CVE-2023-52787.html * https://www.suse.com/security/cve/CVE-2023-52788.html * https://www.suse.com/security/cve/CVE-2023-52789.html * https://www.suse.com/security/cve/CVE-2023-52791.html * https://www.suse.com/security/cve/CVE-2023-52792.html * https://www.suse.com/security/cve/CVE-2023-52794.html * https://www.suse.com/security/cve/CVE-2023-52795.html * https://www.suse.com/security/cve/CVE-2023-52796.html * https://www.suse.com/security/cve/CVE-2023-52798.html * https://www.suse.com/security/cve/CVE-2023-52799.html * https://www.suse.com/security/cve/CVE-2023-52800.html * https://www.suse.com/security/cve/CVE-2023-52801.html * https://www.suse.com/security/cve/CVE-2023-52803.html * https://www.suse.com/security/cve/CVE-2023-52804.html * https://www.suse.com/security/cve/CVE-2023-52805.html * https://www.suse.com/security/cve/CVE-2023-52806.html * https://www.suse.com/security/cve/CVE-2023-52807.html * https://www.suse.com/security/cve/CVE-2023-52808.html * https://www.suse.com/security/cve/CVE-2023-52809.html * https://www.suse.com/security/cve/CVE-2023-52810.html * https://www.suse.com/security/cve/CVE-2023-52811.html * https://www.suse.com/security/cve/CVE-2023-52812.html * https://www.suse.com/security/cve/CVE-2023-52813.html * https://www.suse.com/security/cve/CVE-2023-52814.html * https://www.suse.com/security/cve/CVE-2023-52815.html * https://www.suse.com/security/cve/CVE-2023-52816.html * https://www.suse.com/security/cve/CVE-2023-52817.html * https://www.suse.com/security/cve/CVE-2023-52818.html * https://www.suse.com/security/cve/CVE-2023-52819.html * https://www.suse.com/security/cve/CVE-2023-52821.html * https://www.suse.com/security/cve/CVE-2023-52825.html * https://www.suse.com/security/cve/CVE-2023-52826.html * https://www.suse.com/security/cve/CVE-2023-52827.html * https://www.suse.com/security/cve/CVE-2023-52829.html * https://www.suse.com/security/cve/CVE-2023-52832.html * https://www.suse.com/security/cve/CVE-2023-52833.html * https://www.suse.com/security/cve/CVE-2023-52834.html * https://www.suse.com/security/cve/CVE-2023-52835.html * https://www.suse.com/security/cve/CVE-2023-52836.html * https://www.suse.com/security/cve/CVE-2023-52837.html * https://www.suse.com/security/cve/CVE-2023-52838.html * https://www.suse.com/security/cve/CVE-2023-52840.html * https://www.suse.com/security/cve/CVE-2023-52841.html * https://www.suse.com/security/cve/CVE-2023-52842.html * https://www.suse.com/security/cve/CVE-2023-52843.html * https://www.suse.com/security/cve/CVE-2023-52844.html * https://www.suse.com/security/cve/CVE-2023-52845.html * https://www.suse.com/security/cve/CVE-2023-52847.html * https://www.suse.com/security/cve/CVE-2023-52849.html * https://www.suse.com/security/cve/CVE-2023-52850.html * https://www.suse.com/security/cve/CVE-2023-52851.html * https://www.suse.com/security/cve/CVE-2023-52853.html * https://www.suse.com/security/cve/CVE-2023-52854.html * https://www.suse.com/security/cve/CVE-2023-52855.html * https://www.suse.com/security/cve/CVE-2023-52856.html * https://www.suse.com/security/cve/CVE-2023-52857.html * https://www.suse.com/security/cve/CVE-2023-52858.html * https://www.suse.com/security/cve/CVE-2023-52860.html * https://www.suse.com/security/cve/CVE-2023-52861.html * https://www.suse.com/security/cve/CVE-2023-52862.html * https://www.suse.com/security/cve/CVE-2023-52863.html * https://www.suse.com/security/cve/CVE-2023-52864.html * https://www.suse.com/security/cve/CVE-2023-52865.html * https://www.suse.com/security/cve/CVE-2023-52866.html * https://www.suse.com/security/cve/CVE-2023-52867.html * https://www.suse.com/security/cve/CVE-2023-52868.html * https://www.suse.com/security/cve/CVE-2023-52869.html * https://www.suse.com/security/cve/CVE-2023-52870.html * https://www.suse.com/security/cve/CVE-2023-52871.html * https://www.suse.com/security/cve/CVE-2023-52872.html * https://www.suse.com/security/cve/CVE-2023-52873.html * https://www.suse.com/security/cve/CVE-2023-52874.html * https://www.suse.com/security/cve/CVE-2023-52875.html * https://www.suse.com/security/cve/CVE-2023-52876.html * https://www.suse.com/security/cve/CVE-2023-52877.html * https://www.suse.com/security/cve/CVE-2023-52878.html * https://www.suse.com/security/cve/CVE-2023-52879.html * https://www.suse.com/security/cve/CVE-2023-52880.html * https://www.suse.com/security/cve/CVE-2023-52881.html * https://www.suse.com/security/cve/CVE-2023-52882.html * https://www.suse.com/security/cve/CVE-2023-52883.html * https://www.suse.com/security/cve/CVE-2023-52884.html * https://www.suse.com/security/cve/CVE-2023-6238.html * https://www.suse.com/security/cve/CVE-2023-7042.html * https://www.suse.com/security/cve/CVE-2024-0639.html * https://www.suse.com/security/cve/CVE-2024-21823.html * https://www.suse.com/security/cve/CVE-2024-22099.html * https://www.suse.com/security/cve/CVE-2024-23848.html * https://www.suse.com/security/cve/CVE-2024-24861.html * https://www.suse.com/security/cve/CVE-2024-25739.html * https://www.suse.com/security/cve/CVE-2024-25741.html * https://www.suse.com/security/cve/CVE-2024-26601.html * https://www.suse.com/security/cve/CVE-2024-26611.html * https://www.suse.com/security/cve/CVE-2024-26614.html * https://www.suse.com/security/cve/CVE-2024-26615.html * https://www.suse.com/security/cve/CVE-2024-26623.html * https://www.suse.com/security/cve/CVE-2024-26625.html * https://www.suse.com/security/cve/CVE-2024-26632.html * https://www.suse.com/security/cve/CVE-2024-26633.html * https://www.suse.com/security/cve/CVE-2024-26635.html * https://www.suse.com/security/cve/CVE-2024-26636.html * https://www.suse.com/security/cve/CVE-2024-26638.html * https://www.suse.com/security/cve/CVE-2024-26641.html * https://www.suse.com/security/cve/CVE-2024-26642.html * https://www.suse.com/security/cve/CVE-2024-26643.html * https://www.suse.com/security/cve/CVE-2024-26650.html * https://www.suse.com/security/cve/CVE-2024-26652.html * https://www.suse.com/security/cve/CVE-2024-26654.html * https://www.suse.com/security/cve/CVE-2024-26656.html * https://www.suse.com/security/cve/CVE-2024-26657.html * https://www.suse.com/security/cve/CVE-2024-26663.html * https://www.suse.com/security/cve/CVE-2024-26665.html * https://www.suse.com/security/cve/CVE-2024-26671.html * https://www.suse.com/security/cve/CVE-2024-26673.html * https://www.suse.com/security/cve/CVE-2024-26674.html * https://www.suse.com/security/cve/CVE-2024-26676.html * https://www.suse.com/security/cve/CVE-2024-26679.html * https://www.suse.com/security/cve/CVE-2024-26684.html * https://www.suse.com/security/cve/CVE-2024-26685.html * https://www.suse.com/security/cve/CVE-2024-26691.html * https://www.suse.com/security/cve/CVE-2024-26704.html * https://www.suse.com/security/cve/CVE-2024-26714.html * https://www.suse.com/security/cve/CVE-2024-26726.html * https://www.suse.com/security/cve/CVE-2024-26731.html * https://www.suse.com/security/cve/CVE-2024-26733.html * https://www.suse.com/security/cve/CVE-2024-26734.html * https://www.suse.com/security/cve/CVE-2024-26737.html * https://www.suse.com/security/cve/CVE-2024-26739.html * https://www.suse.com/security/cve/CVE-2024-26740.html * https://www.suse.com/security/cve/CVE-2024-26742.html * https://www.suse.com/security/cve/CVE-2024-26750.html * https://www.suse.com/security/cve/CVE-2024-26756.html * https://www.suse.com/security/cve/CVE-2024-26758.html * https://www.suse.com/security/cve/CVE-2024-26760.html * https://www.suse.com/security/cve/CVE-2024-26761.html * https://www.suse.com/security/cve/CVE-2024-26764.html * https://www.suse.com/security/cve/CVE-2024-26767.html * https://www.suse.com/security/cve/CVE-2024-26769.html * https://www.suse.com/security/cve/CVE-2024-26772.html * https://www.suse.com/security/cve/CVE-2024-26773.html * https://www.suse.com/security/cve/CVE-2024-26774.html * https://www.suse.com/security/cve/CVE-2024-26775.html * https://www.suse.com/security/cve/CVE-2024-26780.html * https://www.suse.com/security/cve/CVE-2024-26783.html * https://www.suse.com/security/cve/CVE-2024-26785.html * https://www.suse.com/security/cve/CVE-2024-26786.html * https://www.suse.com/security/cve/CVE-2024-26791.html * https://www.suse.com/security/cve/CVE-2024-26793.html * https://www.suse.com/security/cve/CVE-2024-26794.html * https://www.suse.com/security/cve/CVE-2024-26802.html * https://www.suse.com/security/cve/CVE-2024-26805.html * https://www.suse.com/security/cve/CVE-2024-26807.html * https://www.suse.com/security/cve/CVE-2024-26813.html * https://www.suse.com/security/cve/CVE-2024-26814.html * https://www.suse.com/security/cve/CVE-2024-26815.html * https://www.suse.com/security/cve/CVE-2024-26816.html * https://www.suse.com/security/cve/CVE-2024-26822.html * https://www.suse.com/security/cve/CVE-2024-26826.html * https://www.suse.com/security/cve/CVE-2024-26832.html * https://www.suse.com/security/cve/CVE-2024-26836.html * https://www.suse.com/security/cve/CVE-2024-26842.html * https://www.suse.com/security/cve/CVE-2024-26844.html * https://www.suse.com/security/cve/CVE-2024-26845.html * https://www.suse.com/security/cve/CVE-2024-26846.html * https://www.suse.com/security/cve/CVE-2024-26853.html * https://www.suse.com/security/cve/CVE-2024-26854.html * https://www.suse.com/security/cve/CVE-2024-26855.html * https://www.suse.com/security/cve/CVE-2024-26856.html * https://www.suse.com/security/cve/CVE-2024-26857.html * https://www.suse.com/security/cve/CVE-2024-26858.html * https://www.suse.com/security/cve/CVE-2024-26860.html * https://www.suse.com/security/cve/CVE-2024-26861.html * https://www.suse.com/security/cve/CVE-2024-26862.html * https://www.suse.com/security/cve/CVE-2024-26863.html * https://www.suse.com/security/cve/CVE-2024-26866.html * https://www.suse.com/security/cve/CVE-2024-26868.html * https://www.suse.com/security/cve/CVE-2024-26870.html * https://www.suse.com/security/cve/CVE-2024-26878.html * https://www.suse.com/security/cve/CVE-2024-26881.html * https://www.suse.com/security/cve/CVE-2024-26882.html * https://www.suse.com/security/cve/CVE-2024-26883.html * https://www.suse.com/security/cve/CVE-2024-26884.html * https://www.suse.com/security/cve/CVE-2024-26885.html * https://www.suse.com/security/cve/CVE-2024-26889.html * https://www.suse.com/security/cve/CVE-2024-26899.html * https://www.suse.com/security/cve/CVE-2024-26900.html * https://www.suse.com/security/cve/CVE-2024-26901.html * https://www.suse.com/security/cve/CVE-2024-26903.html * https://www.suse.com/security/cve/CVE-2024-26906.html * https://www.suse.com/security/cve/CVE-2024-26909.html * https://www.suse.com/security/cve/CVE-2024-26920.html * https://www.suse.com/security/cve/CVE-2024-26921.html * https://www.suse.com/security/cve/CVE-2024-26922.html * https://www.suse.com/security/cve/CVE-2024-26923.html * https://www.suse.com/security/cve/CVE-2024-26925.html * https://www.suse.com/security/cve/CVE-2024-26928.html * https://www.suse.com/security/cve/CVE-2024-26932.html * https://www.suse.com/security/cve/CVE-2024-26933.html * https://www.suse.com/security/cve/CVE-2024-26934.html * https://www.suse.com/security/cve/CVE-2024-26935.html * https://www.suse.com/security/cve/CVE-2024-26937.html * https://www.suse.com/security/cve/CVE-2024-26938.html * https://www.suse.com/security/cve/CVE-2024-26940.html * https://www.suse.com/security/cve/CVE-2024-26943.html * https://www.suse.com/security/cve/CVE-2024-26944.html * https://www.suse.com/security/cve/CVE-2024-26945.html * https://www.suse.com/security/cve/CVE-2024-26946.html * https://www.suse.com/security/cve/CVE-2024-26948.html * https://www.suse.com/security/cve/CVE-2024-26949.html * https://www.suse.com/security/cve/CVE-2024-26950.html * https://www.suse.com/security/cve/CVE-2024-26951.html * https://www.suse.com/security/cve/CVE-2024-26957.html * https://www.suse.com/security/cve/CVE-2024-26958.html * https://www.suse.com/security/cve/CVE-2024-26960.html * https://www.suse.com/security/cve/CVE-2024-26961.html * https://www.suse.com/security/cve/CVE-2024-26962.html * https://www.suse.com/security/cve/CVE-2024-26963.html * https://www.suse.com/security/cve/CVE-2024-26964.html * https://www.suse.com/security/cve/CVE-2024-26972.html * https://www.suse.com/security/cve/CVE-2024-26973.html * https://www.suse.com/security/cve/CVE-2024-26978.html * https://www.suse.com/security/cve/CVE-2024-26981.html * https://www.suse.com/security/cve/CVE-2024-26982.html * https://www.suse.com/security/cve/CVE-2024-26983.html * https://www.suse.com/security/cve/CVE-2024-26984.html * https://www.suse.com/security/cve/CVE-2024-26986.html * https://www.suse.com/security/cve/CVE-2024-26988.html * https://www.suse.com/security/cve/CVE-2024-26989.html * https://www.suse.com/security/cve/CVE-2024-26990.html * https://www.suse.com/security/cve/CVE-2024-26991.html * https://www.suse.com/security/cve/CVE-2024-26992.html * https://www.suse.com/security/cve/CVE-2024-26993.html * https://www.suse.com/security/cve/CVE-2024-26994.html * https://www.suse.com/security/cve/CVE-2024-26995.html * https://www.suse.com/security/cve/CVE-2024-26996.html * https://www.suse.com/security/cve/CVE-2024-26997.html * https://www.suse.com/security/cve/CVE-2024-26999.html * https://www.suse.com/security/cve/CVE-2024-27000.html * https://www.suse.com/security/cve/CVE-2024-27001.html * https://www.suse.com/security/cve/CVE-2024-27002.html * https://www.suse.com/security/cve/CVE-2024-27003.html * https://www.suse.com/security/cve/CVE-2024-27004.html * https://www.suse.com/security/cve/CVE-2024-27008.html * https://www.suse.com/security/cve/CVE-2024-27012.html * https://www.suse.com/security/cve/CVE-2024-27013.html * https://www.suse.com/security/cve/CVE-2024-27014.html * https://www.suse.com/security/cve/CVE-2024-27015.html * https://www.suse.com/security/cve/CVE-2024-27016.html * https://www.suse.com/security/cve/CVE-2024-27019.html * https://www.suse.com/security/cve/CVE-2024-27020.html * https://www.suse.com/security/cve/CVE-2024-27022.html * https://www.suse.com/security/cve/CVE-2024-27025.html * https://www.suse.com/security/cve/CVE-2024-27027.html * https://www.suse.com/security/cve/CVE-2024-27028.html * https://www.suse.com/security/cve/CVE-2024-27030.html * https://www.suse.com/security/cve/CVE-2024-27031.html * https://www.suse.com/security/cve/CVE-2024-27046.html * https://www.suse.com/security/cve/CVE-2024-27056.html * https://www.suse.com/security/cve/CVE-2024-27057.html * https://www.suse.com/security/cve/CVE-2024-27062.html * https://www.suse.com/security/cve/CVE-2024-27064.html * https://www.suse.com/security/cve/CVE-2024-27065.html * https://www.suse.com/security/cve/CVE-2024-27067.html * https://www.suse.com/security/cve/CVE-2024-27080.html * https://www.suse.com/security/cve/CVE-2024-27388.html * https://www.suse.com/security/cve/CVE-2024-27389.html * https://www.suse.com/security/cve/CVE-2024-27393.html * https://www.suse.com/security/cve/CVE-2024-27395.html * https://www.suse.com/security/cve/CVE-2024-27396.html * https://www.suse.com/security/cve/CVE-2024-27399.html * https://www.suse.com/security/cve/CVE-2024-27400.html * https://www.suse.com/security/cve/CVE-2024-27401.html * https://www.suse.com/security/cve/CVE-2024-27402.html * https://www.suse.com/security/cve/CVE-2024-27404.html * https://www.suse.com/security/cve/CVE-2024-27405.html * https://www.suse.com/security/cve/CVE-2024-27408.html * https://www.suse.com/security/cve/CVE-2024-27410.html * https://www.suse.com/security/cve/CVE-2024-27411.html * https://www.suse.com/security/cve/CVE-2024-27412.html * https://www.suse.com/security/cve/CVE-2024-27413.html * https://www.suse.com/security/cve/CVE-2024-27414.html * https://www.suse.com/security/cve/CVE-2024-27416.html * https://www.suse.com/security/cve/CVE-2024-27417.html * https://www.suse.com/security/cve/CVE-2024-27418.html * https://www.suse.com/security/cve/CVE-2024-27419.html * https://www.suse.com/security/cve/CVE-2024-27431.html * https://www.suse.com/security/cve/CVE-2024-27432.html * https://www.suse.com/security/cve/CVE-2024-27434.html * https://www.suse.com/security/cve/CVE-2024-27435.html * https://www.suse.com/security/cve/CVE-2024-27436.html * https://www.suse.com/security/cve/CVE-2024-33619.html * https://www.suse.com/security/cve/CVE-2024-34777.html * https://www.suse.com/security/cve/CVE-2024-35247.html * https://www.suse.com/security/cve/CVE-2024-35784.html * https://www.suse.com/security/cve/CVE-2024-35786.html * https://www.suse.com/security/cve/CVE-2024-35788.html * https://www.suse.com/security/cve/CVE-2024-35789.html * https://www.suse.com/security/cve/CVE-2024-35790.html * https://www.suse.com/security/cve/CVE-2024-35791.html * https://www.suse.com/security/cve/CVE-2024-35794.html * https://www.suse.com/security/cve/CVE-2024-35795.html * https://www.suse.com/security/cve/CVE-2024-35796.html * https://www.suse.com/security/cve/CVE-2024-35799.html * https://www.suse.com/security/cve/CVE-2024-35800.html * https://www.suse.com/security/cve/CVE-2024-35801.html * https://www.suse.com/security/cve/CVE-2024-35803.html * https://www.suse.com/security/cve/CVE-2024-35804.html * https://www.suse.com/security/cve/CVE-2024-35805.html * https://www.suse.com/security/cve/CVE-2024-35806.html * https://www.suse.com/security/cve/CVE-2024-35807.html * https://www.suse.com/security/cve/CVE-2024-35808.html * https://www.suse.com/security/cve/CVE-2024-35809.html * https://www.suse.com/security/cve/CVE-2024-35810.html * https://www.suse.com/security/cve/CVE-2024-35811.html * https://www.suse.com/security/cve/CVE-2024-35812.html * https://www.suse.com/security/cve/CVE-2024-35813.html * https://www.suse.com/security/cve/CVE-2024-35814.html * https://www.suse.com/security/cve/CVE-2024-35815.html * https://www.suse.com/security/cve/CVE-2024-35817.html * https://www.suse.com/security/cve/CVE-2024-35819.html * https://www.suse.com/security/cve/CVE-2024-35821.html * https://www.suse.com/security/cve/CVE-2024-35822.html * https://www.suse.com/security/cve/CVE-2024-35823.html * https://www.suse.com/security/cve/CVE-2024-35824.html * https://www.suse.com/security/cve/CVE-2024-35825.html * https://www.suse.com/security/cve/CVE-2024-35827.html * https://www.suse.com/security/cve/CVE-2024-35828.html * https://www.suse.com/security/cve/CVE-2024-35829.html * https://www.suse.com/security/cve/CVE-2024-35830.html * https://www.suse.com/security/cve/CVE-2024-35831.html * https://www.suse.com/security/cve/CVE-2024-35833.html * https://www.suse.com/security/cve/CVE-2024-35834.html * https://www.suse.com/security/cve/CVE-2024-35835.html * https://www.suse.com/security/cve/CVE-2024-35836.html * https://www.suse.com/security/cve/CVE-2024-35837.html * https://www.suse.com/security/cve/CVE-2024-35838.html * https://www.suse.com/security/cve/CVE-2024-35841.html * https://www.suse.com/security/cve/CVE-2024-35842.html * https://www.suse.com/security/cve/CVE-2024-35843.html * https://www.suse.com/security/cve/CVE-2024-35845.html * https://www.suse.com/security/cve/CVE-2024-35847.html * https://www.suse.com/security/cve/CVE-2024-35848.html * https://www.suse.com/security/cve/CVE-2024-35849.html * https://www.suse.com/security/cve/CVE-2024-35850.html * https://www.suse.com/security/cve/CVE-2024-35851.html * https://www.suse.com/security/cve/CVE-2024-35852.html * https://www.suse.com/security/cve/CVE-2024-35853.html * https://www.suse.com/security/cve/CVE-2024-35854.html * https://www.suse.com/security/cve/CVE-2024-35857.html * https://www.suse.com/security/cve/CVE-2024-35860.html * https://www.suse.com/security/cve/CVE-2024-35861.html * https://www.suse.com/security/cve/CVE-2024-35862.html * https://www.suse.com/security/cve/CVE-2024-35863.html * https://www.suse.com/security/cve/CVE-2024-35864.html * https://www.suse.com/security/cve/CVE-2024-35865.html * https://www.suse.com/security/cve/CVE-2024-35866.html * https://www.suse.com/security/cve/CVE-2024-35867.html * https://www.suse.com/security/cve/CVE-2024-35868.html * https://www.suse.com/security/cve/CVE-2024-35872.html * https://www.suse.com/security/cve/CVE-2024-35875.html * https://www.suse.com/security/cve/CVE-2024-35877.html * https://www.suse.com/security/cve/CVE-2024-35878.html * https://www.suse.com/security/cve/CVE-2024-35879.html * https://www.suse.com/security/cve/CVE-2024-35880.html * https://www.suse.com/security/cve/CVE-2024-35883.html * https://www.suse.com/security/cve/CVE-2024-35884.html * https://www.suse.com/security/cve/CVE-2024-35885.html * https://www.suse.com/security/cve/CVE-2024-35886.html * https://www.suse.com/security/cve/CVE-2024-35887.html * https://www.suse.com/security/cve/CVE-2024-35889.html * https://www.suse.com/security/cve/CVE-2024-35890.html * https://www.suse.com/security/cve/CVE-2024-35891.html * https://www.suse.com/security/cve/CVE-2024-35892.html * https://www.suse.com/security/cve/CVE-2024-35893.html * https://www.suse.com/security/cve/CVE-2024-35895.html * https://www.suse.com/security/cve/CVE-2024-35896.html * https://www.suse.com/security/cve/CVE-2024-35898.html * https://www.suse.com/security/cve/CVE-2024-35899.html * https://www.suse.com/security/cve/CVE-2024-35900.html * https://www.suse.com/security/cve/CVE-2024-35901.html * https://www.suse.com/security/cve/CVE-2024-35903.html * https://www.suse.com/security/cve/CVE-2024-35904.html * https://www.suse.com/security/cve/CVE-2024-35905.html * https://www.suse.com/security/cve/CVE-2024-35907.html * https://www.suse.com/security/cve/CVE-2024-35908.html * https://www.suse.com/security/cve/CVE-2024-35909.html * https://www.suse.com/security/cve/CVE-2024-35911.html * https://www.suse.com/security/cve/CVE-2024-35912.html * https://www.suse.com/security/cve/CVE-2024-35914.html * https://www.suse.com/security/cve/CVE-2024-35915.html * https://www.suse.com/security/cve/CVE-2024-35916.html * https://www.suse.com/security/cve/CVE-2024-35917.html * https://www.suse.com/security/cve/CVE-2024-35921.html * https://www.suse.com/security/cve/CVE-2024-35922.html * https://www.suse.com/security/cve/CVE-2024-35924.html * https://www.suse.com/security/cve/CVE-2024-35925.html * https://www.suse.com/security/cve/CVE-2024-35926.html * https://www.suse.com/security/cve/CVE-2024-35927.html * https://www.suse.com/security/cve/CVE-2024-35928.html * https://www.suse.com/security/cve/CVE-2024-35930.html * https://www.suse.com/security/cve/CVE-2024-35931.html * https://www.suse.com/security/cve/CVE-2024-35932.html * https://www.suse.com/security/cve/CVE-2024-35933.html * https://www.suse.com/security/cve/CVE-2024-35934.html * https://www.suse.com/security/cve/CVE-2024-35935.html * https://www.suse.com/security/cve/CVE-2024-35936.html * https://www.suse.com/security/cve/CVE-2024-35937.html * https://www.suse.com/security/cve/CVE-2024-35938.html * https://www.suse.com/security/cve/CVE-2024-35940.html * https://www.suse.com/security/cve/CVE-2024-35942.html * https://www.suse.com/security/cve/CVE-2024-35943.html * https://www.suse.com/security/cve/CVE-2024-35944.html * https://www.suse.com/security/cve/CVE-2024-35945.html * https://www.suse.com/security/cve/CVE-2024-35946.html * https://www.suse.com/security/cve/CVE-2024-35947.html * https://www.suse.com/security/cve/CVE-2024-35950.html * https://www.suse.com/security/cve/CVE-2024-35951.html * https://www.suse.com/security/cve/CVE-2024-35952.html * https://www.suse.com/security/cve/CVE-2024-35953.html * https://www.suse.com/security/cve/CVE-2024-35954.html * https://www.suse.com/security/cve/CVE-2024-35955.html * https://www.suse.com/security/cve/CVE-2024-35956.html * https://www.suse.com/security/cve/CVE-2024-35957.html * https://www.suse.com/security/cve/CVE-2024-35958.html * https://www.suse.com/security/cve/CVE-2024-35959.html * https://www.suse.com/security/cve/CVE-2024-35960.html * https://www.suse.com/security/cve/CVE-2024-35961.html * https://www.suse.com/security/cve/CVE-2024-35962.html * https://www.suse.com/security/cve/CVE-2024-35963.html * https://www.suse.com/security/cve/CVE-2024-35964.html * https://www.suse.com/security/cve/CVE-2024-35965.html * https://www.suse.com/security/cve/CVE-2024-35966.html * https://www.suse.com/security/cve/CVE-2024-35967.html * https://www.suse.com/security/cve/CVE-2024-35969.html * https://www.suse.com/security/cve/CVE-2024-35970.html * https://www.suse.com/security/cve/CVE-2024-35971.html * https://www.suse.com/security/cve/CVE-2024-35972.html * https://www.suse.com/security/cve/CVE-2024-35973.html * https://www.suse.com/security/cve/CVE-2024-35974.html * https://www.suse.com/security/cve/CVE-2024-35975.html * https://www.suse.com/security/cve/CVE-2024-35976.html * https://www.suse.com/security/cve/CVE-2024-35977.html * https://www.suse.com/security/cve/CVE-2024-35978.html * https://www.suse.com/security/cve/CVE-2024-35979.html * https://www.suse.com/security/cve/CVE-2024-35981.html * https://www.suse.com/security/cve/CVE-2024-35982.html * https://www.suse.com/security/cve/CVE-2024-35984.html * https://www.suse.com/security/cve/CVE-2024-35986.html * https://www.suse.com/security/cve/CVE-2024-35989.html * https://www.suse.com/security/cve/CVE-2024-35990.html * https://www.suse.com/security/cve/CVE-2024-35991.html * https://www.suse.com/security/cve/CVE-2024-35992.html * https://www.suse.com/security/cve/CVE-2024-35995.html * https://www.suse.com/security/cve/CVE-2024-35997.html * https://www.suse.com/security/cve/CVE-2024-35998.html * https://www.suse.com/security/cve/CVE-2024-35999.html * https://www.suse.com/security/cve/CVE-2024-36002.html * https://www.suse.com/security/cve/CVE-2024-36003.html * https://www.suse.com/security/cve/CVE-2024-36004.html * https://www.suse.com/security/cve/CVE-2024-36005.html * https://www.suse.com/security/cve/CVE-2024-36006.html * https://www.suse.com/security/cve/CVE-2024-36007.html * https://www.suse.com/security/cve/CVE-2024-36008.html * https://www.suse.com/security/cve/CVE-2024-36009.html * https://www.suse.com/security/cve/CVE-2024-36010.html * https://www.suse.com/security/cve/CVE-2024-36011.html * https://www.suse.com/security/cve/CVE-2024-36012.html * https://www.suse.com/security/cve/CVE-2024-36013.html * https://www.suse.com/security/cve/CVE-2024-36014.html * https://www.suse.com/security/cve/CVE-2024-36015.html * https://www.suse.com/security/cve/CVE-2024-36016.html * https://www.suse.com/security/cve/CVE-2024-36017.html * https://www.suse.com/security/cve/CVE-2024-36018.html * https://www.suse.com/security/cve/CVE-2024-36019.html * https://www.suse.com/security/cve/CVE-2024-36020.html * https://www.suse.com/security/cve/CVE-2024-36021.html * https://www.suse.com/security/cve/CVE-2024-36024.html * https://www.suse.com/security/cve/CVE-2024-36025.html * https://www.suse.com/security/cve/CVE-2024-36026.html * https://www.suse.com/security/cve/CVE-2024-36029.html * https://www.suse.com/security/cve/CVE-2024-36030.html * https://www.suse.com/security/cve/CVE-2024-36032.html * https://www.suse.com/security/cve/CVE-2024-36281.html * https://www.suse.com/security/cve/CVE-2024-36477.html * https://www.suse.com/security/cve/CVE-2024-36478.html * https://www.suse.com/security/cve/CVE-2024-36479.html * https://www.suse.com/security/cve/CVE-2024-36880.html * https://www.suse.com/security/cve/CVE-2024-36882.html * https://www.suse.com/security/cve/CVE-2024-36885.html * https://www.suse.com/security/cve/CVE-2024-36887.html * https://www.suse.com/security/cve/CVE-2024-36889.html * https://www.suse.com/security/cve/CVE-2024-36890.html * https://www.suse.com/security/cve/CVE-2024-36891.html * https://www.suse.com/security/cve/CVE-2024-36893.html * https://www.suse.com/security/cve/CVE-2024-36894.html * https://www.suse.com/security/cve/CVE-2024-36895.html * https://www.suse.com/security/cve/CVE-2024-36896.html * https://www.suse.com/security/cve/CVE-2024-36897.html * https://www.suse.com/security/cve/CVE-2024-36898.html * https://www.suse.com/security/cve/CVE-2024-36899.html * https://www.suse.com/security/cve/CVE-2024-36900.html * https://www.suse.com/security/cve/CVE-2024-36901.html * https://www.suse.com/security/cve/CVE-2024-36902.html * https://www.suse.com/security/cve/CVE-2024-36903.html * https://www.suse.com/security/cve/CVE-2024-36904.html * https://www.suse.com/security/cve/CVE-2024-36906.html * https://www.suse.com/security/cve/CVE-2024-36909.html * https://www.suse.com/security/cve/CVE-2024-36910.html * https://www.suse.com/security/cve/CVE-2024-36911.html * https://www.suse.com/security/cve/CVE-2024-36912.html * https://www.suse.com/security/cve/CVE-2024-36913.html * https://www.suse.com/security/cve/CVE-2024-36914.html * https://www.suse.com/security/cve/CVE-2024-36915.html * https://www.suse.com/security/cve/CVE-2024-36916.html * https://www.suse.com/security/cve/CVE-2024-36917.html * https://www.suse.com/security/cve/CVE-2024-36918.html * https://www.suse.com/security/cve/CVE-2024-36919.html * https://www.suse.com/security/cve/CVE-2024-36921.html * https://www.suse.com/security/cve/CVE-2024-36922.html * https://www.suse.com/security/cve/CVE-2024-36923.html * https://www.suse.com/security/cve/CVE-2024-36924.html * https://www.suse.com/security/cve/CVE-2024-36926.html * https://www.suse.com/security/cve/CVE-2024-36928.html * https://www.suse.com/security/cve/CVE-2024-36930.html * https://www.suse.com/security/cve/CVE-2024-36931.html * https://www.suse.com/security/cve/CVE-2024-36934.html * https://www.suse.com/security/cve/CVE-2024-36935.html * https://www.suse.com/security/cve/CVE-2024-36936.html * https://www.suse.com/security/cve/CVE-2024-36937.html * https://www.suse.com/security/cve/CVE-2024-36938.html * https://www.suse.com/security/cve/CVE-2024-36940.html * https://www.suse.com/security/cve/CVE-2024-36942.html * https://www.suse.com/security/cve/CVE-2024-36944.html * https://www.suse.com/security/cve/CVE-2024-36945.html * https://www.suse.com/security/cve/CVE-2024-36946.html * https://www.suse.com/security/cve/CVE-2024-36947.html * https://www.suse.com/security/cve/CVE-2024-36949.html * https://www.suse.com/security/cve/CVE-2024-36950.html * https://www.suse.com/security/cve/CVE-2024-36951.html * https://www.suse.com/security/cve/CVE-2024-36952.html * https://www.suse.com/security/cve/CVE-2024-36955.html * https://www.suse.com/security/cve/CVE-2024-36957.html * https://www.suse.com/security/cve/CVE-2024-36959.html * https://www.suse.com/security/cve/CVE-2024-36960.html * https://www.suse.com/security/cve/CVE-2024-36962.html * https://www.suse.com/security/cve/CVE-2024-36964.html * https://www.suse.com/security/cve/CVE-2024-36965.html * https://www.suse.com/security/cve/CVE-2024-36967.html * https://www.suse.com/security/cve/CVE-2024-36969.html * https://www.suse.com/security/cve/CVE-2024-36971.html * https://www.suse.com/security/cve/CVE-2024-36972.html * https://www.suse.com/security/cve/CVE-2024-36973.html * https://www.suse.com/security/cve/CVE-2024-36975.html * https://www.suse.com/security/cve/CVE-2024-36977.html * https://www.suse.com/security/cve/CVE-2024-36978.html * https://www.suse.com/security/cve/CVE-2024-37021.html * https://www.suse.com/security/cve/CVE-2024-37078.html * https://www.suse.com/security/cve/CVE-2024-37353.html * https://www.suse.com/security/cve/CVE-2024-37354.html * https://www.suse.com/security/cve/CVE-2024-38381.html * https://www.suse.com/security/cve/CVE-2024-38384.html * https://www.suse.com/security/cve/CVE-2024-38385.html * https://www.suse.com/security/cve/CVE-2024-38388.html * https://www.suse.com/security/cve/CVE-2024-38390.html * https://www.suse.com/security/cve/CVE-2024-38391.html * https://www.suse.com/security/cve/CVE-2024-38539.html * https://www.suse.com/security/cve/CVE-2024-38540.html * https://www.suse.com/security/cve/CVE-2024-38541.html * https://www.suse.com/security/cve/CVE-2024-38543.html * https://www.suse.com/security/cve/CVE-2024-38544.html * https://www.suse.com/security/cve/CVE-2024-38546.html * https://www.suse.com/security/cve/CVE-2024-38547.html * https://www.suse.com/security/cve/CVE-2024-38548.html * https://www.suse.com/security/cve/CVE-2024-38549.html * https://www.suse.com/security/cve/CVE-2024-38550.html * https://www.suse.com/security/cve/CVE-2024-38551.html * https://www.suse.com/security/cve/CVE-2024-38552.html * https://www.suse.com/security/cve/CVE-2024-38553.html * https://www.suse.com/security/cve/CVE-2024-38554.html * https://www.suse.com/security/cve/CVE-2024-38555.html * https://www.suse.com/security/cve/CVE-2024-38556.html * https://www.suse.com/security/cve/CVE-2024-38557.html * https://www.suse.com/security/cve/CVE-2024-38558.html * https://www.suse.com/security/cve/CVE-2024-38562.html * https://www.suse.com/security/cve/CVE-2024-38564.html * https://www.suse.com/security/cve/CVE-2024-38565.html * https://www.suse.com/security/cve/CVE-2024-38566.html * https://www.suse.com/security/cve/CVE-2024-38567.html * https://www.suse.com/security/cve/CVE-2024-38568.html * https://www.suse.com/security/cve/CVE-2024-38569.html * https://www.suse.com/security/cve/CVE-2024-38570.html * https://www.suse.com/security/cve/CVE-2024-38571.html * https://www.suse.com/security/cve/CVE-2024-38572.html * https://www.suse.com/security/cve/CVE-2024-38573.html * https://www.suse.com/security/cve/CVE-2024-38575.html * https://www.suse.com/security/cve/CVE-2024-38578.html * https://www.suse.com/security/cve/CVE-2024-38579.html * https://www.suse.com/security/cve/CVE-2024-38580.html * https://www.suse.com/security/cve/CVE-2024-38581.html * https://www.suse.com/security/cve/CVE-2024-38582.html * https://www.suse.com/security/cve/CVE-2024-38583.html * https://www.suse.com/security/cve/CVE-2024-38586.html * https://www.suse.com/security/cve/CVE-2024-38587.html * https://www.suse.com/security/cve/CVE-2024-38588.html * https://www.suse.com/security/cve/CVE-2024-38590.html * https://www.suse.com/security/cve/CVE-2024-38591.html * https://www.suse.com/security/cve/CVE-2024-38592.html * https://www.suse.com/security/cve/CVE-2024-38594.html * https://www.suse.com/security/cve/CVE-2024-38595.html * https://www.suse.com/security/cve/CVE-2024-38597.html * https://www.suse.com/security/cve/CVE-2024-38598.html * https://www.suse.com/security/cve/CVE-2024-38599.html * https://www.suse.com/security/cve/CVE-2024-38600.html * https://www.suse.com/security/cve/CVE-2024-38601.html * https://www.suse.com/security/cve/CVE-2024-38602.html * https://www.suse.com/security/cve/CVE-2024-38603.html * https://www.suse.com/security/cve/CVE-2024-38604.html * https://www.suse.com/security/cve/CVE-2024-38605.html * https://www.suse.com/security/cve/CVE-2024-38608.html * https://www.suse.com/security/cve/CVE-2024-38610.html * https://www.suse.com/security/cve/CVE-2024-38611.html * https://www.suse.com/security/cve/CVE-2024-38615.html * https://www.suse.com/security/cve/CVE-2024-38616.html * https://www.suse.com/security/cve/CVE-2024-38617.html * https://www.suse.com/security/cve/CVE-2024-38618.html * https://www.suse.com/security/cve/CVE-2024-38619.html * https://www.suse.com/security/cve/CVE-2024-38621.html * https://www.suse.com/security/cve/CVE-2024-38622.html * https://www.suse.com/security/cve/CVE-2024-38627.html * https://www.suse.com/security/cve/CVE-2024-38628.html * https://www.suse.com/security/cve/CVE-2024-38629.html * https://www.suse.com/security/cve/CVE-2024-38630.html * https://www.suse.com/security/cve/CVE-2024-38633.html * https://www.suse.com/security/cve/CVE-2024-38634.html * https://www.suse.com/security/cve/CVE-2024-38635.html * https://www.suse.com/security/cve/CVE-2024-38636.html * https://www.suse.com/security/cve/CVE-2024-38659.html * https://www.suse.com/security/cve/CVE-2024-38661.html * https://www.suse.com/security/cve/CVE-2024-38663.html * https://www.suse.com/security/cve/CVE-2024-38664.html * https://www.suse.com/security/cve/CVE-2024-38780.html * https://www.suse.com/security/cve/CVE-2024-39276.html * https://www.suse.com/security/cve/CVE-2024-39277.html * https://www.suse.com/security/cve/CVE-2024-39291.html * https://www.suse.com/security/cve/CVE-2024-39296.html * https://www.suse.com/security/cve/CVE-2024-39301.html * https://www.suse.com/security/cve/CVE-2024-39362.html * https://www.suse.com/security/cve/CVE-2024-39371.html * https://www.suse.com/security/cve/CVE-2024-39463.html * https://www.suse.com/security/cve/CVE-2024-39466.html * https://www.suse.com/security/cve/CVE-2024-39468.html * https://www.suse.com/security/cve/CVE-2024-39469.html * https://www.suse.com/security/cve/CVE-2024-39471.html * https://www.suse.com/security/cve/CVE-2024-39472.html * https://www.suse.com/security/cve/CVE-2024-39473.html * https://www.suse.com/security/cve/CVE-2024-39474.html * https://www.suse.com/security/cve/CVE-2024-39475.html * https://www.suse.com/security/cve/CVE-2024-39479.html * https://www.suse.com/security/cve/CVE-2024-39481.html * https://www.suse.com/security/cve/CVE-2024-39482.html * https://www.suse.com/security/cve/CVE-2024-39487.html * https://www.suse.com/security/cve/CVE-2024-39490.html * https://www.suse.com/security/cve/CVE-2024-39494.html * https://www.suse.com/security/cve/CVE-2024-39496.html * https://www.suse.com/security/cve/CVE-2024-39498.html * https://www.suse.com/security/cve/CVE-2024-39502.html * https://www.suse.com/security/cve/CVE-2024-39504.html * https://www.suse.com/security/cve/CVE-2024-39507.html * https://www.suse.com/security/cve/CVE-2024-40901.html * https://www.suse.com/security/cve/CVE-2024-40906.html * https://www.suse.com/security/cve/CVE-2024-40908.html * https://www.suse.com/security/cve/CVE-2024-40919.html * https://www.suse.com/security/cve/CVE-2024-40923.html * https://www.suse.com/security/cve/CVE-2024-40925.html * https://www.suse.com/security/cve/CVE-2024-40928.html * https://www.suse.com/security/cve/CVE-2024-40931.html * https://www.suse.com/security/cve/CVE-2024-40935.html * https://www.suse.com/security/cve/CVE-2024-40937.html * https://www.suse.com/security/cve/CVE-2024-40940.html * https://www.suse.com/security/cve/CVE-2024-40947.html * https://www.suse.com/security/cve/CVE-2024-40948.html * https://www.suse.com/security/cve/CVE-2024-40953.html * https://www.suse.com/security/cve/CVE-2024-40960.html * https://www.suse.com/security/cve/CVE-2024-40961.html * https://www.suse.com/security/cve/CVE-2024-40966.html * https://www.suse.com/security/cve/CVE-2024-40970.html * https://www.suse.com/security/cve/CVE-2024-40972.html * https://www.suse.com/security/cve/CVE-2024-40975.html * https://www.suse.com/security/cve/CVE-2024-40979.html * https://www.suse.com/security/cve/CVE-2024-40998.html * https://www.suse.com/security/cve/CVE-2024-40999.html * https://www.suse.com/security/cve/CVE-2024-41006.html * https://www.suse.com/security/cve/CVE-2024-41011.html * https://www.suse.com/security/cve/CVE-2024-41013.html * https://www.suse.com/security/cve/CVE-2024-41014.html * https://www.suse.com/security/cve/CVE-2024-41017.html * https://www.suse.com/security/cve/CVE-2024-41090.html * https://www.suse.com/security/cve/CVE-2024-41091.html * https://bugzilla.suse.com/show_bug.cgi?id=1012628 * https://bugzilla.suse.com/show_bug.cgi?id=1065729 * https://bugzilla.suse.com/show_bug.cgi?id=1181674 * https://bugzilla.suse.com/show_bug.cgi?id=1186716 * https://bugzilla.suse.com/show_bug.cgi?id=1187716 * https://bugzilla.suse.com/show_bug.cgi?id=1193599 * https://bugzilla.suse.com/show_bug.cgi?id=1194869 * https://bugzilla.suse.com/show_bug.cgi?id=1195775 * https://bugzilla.suse.com/show_bug.cgi?id=1204562 * https://bugzilla.suse.com/show_bug.cgi?id=1207948 * https://bugzilla.suse.com/show_bug.cgi?id=1208593 * https://bugzilla.suse.com/show_bug.cgi?id=1209657 * https://bugzilla.suse.com/show_bug.cgi?id=1209834 * https://bugzilla.suse.com/show_bug.cgi?id=1213573 * https://bugzilla.suse.com/show_bug.cgi?id=1214683 * https://bugzilla.suse.com/show_bug.cgi?id=1214852 * https://bugzilla.suse.com/show_bug.cgi?id=1215199 * https://bugzilla.suse.com/show_bug.cgi?id=1215587 * https://bugzilla.suse.com/show_bug.cgi?id=1216196 * https://bugzilla.suse.com/show_bug.cgi?id=1216358 * https://bugzilla.suse.com/show_bug.cgi?id=1216702 * https://bugzilla.suse.com/show_bug.cgi?id=1217384 * https://bugzilla.suse.com/show_bug.cgi?id=1217408 * https://bugzilla.suse.com/show_bug.cgi?id=1217481 * https://bugzilla.suse.com/show_bug.cgi?id=1217489 * https://bugzilla.suse.com/show_bug.cgi?id=1217750 * https://bugzilla.suse.com/show_bug.cgi?id=1217912 * https://bugzilla.suse.com/show_bug.cgi?id=1217959 * https://bugzilla.suse.com/show_bug.cgi?id=1218205 * https://bugzilla.suse.com/show_bug.cgi?id=1218336 * https://bugzilla.suse.com/show_bug.cgi?id=1218442 * https://bugzilla.suse.com/show_bug.cgi?id=1218730 * https://bugzilla.suse.com/show_bug.cgi?id=1218779 * https://bugzilla.suse.com/show_bug.cgi?id=1218820 * https://bugzilla.suse.com/show_bug.cgi?id=1218917 * https://bugzilla.suse.com/show_bug.cgi?id=1219104 * https://bugzilla.suse.com/show_bug.cgi?id=1219170 * https://bugzilla.suse.com/show_bug.cgi?id=1219224 * https://bugzilla.suse.com/show_bug.cgi?id=1219478 * https://bugzilla.suse.com/show_bug.cgi?id=1219596 * https://bugzilla.suse.com/show_bug.cgi?id=1219623 * https://bugzilla.suse.com/show_bug.cgi?id=1219633 * https://bugzilla.suse.com/show_bug.cgi?id=1219832 * https://bugzilla.suse.com/show_bug.cgi?id=1219834 * https://bugzilla.suse.com/show_bug.cgi?id=1219847 * https://bugzilla.suse.com/show_bug.cgi?id=1219953 * https://bugzilla.suse.com/show_bug.cgi?id=1220021 * https://bugzilla.suse.com/show_bug.cgi?id=1220045 * https://bugzilla.suse.com/show_bug.cgi?id=1220120 * https://bugzilla.suse.com/show_bug.cgi?id=1220138 * https://bugzilla.suse.com/show_bug.cgi?id=1220328 * https://bugzilla.suse.com/show_bug.cgi?id=1220342 * https://bugzilla.suse.com/show_bug.cgi?id=1220427 * https://bugzilla.suse.com/show_bug.cgi?id=1220428 * https://bugzilla.suse.com/show_bug.cgi?id=1220430 * https://bugzilla.suse.com/show_bug.cgi?id=1220569 * https://bugzilla.suse.com/show_bug.cgi?id=1220587 * https://bugzilla.suse.com/show_bug.cgi?id=1220783 * https://bugzilla.suse.com/show_bug.cgi?id=1220915 * https://bugzilla.suse.com/show_bug.cgi?id=1220942 * https://bugzilla.suse.com/show_bug.cgi?id=1221044 * https://bugzilla.suse.com/show_bug.cgi?id=1221057 * https://bugzilla.suse.com/show_bug.cgi?id=1221086 * https://bugzilla.suse.com/show_bug.cgi?id=1221293 * https://bugzilla.suse.com/show_bug.cgi?id=1221303 * https://bugzilla.suse.com/show_bug.cgi?id=1221504 * https://bugzilla.suse.com/show_bug.cgi?id=1221612 * https://bugzilla.suse.com/show_bug.cgi?id=1221615 * https://bugzilla.suse.com/show_bug.cgi?id=1221635 * https://bugzilla.suse.com/show_bug.cgi?id=1221645 * https://bugzilla.suse.com/show_bug.cgi?id=1221647 * https://bugzilla.suse.com/show_bug.cgi?id=1221649 * https://bugzilla.suse.com/show_bug.cgi?id=1221654 * https://bugzilla.suse.com/show_bug.cgi?id=1221656 * https://bugzilla.suse.com/show_bug.cgi?id=1221659 * https://bugzilla.suse.com/show_bug.cgi?id=1221765 * https://bugzilla.suse.com/show_bug.cgi?id=1221777 * https://bugzilla.suse.com/show_bug.cgi?id=1221783 * https://bugzilla.suse.com/show_bug.cgi?id=1221816 * https://bugzilla.suse.com/show_bug.cgi?id=1221829 * https://bugzilla.suse.com/show_bug.cgi?id=1221830 * https://bugzilla.suse.com/show_bug.cgi?id=1221858 * https://bugzilla.suse.com/show_bug.cgi?id=1221958 * https://bugzilla.suse.com/show_bug.cgi?id=1222011 * https://bugzilla.suse.com/show_bug.cgi?id=1222015 * https://bugzilla.suse.com/show_bug.cgi?id=1222048 * https://bugzilla.suse.com/show_bug.cgi?id=1222080 * https://bugzilla.suse.com/show_bug.cgi?id=1222115 * https://bugzilla.suse.com/show_bug.cgi?id=1222173 * https://bugzilla.suse.com/show_bug.cgi?id=1222241 * https://bugzilla.suse.com/show_bug.cgi?id=1222264 * https://bugzilla.suse.com/show_bug.cgi?id=1222273 * https://bugzilla.suse.com/show_bug.cgi?id=1222294 * https://bugzilla.suse.com/show_bug.cgi?id=1222301 * https://bugzilla.suse.com/show_bug.cgi?id=1222303 * https://bugzilla.suse.com/show_bug.cgi?id=1222304 * https://bugzilla.suse.com/show_bug.cgi?id=1222307 * https://bugzilla.suse.com/show_bug.cgi?id=1222326 * https://bugzilla.suse.com/show_bug.cgi?id=1222328 * https://bugzilla.suse.com/show_bug.cgi?id=1222357 * https://bugzilla.suse.com/show_bug.cgi?id=1222366 * https://bugzilla.suse.com/show_bug.cgi?id=1222368 * https://bugzilla.suse.com/show_bug.cgi?id=1222371 * https://bugzilla.suse.com/show_bug.cgi?id=1222378 * https://bugzilla.suse.com/show_bug.cgi?id=1222380 * https://bugzilla.suse.com/show_bug.cgi?id=1222385 * https://bugzilla.suse.com/show_bug.cgi?id=1222422 * https://bugzilla.suse.com/show_bug.cgi?id=1222426 * https://bugzilla.suse.com/show_bug.cgi?id=1222428 * https://bugzilla.suse.com/show_bug.cgi?id=1222437 * https://bugzilla.suse.com/show_bug.cgi?id=1222438 * https://bugzilla.suse.com/show_bug.cgi?id=1222445 * https://bugzilla.suse.com/show_bug.cgi?id=1222459 * https://bugzilla.suse.com/show_bug.cgi?id=1222463 * https://bugzilla.suse.com/show_bug.cgi?id=1222489 * https://bugzilla.suse.com/show_bug.cgi?id=1222522 * https://bugzilla.suse.com/show_bug.cgi?id=1222525 * https://bugzilla.suse.com/show_bug.cgi?id=1222531 * https://bugzilla.suse.com/show_bug.cgi?id=1222532 * https://bugzilla.suse.com/show_bug.cgi?id=1222557 * https://bugzilla.suse.com/show_bug.cgi?id=1222559 * https://bugzilla.suse.com/show_bug.cgi?id=1222563 * https://bugzilla.suse.com/show_bug.cgi?id=1222585 * https://bugzilla.suse.com/show_bug.cgi?id=1222588 * https://bugzilla.suse.com/show_bug.cgi?id=1222596 * https://bugzilla.suse.com/show_bug.cgi?id=1222606 * https://bugzilla.suse.com/show_bug.cgi?id=1222608 * https://bugzilla.suse.com/show_bug.cgi?id=1222613 * https://bugzilla.suse.com/show_bug.cgi?id=1222615 * https://bugzilla.suse.com/show_bug.cgi?id=1222617 * https://bugzilla.suse.com/show_bug.cgi?id=1222618 * https://bugzilla.suse.com/show_bug.cgi?id=1222619 * https://bugzilla.suse.com/show_bug.cgi?id=1222622 * https://bugzilla.suse.com/show_bug.cgi?id=1222624 * https://bugzilla.suse.com/show_bug.cgi?id=1222627 * https://bugzilla.suse.com/show_bug.cgi?id=1222630 * https://bugzilla.suse.com/show_bug.cgi?id=1222635 * https://bugzilla.suse.com/show_bug.cgi?id=1222721 * https://bugzilla.suse.com/show_bug.cgi?id=1222727 * https://bugzilla.suse.com/show_bug.cgi?id=1222768 * https://bugzilla.suse.com/show_bug.cgi?id=1222769 * https://bugzilla.suse.com/show_bug.cgi?id=1222771 * https://bugzilla.suse.com/show_bug.cgi?id=1222775 * https://bugzilla.suse.com/show_bug.cgi?id=1222779 * https://bugzilla.suse.com/show_bug.cgi?id=1222780 * https://bugzilla.suse.com/show_bug.cgi?id=1222782 * https://bugzilla.suse.com/show_bug.cgi?id=1222793 * https://bugzilla.suse.com/show_bug.cgi?id=1222799 * https://bugzilla.suse.com/show_bug.cgi?id=1222801 * https://bugzilla.suse.com/show_bug.cgi?id=1222809 * https://bugzilla.suse.com/show_bug.cgi?id=1222810 * https://bugzilla.suse.com/show_bug.cgi?id=1222893 * https://bugzilla.suse.com/show_bug.cgi?id=1222968 * https://bugzilla.suse.com/show_bug.cgi?id=1223007 * https://bugzilla.suse.com/show_bug.cgi?id=1223010 * https://bugzilla.suse.com/show_bug.cgi?id=1223011 * https://bugzilla.suse.com/show_bug.cgi?id=1223013 * https://bugzilla.suse.com/show_bug.cgi?id=1223015 * https://bugzilla.suse.com/show_bug.cgi?id=1223018 * https://bugzilla.suse.com/show_bug.cgi?id=1223020 * https://bugzilla.suse.com/show_bug.cgi?id=1223021 * https://bugzilla.suse.com/show_bug.cgi?id=1223023 * https://bugzilla.suse.com/show_bug.cgi?id=1223024 * https://bugzilla.suse.com/show_bug.cgi?id=1223033 * https://bugzilla.suse.com/show_bug.cgi?id=1223034 * https://bugzilla.suse.com/show_bug.cgi?id=1223035 * https://bugzilla.suse.com/show_bug.cgi?id=1223038 * https://bugzilla.suse.com/show_bug.cgi?id=1223039 * https://bugzilla.suse.com/show_bug.cgi?id=1223041 * https://bugzilla.suse.com/show_bug.cgi?id=1223045 * https://bugzilla.suse.com/show_bug.cgi?id=1223046 * https://bugzilla.suse.com/show_bug.cgi?id=1223051 * https://bugzilla.suse.com/show_bug.cgi?id=1223052 * https://bugzilla.suse.com/show_bug.cgi?id=1223058 * https://bugzilla.suse.com/show_bug.cgi?id=1223060 * https://bugzilla.suse.com/show_bug.cgi?id=1223061 * https://bugzilla.suse.com/show_bug.cgi?id=1223076 * https://bugzilla.suse.com/show_bug.cgi?id=1223077 * https://bugzilla.suse.com/show_bug.cgi?id=1223111 * https://bugzilla.suse.com/show_bug.cgi?id=1223113 * https://bugzilla.suse.com/show_bug.cgi?id=1223138 * https://bugzilla.suse.com/show_bug.cgi?id=1223143 * https://bugzilla.suse.com/show_bug.cgi?id=1223187 * https://bugzilla.suse.com/show_bug.cgi?id=1223189 * https://bugzilla.suse.com/show_bug.cgi?id=1223190 * https://bugzilla.suse.com/show_bug.cgi?id=1223191 * https://bugzilla.suse.com/show_bug.cgi?id=1223198 * https://bugzilla.suse.com/show_bug.cgi?id=1223202 * https://bugzilla.suse.com/show_bug.cgi?id=1223265 * https://bugzilla.suse.com/show_bug.cgi?id=1223285 * https://bugzilla.suse.com/show_bug.cgi?id=1223315 * https://bugzilla.suse.com/show_bug.cgi?id=1223338 * https://bugzilla.suse.com/show_bug.cgi?id=1223369 * https://bugzilla.suse.com/show_bug.cgi?id=1223380 * https://bugzilla.suse.com/show_bug.cgi?id=1223384 * https://bugzilla.suse.com/show_bug.cgi?id=1223390 * https://bugzilla.suse.com/show_bug.cgi?id=1223439 * https://bugzilla.suse.com/show_bug.cgi?id=1223462 * https://bugzilla.suse.com/show_bug.cgi?id=1223532 * https://bugzilla.suse.com/show_bug.cgi?id=1223539 * https://bugzilla.suse.com/show_bug.cgi?id=1223570 * https://bugzilla.suse.com/show_bug.cgi?id=1223575 * https://bugzilla.suse.com/show_bug.cgi?id=1223590 * https://bugzilla.suse.com/show_bug.cgi?id=1223591 * https://bugzilla.suse.com/show_bug.cgi?id=1223592 * https://bugzilla.suse.com/show_bug.cgi?id=1223593 * https://bugzilla.suse.com/show_bug.cgi?id=1223625 * https://bugzilla.suse.com/show_bug.cgi?id=1223629 * https://bugzilla.suse.com/show_bug.cgi?id=1223633 * https://bugzilla.suse.com/show_bug.cgi?id=1223634 * https://bugzilla.suse.com/show_bug.cgi?id=1223637 * https://bugzilla.suse.com/show_bug.cgi?id=1223641 * https://bugzilla.suse.com/show_bug.cgi?id=1223643 * https://bugzilla.suse.com/show_bug.cgi?id=1223649 * https://bugzilla.suse.com/show_bug.cgi?id=1223650 * https://bugzilla.suse.com/show_bug.cgi?id=1223651 * https://bugzilla.suse.com/show_bug.cgi?id=1223652 * https://bugzilla.suse.com/show_bug.cgi?id=1223653 * https://bugzilla.suse.com/show_bug.cgi?id=1223654 * https://bugzilla.suse.com/show_bug.cgi?id=1223655 * https://bugzilla.suse.com/show_bug.cgi?id=1223660 * https://bugzilla.suse.com/show_bug.cgi?id=1223661 * https://bugzilla.suse.com/show_bug.cgi?id=1223664 * https://bugzilla.suse.com/show_bug.cgi?id=1223665 * https://bugzilla.suse.com/show_bug.cgi?id=1223666 * https://bugzilla.suse.com/show_bug.cgi?id=1223668 * https://bugzilla.suse.com/show_bug.cgi?id=1223669 * https://bugzilla.suse.com/show_bug.cgi?id=1223670 * https://bugzilla.suse.com/show_bug.cgi?id=1223671 * https://bugzilla.suse.com/show_bug.cgi?id=1223675 * https://bugzilla.suse.com/show_bug.cgi?id=1223677 * https://bugzilla.suse.com/show_bug.cgi?id=1223678 * https://bugzilla.suse.com/show_bug.cgi?id=1223686 * https://bugzilla.suse.com/show_bug.cgi?id=1223692 * https://bugzilla.suse.com/show_bug.cgi?id=1223693 * https://bugzilla.suse.com/show_bug.cgi?id=1223695 * https://bugzilla.suse.com/show_bug.cgi?id=1223696 * https://bugzilla.suse.com/show_bug.cgi?id=1223698 * https://bugzilla.suse.com/show_bug.cgi?id=1223705 * https://bugzilla.suse.com/show_bug.cgi?id=1223712 * https://bugzilla.suse.com/show_bug.cgi?id=1223718 * https://bugzilla.suse.com/show_bug.cgi?id=1223728 * https://bugzilla.suse.com/show_bug.cgi?id=1223731 * https://bugzilla.suse.com/show_bug.cgi?id=1223732 * https://bugzilla.suse.com/show_bug.cgi?id=1223735 * https://bugzilla.suse.com/show_bug.cgi?id=1223739 * https://bugzilla.suse.com/show_bug.cgi?id=1223740 * https://bugzilla.suse.com/show_bug.cgi?id=1223741 * https://bugzilla.suse.com/show_bug.cgi?id=1223744 * https://bugzilla.suse.com/show_bug.cgi?id=1223745 * https://bugzilla.suse.com/show_bug.cgi?id=1223747 * https://bugzilla.suse.com/show_bug.cgi?id=1223748 * https://bugzilla.suse.com/show_bug.cgi?id=1223749 * https://bugzilla.suse.com/show_bug.cgi?id=1223750 * https://bugzilla.suse.com/show_bug.cgi?id=1223752 * https://bugzilla.suse.com/show_bug.cgi?id=1223754 * https://bugzilla.suse.com/show_bug.cgi?id=1223757 * https://bugzilla.suse.com/show_bug.cgi?id=1223759 * https://bugzilla.suse.com/show_bug.cgi?id=1223761 * https://bugzilla.suse.com/show_bug.cgi?id=1223762 * https://bugzilla.suse.com/show_bug.cgi?id=1223774 * https://bugzilla.suse.com/show_bug.cgi?id=1223778 * https://bugzilla.suse.com/show_bug.cgi?id=1223782 * https://bugzilla.suse.com/show_bug.cgi?id=1223787 * https://bugzilla.suse.com/show_bug.cgi?id=1223788 * https://bugzilla.suse.com/show_bug.cgi?id=1223790 * https://bugzilla.suse.com/show_bug.cgi?id=1223802 * https://bugzilla.suse.com/show_bug.cgi?id=1223804 * https://bugzilla.suse.com/show_bug.cgi?id=1223805 * https://bugzilla.suse.com/show_bug.cgi?id=1223806 * https://bugzilla.suse.com/show_bug.cgi?id=1223807 * https://bugzilla.suse.com/show_bug.cgi?id=1223813 * https://bugzilla.suse.com/show_bug.cgi?id=1223815 * https://bugzilla.suse.com/show_bug.cgi?id=1223822 * https://bugzilla.suse.com/show_bug.cgi?id=1223827 * https://bugzilla.suse.com/show_bug.cgi?id=1223831 * https://bugzilla.suse.com/show_bug.cgi?id=1223834 * https://bugzilla.suse.com/show_bug.cgi?id=1223836 * https://bugzilla.suse.com/show_bug.cgi?id=1223838 * https://bugzilla.suse.com/show_bug.cgi?id=1223863 * https://bugzilla.suse.com/show_bug.cgi?id=1223869 * https://bugzilla.suse.com/show_bug.cgi?id=1223870 * https://bugzilla.suse.com/show_bug.cgi?id=1223871 * https://bugzilla.suse.com/show_bug.cgi?id=1223872 * https://bugzilla.suse.com/show_bug.cgi?id=1223874 * https://bugzilla.suse.com/show_bug.cgi?id=1223944 * https://bugzilla.suse.com/show_bug.cgi?id=1223945 * https://bugzilla.suse.com/show_bug.cgi?id=1223946 * https://bugzilla.suse.com/show_bug.cgi?id=1223991 * https://bugzilla.suse.com/show_bug.cgi?id=1224049 * https://bugzilla.suse.com/show_bug.cgi?id=1224076 * https://bugzilla.suse.com/show_bug.cgi?id=1224096 * https://bugzilla.suse.com/show_bug.cgi?id=1224098 * https://bugzilla.suse.com/show_bug.cgi?id=1224137 * https://bugzilla.suse.com/show_bug.cgi?id=1224166 * https://bugzilla.suse.com/show_bug.cgi?id=1224177 * https://bugzilla.suse.com/show_bug.cgi?id=1224180 * https://bugzilla.suse.com/show_bug.cgi?id=1224181 * https://bugzilla.suse.com/show_bug.cgi?id=1224187 * https://bugzilla.suse.com/show_bug.cgi?id=1224331 * https://bugzilla.suse.com/show_bug.cgi?id=1224414 * https://bugzilla.suse.com/show_bug.cgi?id=1224422 * https://bugzilla.suse.com/show_bug.cgi?id=1224423 * https://bugzilla.suse.com/show_bug.cgi?id=1224429 * https://bugzilla.suse.com/show_bug.cgi?id=1224430 * https://bugzilla.suse.com/show_bug.cgi?id=1224432 * https://bugzilla.suse.com/show_bug.cgi?id=1224433 * https://bugzilla.suse.com/show_bug.cgi?id=1224437 * https://bugzilla.suse.com/show_bug.cgi?id=1224438 * https://bugzilla.suse.com/show_bug.cgi?id=1224439 * https://bugzilla.suse.com/show_bug.cgi?id=1224442 * https://bugzilla.suse.com/show_bug.cgi?id=1224443 * https://bugzilla.suse.com/show_bug.cgi?id=1224445 * https://bugzilla.suse.com/show_bug.cgi?id=1224449 * https://bugzilla.suse.com/show_bug.cgi?id=1224477 * https://bugzilla.suse.com/show_bug.cgi?id=1224479 * https://bugzilla.suse.com/show_bug.cgi?id=1224480 * https://bugzilla.suse.com/show_bug.cgi?id=1224481 * https://bugzilla.suse.com/show_bug.cgi?id=1224482 * https://bugzilla.suse.com/show_bug.cgi?id=1224486 * https://bugzilla.suse.com/show_bug.cgi?id=1224487 * https://bugzilla.suse.com/show_bug.cgi?id=1224488 * https://bugzilla.suse.com/show_bug.cgi?id=1224490 * https://bugzilla.suse.com/show_bug.cgi?id=1224491 * https://bugzilla.suse.com/show_bug.cgi?id=1224492 * https://bugzilla.suse.com/show_bug.cgi?id=1224493 * https://bugzilla.suse.com/show_bug.cgi?id=1224494 * https://bugzilla.suse.com/show_bug.cgi?id=1224495 * https://bugzilla.suse.com/show_bug.cgi?id=1224497 * https://bugzilla.suse.com/show_bug.cgi?id=1224498 * https://bugzilla.suse.com/show_bug.cgi?id=1224499 * https://bugzilla.suse.com/show_bug.cgi?id=1224500 * https://bugzilla.suse.com/show_bug.cgi?id=1224501 * https://bugzilla.suse.com/show_bug.cgi?id=1224502 * https://bugzilla.suse.com/show_bug.cgi?id=1224504 * https://bugzilla.suse.com/show_bug.cgi?id=1224505 * https://bugzilla.suse.com/show_bug.cgi?id=1224506 * https://bugzilla.suse.com/show_bug.cgi?id=1224507 * https://bugzilla.suse.com/show_bug.cgi?id=1224508 * https://bugzilla.suse.com/show_bug.cgi?id=1224509 * https://bugzilla.suse.com/show_bug.cgi?id=1224511 * https://bugzilla.suse.com/show_bug.cgi?id=1224512 * https://bugzilla.suse.com/show_bug.cgi?id=1224513 * https://bugzilla.suse.com/show_bug.cgi?id=1224515 * https://bugzilla.suse.com/show_bug.cgi?id=1224516 * https://bugzilla.suse.com/show_bug.cgi?id=1224517 * https://bugzilla.suse.com/show_bug.cgi?id=1224519 * https://bugzilla.suse.com/show_bug.cgi?id=1224520 * https://bugzilla.suse.com/show_bug.cgi?id=1224521 * https://bugzilla.suse.com/show_bug.cgi?id=1224523 * https://bugzilla.suse.com/show_bug.cgi?id=1224524 * https://bugzilla.suse.com/show_bug.cgi?id=1224525 * https://bugzilla.suse.com/show_bug.cgi?id=1224526 * https://bugzilla.suse.com/show_bug.cgi?id=1224530 * https://bugzilla.suse.com/show_bug.cgi?id=1224531 * https://bugzilla.suse.com/show_bug.cgi?id=1224534 * https://bugzilla.suse.com/show_bug.cgi?id=1224537 * https://bugzilla.suse.com/show_bug.cgi?id=1224539 * https://bugzilla.suse.com/show_bug.cgi?id=1224540 * https://bugzilla.suse.com/show_bug.cgi?id=1224541 * https://bugzilla.suse.com/show_bug.cgi?id=1224542 * https://bugzilla.suse.com/show_bug.cgi?id=1224543 * https://bugzilla.suse.com/show_bug.cgi?id=1224544 * https://bugzilla.suse.com/show_bug.cgi?id=1224545 * https://bugzilla.suse.com/show_bug.cgi?id=1224546 * https://bugzilla.suse.com/show_bug.cgi?id=1224549 * https://bugzilla.suse.com/show_bug.cgi?id=1224550 * https://bugzilla.suse.com/show_bug.cgi?id=1224552 * https://bugzilla.suse.com/show_bug.cgi?id=1224553 * https://bugzilla.suse.com/show_bug.cgi?id=1224555 * https://bugzilla.suse.com/show_bug.cgi?id=1224557 * https://bugzilla.suse.com/show_bug.cgi?id=1224558 * https://bugzilla.suse.com/show_bug.cgi?id=1224559 * https://bugzilla.suse.com/show_bug.cgi?id=1224562 * https://bugzilla.suse.com/show_bug.cgi?id=1224565 * https://bugzilla.suse.com/show_bug.cgi?id=1224566 * https://bugzilla.suse.com/show_bug.cgi?id=1224567 * https://bugzilla.suse.com/show_bug.cgi?id=1224568 * https://bugzilla.suse.com/show_bug.cgi?id=1224569 * https://bugzilla.suse.com/show_bug.cgi?id=1224571 * https://bugzilla.suse.com/show_bug.cgi?id=1224572 * https://bugzilla.suse.com/show_bug.cgi?id=1224573 * https://bugzilla.suse.com/show_bug.cgi?id=1224575 * https://bugzilla.suse.com/show_bug.cgi?id=1224576 * https://bugzilla.suse.com/show_bug.cgi?id=1224577 * https://bugzilla.suse.com/show_bug.cgi?id=1224578 * https://bugzilla.suse.com/show_bug.cgi?id=1224579 * https://bugzilla.suse.com/show_bug.cgi?id=1224580 * https://bugzilla.suse.com/show_bug.cgi?id=1224581 * https://bugzilla.suse.com/show_bug.cgi?id=1224582 * https://bugzilla.suse.com/show_bug.cgi?id=1224583 * https://bugzilla.suse.com/show_bug.cgi?id=1224584 * https://bugzilla.suse.com/show_bug.cgi?id=1224585 * https://bugzilla.suse.com/show_bug.cgi?id=1224586 * https://bugzilla.suse.com/show_bug.cgi?id=1224587 * https://bugzilla.suse.com/show_bug.cgi?id=1224588 * https://bugzilla.suse.com/show_bug.cgi?id=1224589 * https://bugzilla.suse.com/show_bug.cgi?id=1224592 * https://bugzilla.suse.com/show_bug.cgi?id=1224596 * https://bugzilla.suse.com/show_bug.cgi?id=1224598 * https://bugzilla.suse.com/show_bug.cgi?id=1224600 * https://bugzilla.suse.com/show_bug.cgi?id=1224601 * https://bugzilla.suse.com/show_bug.cgi?id=1224602 * https://bugzilla.suse.com/show_bug.cgi?id=1224603 * https://bugzilla.suse.com/show_bug.cgi?id=1224604 * https://bugzilla.suse.com/show_bug.cgi?id=1224605 * https://bugzilla.suse.com/show_bug.cgi?id=1224606 * https://bugzilla.suse.com/show_bug.cgi?id=1224607 * https://bugzilla.suse.com/show_bug.cgi?id=1224608 * https://bugzilla.suse.com/show_bug.cgi?id=1224609 * https://bugzilla.suse.com/show_bug.cgi?id=1224611 * https://bugzilla.suse.com/show_bug.cgi?id=1224612 * https://bugzilla.suse.com/show_bug.cgi?id=1224613 * https://bugzilla.suse.com/show_bug.cgi?id=1224614 * https://bugzilla.suse.com/show_bug.cgi?id=1224615 * https://bugzilla.suse.com/show_bug.cgi?id=1224617 * https://bugzilla.suse.com/show_bug.cgi?id=1224618 * https://bugzilla.suse.com/show_bug.cgi?id=1224619 * https://bugzilla.suse.com/show_bug.cgi?id=1224620 * https://bugzilla.suse.com/show_bug.cgi?id=1224621 * https://bugzilla.suse.com/show_bug.cgi?id=1224622 * https://bugzilla.suse.com/show_bug.cgi?id=1224623 * https://bugzilla.suse.com/show_bug.cgi?id=1224624 * https://bugzilla.suse.com/show_bug.cgi?id=1224626 * https://bugzilla.suse.com/show_bug.cgi?id=1224627 * https://bugzilla.suse.com/show_bug.cgi?id=1224628 * https://bugzilla.suse.com/show_bug.cgi?id=1224629 * https://bugzilla.suse.com/show_bug.cgi?id=1224630 * https://bugzilla.suse.com/show_bug.cgi?id=1224632 * https://bugzilla.suse.com/show_bug.cgi?id=1224633 * https://bugzilla.suse.com/show_bug.cgi?id=1224634 * https://bugzilla.suse.com/show_bug.cgi?id=1224636 * https://bugzilla.suse.com/show_bug.cgi?id=1224637 * https://bugzilla.suse.com/show_bug.cgi?id=1224638 * https://bugzilla.suse.com/show_bug.cgi?id=1224639 * https://bugzilla.suse.com/show_bug.cgi?id=1224640 * https://bugzilla.suse.com/show_bug.cgi?id=1224641 * https://bugzilla.suse.com/show_bug.cgi?id=1224643 * https://bugzilla.suse.com/show_bug.cgi?id=1224644 * https://bugzilla.suse.com/show_bug.cgi?id=1224645 * https://bugzilla.suse.com/show_bug.cgi?id=1224646 * https://bugzilla.suse.com/show_bug.cgi?id=1224647 * https://bugzilla.suse.com/show_bug.cgi?id=1224648 * https://bugzilla.suse.com/show_bug.cgi?id=1224649 * https://bugzilla.suse.com/show_bug.cgi?id=1224650 * https://bugzilla.suse.com/show_bug.cgi?id=1224651 * https://bugzilla.suse.com/show_bug.cgi?id=1224652 * https://bugzilla.suse.com/show_bug.cgi?id=1224653 * https://bugzilla.suse.com/show_bug.cgi?id=1224654 * https://bugzilla.suse.com/show_bug.cgi?id=1224655 * https://bugzilla.suse.com/show_bug.cgi?id=1224657 * https://bugzilla.suse.com/show_bug.cgi?id=1224659 * https://bugzilla.suse.com/show_bug.cgi?id=1224660 * https://bugzilla.suse.com/show_bug.cgi?id=1224661 * https://bugzilla.suse.com/show_bug.cgi?id=1224662 * https://bugzilla.suse.com/show_bug.cgi?id=1224663 * https://bugzilla.suse.com/show_bug.cgi?id=1224664 * https://bugzilla.suse.com/show_bug.cgi?id=1224665 * https://bugzilla.suse.com/show_bug.cgi?id=1224666 * https://bugzilla.suse.com/show_bug.cgi?id=1224667 * https://bugzilla.suse.com/show_bug.cgi?id=1224668 * https://bugzilla.suse.com/show_bug.cgi?id=1224670 * https://bugzilla.suse.com/show_bug.cgi?id=1224671 * https://bugzilla.suse.com/show_bug.cgi?id=1224673 * https://bugzilla.suse.com/show_bug.cgi?id=1224674 * https://bugzilla.suse.com/show_bug.cgi?id=1224675 * https://bugzilla.suse.com/show_bug.cgi?id=1224676 * https://bugzilla.suse.com/show_bug.cgi?id=1224677 * https://bugzilla.suse.com/show_bug.cgi?id=1224678 * https://bugzilla.suse.com/show_bug.cgi?id=1224680 * https://bugzilla.suse.com/show_bug.cgi?id=1224681 * https://bugzilla.suse.com/show_bug.cgi?id=1224682 * https://bugzilla.suse.com/show_bug.cgi?id=1224683 * https://bugzilla.suse.com/show_bug.cgi?id=1224685 * https://bugzilla.suse.com/show_bug.cgi?id=1224686 * https://bugzilla.suse.com/show_bug.cgi?id=1224687 * https://bugzilla.suse.com/show_bug.cgi?id=1224688 * https://bugzilla.suse.com/show_bug.cgi?id=1224692 * https://bugzilla.suse.com/show_bug.cgi?id=1224696 * https://bugzilla.suse.com/show_bug.cgi?id=1224697 * https://bugzilla.suse.com/show_bug.cgi?id=1224698 * https://bugzilla.suse.com/show_bug.cgi?id=1224699 * https://bugzilla.suse.com/show_bug.cgi?id=1224701 * https://bugzilla.suse.com/show_bug.cgi?id=1224703 * https://bugzilla.suse.com/show_bug.cgi?id=1224704 * https://bugzilla.suse.com/show_bug.cgi?id=1224705 * https://bugzilla.suse.com/show_bug.cgi?id=1224706 * https://bugzilla.suse.com/show_bug.cgi?id=1224707 * https://bugzilla.suse.com/show_bug.cgi?id=1224709 * https://bugzilla.suse.com/show_bug.cgi?id=1224710 * https://bugzilla.suse.com/show_bug.cgi?id=1224712 * https://bugzilla.suse.com/show_bug.cgi?id=1224714 * https://bugzilla.suse.com/show_bug.cgi?id=1224716 * https://bugzilla.suse.com/show_bug.cgi?id=1224717 * https://bugzilla.suse.com/show_bug.cgi?id=1224718 * https://bugzilla.suse.com/show_bug.cgi?id=1224719 * https://bugzilla.suse.com/show_bug.cgi?id=1224720 * https://bugzilla.suse.com/show_bug.cgi?id=1224721 * https://bugzilla.suse.com/show_bug.cgi?id=1224722 * https://bugzilla.suse.com/show_bug.cgi?id=1224723 * https://bugzilla.suse.com/show_bug.cgi?id=1224725 * https://bugzilla.suse.com/show_bug.cgi?id=1224727 * https://bugzilla.suse.com/show_bug.cgi?id=1224728 * https://bugzilla.suse.com/show_bug.cgi?id=1224729 * https://bugzilla.suse.com/show_bug.cgi?id=1224730 * https://bugzilla.suse.com/show_bug.cgi?id=1224731 * https://bugzilla.suse.com/show_bug.cgi?id=1224732 * https://bugzilla.suse.com/show_bug.cgi?id=1224733 * https://bugzilla.suse.com/show_bug.cgi?id=1224735 * https://bugzilla.suse.com/show_bug.cgi?id=1224736 * https://bugzilla.suse.com/show_bug.cgi?id=1224738 * https://bugzilla.suse.com/show_bug.cgi?id=1224739 * https://bugzilla.suse.com/show_bug.cgi?id=1224740 * https://bugzilla.suse.com/show_bug.cgi?id=1224741 * https://bugzilla.suse.com/show_bug.cgi?id=1224742 * https://bugzilla.suse.com/show_bug.cgi?id=1224743 * https://bugzilla.suse.com/show_bug.cgi?id=1224747 * https://bugzilla.suse.com/show_bug.cgi?id=1224749 * https://bugzilla.suse.com/show_bug.cgi?id=1224751 * https://bugzilla.suse.com/show_bug.cgi?id=1224759 * https://bugzilla.suse.com/show_bug.cgi?id=1224763 * https://bugzilla.suse.com/show_bug.cgi?id=1224764 * https://bugzilla.suse.com/show_bug.cgi?id=1224765 * https://bugzilla.suse.com/show_bug.cgi?id=1224766 * https://bugzilla.suse.com/show_bug.cgi?id=1224767 * https://bugzilla.suse.com/show_bug.cgi?id=1224790 * https://bugzilla.suse.com/show_bug.cgi?id=1224792 * https://bugzilla.suse.com/show_bug.cgi?id=1224793 * https://bugzilla.suse.com/show_bug.cgi?id=1224803 * https://bugzilla.suse.com/show_bug.cgi?id=1224804 * https://bugzilla.suse.com/show_bug.cgi?id=1224866 * https://bugzilla.suse.com/show_bug.cgi?id=1224928 * https://bugzilla.suse.com/show_bug.cgi?id=1224930 * https://bugzilla.suse.com/show_bug.cgi?id=1224932 * https://bugzilla.suse.com/show_bug.cgi?id=1224933 * https://bugzilla.suse.com/show_bug.cgi?id=1224935 * https://bugzilla.suse.com/show_bug.cgi?id=1224936 * https://bugzilla.suse.com/show_bug.cgi?id=1224937 * https://bugzilla.suse.com/show_bug.cgi?id=1224939 * https://bugzilla.suse.com/show_bug.cgi?id=1224941 * https://bugzilla.suse.com/show_bug.cgi?id=1224944 * https://bugzilla.suse.com/show_bug.cgi?id=1224946 * https://bugzilla.suse.com/show_bug.cgi?id=1224947 * https://bugzilla.suse.com/show_bug.cgi?id=1224949 * https://bugzilla.suse.com/show_bug.cgi?id=1224951 * https://bugzilla.suse.com/show_bug.cgi?id=1224988 * https://bugzilla.suse.com/show_bug.cgi?id=1224989 * https://bugzilla.suse.com/show_bug.cgi?id=1224992 * https://bugzilla.suse.com/show_bug.cgi?id=1224998 * https://bugzilla.suse.com/show_bug.cgi?id=1225000 * https://bugzilla.suse.com/show_bug.cgi?id=1225001 * https://bugzilla.suse.com/show_bug.cgi?id=1225004 * https://bugzilla.suse.com/show_bug.cgi?id=1225006 * https://bugzilla.suse.com/show_bug.cgi?id=1225007 * https://bugzilla.suse.com/show_bug.cgi?id=1225008 * https://bugzilla.suse.com/show_bug.cgi?id=1225009 * https://bugzilla.suse.com/show_bug.cgi?id=1225014 * https://bugzilla.suse.com/show_bug.cgi?id=1225015 * https://bugzilla.suse.com/show_bug.cgi?id=1225022 * https://bugzilla.suse.com/show_bug.cgi?id=1225025 * https://bugzilla.suse.com/show_bug.cgi?id=1225028 * https://bugzilla.suse.com/show_bug.cgi?id=1225029 * https://bugzilla.suse.com/show_bug.cgi?id=1225031 * https://bugzilla.suse.com/show_bug.cgi?id=1225036 * https://bugzilla.suse.com/show_bug.cgi?id=1225041 * https://bugzilla.suse.com/show_bug.cgi?id=1225044 * https://bugzilla.suse.com/show_bug.cgi?id=1225049 * https://bugzilla.suse.com/show_bug.cgi?id=1225050 * https://bugzilla.suse.com/show_bug.cgi?id=1225053 * https://bugzilla.suse.com/show_bug.cgi?id=1225076 * https://bugzilla.suse.com/show_bug.cgi?id=1225077 * https://bugzilla.suse.com/show_bug.cgi?id=1225078 * https://bugzilla.suse.com/show_bug.cgi?id=1225081 * https://bugzilla.suse.com/show_bug.cgi?id=1225085 * https://bugzilla.suse.com/show_bug.cgi?id=1225086 * https://bugzilla.suse.com/show_bug.cgi?id=1225088 * https://bugzilla.suse.com/show_bug.cgi?id=1225090 * https://bugzilla.suse.com/show_bug.cgi?id=1225092 * https://bugzilla.suse.com/show_bug.cgi?id=1225096 * https://bugzilla.suse.com/show_bug.cgi?id=1225097 * https://bugzilla.suse.com/show_bug.cgi?id=1225101 * https://bugzilla.suse.com/show_bug.cgi?id=1225103 * https://bugzilla.suse.com/show_bug.cgi?id=1225104 * https://bugzilla.suse.com/show_bug.cgi?id=1225105 * https://bugzilla.suse.com/show_bug.cgi?id=1225106 * https://bugzilla.suse.com/show_bug.cgi?id=1225108 * https://bugzilla.suse.com/show_bug.cgi?id=1225120 * https://bugzilla.suse.com/show_bug.cgi?id=1225132 * https://bugzilla.suse.com/show_bug.cgi?id=1225133 * https://bugzilla.suse.com/show_bug.cgi?id=1225134 * https://bugzilla.suse.com/show_bug.cgi?id=1225136 * https://bugzilla.suse.com/show_bug.cgi?id=1225172 * https://bugzilla.suse.com/show_bug.cgi?id=1225180 * https://bugzilla.suse.com/show_bug.cgi?id=1225272 * https://bugzilla.suse.com/show_bug.cgi?id=1225300 * https://bugzilla.suse.com/show_bug.cgi?id=1225391 * https://bugzilla.suse.com/show_bug.cgi?id=1225472 * https://bugzilla.suse.com/show_bug.cgi?id=1225475 * https://bugzilla.suse.com/show_bug.cgi?id=1225476 * https://bugzilla.suse.com/show_bug.cgi?id=1225477 * https://bugzilla.suse.com/show_bug.cgi?id=1225478 * https://bugzilla.suse.com/show_bug.cgi?id=1225485 * https://bugzilla.suse.com/show_bug.cgi?id=1225489 * https://bugzilla.suse.com/show_bug.cgi?id=1225490 * https://bugzilla.suse.com/show_bug.cgi?id=1225502 * https://bugzilla.suse.com/show_bug.cgi?id=1225527 * https://bugzilla.suse.com/show_bug.cgi?id=1225529 * https://bugzilla.suse.com/show_bug.cgi?id=1225530 * https://bugzilla.suse.com/show_bug.cgi?id=1225532 * https://bugzilla.suse.com/show_bug.cgi?id=1225534 * https://bugzilla.suse.com/show_bug.cgi?id=1225548 * https://bugzilla.suse.com/show_bug.cgi?id=1225550 * https://bugzilla.suse.com/show_bug.cgi?id=1225553 * https://bugzilla.suse.com/show_bug.cgi?id=1225554 * https://bugzilla.suse.com/show_bug.cgi?id=1225555 * https://bugzilla.suse.com/show_bug.cgi?id=1225556 * https://bugzilla.suse.com/show_bug.cgi?id=1225557 * https://bugzilla.suse.com/show_bug.cgi?id=1225559 * https://bugzilla.suse.com/show_bug.cgi?id=1225560 * https://bugzilla.suse.com/show_bug.cgi?id=1225564 * https://bugzilla.suse.com/show_bug.cgi?id=1225565 * https://bugzilla.suse.com/show_bug.cgi?id=1225566 * https://bugzilla.suse.com/show_bug.cgi?id=1225568 * https://bugzilla.suse.com/show_bug.cgi?id=1225569 * https://bugzilla.suse.com/show_bug.cgi?id=1225570 * https://bugzilla.suse.com/show_bug.cgi?id=1225571 * https://bugzilla.suse.com/show_bug.cgi?id=1225572 * https://bugzilla.suse.com/show_bug.cgi?id=1225573 * https://bugzilla.suse.com/show_bug.cgi?id=1225577 * https://bugzilla.suse.com/show_bug.cgi?id=1225578 * https://bugzilla.suse.com/show_bug.cgi?id=1225579 * https://bugzilla.suse.com/show_bug.cgi?id=1225580 * https://bugzilla.suse.com/show_bug.cgi?id=1225581 * https://bugzilla.suse.com/show_bug.cgi?id=1225583 * https://bugzilla.suse.com/show_bug.cgi?id=1225584 * https://bugzilla.suse.com/show_bug.cgi?id=1225585 * https://bugzilla.suse.com/show_bug.cgi?id=1225586 * https://bugzilla.suse.com/show_bug.cgi?id=1225587 * https://bugzilla.suse.com/show_bug.cgi?id=1225588 * https://bugzilla.suse.com/show_bug.cgi?id=1225589 * https://bugzilla.suse.com/show_bug.cgi?id=1225590 * https://bugzilla.suse.com/show_bug.cgi?id=1225591 * https://bugzilla.suse.com/show_bug.cgi?id=1225592 * https://bugzilla.suse.com/show_bug.cgi?id=1225593 * https://bugzilla.suse.com/show_bug.cgi?id=1225594 * https://bugzilla.suse.com/show_bug.cgi?id=1225595 * https://bugzilla.suse.com/show_bug.cgi?id=1225599 * https://bugzilla.suse.com/show_bug.cgi?id=1225600 * https://bugzilla.suse.com/show_bug.cgi?id=1225601 * https://bugzilla.suse.com/show_bug.cgi?id=1225602 * https://bugzilla.suse.com/show_bug.cgi?id=1225605 * https://bugzilla.suse.com/show_bug.cgi?id=1225607 * https://bugzilla.suse.com/show_bug.cgi?id=1225609 * https://bugzilla.suse.com/show_bug.cgi?id=1225610 * https://bugzilla.suse.com/show_bug.cgi?id=1225611 * https://bugzilla.suse.com/show_bug.cgi?id=1225616 * https://bugzilla.suse.com/show_bug.cgi?id=1225618 * https://bugzilla.suse.com/show_bug.cgi?id=1225640 * https://bugzilla.suse.com/show_bug.cgi?id=1225642 * https://bugzilla.suse.com/show_bug.cgi?id=1225681 * https://bugzilla.suse.com/show_bug.cgi?id=1225692 * https://bugzilla.suse.com/show_bug.cgi?id=1225694 * https://bugzilla.suse.com/show_bug.cgi?id=1225695 * https://bugzilla.suse.com/show_bug.cgi?id=1225696 * https://bugzilla.suse.com/show_bug.cgi?id=1225698 * https://bugzilla.suse.com/show_bug.cgi?id=1225699 * https://bugzilla.suse.com/show_bug.cgi?id=1225702 * https://bugzilla.suse.com/show_bug.cgi?id=1225704 * https://bugzilla.suse.com/show_bug.cgi?id=1225705 * https://bugzilla.suse.com/show_bug.cgi?id=1225708 * https://bugzilla.suse.com/show_bug.cgi?id=1225710 * https://bugzilla.suse.com/show_bug.cgi?id=1225711 * https://bugzilla.suse.com/show_bug.cgi?id=1225712 * https://bugzilla.suse.com/show_bug.cgi?id=1225714 * https://bugzilla.suse.com/show_bug.cgi?id=1225715 * https://bugzilla.suse.com/show_bug.cgi?id=1225717 * https://bugzilla.suse.com/show_bug.cgi?id=1225719 * https://bugzilla.suse.com/show_bug.cgi?id=1225720 * https://bugzilla.suse.com/show_bug.cgi?id=1225722 * https://bugzilla.suse.com/show_bug.cgi?id=1225723 * https://bugzilla.suse.com/show_bug.cgi?id=1225726 * https://bugzilla.suse.com/show_bug.cgi?id=1225728 * https://bugzilla.suse.com/show_bug.cgi?id=1225731 * https://bugzilla.suse.com/show_bug.cgi?id=1225732 * https://bugzilla.suse.com/show_bug.cgi?id=1225734 * https://bugzilla.suse.com/show_bug.cgi?id=1225735 * https://bugzilla.suse.com/show_bug.cgi?id=1225736 * https://bugzilla.suse.com/show_bug.cgi?id=1225737 * https://bugzilla.suse.com/show_bug.cgi?id=1225741 * https://bugzilla.suse.com/show_bug.cgi?id=1225744 * https://bugzilla.suse.com/show_bug.cgi?id=1225745 * https://bugzilla.suse.com/show_bug.cgi?id=1225746 * https://bugzilla.suse.com/show_bug.cgi?id=1225747 * https://bugzilla.suse.com/show_bug.cgi?id=1225748 * https://bugzilla.suse.com/show_bug.cgi?id=1225749 * https://bugzilla.suse.com/show_bug.cgi?id=1225750 * https://bugzilla.suse.com/show_bug.cgi?id=1225752 * https://bugzilla.suse.com/show_bug.cgi?id=1225753 * https://bugzilla.suse.com/show_bug.cgi?id=1225756 * https://bugzilla.suse.com/show_bug.cgi?id=1225757 * https://bugzilla.suse.com/show_bug.cgi?id=1225758 * https://bugzilla.suse.com/show_bug.cgi?id=1225759 * https://bugzilla.suse.com/show_bug.cgi?id=1225760 * https://bugzilla.suse.com/show_bug.cgi?id=1225761 * https://bugzilla.suse.com/show_bug.cgi?id=1225762 * https://bugzilla.suse.com/show_bug.cgi?id=1225763 * https://bugzilla.suse.com/show_bug.cgi?id=1225765 * https://bugzilla.suse.com/show_bug.cgi?id=1225766 * https://bugzilla.suse.com/show_bug.cgi?id=1225767 * https://bugzilla.suse.com/show_bug.cgi?id=1225769 * https://bugzilla.suse.com/show_bug.cgi?id=1225770 * https://bugzilla.suse.com/show_bug.cgi?id=1225773 * https://bugzilla.suse.com/show_bug.cgi?id=1225775 * https://bugzilla.suse.com/show_bug.cgi?id=1225805 * https://bugzilla.suse.com/show_bug.cgi?id=1225810 * https://bugzilla.suse.com/show_bug.cgi?id=1225815 * https://bugzilla.suse.com/show_bug.cgi?id=1225820 * https://bugzilla.suse.com/show_bug.cgi?id=1225823 * https://bugzilla.suse.com/show_bug.cgi?id=1225827 * https://bugzilla.suse.com/show_bug.cgi?id=1225829 * https://bugzilla.suse.com/show_bug.cgi?id=1225830 * https://bugzilla.suse.com/show_bug.cgi?id=1225834 * https://bugzilla.suse.com/show_bug.cgi?id=1225839 * https://bugzilla.suse.com/show_bug.cgi?id=1225840 * https://bugzilla.suse.com/show_bug.cgi?id=1225842 * https://bugzilla.suse.com/show_bug.cgi?id=1225843 * https://bugzilla.suse.com/show_bug.cgi?id=1225847 * https://bugzilla.suse.com/show_bug.cgi?id=1225851 * https://bugzilla.suse.com/show_bug.cgi?id=1225866 * https://bugzilla.suse.com/show_bug.cgi?id=1225872 * https://bugzilla.suse.com/show_bug.cgi?id=1225894 * https://bugzilla.suse.com/show_bug.cgi?id=1225895 * https://bugzilla.suse.com/show_bug.cgi?id=1225896 * https://bugzilla.suse.com/show_bug.cgi?id=1225898 * https://bugzilla.suse.com/show_bug.cgi?id=1225903 * https://bugzilla.suse.com/show_bug.cgi?id=1225945 * https://bugzilla.suse.com/show_bug.cgi?id=1226022 * https://bugzilla.suse.com/show_bug.cgi?id=1226131 * https://bugzilla.suse.com/show_bug.cgi?id=1226145 * https://bugzilla.suse.com/show_bug.cgi?id=1226149 * https://bugzilla.suse.com/show_bug.cgi?id=1226155 * https://bugzilla.suse.com/show_bug.cgi?id=1226158 * https://bugzilla.suse.com/show_bug.cgi?id=1226163 * https://bugzilla.suse.com/show_bug.cgi?id=1226202 * https://bugzilla.suse.com/show_bug.cgi?id=1226211 * https://bugzilla.suse.com/show_bug.cgi?id=1226212 * https://bugzilla.suse.com/show_bug.cgi?id=1226213 * https://bugzilla.suse.com/show_bug.cgi?id=1226226 * https://bugzilla.suse.com/show_bug.cgi?id=1226457 * https://bugzilla.suse.com/show_bug.cgi?id=1226502 * https://bugzilla.suse.com/show_bug.cgi?id=1226503 * https://bugzilla.suse.com/show_bug.cgi?id=1226513 * https://bugzilla.suse.com/show_bug.cgi?id=1226514 * https://bugzilla.suse.com/show_bug.cgi?id=1226520 * https://bugzilla.suse.com/show_bug.cgi?id=1226582 * https://bugzilla.suse.com/show_bug.cgi?id=1226587 * https://bugzilla.suse.com/show_bug.cgi?id=1226588 * https://bugzilla.suse.com/show_bug.cgi?id=1226592 * https://bugzilla.suse.com/show_bug.cgi?id=1226593 * https://bugzilla.suse.com/show_bug.cgi?id=1226594 * https://bugzilla.suse.com/show_bug.cgi?id=1226597 * https://bugzilla.suse.com/show_bug.cgi?id=1226607 * https://bugzilla.suse.com/show_bug.cgi?id=1226608 * https://bugzilla.suse.com/show_bug.cgi?id=1226610 * https://bugzilla.suse.com/show_bug.cgi?id=1226612 * https://bugzilla.suse.com/show_bug.cgi?id=1226613 * https://bugzilla.suse.com/show_bug.cgi?id=1226630 * https://bugzilla.suse.com/show_bug.cgi?id=1226632 * https://bugzilla.suse.com/show_bug.cgi?id=1226633 * https://bugzilla.suse.com/show_bug.cgi?id=1226634 * https://bugzilla.suse.com/show_bug.cgi?id=1226637 * https://bugzilla.suse.com/show_bug.cgi?id=1226657 * https://bugzilla.suse.com/show_bug.cgi?id=1226658 * https://bugzilla.suse.com/show_bug.cgi?id=1226734 * https://bugzilla.suse.com/show_bug.cgi?id=1226735 * https://bugzilla.suse.com/show_bug.cgi?id=1226737 * https://bugzilla.suse.com/show_bug.cgi?id=1226738 * https://bugzilla.suse.com/show_bug.cgi?id=1226739 * https://bugzilla.suse.com/show_bug.cgi?id=1226740 * https://bugzilla.suse.com/show_bug.cgi?id=1226741 * https://bugzilla.suse.com/show_bug.cgi?id=1226742 * https://bugzilla.suse.com/show_bug.cgi?id=1226744 * https://bugzilla.suse.com/show_bug.cgi?id=1226746 * https://bugzilla.suse.com/show_bug.cgi?id=1226747 * https://bugzilla.suse.com/show_bug.cgi?id=1226749 * https://bugzilla.suse.com/show_bug.cgi?id=1226750 * https://bugzilla.suse.com/show_bug.cgi?id=1226754 * https://bugzilla.suse.com/show_bug.cgi?id=1226757 * https://bugzilla.suse.com/show_bug.cgi?id=1226758 * https://bugzilla.suse.com/show_bug.cgi?id=1226760 * https://bugzilla.suse.com/show_bug.cgi?id=1226761 * https://bugzilla.suse.com/show_bug.cgi?id=1226764 * https://bugzilla.suse.com/show_bug.cgi?id=1226767 * https://bugzilla.suse.com/show_bug.cgi?id=1226768 * https://bugzilla.suse.com/show_bug.cgi?id=1226769 * https://bugzilla.suse.com/show_bug.cgi?id=1226771 * https://bugzilla.suse.com/show_bug.cgi?id=1226772 * https://bugzilla.suse.com/show_bug.cgi?id=1226774 * https://bugzilla.suse.com/show_bug.cgi?id=1226775 * https://bugzilla.suse.com/show_bug.cgi?id=1226776 * https://bugzilla.suse.com/show_bug.cgi?id=1226777 * https://bugzilla.suse.com/show_bug.cgi?id=1226780 * https://bugzilla.suse.com/show_bug.cgi?id=1226781 * https://bugzilla.suse.com/show_bug.cgi?id=1226783 * https://bugzilla.suse.com/show_bug.cgi?id=1226788 * https://bugzilla.suse.com/show_bug.cgi?id=1226789 * https://bugzilla.suse.com/show_bug.cgi?id=1226790 * https://bugzilla.suse.com/show_bug.cgi?id=1226791 * https://bugzilla.suse.com/show_bug.cgi?id=1226796 * https://bugzilla.suse.com/show_bug.cgi?id=1226799 * https://bugzilla.suse.com/show_bug.cgi?id=1226837 * https://bugzilla.suse.com/show_bug.cgi?id=1226839 * https://bugzilla.suse.com/show_bug.cgi?id=1226840 * https://bugzilla.suse.com/show_bug.cgi?id=1226841 * https://bugzilla.suse.com/show_bug.cgi?id=1226842 * https://bugzilla.suse.com/show_bug.cgi?id=1226844 * https://bugzilla.suse.com/show_bug.cgi?id=1226848 * https://bugzilla.suse.com/show_bug.cgi?id=1226852 * https://bugzilla.suse.com/show_bug.cgi?id=1226856 * https://bugzilla.suse.com/show_bug.cgi?id=1226857 * https://bugzilla.suse.com/show_bug.cgi?id=1226859 * https://bugzilla.suse.com/show_bug.cgi?id=1226861 * https://bugzilla.suse.com/show_bug.cgi?id=1226863 * https://bugzilla.suse.com/show_bug.cgi?id=1226864 * https://bugzilla.suse.com/show_bug.cgi?id=1226866 * https://bugzilla.suse.com/show_bug.cgi?id=1226867 * https://bugzilla.suse.com/show_bug.cgi?id=1226868 * https://bugzilla.suse.com/show_bug.cgi?id=1226875 * https://bugzilla.suse.com/show_bug.cgi?id=1226876 * https://bugzilla.suse.com/show_bug.cgi?id=1226878 * https://bugzilla.suse.com/show_bug.cgi?id=1226879 * https://bugzilla.suse.com/show_bug.cgi?id=1226883 * https://bugzilla.suse.com/show_bug.cgi?id=1226886 * https://bugzilla.suse.com/show_bug.cgi?id=1226890 * https://bugzilla.suse.com/show_bug.cgi?id=1226891 * https://bugzilla.suse.com/show_bug.cgi?id=1226894 * https://bugzilla.suse.com/show_bug.cgi?id=1226895 * https://bugzilla.suse.com/show_bug.cgi?id=1226905 * https://bugzilla.suse.com/show_bug.cgi?id=1226908 * https://bugzilla.suse.com/show_bug.cgi?id=1226909 * https://bugzilla.suse.com/show_bug.cgi?id=1226911 * https://bugzilla.suse.com/show_bug.cgi?id=1226915 * https://bugzilla.suse.com/show_bug.cgi?id=1226928 * https://bugzilla.suse.com/show_bug.cgi?id=1226934 * https://bugzilla.suse.com/show_bug.cgi?id=1226938 * https://bugzilla.suse.com/show_bug.cgi?id=1226939 * https://bugzilla.suse.com/show_bug.cgi?id=1226941 * https://bugzilla.suse.com/show_bug.cgi?id=1226948 * https://bugzilla.suse.com/show_bug.cgi?id=1226949 * https://bugzilla.suse.com/show_bug.cgi?id=1226950 * https://bugzilla.suse.com/show_bug.cgi?id=1226962 * https://bugzilla.suse.com/show_bug.cgi?id=1226976 * https://bugzilla.suse.com/show_bug.cgi?id=1226989 * https://bugzilla.suse.com/show_bug.cgi?id=1226990 * https://bugzilla.suse.com/show_bug.cgi?id=1226992 * https://bugzilla.suse.com/show_bug.cgi?id=1226993 * https://bugzilla.suse.com/show_bug.cgi?id=1226994 * https://bugzilla.suse.com/show_bug.cgi?id=1226995 * https://bugzilla.suse.com/show_bug.cgi?id=1226996 * https://bugzilla.suse.com/show_bug.cgi?id=1227066 * https://bugzilla.suse.com/show_bug.cgi?id=1227072 * https://bugzilla.suse.com/show_bug.cgi?id=1227085 * https://bugzilla.suse.com/show_bug.cgi?id=1227089 * https://bugzilla.suse.com/show_bug.cgi?id=1227090 * https://bugzilla.suse.com/show_bug.cgi?id=1227096 * https://bugzilla.suse.com/show_bug.cgi?id=1227101 * https://bugzilla.suse.com/show_bug.cgi?id=1227103 * https://bugzilla.suse.com/show_bug.cgi?id=1227149 * https://bugzilla.suse.com/show_bug.cgi?id=1227190 * https://bugzilla.suse.com/show_bug.cgi?id=1227282 * https://bugzilla.suse.com/show_bug.cgi?id=1227362 * https://bugzilla.suse.com/show_bug.cgi?id=1227363 * https://bugzilla.suse.com/show_bug.cgi?id=1227383 * https://bugzilla.suse.com/show_bug.cgi?id=1227432 * https://bugzilla.suse.com/show_bug.cgi?id=1227433 * https://bugzilla.suse.com/show_bug.cgi?id=1227434 * https://bugzilla.suse.com/show_bug.cgi?id=1227435 * https://bugzilla.suse.com/show_bug.cgi?id=1227443 * https://bugzilla.suse.com/show_bug.cgi?id=1227446 * https://bugzilla.suse.com/show_bug.cgi?id=1227447 * https://bugzilla.suse.com/show_bug.cgi?id=1227487 * https://bugzilla.suse.com/show_bug.cgi?id=1227573 * https://bugzilla.suse.com/show_bug.cgi?id=1227626 * https://bugzilla.suse.com/show_bug.cgi?id=1227716 * https://bugzilla.suse.com/show_bug.cgi?id=1227719 * https://bugzilla.suse.com/show_bug.cgi?id=1227723 * https://bugzilla.suse.com/show_bug.cgi?id=1227730 * https://bugzilla.suse.com/show_bug.cgi?id=1227736 * https://bugzilla.suse.com/show_bug.cgi?id=1227755 * https://bugzilla.suse.com/show_bug.cgi?id=1227757 * https://bugzilla.suse.com/show_bug.cgi?id=1227762 * https://bugzilla.suse.com/show_bug.cgi?id=1227763 * https://bugzilla.suse.com/show_bug.cgi?id=1227779 * https://bugzilla.suse.com/show_bug.cgi?id=1227780 * https://bugzilla.suse.com/show_bug.cgi?id=1227783 * https://bugzilla.suse.com/show_bug.cgi?id=1227786 * https://bugzilla.suse.com/show_bug.cgi?id=1227788 * https://bugzilla.suse.com/show_bug.cgi?id=1227789 * https://bugzilla.suse.com/show_bug.cgi?id=1227797 * https://bugzilla.suse.com/show_bug.cgi?id=1227800 * https://bugzilla.suse.com/show_bug.cgi?id=1227801 * https://bugzilla.suse.com/show_bug.cgi?id=1227803 * https://bugzilla.suse.com/show_bug.cgi?id=1227806 * https://bugzilla.suse.com/show_bug.cgi?id=1227813 * https://bugzilla.suse.com/show_bug.cgi?id=1227814 * https://bugzilla.suse.com/show_bug.cgi?id=1227836 * https://bugzilla.suse.com/show_bug.cgi?id=1227855 * https://bugzilla.suse.com/show_bug.cgi?id=1227862 * https://bugzilla.suse.com/show_bug.cgi?id=1227866 * https://bugzilla.suse.com/show_bug.cgi?id=1227886 * https://bugzilla.suse.com/show_bug.cgi?id=1227899 * https://bugzilla.suse.com/show_bug.cgi?id=1227910 * https://bugzilla.suse.com/show_bug.cgi?id=1227913 * https://bugzilla.suse.com/show_bug.cgi?id=1227926 * https://bugzilla.suse.com/show_bug.cgi?id=1228090 * https://bugzilla.suse.com/show_bug.cgi?id=1228192 * https://bugzilla.suse.com/show_bug.cgi?id=1228193 * https://bugzilla.suse.com/show_bug.cgi?id=1228211 * https://bugzilla.suse.com/show_bug.cgi?id=1228269 * https://bugzilla.suse.com/show_bug.cgi?id=1228289 * https://bugzilla.suse.com/show_bug.cgi?id=1228327 * https://bugzilla.suse.com/show_bug.cgi?id=1228328 * https://bugzilla.suse.com/show_bug.cgi?id=1228403 * https://bugzilla.suse.com/show_bug.cgi?id=1228405 * https://bugzilla.suse.com/show_bug.cgi?id=1228408 * https://bugzilla.suse.com/show_bug.cgi?id=1228417 * https://jira.suse.com/browse/PED-8111 * https://jira.suse.com/browse/PED-8240 * https://jira.suse.com/browse/PED-8491 * https://jira.suse.com/browse/PED-8570 * https://jira.suse.com/browse/PED-8644 * https://jira.suse.com/browse/PED-8688 * https://jira.suse.com/browse/PED-8701 * https://jira.suse.com/browse/PED-8954 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Aug 20 08:41:39 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Tue, 20 Aug 2024 08:41:39 -0000 Subject: SUSE-SU-2024:2976-1: important: Security update for libqt5-qt3d Message-ID: <172414329913.28640.11056393705307266545@smelt2.prg2.suse.org> # Security update for libqt5-qt3d Announcement ID: SUSE-SU-2024:2976-1 Rating: important References: * bsc#1228204 Cross-References: * CVE-2024-40724 CVSS scores: * CVE-2024-40724 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2024-40724 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.4 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 An update that solves one vulnerability can now be installed. ## Description: This update for libqt5-qt3d fixes the following issues: * CVE-2024-40724: Fixed heap-based buffer overflow in the PLY importer class in assimp (bsc#1228204) Other fixes: \- Check for a nullptr returned from the shader manager \- Fill image with transparency by default to avoid having junk if it's not filled properly before the first paint call \- Fix QTextureAtlas parenting that could lead to crashes due to being used after free'd. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch SUSE-2024-2976=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2024-2976=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2024-2976=1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 zypper in -t patch SUSE-SLE-Product-SLED-15-SP4-LTSS-2024-2976=1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2024-2976=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2024-2976=1 ## Package List: * openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586) * libQt53DExtras-devel-5.15.2+kde39-150400.3.3.1 * libQt53DInput-devel-5.15.2+kde39-150400.3.3.1 * libQt53DCore-devel-5.15.2+kde39-150400.3.3.1 * libQt53DQuickRender5-5.15.2+kde39-150400.3.3.1 * libqt5-qt3d-debuginfo-5.15.2+kde39-150400.3.3.1 * libQt53DQuickAnimation5-5.15.2+kde39-150400.3.3.1 * libQt53DQuickScene2D5-debuginfo-5.15.2+kde39-150400.3.3.1 * libQt53DQuickRender-devel-5.15.2+kde39-150400.3.3.1 * libQt53DAnimation-devel-5.15.2+kde39-150400.3.3.1 * libqt5-qt3d-devel-5.15.2+kde39-150400.3.3.1 * libqt5-qt3d-imports-5.15.2+kde39-150400.3.3.1 * libQt53DInput5-debuginfo-5.15.2+kde39-150400.3.3.1 * libQt53DQuickExtras-devel-5.15.2+kde39-150400.3.3.1 * libQt53DAnimation5-debuginfo-5.15.2+kde39-150400.3.3.1 * libQt53DQuickScene2D-devel-5.15.2+kde39-150400.3.3.1 * libQt53DAnimation5-5.15.2+kde39-150400.3.3.1 * libQt53DLogic5-debuginfo-5.15.2+kde39-150400.3.3.1 * libQt53DCore5-5.15.2+kde39-150400.3.3.1 * libQt53DQuick-devel-5.15.2+kde39-150400.3.3.1 * libQt53DQuick5-debuginfo-5.15.2+kde39-150400.3.3.1 * libQt53DQuickAnimation5-debuginfo-5.15.2+kde39-150400.3.3.1 * libQt53DQuickInput-devel-5.15.2+kde39-150400.3.3.1 * libQt53DQuickRender5-debuginfo-5.15.2+kde39-150400.3.3.1 * libQt53DInput5-5.15.2+kde39-150400.3.3.1 * libQt53DQuickAnimation-devel-5.15.2+kde39-150400.3.3.1 * libQt53DLogic5-5.15.2+kde39-150400.3.3.1 * libQt53DQuickInput5-5.15.2+kde39-150400.3.3.1 * libQt53DCore5-debuginfo-5.15.2+kde39-150400.3.3.1 * libQt53DExtras5-debuginfo-5.15.2+kde39-150400.3.3.1 * libQt53DQuick5-5.15.2+kde39-150400.3.3.1 * libqt5-qt3d-tools-5.15.2+kde39-150400.3.3.1 * libQt53DQuickExtras5-5.15.2+kde39-150400.3.3.1 * libqt5-qt3d-examples-5.15.2+kde39-150400.3.3.1 * libqt5-qt3d-imports-debuginfo-5.15.2+kde39-150400.3.3.1 * libQt53DRender-devel-5.15.2+kde39-150400.3.3.1 * libQt53DQuickExtras5-debuginfo-5.15.2+kde39-150400.3.3.1 * libQt53DExtras5-5.15.2+kde39-150400.3.3.1 * libQt53DQuickInput5-debuginfo-5.15.2+kde39-150400.3.3.1 * libqt5-qt3d-debugsource-5.15.2+kde39-150400.3.3.1 * libQt53DLogic-devel-5.15.2+kde39-150400.3.3.1 * libQt53DRender5-debuginfo-5.15.2+kde39-150400.3.3.1 * libqt5-qt3d-examples-debuginfo-5.15.2+kde39-150400.3.3.1 * libQt53DQuickScene2D5-5.15.2+kde39-150400.3.3.1 * libQt53DRender5-5.15.2+kde39-150400.3.3.1 * openSUSE Leap 15.4 (noarch) * libqt5-qt3d-private-headers-devel-5.15.2+kde39-150400.3.3.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 x86_64) * libQt53DExtras-devel-5.15.2+kde39-150400.3.3.1 * libQt53DInput-devel-5.15.2+kde39-150400.3.3.1 * libQt53DCore-devel-5.15.2+kde39-150400.3.3.1 * libQt53DQuickRender5-5.15.2+kde39-150400.3.3.1 * libqt5-qt3d-debuginfo-5.15.2+kde39-150400.3.3.1 * libQt53DQuickAnimation5-5.15.2+kde39-150400.3.3.1 * libQt53DQuickScene2D5-debuginfo-5.15.2+kde39-150400.3.3.1 * libQt53DQuickRender-devel-5.15.2+kde39-150400.3.3.1 * libQt53DAnimation-devel-5.15.2+kde39-150400.3.3.1 * libqt5-qt3d-devel-5.15.2+kde39-150400.3.3.1 * libqt5-qt3d-imports-5.15.2+kde39-150400.3.3.1 * libQt53DInput5-debuginfo-5.15.2+kde39-150400.3.3.1 * libQt53DQuickExtras-devel-5.15.2+kde39-150400.3.3.1 * libQt53DAnimation5-debuginfo-5.15.2+kde39-150400.3.3.1 * libQt53DQuickScene2D-devel-5.15.2+kde39-150400.3.3.1 * libQt53DAnimation5-5.15.2+kde39-150400.3.3.1 * libQt53DLogic5-debuginfo-5.15.2+kde39-150400.3.3.1 * libQt53DCore5-5.15.2+kde39-150400.3.3.1 * libQt53DQuick-devel-5.15.2+kde39-150400.3.3.1 * libQt53DQuick5-debuginfo-5.15.2+kde39-150400.3.3.1 * libQt53DQuickAnimation5-debuginfo-5.15.2+kde39-150400.3.3.1 * libQt53DQuickInput-devel-5.15.2+kde39-150400.3.3.1 * libQt53DQuickRender5-debuginfo-5.15.2+kde39-150400.3.3.1 * libQt53DInput5-5.15.2+kde39-150400.3.3.1 * libQt53DQuickAnimation-devel-5.15.2+kde39-150400.3.3.1 * libQt53DLogic5-5.15.2+kde39-150400.3.3.1 * libQt53DQuickInput5-5.15.2+kde39-150400.3.3.1 * libQt53DCore5-debuginfo-5.15.2+kde39-150400.3.3.1 * libQt53DExtras5-debuginfo-5.15.2+kde39-150400.3.3.1 * libQt53DQuick5-5.15.2+kde39-150400.3.3.1 * libqt5-qt3d-tools-5.15.2+kde39-150400.3.3.1 * libQt53DQuickExtras5-5.15.2+kde39-150400.3.3.1 * libqt5-qt3d-imports-debuginfo-5.15.2+kde39-150400.3.3.1 * libQt53DRender-devel-5.15.2+kde39-150400.3.3.1 * libQt53DQuickExtras5-debuginfo-5.15.2+kde39-150400.3.3.1 * libQt53DExtras5-5.15.2+kde39-150400.3.3.1 * libQt53DQuickInput5-debuginfo-5.15.2+kde39-150400.3.3.1 * libqt5-qt3d-debugsource-5.15.2+kde39-150400.3.3.1 * libQt53DLogic-devel-5.15.2+kde39-150400.3.3.1 * libQt53DRender5-debuginfo-5.15.2+kde39-150400.3.3.1 * libQt53DQuickScene2D5-5.15.2+kde39-150400.3.3.1 * libQt53DRender5-5.15.2+kde39-150400.3.3.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (noarch) * libqt5-qt3d-private-headers-devel-5.15.2+kde39-150400.3.3.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 x86_64) * libQt53DExtras-devel-5.15.2+kde39-150400.3.3.1 * libQt53DInput-devel-5.15.2+kde39-150400.3.3.1 * libQt53DCore-devel-5.15.2+kde39-150400.3.3.1 * libQt53DQuickRender5-5.15.2+kde39-150400.3.3.1 * libqt5-qt3d-debuginfo-5.15.2+kde39-150400.3.3.1 * libQt53DQuickAnimation5-5.15.2+kde39-150400.3.3.1 * libQt53DQuickScene2D5-debuginfo-5.15.2+kde39-150400.3.3.1 * libQt53DQuickRender-devel-5.15.2+kde39-150400.3.3.1 * libQt53DAnimation-devel-5.15.2+kde39-150400.3.3.1 * libqt5-qt3d-devel-5.15.2+kde39-150400.3.3.1 * libqt5-qt3d-imports-5.15.2+kde39-150400.3.3.1 * libQt53DInput5-debuginfo-5.15.2+kde39-150400.3.3.1 * libQt53DQuickExtras-devel-5.15.2+kde39-150400.3.3.1 * libQt53DAnimation5-debuginfo-5.15.2+kde39-150400.3.3.1 * libQt53DQuickScene2D-devel-5.15.2+kde39-150400.3.3.1 * libQt53DAnimation5-5.15.2+kde39-150400.3.3.1 * libQt53DLogic5-debuginfo-5.15.2+kde39-150400.3.3.1 * libQt53DCore5-5.15.2+kde39-150400.3.3.1 * libQt53DQuick-devel-5.15.2+kde39-150400.3.3.1 * libQt53DQuick5-debuginfo-5.15.2+kde39-150400.3.3.1 * libQt53DQuickAnimation5-debuginfo-5.15.2+kde39-150400.3.3.1 * libQt53DQuickInput-devel-5.15.2+kde39-150400.3.3.1 * libQt53DQuickRender5-debuginfo-5.15.2+kde39-150400.3.3.1 * libQt53DInput5-5.15.2+kde39-150400.3.3.1 * libQt53DQuickAnimation-devel-5.15.2+kde39-150400.3.3.1 * libQt53DLogic5-5.15.2+kde39-150400.3.3.1 * libQt53DQuickInput5-5.15.2+kde39-150400.3.3.1 * libQt53DCore5-debuginfo-5.15.2+kde39-150400.3.3.1 * libQt53DExtras5-debuginfo-5.15.2+kde39-150400.3.3.1 * libQt53DQuick5-5.15.2+kde39-150400.3.3.1 * libqt5-qt3d-tools-5.15.2+kde39-150400.3.3.1 * libQt53DQuickExtras5-5.15.2+kde39-150400.3.3.1 * libqt5-qt3d-imports-debuginfo-5.15.2+kde39-150400.3.3.1 * libQt53DRender-devel-5.15.2+kde39-150400.3.3.1 * libQt53DQuickExtras5-debuginfo-5.15.2+kde39-150400.3.3.1 * libQt53DExtras5-5.15.2+kde39-150400.3.3.1 * libQt53DQuickInput5-debuginfo-5.15.2+kde39-150400.3.3.1 * libqt5-qt3d-debugsource-5.15.2+kde39-150400.3.3.1 * libQt53DLogic-devel-5.15.2+kde39-150400.3.3.1 * libQt53DRender5-debuginfo-5.15.2+kde39-150400.3.3.1 * libQt53DQuickScene2D5-5.15.2+kde39-150400.3.3.1 * libQt53DRender5-5.15.2+kde39-150400.3.3.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (noarch) * libqt5-qt3d-private-headers-devel-5.15.2+kde39-150400.3.3.1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (x86_64) * libQt53DExtras-devel-5.15.2+kde39-150400.3.3.1 * libQt53DInput-devel-5.15.2+kde39-150400.3.3.1 * libQt53DCore-devel-5.15.2+kde39-150400.3.3.1 * libQt53DQuickRender5-5.15.2+kde39-150400.3.3.1 * libqt5-qt3d-debuginfo-5.15.2+kde39-150400.3.3.1 * libQt53DQuickAnimation5-5.15.2+kde39-150400.3.3.1 * libQt53DQuickScene2D5-debuginfo-5.15.2+kde39-150400.3.3.1 * libQt53DQuickRender-devel-5.15.2+kde39-150400.3.3.1 * libQt53DAnimation-devel-5.15.2+kde39-150400.3.3.1 * libqt5-qt3d-devel-5.15.2+kde39-150400.3.3.1 * libqt5-qt3d-imports-5.15.2+kde39-150400.3.3.1 * libQt53DInput5-debuginfo-5.15.2+kde39-150400.3.3.1 * libQt53DQuickExtras-devel-5.15.2+kde39-150400.3.3.1 * libQt53DAnimation5-debuginfo-5.15.2+kde39-150400.3.3.1 * libQt53DQuickScene2D-devel-5.15.2+kde39-150400.3.3.1 * libQt53DAnimation5-5.15.2+kde39-150400.3.3.1 * libQt53DLogic5-debuginfo-5.15.2+kde39-150400.3.3.1 * libQt53DCore5-5.15.2+kde39-150400.3.3.1 * libQt53DQuick-devel-5.15.2+kde39-150400.3.3.1 * libQt53DQuick5-debuginfo-5.15.2+kde39-150400.3.3.1 * libQt53DQuickAnimation5-debuginfo-5.15.2+kde39-150400.3.3.1 * libQt53DQuickInput-devel-5.15.2+kde39-150400.3.3.1 * libQt53DQuickRender5-debuginfo-5.15.2+kde39-150400.3.3.1 * libQt53DInput5-5.15.2+kde39-150400.3.3.1 * libQt53DQuickAnimation-devel-5.15.2+kde39-150400.3.3.1 * libQt53DLogic5-5.15.2+kde39-150400.3.3.1 * libQt53DQuickInput5-5.15.2+kde39-150400.3.3.1 * libQt53DCore5-debuginfo-5.15.2+kde39-150400.3.3.1 * libQt53DExtras5-debuginfo-5.15.2+kde39-150400.3.3.1 * libQt53DQuick5-5.15.2+kde39-150400.3.3.1 * libqt5-qt3d-tools-5.15.2+kde39-150400.3.3.1 * libQt53DQuickExtras5-5.15.2+kde39-150400.3.3.1 * libqt5-qt3d-imports-debuginfo-5.15.2+kde39-150400.3.3.1 * libQt53DRender-devel-5.15.2+kde39-150400.3.3.1 * libQt53DQuickExtras5-debuginfo-5.15.2+kde39-150400.3.3.1 * libQt53DExtras5-5.15.2+kde39-150400.3.3.1 * libQt53DQuickInput5-debuginfo-5.15.2+kde39-150400.3.3.1 * libqt5-qt3d-debugsource-5.15.2+kde39-150400.3.3.1 * libQt53DLogic-devel-5.15.2+kde39-150400.3.3.1 * libQt53DRender5-debuginfo-5.15.2+kde39-150400.3.3.1 * libQt53DQuickScene2D5-5.15.2+kde39-150400.3.3.1 * libQt53DRender5-5.15.2+kde39-150400.3.3.1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (noarch) * libqt5-qt3d-private-headers-devel-5.15.2+kde39-150400.3.3.1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (aarch64 ppc64le s390x x86_64) * libQt53DExtras-devel-5.15.2+kde39-150400.3.3.1 * libQt53DInput-devel-5.15.2+kde39-150400.3.3.1 * libQt53DCore-devel-5.15.2+kde39-150400.3.3.1 * libQt53DQuickRender5-5.15.2+kde39-150400.3.3.1 * libqt5-qt3d-debuginfo-5.15.2+kde39-150400.3.3.1 * libQt53DQuickAnimation5-5.15.2+kde39-150400.3.3.1 * libQt53DQuickScene2D5-debuginfo-5.15.2+kde39-150400.3.3.1 * libQt53DQuickRender-devel-5.15.2+kde39-150400.3.3.1 * libQt53DAnimation-devel-5.15.2+kde39-150400.3.3.1 * libqt5-qt3d-devel-5.15.2+kde39-150400.3.3.1 * libqt5-qt3d-imports-5.15.2+kde39-150400.3.3.1 * libQt53DInput5-debuginfo-5.15.2+kde39-150400.3.3.1 * libQt53DQuickExtras-devel-5.15.2+kde39-150400.3.3.1 * libQt53DAnimation5-debuginfo-5.15.2+kde39-150400.3.3.1 * libQt53DQuickScene2D-devel-5.15.2+kde39-150400.3.3.1 * libQt53DAnimation5-5.15.2+kde39-150400.3.3.1 * libQt53DLogic5-debuginfo-5.15.2+kde39-150400.3.3.1 * libQt53DCore5-5.15.2+kde39-150400.3.3.1 * libQt53DQuick-devel-5.15.2+kde39-150400.3.3.1 * libQt53DQuick5-debuginfo-5.15.2+kde39-150400.3.3.1 * libQt53DQuickAnimation5-debuginfo-5.15.2+kde39-150400.3.3.1 * libQt53DQuickInput-devel-5.15.2+kde39-150400.3.3.1 * libQt53DQuickRender5-debuginfo-5.15.2+kde39-150400.3.3.1 * libQt53DInput5-5.15.2+kde39-150400.3.3.1 * libQt53DQuickAnimation-devel-5.15.2+kde39-150400.3.3.1 * libQt53DLogic5-5.15.2+kde39-150400.3.3.1 * libQt53DQuickInput5-5.15.2+kde39-150400.3.3.1 * libQt53DCore5-debuginfo-5.15.2+kde39-150400.3.3.1 * libQt53DExtras5-debuginfo-5.15.2+kde39-150400.3.3.1 * libQt53DQuick5-5.15.2+kde39-150400.3.3.1 * libqt5-qt3d-tools-5.15.2+kde39-150400.3.3.1 * libQt53DQuickExtras5-5.15.2+kde39-150400.3.3.1 * libqt5-qt3d-imports-debuginfo-5.15.2+kde39-150400.3.3.1 * libQt53DRender-devel-5.15.2+kde39-150400.3.3.1 * libQt53DQuickExtras5-debuginfo-5.15.2+kde39-150400.3.3.1 * libQt53DExtras5-5.15.2+kde39-150400.3.3.1 * libQt53DQuickInput5-debuginfo-5.15.2+kde39-150400.3.3.1 * libqt5-qt3d-debugsource-5.15.2+kde39-150400.3.3.1 * libQt53DLogic-devel-5.15.2+kde39-150400.3.3.1 * libQt53DRender5-debuginfo-5.15.2+kde39-150400.3.3.1 * libQt53DQuickScene2D5-5.15.2+kde39-150400.3.3.1 * libQt53DRender5-5.15.2+kde39-150400.3.3.1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (noarch) * libqt5-qt3d-private-headers-devel-5.15.2+kde39-150400.3.3.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64) * libQt53DExtras-devel-5.15.2+kde39-150400.3.3.1 * libQt53DInput-devel-5.15.2+kde39-150400.3.3.1 * libQt53DCore-devel-5.15.2+kde39-150400.3.3.1 * libQt53DQuickRender5-5.15.2+kde39-150400.3.3.1 * libqt5-qt3d-debuginfo-5.15.2+kde39-150400.3.3.1 * libQt53DQuickAnimation5-5.15.2+kde39-150400.3.3.1 * libQt53DQuickScene2D5-debuginfo-5.15.2+kde39-150400.3.3.1 * libQt53DQuickRender-devel-5.15.2+kde39-150400.3.3.1 * libQt53DAnimation-devel-5.15.2+kde39-150400.3.3.1 * libqt5-qt3d-devel-5.15.2+kde39-150400.3.3.1 * libqt5-qt3d-imports-5.15.2+kde39-150400.3.3.1 * libQt53DInput5-debuginfo-5.15.2+kde39-150400.3.3.1 * libQt53DQuickExtras-devel-5.15.2+kde39-150400.3.3.1 * libQt53DAnimation5-debuginfo-5.15.2+kde39-150400.3.3.1 * libQt53DQuickScene2D-devel-5.15.2+kde39-150400.3.3.1 * libQt53DAnimation5-5.15.2+kde39-150400.3.3.1 * libQt53DLogic5-debuginfo-5.15.2+kde39-150400.3.3.1 * libQt53DCore5-5.15.2+kde39-150400.3.3.1 * libQt53DQuick-devel-5.15.2+kde39-150400.3.3.1 * libQt53DQuick5-debuginfo-5.15.2+kde39-150400.3.3.1 * libQt53DQuickAnimation5-debuginfo-5.15.2+kde39-150400.3.3.1 * libQt53DQuickInput-devel-5.15.2+kde39-150400.3.3.1 * libQt53DQuickRender5-debuginfo-5.15.2+kde39-150400.3.3.1 * libQt53DInput5-5.15.2+kde39-150400.3.3.1 * libQt53DQuickAnimation-devel-5.15.2+kde39-150400.3.3.1 * libQt53DLogic5-5.15.2+kde39-150400.3.3.1 * libQt53DQuickInput5-5.15.2+kde39-150400.3.3.1 * libQt53DCore5-debuginfo-5.15.2+kde39-150400.3.3.1 * libQt53DExtras5-debuginfo-5.15.2+kde39-150400.3.3.1 * libQt53DQuick5-5.15.2+kde39-150400.3.3.1 * libqt5-qt3d-tools-5.15.2+kde39-150400.3.3.1 * libQt53DQuickExtras5-5.15.2+kde39-150400.3.3.1 * libqt5-qt3d-imports-debuginfo-5.15.2+kde39-150400.3.3.1 * libQt53DRender-devel-5.15.2+kde39-150400.3.3.1 * libQt53DQuickExtras5-debuginfo-5.15.2+kde39-150400.3.3.1 * libQt53DExtras5-5.15.2+kde39-150400.3.3.1 * libQt53DQuickInput5-debuginfo-5.15.2+kde39-150400.3.3.1 * libqt5-qt3d-debugsource-5.15.2+kde39-150400.3.3.1 * libQt53DLogic-devel-5.15.2+kde39-150400.3.3.1 * libQt53DRender5-debuginfo-5.15.2+kde39-150400.3.3.1 * libQt53DQuickScene2D5-5.15.2+kde39-150400.3.3.1 * libQt53DRender5-5.15.2+kde39-150400.3.3.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (noarch) * libqt5-qt3d-private-headers-devel-5.15.2+kde39-150400.3.3.1 ## References: * https://www.suse.com/security/cve/CVE-2024-40724.html * https://bugzilla.suse.com/show_bug.cgi?id=1228204 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Aug 20 08:41:42 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Tue, 20 Aug 2024 08:41:42 -0000 Subject: SUSE-SU-2024:2975-1: important: Security update for libqt5-qt3d Message-ID: <172414330218.28640.723584247962349381@smelt2.prg2.suse.org> # Security update for libqt5-qt3d Announcement ID: SUSE-SU-2024:2975-1 Rating: important References: * bsc#1228204 Cross-References: * CVE-2024-40724 CVSS scores: * CVE-2024-40724 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2024-40724 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * SUSE Enterprise Storage 7.1 * SUSE Linux Enterprise High Performance Computing 15 SP2 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 * SUSE Linux Enterprise High Performance Computing 15 SP3 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 * SUSE Linux Enterprise Server 15 SP2 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 * SUSE Linux Enterprise Server 15 SP3 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 An update that solves one vulnerability can now be installed. ## Description: This update for libqt5-qt3d fixes the following issues: * CVE-2024-40724: Fixed heap-based buffer overflow in the PLY importer class in assimp (bsc#1228204) Other fixes: \- Check for a nullptr returned from the shader manager \- Fill image with transparency by default to avoid having junk if it's not filled properly before the first paint call \- Fix QTextureAtlas parenting that could lead to crashes due to being used after free'd. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 zypper in -t patch SUSE-SLE-Product-HPC-15-SP2-LTSS-2024-2975=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 zypper in -t patch SUSE-SLE-Product-HPC-15-SP3-LTSS-2024-2975=1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 zypper in -t patch SUSE-SLE-Product-SLES-15-SP2-LTSS-2024-2975=1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 zypper in -t patch SUSE-SLE-Product-SLES-15-SP3-LTSS-2024-2975=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP2-2024-2975=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP3-2024-2975=1 * SUSE Enterprise Storage 7.1 zypper in -t patch SUSE-Storage-7.1-2024-2975=1 ## Package List: * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 (aarch64 x86_64) * libQt53DCore5-debuginfo-5.12.7-150200.4.3.1 * libQt53DAnimation5-debuginfo-5.12.7-150200.4.3.1 * libQt53DCore5-5.12.7-150200.4.3.1 * libQt53DQuickExtras5-debuginfo-5.12.7-150200.4.3.1 * libQt53DQuickInput-devel-5.12.7-150200.4.3.1 * libQt53DQuickInput5-debuginfo-5.12.7-150200.4.3.1 * libQt53DAnimation-devel-5.12.7-150200.4.3.1 * libqt5-qt3d-imports-debuginfo-5.12.7-150200.4.3.1 * libQt53DExtras5-5.12.7-150200.4.3.1 * libQt53DQuickRender5-debuginfo-5.12.7-150200.4.3.1 * libQt53DLogic5-debuginfo-5.12.7-150200.4.3.1 * libQt53DQuickScene2D-devel-5.12.7-150200.4.3.1 * libQt53DExtras5-debuginfo-5.12.7-150200.4.3.1 * libQt53DRender5-debuginfo-5.12.7-150200.4.3.1 * libQt53DLogic5-5.12.7-150200.4.3.1 * libQt53DCore-devel-5.12.7-150200.4.3.1 * libqt5-qt3d-imports-5.12.7-150200.4.3.1 * libQt53DInput-devel-5.12.7-150200.4.3.1 * libQt53DQuickAnimation5-debuginfo-5.12.7-150200.4.3.1 * libQt53DQuick5-debuginfo-5.12.7-150200.4.3.1 * libqt5-qt3d-debugsource-5.12.7-150200.4.3.1 * libQt53DQuickAnimation5-5.12.7-150200.4.3.1 * libQt53DInput5-debuginfo-5.12.7-150200.4.3.1 * libqt5-qt3d-tools-5.12.7-150200.4.3.1 * libQt53DQuickRender-devel-5.12.7-150200.4.3.1 * libQt53DQuickInput5-5.12.7-150200.4.3.1 * libQt53DQuick-devel-5.12.7-150200.4.3.1 * libQt53DQuickRender5-5.12.7-150200.4.3.1 * libQt53DLogic-devel-5.12.7-150200.4.3.1 * libQt53DQuickScene2D5-5.12.7-150200.4.3.1 * libQt53DRender5-5.12.7-150200.4.3.1 * libQt53DQuickScene2D5-debuginfo-5.12.7-150200.4.3.1 * libqt5-qt3d-tools-debuginfo-5.12.7-150200.4.3.1 * libQt53DQuickExtras-devel-5.12.7-150200.4.3.1 * libQt53DExtras-devel-5.12.7-150200.4.3.1 * libQt53DAnimation5-5.12.7-150200.4.3.1 * libqt5-qt3d-devel-5.12.7-150200.4.3.1 * libQt53DQuick5-5.12.7-150200.4.3.1 * libQt53DInput5-5.12.7-150200.4.3.1 * libQt53DRender-devel-5.12.7-150200.4.3.1 * libQt53DQuickAnimation-devel-5.12.7-150200.4.3.1 * libQt53DQuickExtras5-5.12.7-150200.4.3.1 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 (noarch) * libqt5-qt3d-private-headers-devel-5.12.7-150200.4.3.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (aarch64 x86_64) * libQt53DCore5-debuginfo-5.12.7-150200.4.3.1 * libQt53DAnimation5-debuginfo-5.12.7-150200.4.3.1 * libQt53DCore5-5.12.7-150200.4.3.1 * libQt53DQuickExtras5-debuginfo-5.12.7-150200.4.3.1 * libQt53DQuickInput-devel-5.12.7-150200.4.3.1 * libQt53DQuickInput5-debuginfo-5.12.7-150200.4.3.1 * libQt53DAnimation-devel-5.12.7-150200.4.3.1 * libqt5-qt3d-imports-debuginfo-5.12.7-150200.4.3.1 * libQt53DExtras5-5.12.7-150200.4.3.1 * libQt53DQuickRender5-debuginfo-5.12.7-150200.4.3.1 * libQt53DLogic5-debuginfo-5.12.7-150200.4.3.1 * libQt53DQuickScene2D-devel-5.12.7-150200.4.3.1 * libQt53DExtras5-debuginfo-5.12.7-150200.4.3.1 * libQt53DRender5-debuginfo-5.12.7-150200.4.3.1 * libQt53DLogic5-5.12.7-150200.4.3.1 * libQt53DCore-devel-5.12.7-150200.4.3.1 * libqt5-qt3d-imports-5.12.7-150200.4.3.1 * libQt53DInput-devel-5.12.7-150200.4.3.1 * libQt53DQuickAnimation5-debuginfo-5.12.7-150200.4.3.1 * libQt53DQuick5-debuginfo-5.12.7-150200.4.3.1 * libqt5-qt3d-debugsource-5.12.7-150200.4.3.1 * libQt53DQuickAnimation5-5.12.7-150200.4.3.1 * libQt53DInput5-debuginfo-5.12.7-150200.4.3.1 * libqt5-qt3d-tools-5.12.7-150200.4.3.1 * libQt53DQuickRender-devel-5.12.7-150200.4.3.1 * libQt53DQuickInput5-5.12.7-150200.4.3.1 * libQt53DQuick-devel-5.12.7-150200.4.3.1 * libQt53DQuickRender5-5.12.7-150200.4.3.1 * libQt53DLogic-devel-5.12.7-150200.4.3.1 * libQt53DQuickScene2D5-5.12.7-150200.4.3.1 * libQt53DRender5-5.12.7-150200.4.3.1 * libQt53DQuickScene2D5-debuginfo-5.12.7-150200.4.3.1 * libqt5-qt3d-tools-debuginfo-5.12.7-150200.4.3.1 * libQt53DQuickExtras-devel-5.12.7-150200.4.3.1 * libQt53DExtras-devel-5.12.7-150200.4.3.1 * libQt53DAnimation5-5.12.7-150200.4.3.1 * libqt5-qt3d-devel-5.12.7-150200.4.3.1 * libQt53DQuick5-5.12.7-150200.4.3.1 * libQt53DInput5-5.12.7-150200.4.3.1 * libQt53DRender-devel-5.12.7-150200.4.3.1 * libQt53DQuickAnimation-devel-5.12.7-150200.4.3.1 * libQt53DQuickExtras5-5.12.7-150200.4.3.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (noarch) * libqt5-qt3d-private-headers-devel-5.12.7-150200.4.3.1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (aarch64 ppc64le s390x x86_64) * libQt53DCore5-debuginfo-5.12.7-150200.4.3.1 * libQt53DAnimation5-debuginfo-5.12.7-150200.4.3.1 * libQt53DCore5-5.12.7-150200.4.3.1 * libQt53DQuickExtras5-debuginfo-5.12.7-150200.4.3.1 * libQt53DQuickInput-devel-5.12.7-150200.4.3.1 * libQt53DQuickInput5-debuginfo-5.12.7-150200.4.3.1 * libQt53DAnimation-devel-5.12.7-150200.4.3.1 * libqt5-qt3d-imports-debuginfo-5.12.7-150200.4.3.1 * libQt53DExtras5-5.12.7-150200.4.3.1 * libQt53DQuickRender5-debuginfo-5.12.7-150200.4.3.1 * libQt53DLogic5-debuginfo-5.12.7-150200.4.3.1 * libQt53DQuickScene2D-devel-5.12.7-150200.4.3.1 * libQt53DExtras5-debuginfo-5.12.7-150200.4.3.1 * libQt53DRender5-debuginfo-5.12.7-150200.4.3.1 * libQt53DLogic5-5.12.7-150200.4.3.1 * libQt53DCore-devel-5.12.7-150200.4.3.1 * libqt5-qt3d-imports-5.12.7-150200.4.3.1 * libQt53DInput-devel-5.12.7-150200.4.3.1 * libQt53DQuickAnimation5-debuginfo-5.12.7-150200.4.3.1 * libQt53DQuick5-debuginfo-5.12.7-150200.4.3.1 * libqt5-qt3d-debugsource-5.12.7-150200.4.3.1 * libQt53DQuickAnimation5-5.12.7-150200.4.3.1 * libQt53DInput5-debuginfo-5.12.7-150200.4.3.1 * libqt5-qt3d-tools-5.12.7-150200.4.3.1 * libQt53DQuickRender-devel-5.12.7-150200.4.3.1 * libQt53DQuickInput5-5.12.7-150200.4.3.1 * libQt53DQuick-devel-5.12.7-150200.4.3.1 * libQt53DQuickRender5-5.12.7-150200.4.3.1 * libQt53DLogic-devel-5.12.7-150200.4.3.1 * libQt53DQuickScene2D5-5.12.7-150200.4.3.1 * libQt53DRender5-5.12.7-150200.4.3.1 * libQt53DQuickScene2D5-debuginfo-5.12.7-150200.4.3.1 * libqt5-qt3d-tools-debuginfo-5.12.7-150200.4.3.1 * libQt53DQuickExtras-devel-5.12.7-150200.4.3.1 * libQt53DExtras-devel-5.12.7-150200.4.3.1 * libQt53DAnimation5-5.12.7-150200.4.3.1 * libqt5-qt3d-devel-5.12.7-150200.4.3.1 * libQt53DQuick5-5.12.7-150200.4.3.1 * libQt53DInput5-5.12.7-150200.4.3.1 * libQt53DRender-devel-5.12.7-150200.4.3.1 * libQt53DQuickAnimation-devel-5.12.7-150200.4.3.1 * libQt53DQuickExtras5-5.12.7-150200.4.3.1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (noarch) * libqt5-qt3d-private-headers-devel-5.12.7-150200.4.3.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (aarch64 ppc64le s390x x86_64) * libQt53DCore5-debuginfo-5.12.7-150200.4.3.1 * libQt53DAnimation5-debuginfo-5.12.7-150200.4.3.1 * libQt53DCore5-5.12.7-150200.4.3.1 * libQt53DQuickExtras5-debuginfo-5.12.7-150200.4.3.1 * libQt53DQuickInput-devel-5.12.7-150200.4.3.1 * libQt53DQuickInput5-debuginfo-5.12.7-150200.4.3.1 * libQt53DAnimation-devel-5.12.7-150200.4.3.1 * libqt5-qt3d-imports-debuginfo-5.12.7-150200.4.3.1 * libQt53DExtras5-5.12.7-150200.4.3.1 * libQt53DQuickRender5-debuginfo-5.12.7-150200.4.3.1 * libQt53DLogic5-debuginfo-5.12.7-150200.4.3.1 * libQt53DQuickScene2D-devel-5.12.7-150200.4.3.1 * libQt53DExtras5-debuginfo-5.12.7-150200.4.3.1 * libQt53DRender5-debuginfo-5.12.7-150200.4.3.1 * libQt53DLogic5-5.12.7-150200.4.3.1 * libQt53DCore-devel-5.12.7-150200.4.3.1 * libqt5-qt3d-imports-5.12.7-150200.4.3.1 * libQt53DInput-devel-5.12.7-150200.4.3.1 * libQt53DQuickAnimation5-debuginfo-5.12.7-150200.4.3.1 * libQt53DQuick5-debuginfo-5.12.7-150200.4.3.1 * libqt5-qt3d-debugsource-5.12.7-150200.4.3.1 * libQt53DQuickAnimation5-5.12.7-150200.4.3.1 * libQt53DInput5-debuginfo-5.12.7-150200.4.3.1 * libqt5-qt3d-tools-5.12.7-150200.4.3.1 * libQt53DQuickRender-devel-5.12.7-150200.4.3.1 * libQt53DQuickInput5-5.12.7-150200.4.3.1 * libQt53DQuick-devel-5.12.7-150200.4.3.1 * libQt53DQuickRender5-5.12.7-150200.4.3.1 * libQt53DLogic-devel-5.12.7-150200.4.3.1 * libQt53DQuickScene2D5-5.12.7-150200.4.3.1 * libQt53DRender5-5.12.7-150200.4.3.1 * libQt53DQuickScene2D5-debuginfo-5.12.7-150200.4.3.1 * libqt5-qt3d-tools-debuginfo-5.12.7-150200.4.3.1 * libQt53DQuickExtras-devel-5.12.7-150200.4.3.1 * libQt53DExtras-devel-5.12.7-150200.4.3.1 * libQt53DAnimation5-5.12.7-150200.4.3.1 * libqt5-qt3d-devel-5.12.7-150200.4.3.1 * libQt53DQuick5-5.12.7-150200.4.3.1 * libQt53DInput5-5.12.7-150200.4.3.1 * libQt53DRender-devel-5.12.7-150200.4.3.1 * libQt53DQuickAnimation-devel-5.12.7-150200.4.3.1 * libQt53DQuickExtras5-5.12.7-150200.4.3.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (noarch) * libqt5-qt3d-private-headers-devel-5.12.7-150200.4.3.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 (ppc64le x86_64) * libQt53DCore5-debuginfo-5.12.7-150200.4.3.1 * libQt53DAnimation5-debuginfo-5.12.7-150200.4.3.1 * libQt53DCore5-5.12.7-150200.4.3.1 * libQt53DQuickExtras5-debuginfo-5.12.7-150200.4.3.1 * libQt53DQuickInput-devel-5.12.7-150200.4.3.1 * libQt53DQuickInput5-debuginfo-5.12.7-150200.4.3.1 * libQt53DAnimation-devel-5.12.7-150200.4.3.1 * libqt5-qt3d-imports-debuginfo-5.12.7-150200.4.3.1 * libQt53DExtras5-5.12.7-150200.4.3.1 * libQt53DQuickRender5-debuginfo-5.12.7-150200.4.3.1 * libQt53DLogic5-debuginfo-5.12.7-150200.4.3.1 * libQt53DQuickScene2D-devel-5.12.7-150200.4.3.1 * libQt53DExtras5-debuginfo-5.12.7-150200.4.3.1 * libQt53DRender5-debuginfo-5.12.7-150200.4.3.1 * libQt53DLogic5-5.12.7-150200.4.3.1 * libQt53DCore-devel-5.12.7-150200.4.3.1 * libqt5-qt3d-imports-5.12.7-150200.4.3.1 * libQt53DInput-devel-5.12.7-150200.4.3.1 * libQt53DQuickAnimation5-debuginfo-5.12.7-150200.4.3.1 * libQt53DQuick5-debuginfo-5.12.7-150200.4.3.1 * libqt5-qt3d-debugsource-5.12.7-150200.4.3.1 * libQt53DQuickAnimation5-5.12.7-150200.4.3.1 * libQt53DInput5-debuginfo-5.12.7-150200.4.3.1 * libqt5-qt3d-tools-5.12.7-150200.4.3.1 * libQt53DQuickRender-devel-5.12.7-150200.4.3.1 * libQt53DQuickInput5-5.12.7-150200.4.3.1 * libQt53DQuick-devel-5.12.7-150200.4.3.1 * libQt53DQuickRender5-5.12.7-150200.4.3.1 * libQt53DLogic-devel-5.12.7-150200.4.3.1 * libQt53DQuickScene2D5-5.12.7-150200.4.3.1 * libQt53DRender5-5.12.7-150200.4.3.1 * libQt53DQuickScene2D5-debuginfo-5.12.7-150200.4.3.1 * libqt5-qt3d-tools-debuginfo-5.12.7-150200.4.3.1 * libQt53DQuickExtras-devel-5.12.7-150200.4.3.1 * libQt53DExtras-devel-5.12.7-150200.4.3.1 * libQt53DAnimation5-5.12.7-150200.4.3.1 * libqt5-qt3d-devel-5.12.7-150200.4.3.1 * libQt53DQuick5-5.12.7-150200.4.3.1 * libQt53DInput5-5.12.7-150200.4.3.1 * libQt53DRender-devel-5.12.7-150200.4.3.1 * libQt53DQuickAnimation-devel-5.12.7-150200.4.3.1 * libQt53DQuickExtras5-5.12.7-150200.4.3.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 (noarch) * libqt5-qt3d-private-headers-devel-5.12.7-150200.4.3.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (ppc64le x86_64) * libQt53DCore5-debuginfo-5.12.7-150200.4.3.1 * libQt53DAnimation5-debuginfo-5.12.7-150200.4.3.1 * libQt53DCore5-5.12.7-150200.4.3.1 * libQt53DQuickExtras5-debuginfo-5.12.7-150200.4.3.1 * libQt53DQuickInput-devel-5.12.7-150200.4.3.1 * libQt53DQuickInput5-debuginfo-5.12.7-150200.4.3.1 * libQt53DAnimation-devel-5.12.7-150200.4.3.1 * libqt5-qt3d-imports-debuginfo-5.12.7-150200.4.3.1 * libQt53DExtras5-5.12.7-150200.4.3.1 * libQt53DQuickRender5-debuginfo-5.12.7-150200.4.3.1 * libQt53DLogic5-debuginfo-5.12.7-150200.4.3.1 * libQt53DQuickScene2D-devel-5.12.7-150200.4.3.1 * libQt53DExtras5-debuginfo-5.12.7-150200.4.3.1 * libQt53DRender5-debuginfo-5.12.7-150200.4.3.1 * libQt53DLogic5-5.12.7-150200.4.3.1 * libQt53DCore-devel-5.12.7-150200.4.3.1 * libqt5-qt3d-imports-5.12.7-150200.4.3.1 * libQt53DInput-devel-5.12.7-150200.4.3.1 * libQt53DQuickAnimation5-debuginfo-5.12.7-150200.4.3.1 * libQt53DQuick5-debuginfo-5.12.7-150200.4.3.1 * libqt5-qt3d-debugsource-5.12.7-150200.4.3.1 * libQt53DQuickAnimation5-5.12.7-150200.4.3.1 * libQt53DInput5-debuginfo-5.12.7-150200.4.3.1 * libqt5-qt3d-tools-5.12.7-150200.4.3.1 * libQt53DQuickRender-devel-5.12.7-150200.4.3.1 * libQt53DQuickInput5-5.12.7-150200.4.3.1 * libQt53DQuick-devel-5.12.7-150200.4.3.1 * libQt53DQuickRender5-5.12.7-150200.4.3.1 * libQt53DLogic-devel-5.12.7-150200.4.3.1 * libQt53DQuickScene2D5-5.12.7-150200.4.3.1 * libQt53DRender5-5.12.7-150200.4.3.1 * libQt53DQuickScene2D5-debuginfo-5.12.7-150200.4.3.1 * libqt5-qt3d-tools-debuginfo-5.12.7-150200.4.3.1 * libQt53DQuickExtras-devel-5.12.7-150200.4.3.1 * libQt53DExtras-devel-5.12.7-150200.4.3.1 * libQt53DAnimation5-5.12.7-150200.4.3.1 * libqt5-qt3d-devel-5.12.7-150200.4.3.1 * libQt53DQuick5-5.12.7-150200.4.3.1 * libQt53DInput5-5.12.7-150200.4.3.1 * libQt53DRender-devel-5.12.7-150200.4.3.1 * libQt53DQuickAnimation-devel-5.12.7-150200.4.3.1 * libQt53DQuickExtras5-5.12.7-150200.4.3.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (noarch) * libqt5-qt3d-private-headers-devel-5.12.7-150200.4.3.1 * SUSE Enterprise Storage 7.1 (aarch64 x86_64) * libQt53DCore5-debuginfo-5.12.7-150200.4.3.1 * libQt53DAnimation5-debuginfo-5.12.7-150200.4.3.1 * libQt53DCore5-5.12.7-150200.4.3.1 * libQt53DQuickExtras5-debuginfo-5.12.7-150200.4.3.1 * libQt53DQuickInput-devel-5.12.7-150200.4.3.1 * libQt53DQuickInput5-debuginfo-5.12.7-150200.4.3.1 * libQt53DAnimation-devel-5.12.7-150200.4.3.1 * libqt5-qt3d-imports-debuginfo-5.12.7-150200.4.3.1 * libQt53DExtras5-5.12.7-150200.4.3.1 * libQt53DQuickRender5-debuginfo-5.12.7-150200.4.3.1 * libQt53DLogic5-debuginfo-5.12.7-150200.4.3.1 * libQt53DQuickScene2D-devel-5.12.7-150200.4.3.1 * libQt53DExtras5-debuginfo-5.12.7-150200.4.3.1 * libQt53DRender5-debuginfo-5.12.7-150200.4.3.1 * libQt53DLogic5-5.12.7-150200.4.3.1 * libQt53DCore-devel-5.12.7-150200.4.3.1 * libqt5-qt3d-imports-5.12.7-150200.4.3.1 * libQt53DInput-devel-5.12.7-150200.4.3.1 * libQt53DQuickAnimation5-debuginfo-5.12.7-150200.4.3.1 * libQt53DQuick5-debuginfo-5.12.7-150200.4.3.1 * libqt5-qt3d-debugsource-5.12.7-150200.4.3.1 * libQt53DQuickAnimation5-5.12.7-150200.4.3.1 * libQt53DInput5-debuginfo-5.12.7-150200.4.3.1 * libqt5-qt3d-tools-5.12.7-150200.4.3.1 * libQt53DQuickRender-devel-5.12.7-150200.4.3.1 * libQt53DQuickInput5-5.12.7-150200.4.3.1 * libQt53DQuick-devel-5.12.7-150200.4.3.1 * libQt53DQuickRender5-5.12.7-150200.4.3.1 * libQt53DLogic-devel-5.12.7-150200.4.3.1 * libQt53DQuickScene2D5-5.12.7-150200.4.3.1 * libQt53DRender5-5.12.7-150200.4.3.1 * libQt53DQuickScene2D5-debuginfo-5.12.7-150200.4.3.1 * libqt5-qt3d-tools-debuginfo-5.12.7-150200.4.3.1 * libQt53DQuickExtras-devel-5.12.7-150200.4.3.1 * libQt53DExtras-devel-5.12.7-150200.4.3.1 * libQt53DAnimation5-5.12.7-150200.4.3.1 * libqt5-qt3d-devel-5.12.7-150200.4.3.1 * libQt53DQuick5-5.12.7-150200.4.3.1 * libQt53DInput5-5.12.7-150200.4.3.1 * libQt53DRender-devel-5.12.7-150200.4.3.1 * libQt53DQuickAnimation-devel-5.12.7-150200.4.3.1 * libQt53DQuickExtras5-5.12.7-150200.4.3.1 * SUSE Enterprise Storage 7.1 (noarch) * libqt5-qt3d-private-headers-devel-5.12.7-150200.4.3.1 ## References: * https://www.suse.com/security/cve/CVE-2024-40724.html * https://bugzilla.suse.com/show_bug.cgi?id=1228204 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Aug 20 08:41:46 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Tue, 20 Aug 2024 08:41:46 -0000 Subject: SUSE-SU-2024:2974-1: important: Security update for python310 Message-ID: <172414330640.28640.472435205167011775@smelt2.prg2.suse.org> # Security update for python310 Announcement ID: SUSE-SU-2024:2974-1 Rating: important References: * bsc#1225660 * bsc#1227378 * bsc#1227999 * bsc#1228780 Cross-References: * CVE-2024-6923 CVSS scores: * CVE-2024-6923 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N Affected Products: * openSUSE Leap 15.4 * openSUSE Leap 15.5 * openSUSE Leap 15.6 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 An update that solves one vulnerability and has three security fixes can now be installed. ## Description: This update for python310 fixes the following issues: Security issue fixed: * CVE-2024-6923: Fixed email header injection due to unquoted newlines (bsc#1228780) Non-security issues fixed: * Improve python reproducible builds (bsc#1227999) * Make pip and modern tools install directly in /usr/local when used by the user (bsc#1225660) * Fixed executable bits for /usr/bin/idle* (bsc#1227378). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.5 zypper in -t patch openSUSE-SLE-15.5-2024-2974=1 * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2024-2974=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2024-2974=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2024-2974=1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 zypper in -t patch SUSE-SLE-Product-SLED-15-SP4-LTSS-2024-2974=1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2024-2974=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2024-2974=1 * openSUSE Leap 15.4 zypper in -t patch SUSE-2024-2974=1 ## Package List: * openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64) * libpython3_10-1_0-3.10.14-150400.4.54.1 * python310-testsuite-debuginfo-3.10.14-150400.4.54.1 * python310-testsuite-3.10.14-150400.4.54.1 * python310-debugsource-3.10.14-150400.4.54.1 * python310-core-debugsource-3.10.14-150400.4.54.1 * python310-devel-3.10.14-150400.4.54.1 * python310-tk-debuginfo-3.10.14-150400.4.54.1 * python310-base-3.10.14-150400.4.54.1 * python310-dbm-debuginfo-3.10.14-150400.4.54.1 * python310-dbm-3.10.14-150400.4.54.1 * python310-debuginfo-3.10.14-150400.4.54.1 * python310-idle-3.10.14-150400.4.54.1 * python310-tk-3.10.14-150400.4.54.1 * python310-base-debuginfo-3.10.14-150400.4.54.1 * python310-curses-debuginfo-3.10.14-150400.4.54.1 * python310-3.10.14-150400.4.54.1 * python310-doc-3.10.14-150400.4.54.1 * libpython3_10-1_0-debuginfo-3.10.14-150400.4.54.1 * python310-curses-3.10.14-150400.4.54.1 * python310-doc-devhelp-3.10.14-150400.4.54.1 * python310-tools-3.10.14-150400.4.54.1 * openSUSE Leap 15.5 (x86_64) * python310-32bit-3.10.14-150400.4.54.1 * python310-base-32bit-debuginfo-3.10.14-150400.4.54.1 * python310-base-32bit-3.10.14-150400.4.54.1 * python310-32bit-debuginfo-3.10.14-150400.4.54.1 * libpython3_10-1_0-32bit-3.10.14-150400.4.54.1 * libpython3_10-1_0-32bit-debuginfo-3.10.14-150400.4.54.1 * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64) * libpython3_10-1_0-3.10.14-150400.4.54.1 * python310-testsuite-debuginfo-3.10.14-150400.4.54.1 * python310-testsuite-3.10.14-150400.4.54.1 * python310-debugsource-3.10.14-150400.4.54.1 * python310-core-debugsource-3.10.14-150400.4.54.1 * python310-devel-3.10.14-150400.4.54.1 * python310-tk-debuginfo-3.10.14-150400.4.54.1 * python310-base-3.10.14-150400.4.54.1 * python310-dbm-debuginfo-3.10.14-150400.4.54.1 * python310-dbm-3.10.14-150400.4.54.1 * python310-debuginfo-3.10.14-150400.4.54.1 * python310-idle-3.10.14-150400.4.54.1 * python310-tk-3.10.14-150400.4.54.1 * python310-base-debuginfo-3.10.14-150400.4.54.1 * python310-curses-debuginfo-3.10.14-150400.4.54.1 * python310-3.10.14-150400.4.54.1 * python310-doc-3.10.14-150400.4.54.1 * libpython3_10-1_0-debuginfo-3.10.14-150400.4.54.1 * python310-curses-3.10.14-150400.4.54.1 * python310-doc-devhelp-3.10.14-150400.4.54.1 * python310-tools-3.10.14-150400.4.54.1 * openSUSE Leap 15.6 (x86_64) * python310-32bit-3.10.14-150400.4.54.1 * python310-base-32bit-debuginfo-3.10.14-150400.4.54.1 * python310-base-32bit-3.10.14-150400.4.54.1 * python310-32bit-debuginfo-3.10.14-150400.4.54.1 * libpython3_10-1_0-32bit-3.10.14-150400.4.54.1 * libpython3_10-1_0-32bit-debuginfo-3.10.14-150400.4.54.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 x86_64) * libpython3_10-1_0-3.10.14-150400.4.54.1 * python310-debuginfo-3.10.14-150400.4.54.1 * python310-idle-3.10.14-150400.4.54.1 * libpython3_10-1_0-debuginfo-3.10.14-150400.4.54.1 * python310-curses-debuginfo-3.10.14-150400.4.54.1 * python310-curses-3.10.14-150400.4.54.1 * python310-tools-3.10.14-150400.4.54.1 * python310-tk-3.10.14-150400.4.54.1 * python310-3.10.14-150400.4.54.1 * python310-debugsource-3.10.14-150400.4.54.1 * python310-core-debugsource-3.10.14-150400.4.54.1 * python310-devel-3.10.14-150400.4.54.1 * python310-tk-debuginfo-3.10.14-150400.4.54.1 * python310-base-debuginfo-3.10.14-150400.4.54.1 * python310-base-3.10.14-150400.4.54.1 * python310-dbm-3.10.14-150400.4.54.1 * python310-dbm-debuginfo-3.10.14-150400.4.54.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 x86_64) * libpython3_10-1_0-3.10.14-150400.4.54.1 * python310-debuginfo-3.10.14-150400.4.54.1 * python310-idle-3.10.14-150400.4.54.1 * libpython3_10-1_0-debuginfo-3.10.14-150400.4.54.1 * python310-curses-debuginfo-3.10.14-150400.4.54.1 * python310-curses-3.10.14-150400.4.54.1 * python310-tools-3.10.14-150400.4.54.1 * python310-tk-3.10.14-150400.4.54.1 * python310-3.10.14-150400.4.54.1 * python310-debugsource-3.10.14-150400.4.54.1 * python310-core-debugsource-3.10.14-150400.4.54.1 * python310-devel-3.10.14-150400.4.54.1 * python310-tk-debuginfo-3.10.14-150400.4.54.1 * python310-base-debuginfo-3.10.14-150400.4.54.1 * python310-base-3.10.14-150400.4.54.1 * python310-dbm-3.10.14-150400.4.54.1 * python310-dbm-debuginfo-3.10.14-150400.4.54.1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (x86_64) * libpython3_10-1_0-3.10.14-150400.4.54.1 * python310-debuginfo-3.10.14-150400.4.54.1 * python310-idle-3.10.14-150400.4.54.1 * libpython3_10-1_0-debuginfo-3.10.14-150400.4.54.1 * python310-curses-debuginfo-3.10.14-150400.4.54.1 * python310-curses-3.10.14-150400.4.54.1 * python310-tools-3.10.14-150400.4.54.1 * python310-tk-3.10.14-150400.4.54.1 * python310-3.10.14-150400.4.54.1 * python310-debugsource-3.10.14-150400.4.54.1 * python310-core-debugsource-3.10.14-150400.4.54.1 * python310-devel-3.10.14-150400.4.54.1 * python310-tk-debuginfo-3.10.14-150400.4.54.1 * python310-base-debuginfo-3.10.14-150400.4.54.1 * python310-base-3.10.14-150400.4.54.1 * python310-dbm-3.10.14-150400.4.54.1 * python310-dbm-debuginfo-3.10.14-150400.4.54.1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (aarch64 ppc64le s390x x86_64) * libpython3_10-1_0-3.10.14-150400.4.54.1 * python310-debuginfo-3.10.14-150400.4.54.1 * python310-idle-3.10.14-150400.4.54.1 * libpython3_10-1_0-debuginfo-3.10.14-150400.4.54.1 * python310-curses-debuginfo-3.10.14-150400.4.54.1 * python310-curses-3.10.14-150400.4.54.1 * python310-tools-3.10.14-150400.4.54.1 * python310-tk-3.10.14-150400.4.54.1 * python310-3.10.14-150400.4.54.1 * python310-debugsource-3.10.14-150400.4.54.1 * python310-core-debugsource-3.10.14-150400.4.54.1 * python310-devel-3.10.14-150400.4.54.1 * python310-tk-debuginfo-3.10.14-150400.4.54.1 * python310-base-debuginfo-3.10.14-150400.4.54.1 * python310-base-3.10.14-150400.4.54.1 * python310-dbm-3.10.14-150400.4.54.1 * python310-dbm-debuginfo-3.10.14-150400.4.54.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64) * libpython3_10-1_0-3.10.14-150400.4.54.1 * python310-debuginfo-3.10.14-150400.4.54.1 * python310-idle-3.10.14-150400.4.54.1 * libpython3_10-1_0-debuginfo-3.10.14-150400.4.54.1 * python310-curses-debuginfo-3.10.14-150400.4.54.1 * python310-curses-3.10.14-150400.4.54.1 * python310-tools-3.10.14-150400.4.54.1 * python310-tk-3.10.14-150400.4.54.1 * python310-3.10.14-150400.4.54.1 * python310-debugsource-3.10.14-150400.4.54.1 * python310-core-debugsource-3.10.14-150400.4.54.1 * python310-devel-3.10.14-150400.4.54.1 * python310-tk-debuginfo-3.10.14-150400.4.54.1 * python310-base-debuginfo-3.10.14-150400.4.54.1 * python310-base-3.10.14-150400.4.54.1 * python310-dbm-3.10.14-150400.4.54.1 * python310-dbm-debuginfo-3.10.14-150400.4.54.1 * openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586) * libpython3_10-1_0-3.10.14-150400.4.54.1 * python310-testsuite-debuginfo-3.10.14-150400.4.54.1 * python310-testsuite-3.10.14-150400.4.54.1 * python310-debugsource-3.10.14-150400.4.54.1 * python310-tk-debuginfo-3.10.14-150400.4.54.1 * python310-core-debugsource-3.10.14-150400.4.54.1 * python310-devel-3.10.14-150400.4.54.1 * python310-dbm-debuginfo-3.10.14-150400.4.54.1 * python310-base-3.10.14-150400.4.54.1 * python310-dbm-3.10.14-150400.4.54.1 * python310-debuginfo-3.10.14-150400.4.54.1 * python310-idle-3.10.14-150400.4.54.1 * python310-tk-3.10.14-150400.4.54.1 * python310-base-debuginfo-3.10.14-150400.4.54.1 * python310-curses-debuginfo-3.10.14-150400.4.54.1 * python310-3.10.14-150400.4.54.1 * python310-doc-3.10.14-150400.4.54.1 * libpython3_10-1_0-debuginfo-3.10.14-150400.4.54.1 * python310-curses-3.10.14-150400.4.54.1 * python310-doc-devhelp-3.10.14-150400.4.54.1 * python310-tools-3.10.14-150400.4.54.1 * openSUSE Leap 15.4 (x86_64) * python310-32bit-3.10.14-150400.4.54.1 * python310-base-32bit-debuginfo-3.10.14-150400.4.54.1 * python310-base-32bit-3.10.14-150400.4.54.1 * python310-32bit-debuginfo-3.10.14-150400.4.54.1 * libpython3_10-1_0-32bit-3.10.14-150400.4.54.1 * libpython3_10-1_0-32bit-debuginfo-3.10.14-150400.4.54.1 * openSUSE Leap 15.4 (aarch64_ilp32) * libpython3_10-1_0-64bit-debuginfo-3.10.14-150400.4.54.1 * python310-base-64bit-3.10.14-150400.4.54.1 * python310-64bit-3.10.14-150400.4.54.1 * libpython3_10-1_0-64bit-3.10.14-150400.4.54.1 * python310-64bit-debuginfo-3.10.14-150400.4.54.1 * python310-base-64bit-debuginfo-3.10.14-150400.4.54.1 ## References: * https://www.suse.com/security/cve/CVE-2024-6923.html * https://bugzilla.suse.com/show_bug.cgi?id=1225660 * https://bugzilla.suse.com/show_bug.cgi?id=1227378 * https://bugzilla.suse.com/show_bug.cgi?id=1227999 * https://bugzilla.suse.com/show_bug.cgi?id=1228780 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Aug 20 12:30:17 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Tue, 20 Aug 2024 12:30:17 -0000 Subject: SUSE-SU-2024:2985-1: important: Security update for libqt5-qtquick3d Message-ID: <172415701797.19318.15607694531204435165@smelt2.prg2.suse.org> # Security update for libqt5-qtquick3d Announcement ID: SUSE-SU-2024:2985-1 Rating: important References: * bsc#1228199 Cross-References: * CVE-2024-40724 CVSS scores: * CVE-2024-40724 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2024-40724 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.6 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Package Hub 15 15-SP6 An update that solves one vulnerability can now be installed. ## Description: This update for libqt5-qtquick3d fixes the following issues: * CVE-2024-40724: Fixed a heap-based buffer overflow in the PLY importer class (bsc#1228199) * Fixed progressive anti-aliasing, which doesn't work if any object in the scene used a PrincipledMaterial * Fixed a crash when a custom material/effect shader variable changes * Skipped processing unknown uniforms, as those that are vendor specific ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch SUSE-2024-2985=1 openSUSE-SLE-15.6-2024-2985=1 * SUSE Package Hub 15 15-SP6 zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP6-2024-2985=1 ## Package List: * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64 i586) * libqt5-qtquick3d-debuginfo-5.15.12+kde1-150600.3.3.1 * libQt5Quick3D5-5.15.12+kde1-150600.3.3.1 * libqt5-qtquick3d-examples-5.15.12+kde1-150600.3.3.1 * libqt5-qtquick3d-imports-debuginfo-5.15.12+kde1-150600.3.3.1 * libqt5-qtquick3d-private-headers-devel-5.15.12+kde1-150600.3.3.1 * libqt5-qtquick3d-tools-5.15.12+kde1-150600.3.3.1 * libQt5Quick3DAssetImport5-5.15.12+kde1-150600.3.3.1 * libqt5-qtquick3d-examples-debuginfo-5.15.12+kde1-150600.3.3.1 * libqt5-qtquick3d-tools-debuginfo-5.15.12+kde1-150600.3.3.1 * libqt5-qtquick3d-imports-5.15.12+kde1-150600.3.3.1 * libqt5-qtquick3d-devel-5.15.12+kde1-150600.3.3.1 * libQt5Quick3DAssetImport5-debuginfo-5.15.12+kde1-150600.3.3.1 * libQt5Quick3D5-debuginfo-5.15.12+kde1-150600.3.3.1 * libqt5-qtquick3d-debugsource-5.15.12+kde1-150600.3.3.1 * SUSE Package Hub 15 15-SP6 (aarch64 ppc64le s390x x86_64) * libqt5-qtquick3d-debuginfo-5.15.12+kde1-150600.3.3.1 * libQt5Quick3D5-5.15.12+kde1-150600.3.3.1 * libQt5Quick3DAssetImport5-5.15.12+kde1-150600.3.3.1 * libQt5Quick3DAssetImport5-debuginfo-5.15.12+kde1-150600.3.3.1 * libQt5Quick3D5-debuginfo-5.15.12+kde1-150600.3.3.1 * libqt5-qtquick3d-debugsource-5.15.12+kde1-150600.3.3.1 ## References: * https://www.suse.com/security/cve/CVE-2024-40724.html * https://bugzilla.suse.com/show_bug.cgi?id=1228199 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Aug 20 12:30:20 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Tue, 20 Aug 2024 12:30:20 -0000 Subject: SUSE-SU-2024:2984-1: important: Security update for libqt5-qt3d Message-ID: <172415702031.19318.8101826606072010566@smelt2.prg2.suse.org> # Security update for libqt5-qt3d Announcement ID: SUSE-SU-2024:2984-1 Rating: important References: * bsc#1228204 Cross-References: * CVE-2024-40724 CVSS scores: * CVE-2024-40724 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2024-40724 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * Desktop Applications Module 15-SP6 * openSUSE Leap 15.6 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 An update that solves one vulnerability can now be installed. ## Description: This update for libqt5-qt3d fixes the following issues: * CVE-2024-40724: Fixed a heap-based buffer overflow in the PLY importer class (bsc#1228204) * Checked for a nullptr returned from the shader manager * Fill image with transparency by default to avoid having junk if it's not filled properly before the first paint call * Fixed QTextureAtlas parenting that could lead to crashes due to being used after free'd ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * Desktop Applications Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Desktop-Applications-15-SP6-2024-2984=1 * openSUSE Leap 15.6 zypper in -t patch SUSE-2024-2984=1 openSUSE-SLE-15.6-2024-2984=1 ## Package List: * Desktop Applications Module 15-SP6 (aarch64 ppc64le s390x x86_64) * libQt53DInput5-5.15.12+kde0-150600.3.3.1 * libqt5-qt3d-tools-5.15.12+kde0-150600.3.3.1 * libQt53DAnimation-devel-5.15.12+kde0-150600.3.3.1 * libQt53DQuickInput5-5.15.12+kde0-150600.3.3.1 * libQt53DQuickRender5-5.15.12+kde0-150600.3.3.1 * libQt53DCore5-5.15.12+kde0-150600.3.3.1 * libQt53DQuick-devel-5.15.12+kde0-150600.3.3.1 * libQt53DQuickAnimation5-debuginfo-5.15.12+kde0-150600.3.3.1 * libQt53DInput5-debuginfo-5.15.12+kde0-150600.3.3.1 * libQt53DQuick5-5.15.12+kde0-150600.3.3.1 * libqt5-qt3d-imports-debuginfo-5.15.12+kde0-150600.3.3.1 * libQt53DExtras5-5.15.12+kde0-150600.3.3.1 * libQt53DAnimation5-5.15.12+kde0-150600.3.3.1 * libQt53DExtras-devel-5.15.12+kde0-150600.3.3.1 * libQt53DAnimation5-debuginfo-5.15.12+kde0-150600.3.3.1 * libqt5-qt3d-debuginfo-5.15.12+kde0-150600.3.3.1 * libQt53DInput-devel-5.15.12+kde0-150600.3.3.1 * libQt53DRender5-debuginfo-5.15.12+kde0-150600.3.3.1 * libQt53DQuickRender5-debuginfo-5.15.12+kde0-150600.3.3.1 * libQt53DQuickInput5-debuginfo-5.15.12+kde0-150600.3.3.1 * libQt53DQuickExtras-devel-5.15.12+kde0-150600.3.3.1 * libQt53DQuick5-debuginfo-5.15.12+kde0-150600.3.3.1 * libQt53DQuickScene2D5-debuginfo-5.15.12+kde0-150600.3.3.1 * libqt5-qt3d-debugsource-5.15.12+kde0-150600.3.3.1 * libQt53DCore5-debuginfo-5.15.12+kde0-150600.3.3.1 * libQt53DQuickInput-devel-5.15.12+kde0-150600.3.3.1 * libQt53DExtras5-debuginfo-5.15.12+kde0-150600.3.3.1 * libQt53DLogic5-debuginfo-5.15.12+kde0-150600.3.3.1 * libQt53DLogic5-5.15.12+kde0-150600.3.3.1 * libQt53DQuickScene2D5-5.15.12+kde0-150600.3.3.1 * libQt53DRender5-5.15.12+kde0-150600.3.3.1 * libQt53DRender-devel-5.15.12+kde0-150600.3.3.1 * libqt5-qt3d-devel-5.15.12+kde0-150600.3.3.1 * libQt53DQuickExtras5-debuginfo-5.15.12+kde0-150600.3.3.1 * libQt53DCore-devel-5.15.12+kde0-150600.3.3.1 * libQt53DQuickRender-devel-5.15.12+kde0-150600.3.3.1 * libQt53DQuickAnimation5-5.15.12+kde0-150600.3.3.1 * libqt5-qt3d-imports-5.15.12+kde0-150600.3.3.1 * libQt53DQuickScene2D-devel-5.15.12+kde0-150600.3.3.1 * libQt53DLogic-devel-5.15.12+kde0-150600.3.3.1 * libQt53DQuickAnimation-devel-5.15.12+kde0-150600.3.3.1 * libQt53DQuickExtras5-5.15.12+kde0-150600.3.3.1 * Desktop Applications Module 15-SP6 (noarch) * libqt5-qt3d-private-headers-devel-5.15.12+kde0-150600.3.3.1 * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64 i586) * libQt53DInput5-5.15.12+kde0-150600.3.3.1 * libqt5-qt3d-tools-5.15.12+kde0-150600.3.3.1 * libQt53DAnimation-devel-5.15.12+kde0-150600.3.3.1 * libQt53DQuickInput5-5.15.12+kde0-150600.3.3.1 * libQt53DQuickRender5-5.15.12+kde0-150600.3.3.1 * libQt53DCore5-5.15.12+kde0-150600.3.3.1 * libQt53DQuick-devel-5.15.12+kde0-150600.3.3.1 * libQt53DQuickAnimation5-debuginfo-5.15.12+kde0-150600.3.3.1 * libQt53DInput5-debuginfo-5.15.12+kde0-150600.3.3.1 * libQt53DQuick5-5.15.12+kde0-150600.3.3.1 * libqt5-qt3d-imports-debuginfo-5.15.12+kde0-150600.3.3.1 * libQt53DExtras5-5.15.12+kde0-150600.3.3.1 * libqt5-qt3d-examples-debuginfo-5.15.12+kde0-150600.3.3.1 * libQt53DAnimation5-5.15.12+kde0-150600.3.3.1 * libQt53DExtras-devel-5.15.12+kde0-150600.3.3.1 * libQt53DAnimation5-debuginfo-5.15.12+kde0-150600.3.3.1 * libqt5-qt3d-debuginfo-5.15.12+kde0-150600.3.3.1 * libQt53DInput-devel-5.15.12+kde0-150600.3.3.1 * libQt53DRender5-debuginfo-5.15.12+kde0-150600.3.3.1 * libQt53DQuickRender5-debuginfo-5.15.12+kde0-150600.3.3.1 * libQt53DQuickInput5-debuginfo-5.15.12+kde0-150600.3.3.1 * libQt53DQuickExtras-devel-5.15.12+kde0-150600.3.3.1 * libQt53DQuick5-debuginfo-5.15.12+kde0-150600.3.3.1 * libQt53DQuickScene2D5-debuginfo-5.15.12+kde0-150600.3.3.1 * libqt5-qt3d-debugsource-5.15.12+kde0-150600.3.3.1 * libQt53DCore5-debuginfo-5.15.12+kde0-150600.3.3.1 * libQt53DQuickInput-devel-5.15.12+kde0-150600.3.3.1 * libQt53DExtras5-debuginfo-5.15.12+kde0-150600.3.3.1 * libQt53DLogic5-debuginfo-5.15.12+kde0-150600.3.3.1 * libQt53DLogic5-5.15.12+kde0-150600.3.3.1 * libQt53DQuickScene2D5-5.15.12+kde0-150600.3.3.1 * libQt53DRender5-5.15.12+kde0-150600.3.3.1 * libqt5-qt3d-examples-5.15.12+kde0-150600.3.3.1 * libQt53DRender-devel-5.15.12+kde0-150600.3.3.1 * libqt5-qt3d-devel-5.15.12+kde0-150600.3.3.1 * libQt53DQuickExtras5-debuginfo-5.15.12+kde0-150600.3.3.1 * libQt53DCore-devel-5.15.12+kde0-150600.3.3.1 * libQt53DQuickRender-devel-5.15.12+kde0-150600.3.3.1 * libQt53DQuickAnimation5-5.15.12+kde0-150600.3.3.1 * libqt5-qt3d-imports-5.15.12+kde0-150600.3.3.1 * libQt53DQuickScene2D-devel-5.15.12+kde0-150600.3.3.1 * libQt53DLogic-devel-5.15.12+kde0-150600.3.3.1 * libQt53DQuickAnimation-devel-5.15.12+kde0-150600.3.3.1 * libQt53DQuickExtras5-5.15.12+kde0-150600.3.3.1 * openSUSE Leap 15.6 (noarch) * libqt5-qt3d-private-headers-devel-5.15.12+kde0-150600.3.3.1 ## References: * https://www.suse.com/security/cve/CVE-2024-40724.html * https://bugzilla.suse.com/show_bug.cgi?id=1228204 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Aug 20 12:30:24 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Tue, 20 Aug 2024 12:30:24 -0000 Subject: SUSE-SU-2024:2983-1: important: Security update for qemu Message-ID: <172415702411.19318.15843629417022566492@smelt2.prg2.suse.org> # Security update for qemu Announcement ID: SUSE-SU-2024:2983-1 Rating: important References: * bsc#1227322 * bsc#1229007 Cross-References: * CVE-2024-4467 * CVE-2024-7409 CVSS scores: * CVE-2024-4467 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-7409 ( SUSE ): 8.2 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2024-7409 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * Basesystem Module 15-SP6 * openSUSE Leap 15.6 * Server Applications Module 15-SP6 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Package Hub 15 15-SP6 An update that solves two vulnerabilities can now be installed. ## Description: This update for qemu fixes the following issues: * CVE-2024-4467: Fixed denial of service and file read/write via qemu-img info command (bsc#1227322) * CVE-2024-7409: Fixed denial of service via improper synchronization in QEMU NBD Server during socket closure (bsc#1229007) * nbd/server: Close stray clients at server-stop * nbd/server: Drop non-negotiating clients * nbd/server: Cap default max-connections to 100 * nbd/server: Plumb in new args to nbd_client_add() * nbd: Minor style and typo fixes * Update qemu to version 8.2.6 ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch SUSE-2024-2983=1 openSUSE-SLE-15.6-2024-2983=1 * Basesystem Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP6-2024-2983=1 * SUSE Package Hub 15 15-SP6 zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP6-2024-2983=1 * Server Applications Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Server-Applications-15-SP6-2024-2983=1 ## Package List: * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64 i586) * qemu-chardev-baum-8.2.6-150600.3.9.1 * qemu-audio-dbus-debuginfo-8.2.6-150600.3.9.1 * qemu-block-iscsi-debuginfo-8.2.6-150600.3.9.1 * qemu-ksm-8.2.6-150600.3.9.1 * qemu-ui-curses-8.2.6-150600.3.9.1 * qemu-ppc-debuginfo-8.2.6-150600.3.9.1 * qemu-ui-spice-core-8.2.6-150600.3.9.1 * qemu-block-gluster-debuginfo-8.2.6-150600.3.9.1 * qemu-hw-display-virtio-vga-debuginfo-8.2.6-150600.3.9.1 * qemu-extra-8.2.6-150600.3.9.1 * qemu-img-8.2.6-150600.3.9.1 * qemu-ui-gtk-debuginfo-8.2.6-150600.3.9.1 * qemu-block-ssh-8.2.6-150600.3.9.1 * qemu-pr-helper-8.2.6-150600.3.9.1 * qemu-ui-spice-core-debuginfo-8.2.6-150600.3.9.1 * qemu-spice-8.2.6-150600.3.9.1 * qemu-ui-opengl-debuginfo-8.2.6-150600.3.9.1 * qemu-block-ssh-debuginfo-8.2.6-150600.3.9.1 * qemu-ppc-8.2.6-150600.3.9.1 * qemu-headless-8.2.6-150600.3.9.1 * qemu-hw-usb-redirect-debuginfo-8.2.6-150600.3.9.1 * qemu-block-iscsi-8.2.6-150600.3.9.1 * qemu-s390x-debuginfo-8.2.6-150600.3.9.1 * qemu-ui-spice-app-8.2.6-150600.3.9.1 * qemu-audio-dbus-8.2.6-150600.3.9.1 * qemu-hw-display-virtio-vga-8.2.6-150600.3.9.1 * qemu-hw-display-virtio-gpu-pci-debuginfo-8.2.6-150600.3.9.1 * qemu-hw-usb-smartcard-8.2.6-150600.3.9.1 * qemu-accel-tcg-x86-8.2.6-150600.3.9.1 * qemu-chardev-spice-debuginfo-8.2.6-150600.3.9.1 * qemu-ui-opengl-8.2.6-150600.3.9.1 * qemu-accel-qtest-debuginfo-8.2.6-150600.3.9.1 * qemu-hw-usb-host-debuginfo-8.2.6-150600.3.9.1 * qemu-8.2.6-150600.3.9.1 * qemu-img-debuginfo-8.2.6-150600.3.9.1 * qemu-ui-gtk-8.2.6-150600.3.9.1 * qemu-audio-pa-debuginfo-8.2.6-150600.3.9.1 * qemu-guest-agent-debuginfo-8.2.6-150600.3.9.1 * qemu-audio-pa-8.2.6-150600.3.9.1 * qemu-ivshmem-tools-debuginfo-8.2.6-150600.3.9.1 * qemu-extra-debuginfo-8.2.6-150600.3.9.1 * qemu-audio-jack-8.2.6-150600.3.9.1 * qemu-arm-debuginfo-8.2.6-150600.3.9.1 * qemu-hw-display-virtio-gpu-pci-8.2.6-150600.3.9.1 * qemu-hw-usb-host-8.2.6-150600.3.9.1 * qemu-audio-alsa-8.2.6-150600.3.9.1 * qemu-pr-helper-debuginfo-8.2.6-150600.3.9.1 * qemu-tools-8.2.6-150600.3.9.1 * qemu-block-dmg-8.2.6-150600.3.9.1 * qemu-hw-s390x-virtio-gpu-ccw-debuginfo-8.2.6-150600.3.9.1 * qemu-hw-display-virtio-gpu-debuginfo-8.2.6-150600.3.9.1 * qemu-hw-usb-smartcard-debuginfo-8.2.6-150600.3.9.1 * qemu-linux-user-8.2.6-150600.3.9.1 * qemu-x86-debuginfo-8.2.6-150600.3.9.1 * qemu-ui-curses-debuginfo-8.2.6-150600.3.9.1 * qemu-linux-user-debugsource-8.2.6-150600.3.9.1 * qemu-block-nfs-debuginfo-8.2.6-150600.3.9.1 * qemu-accel-tcg-x86-debuginfo-8.2.6-150600.3.9.1 * qemu-arm-8.2.6-150600.3.9.1 * qemu-audio-jack-debuginfo-8.2.6-150600.3.9.1 * qemu-hw-s390x-virtio-gpu-ccw-8.2.6-150600.3.9.1 * qemu-block-curl-8.2.6-150600.3.9.1 * qemu-accel-qtest-8.2.6-150600.3.9.1 * qemu-audio-pipewire-8.2.6-150600.3.9.1 * qemu-audio-alsa-debuginfo-8.2.6-150600.3.9.1 * qemu-audio-oss-debuginfo-8.2.6-150600.3.9.1 * qemu-hw-usb-redirect-8.2.6-150600.3.9.1 * qemu-ui-spice-app-debuginfo-8.2.6-150600.3.9.1 * qemu-audio-spice-8.2.6-150600.3.9.1 * qemu-vhost-user-gpu-debuginfo-8.2.6-150600.3.9.1 * qemu-ivshmem-tools-8.2.6-150600.3.9.1 * qemu-audio-oss-8.2.6-150600.3.9.1 * qemu-audio-spice-debuginfo-8.2.6-150600.3.9.1 * qemu-ui-dbus-8.2.6-150600.3.9.1 * qemu-lang-8.2.6-150600.3.9.1 * qemu-s390x-8.2.6-150600.3.9.1 * qemu-chardev-spice-8.2.6-150600.3.9.1 * qemu-hw-display-virtio-gpu-8.2.6-150600.3.9.1 * qemu-ui-dbus-debuginfo-8.2.6-150600.3.9.1 * qemu-hw-display-qxl-debuginfo-8.2.6-150600.3.9.1 * qemu-block-nfs-8.2.6-150600.3.9.1 * qemu-tools-debuginfo-8.2.6-150600.3.9.1 * qemu-chardev-baum-debuginfo-8.2.6-150600.3.9.1 * qemu-debuginfo-8.2.6-150600.3.9.1 * qemu-hw-display-qxl-8.2.6-150600.3.9.1 * qemu-debugsource-8.2.6-150600.3.9.1 * qemu-block-curl-debuginfo-8.2.6-150600.3.9.1 * qemu-x86-8.2.6-150600.3.9.1 * qemu-block-gluster-8.2.6-150600.3.9.1 * qemu-guest-agent-8.2.6-150600.3.9.1 * qemu-vhost-user-gpu-8.2.6-150600.3.9.1 * qemu-audio-pipewire-debuginfo-8.2.6-150600.3.9.1 * qemu-linux-user-debuginfo-8.2.6-150600.3.9.1 * qemu-block-dmg-debuginfo-8.2.6-150600.3.9.1 * openSUSE Leap 15.6 (noarch) * qemu-vgabios-8.2.61.16.3_3_ga95067eb-150600.3.9.1 * qemu-SLOF-8.2.6-150600.3.9.1 * qemu-seabios-8.2.61.16.3_3_ga95067eb-150600.3.9.1 * qemu-skiboot-8.2.6-150600.3.9.1 * qemu-ipxe-8.2.6-150600.3.9.1 * qemu-doc-8.2.6-150600.3.9.1 * qemu-microvm-8.2.6-150600.3.9.1 * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64) * qemu-block-rbd-8.2.6-150600.3.9.1 * qemu-block-rbd-debuginfo-8.2.6-150600.3.9.1 * Basesystem Module 15-SP6 (aarch64 ppc64le s390x x86_64) * qemu-pr-helper-8.2.6-150600.3.9.1 * qemu-pr-helper-debuginfo-8.2.6-150600.3.9.1 * qemu-tools-debuginfo-8.2.6-150600.3.9.1 * qemu-img-debuginfo-8.2.6-150600.3.9.1 * qemu-tools-8.2.6-150600.3.9.1 * qemu-debuginfo-8.2.6-150600.3.9.1 * qemu-debugsource-8.2.6-150600.3.9.1 * qemu-img-8.2.6-150600.3.9.1 * SUSE Package Hub 15 15-SP6 (noarch) * qemu-vgabios-8.2.61.16.3_3_ga95067eb-150600.3.9.1 * qemu-SLOF-8.2.6-150600.3.9.1 * qemu-seabios-8.2.61.16.3_3_ga95067eb-150600.3.9.1 * qemu-skiboot-8.2.6-150600.3.9.1 * qemu-microvm-8.2.6-150600.3.9.1 * SUSE Package Hub 15 15-SP6 (aarch64 ppc64le s390x x86_64) * qemu-vhost-user-gpu-debuginfo-8.2.6-150600.3.9.1 * qemu-ivshmem-tools-8.2.6-150600.3.9.1 * qemu-audio-oss-8.2.6-150600.3.9.1 * qemu-hw-display-virtio-gpu-debuginfo-8.2.6-150600.3.9.1 * qemu-accel-tcg-x86-8.2.6-150600.3.9.1 * qemu-chardev-spice-debuginfo-8.2.6-150600.3.9.1 * qemu-audio-spice-debuginfo-8.2.6-150600.3.9.1 * qemu-hw-usb-smartcard-debuginfo-8.2.6-150600.3.9.1 * qemu-ui-opengl-8.2.6-150600.3.9.1 * qemu-accel-qtest-debuginfo-8.2.6-150600.3.9.1 * qemu-linux-user-8.2.6-150600.3.9.1 * qemu-hw-s390x-virtio-gpu-ccw-debuginfo-8.2.6-150600.3.9.1 * qemu-x86-debuginfo-8.2.6-150600.3.9.1 * qemu-s390x-8.2.6-150600.3.9.1 * qemu-chardev-spice-8.2.6-150600.3.9.1 * qemu-hw-display-virtio-gpu-8.2.6-150600.3.9.1 * qemu-ppc-debuginfo-8.2.6-150600.3.9.1 * qemu-ui-gtk-8.2.6-150600.3.9.1 * qemu-ui-spice-core-8.2.6-150600.3.9.1 * qemu-block-gluster-debuginfo-8.2.6-150600.3.9.1 * qemu-linux-user-debugsource-8.2.6-150600.3.9.1 * qemu-audio-pa-debuginfo-8.2.6-150600.3.9.1 * qemu-block-nfs-debuginfo-8.2.6-150600.3.9.1 * qemu-accel-tcg-x86-debuginfo-8.2.6-150600.3.9.1 * qemu-arm-8.2.6-150600.3.9.1 * qemu-extra-8.2.6-150600.3.9.1 * qemu-audio-jack-debuginfo-8.2.6-150600.3.9.1 * qemu-hw-display-virtio-vga-debuginfo-8.2.6-150600.3.9.1 * qemu-hw-display-qxl-debuginfo-8.2.6-150600.3.9.1 * qemu-ui-gtk-debuginfo-8.2.6-150600.3.9.1 * qemu-audio-pa-8.2.6-150600.3.9.1 * qemu-block-nfs-8.2.6-150600.3.9.1 * qemu-ivshmem-tools-debuginfo-8.2.6-150600.3.9.1 * qemu-extra-debuginfo-8.2.6-150600.3.9.1 * qemu-hw-s390x-virtio-gpu-ccw-8.2.6-150600.3.9.1 * qemu-audio-jack-8.2.6-150600.3.9.1 * qemu-arm-debuginfo-8.2.6-150600.3.9.1 * qemu-hw-display-virtio-gpu-pci-8.2.6-150600.3.9.1 * qemu-hw-display-qxl-8.2.6-150600.3.9.1 * qemu-debuginfo-8.2.6-150600.3.9.1 * qemu-ui-opengl-debuginfo-8.2.6-150600.3.9.1 * qemu-debugsource-8.2.6-150600.3.9.1 * qemu-ui-spice-core-debuginfo-8.2.6-150600.3.9.1 * qemu-x86-8.2.6-150600.3.9.1 * qemu-block-gluster-8.2.6-150600.3.9.1 * qemu-ppc-8.2.6-150600.3.9.1 * qemu-accel-qtest-8.2.6-150600.3.9.1 * qemu-audio-alsa-8.2.6-150600.3.9.1 * qemu-hw-usb-redirect-debuginfo-8.2.6-150600.3.9.1 * qemu-block-dmg-8.2.6-150600.3.9.1 * qemu-vhost-user-gpu-8.2.6-150600.3.9.1 * qemu-s390x-debuginfo-8.2.6-150600.3.9.1 * qemu-audio-alsa-debuginfo-8.2.6-150600.3.9.1 * qemu-audio-oss-debuginfo-8.2.6-150600.3.9.1 * qemu-hw-usb-redirect-8.2.6-150600.3.9.1 * qemu-ui-spice-app-8.2.6-150600.3.9.1 * qemu-linux-user-debuginfo-8.2.6-150600.3.9.1 * qemu-ui-spice-app-debuginfo-8.2.6-150600.3.9.1 * qemu-block-dmg-debuginfo-8.2.6-150600.3.9.1 * qemu-audio-spice-8.2.6-150600.3.9.1 * qemu-hw-display-virtio-vga-8.2.6-150600.3.9.1 * qemu-hw-display-virtio-gpu-pci-debuginfo-8.2.6-150600.3.9.1 * qemu-hw-usb-smartcard-8.2.6-150600.3.9.1 * Server Applications Module 15-SP6 (aarch64 ppc64le s390x x86_64) * qemu-chardev-baum-8.2.6-150600.3.9.1 * qemu-audio-dbus-debuginfo-8.2.6-150600.3.9.1 * qemu-chardev-spice-debuginfo-8.2.6-150600.3.9.1 * qemu-block-iscsi-debuginfo-8.2.6-150600.3.9.1 * qemu-audio-spice-debuginfo-8.2.6-150600.3.9.1 * qemu-ksm-8.2.6-150600.3.9.1 * qemu-ui-opengl-8.2.6-150600.3.9.1 * qemu-hw-usb-host-debuginfo-8.2.6-150600.3.9.1 * qemu-ui-dbus-8.2.6-150600.3.9.1 * qemu-8.2.6-150600.3.9.1 * qemu-lang-8.2.6-150600.3.9.1 * qemu-ui-curses-8.2.6-150600.3.9.1 * qemu-chardev-spice-8.2.6-150600.3.9.1 * qemu-block-rbd-debuginfo-8.2.6-150600.3.9.1 * qemu-ui-curses-debuginfo-8.2.6-150600.3.9.1 * qemu-ui-spice-core-8.2.6-150600.3.9.1 * qemu-ui-dbus-debuginfo-8.2.6-150600.3.9.1 * qemu-block-rbd-8.2.6-150600.3.9.1 * qemu-block-nfs-debuginfo-8.2.6-150600.3.9.1 * qemu-hw-display-virtio-vga-debuginfo-8.2.6-150600.3.9.1 * qemu-hw-display-qxl-debuginfo-8.2.6-150600.3.9.1 * qemu-guest-agent-debuginfo-8.2.6-150600.3.9.1 * qemu-block-ssh-8.2.6-150600.3.9.1 * qemu-block-nfs-8.2.6-150600.3.9.1 * qemu-ui-spice-core-debuginfo-8.2.6-150600.3.9.1 * qemu-chardev-baum-debuginfo-8.2.6-150600.3.9.1 * qemu-debuginfo-8.2.6-150600.3.9.1 * qemu-hw-display-qxl-8.2.6-150600.3.9.1 * qemu-block-ssh-debuginfo-8.2.6-150600.3.9.1 * qemu-debugsource-8.2.6-150600.3.9.1 * qemu-spice-8.2.6-150600.3.9.1 * qemu-block-curl-8.2.6-150600.3.9.1 * qemu-ui-opengl-debuginfo-8.2.6-150600.3.9.1 * qemu-block-curl-debuginfo-8.2.6-150600.3.9.1 * qemu-hw-usb-host-8.2.6-150600.3.9.1 * qemu-headless-8.2.6-150600.3.9.1 * qemu-guest-agent-8.2.6-150600.3.9.1 * qemu-hw-usb-redirect-debuginfo-8.2.6-150600.3.9.1 * qemu-audio-pipewire-8.2.6-150600.3.9.1 * qemu-block-iscsi-8.2.6-150600.3.9.1 * qemu-hw-usb-redirect-8.2.6-150600.3.9.1 * qemu-audio-pipewire-debuginfo-8.2.6-150600.3.9.1 * qemu-audio-dbus-8.2.6-150600.3.9.1 * qemu-audio-spice-8.2.6-150600.3.9.1 * qemu-hw-display-virtio-vga-8.2.6-150600.3.9.1 * Server Applications Module 15-SP6 (aarch64) * qemu-arm-debuginfo-8.2.6-150600.3.9.1 * qemu-arm-8.2.6-150600.3.9.1 * Server Applications Module 15-SP6 (noarch) * qemu-vgabios-8.2.61.16.3_3_ga95067eb-150600.3.9.1 * qemu-SLOF-8.2.6-150600.3.9.1 * qemu-skiboot-8.2.6-150600.3.9.1 * qemu-seabios-8.2.61.16.3_3_ga95067eb-150600.3.9.1 * qemu-ipxe-8.2.6-150600.3.9.1 * Server Applications Module 15-SP6 (aarch64 ppc64le x86_64) * qemu-ui-gtk-8.2.6-150600.3.9.1 * qemu-ui-spice-app-debuginfo-8.2.6-150600.3.9.1 * qemu-ui-spice-app-8.2.6-150600.3.9.1 * qemu-ui-gtk-debuginfo-8.2.6-150600.3.9.1 * Server Applications Module 15-SP6 (ppc64le) * qemu-ppc-8.2.6-150600.3.9.1 * qemu-ppc-debuginfo-8.2.6-150600.3.9.1 * Server Applications Module 15-SP6 (s390x x86_64) * qemu-hw-display-virtio-gpu-debuginfo-8.2.6-150600.3.9.1 * qemu-hw-display-virtio-gpu-pci-debuginfo-8.2.6-150600.3.9.1 * qemu-hw-display-virtio-gpu-pci-8.2.6-150600.3.9.1 * qemu-hw-display-virtio-gpu-8.2.6-150600.3.9.1 * Server Applications Module 15-SP6 (s390x) * qemu-hw-s390x-virtio-gpu-ccw-debuginfo-8.2.6-150600.3.9.1 * qemu-s390x-8.2.6-150600.3.9.1 * qemu-s390x-debuginfo-8.2.6-150600.3.9.1 * qemu-hw-s390x-virtio-gpu-ccw-8.2.6-150600.3.9.1 * Server Applications Module 15-SP6 (x86_64) * qemu-audio-alsa-8.2.6-150600.3.9.1 * qemu-accel-tcg-x86-8.2.6-150600.3.9.1 * qemu-audio-alsa-debuginfo-8.2.6-150600.3.9.1 * qemu-audio-pa-debuginfo-8.2.6-150600.3.9.1 * qemu-accel-tcg-x86-debuginfo-8.2.6-150600.3.9.1 * qemu-x86-8.2.6-150600.3.9.1 * qemu-x86-debuginfo-8.2.6-150600.3.9.1 * qemu-audio-pa-8.2.6-150600.3.9.1 ## References: * https://www.suse.com/security/cve/CVE-2024-4467.html * https://www.suse.com/security/cve/CVE-2024-7409.html * https://bugzilla.suse.com/show_bug.cgi?id=1227322 * https://bugzilla.suse.com/show_bug.cgi?id=1229007 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Aug 20 12:30:31 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Tue, 20 Aug 2024 12:30:31 -0000 Subject: SUSE-SU-2024:2982-1: important: Security update for python311 Message-ID: <172415703126.19318.17690785382819909011@smelt2.prg2.suse.org> # Security update for python311 Announcement ID: SUSE-SU-2024:2982-1 Rating: important References: * bsc#1225660 * bsc#1226447 * bsc#1226448 * bsc#1227378 * bsc#1227999 * bsc#1228780 Cross-References: * CVE-2023-27043 * CVE-2024-0397 * CVE-2024-4032 * CVE-2024-6923 CVSS scores: * CVE-2023-27043 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N * CVE-2023-27043 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N * CVE-2024-0397 ( SUSE ): 4.8 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L * CVE-2024-4032 ( SUSE ): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2024-6923 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N Affected Products: * Basesystem Module 15-SP6 * openSUSE Leap 15.6 * Python 3 Module 15-SP6 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 An update that solves four vulnerabilities and has two security fixes can now be installed. ## Description: This update for python311 fixes the following issues: Security issues fixed: * CVE-2024-6923: Fixed email header injection due to unquoted newlines (bsc#1228780) * CVE-2024-5642: Removed support for anything but OpenSSL 1.1.1 or newer (bsc#1227233) * CVE-2024-4032: Fixed incorrect IPv4 and IPv6 private ranges (bsc#1226448) Non-security issues fixed: * Fixed executable bits for /usr/bin/idle* (bsc#1227378). * Improve python reproducible builds (bsc#1227999) * Make pip and modern tools install directly in /usr/local when used by the user (bsc#1225660) * %{profileopt} variable is set according to the variable %{do_profiling} (bsc#1227999) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * Python 3 Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Python3-15-SP6-2024-2982=1 * openSUSE Leap 15.6 zypper in -t patch SUSE-2024-2982=1 openSUSE-SLE-15.6-2024-2982=1 * Basesystem Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP6-2024-2982=1 ## Package List: * Python 3 Module 15-SP6 (aarch64 ppc64le s390x x86_64) * python311-3.11.9-150600.3.3.1 * python311-idle-3.11.9-150600.3.3.1 * python311-dbm-3.11.9-150600.3.3.1 * python311-devel-3.11.9-150600.3.3.1 * python311-core-debugsource-3.11.9-150600.3.3.1 * python311-debuginfo-3.11.9-150600.3.3.1 * python311-curses-3.11.9-150600.3.3.1 * python311-tk-3.11.9-150600.3.3.1 * python311-tk-debuginfo-3.11.9-150600.3.3.1 * python311-tools-3.11.9-150600.3.3.1 * python311-dbm-debuginfo-3.11.9-150600.3.3.1 * python311-curses-debuginfo-3.11.9-150600.3.3.1 * python311-debugsource-3.11.9-150600.3.3.1 * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64 i586) * python311-doc-devhelp-3.11.9-150600.3.3.1 * python311-dbm-3.11.9-150600.3.3.1 * python311-tk-3.11.9-150600.3.3.1 * python311-debuginfo-3.11.9-150600.3.3.1 * python311-tools-3.11.9-150600.3.3.1 * python311-testsuite-3.11.9-150600.3.3.1 * python311-base-3.11.9-150600.3.3.1 * python311-idle-3.11.9-150600.3.3.1 * libpython3_11-1_0-3.11.9-150600.3.3.1 * python311-curses-3.11.9-150600.3.3.1 * python311-doc-3.11.9-150600.3.3.1 * python311-3.11.9-150600.3.3.1 * python311-devel-3.11.9-150600.3.3.1 * python311-core-debugsource-3.11.9-150600.3.3.1 * python311-testsuite-debuginfo-3.11.9-150600.3.3.1 * python311-tk-debuginfo-3.11.9-150600.3.3.1 * libpython3_11-1_0-debuginfo-3.11.9-150600.3.3.1 * python311-dbm-debuginfo-3.11.9-150600.3.3.1 * python311-base-debuginfo-3.11.9-150600.3.3.1 * python311-curses-debuginfo-3.11.9-150600.3.3.1 * python311-debugsource-3.11.9-150600.3.3.1 * openSUSE Leap 15.6 (x86_64) * python311-32bit-3.11.9-150600.3.3.1 * python311-base-32bit-3.11.9-150600.3.3.1 * python311-32bit-debuginfo-3.11.9-150600.3.3.1 * libpython3_11-1_0-32bit-3.11.9-150600.3.3.1 * python311-base-32bit-debuginfo-3.11.9-150600.3.3.1 * libpython3_11-1_0-32bit-debuginfo-3.11.9-150600.3.3.1 * openSUSE Leap 15.6 (aarch64_ilp32) * libpython3_11-1_0-64bit-debuginfo-3.11.9-150600.3.3.1 * python311-64bit-debuginfo-3.11.9-150600.3.3.1 * python311-base-64bit-debuginfo-3.11.9-150600.3.3.1 * libpython3_11-1_0-64bit-3.11.9-150600.3.3.1 * python311-64bit-3.11.9-150600.3.3.1 * python311-base-64bit-3.11.9-150600.3.3.1 * Basesystem Module 15-SP6 (aarch64 ppc64le s390x x86_64) * libpython3_11-1_0-debuginfo-3.11.9-150600.3.3.1 * libpython3_11-1_0-3.11.9-150600.3.3.1 * python311-core-debugsource-3.11.9-150600.3.3.1 * python311-base-debuginfo-3.11.9-150600.3.3.1 * python311-base-3.11.9-150600.3.3.1 ## References: * https://www.suse.com/security/cve/CVE-2023-27043.html * https://www.suse.com/security/cve/CVE-2024-0397.html * https://www.suse.com/security/cve/CVE-2024-4032.html * https://www.suse.com/security/cve/CVE-2024-6923.html * https://bugzilla.suse.com/show_bug.cgi?id=1225660 * https://bugzilla.suse.com/show_bug.cgi?id=1226447 * https://bugzilla.suse.com/show_bug.cgi?id=1226448 * https://bugzilla.suse.com/show_bug.cgi?id=1227378 * https://bugzilla.suse.com/show_bug.cgi?id=1227999 * https://bugzilla.suse.com/show_bug.cgi?id=1228780 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Aug 20 12:30:34 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Tue, 20 Aug 2024 12:30:34 -0000 Subject: SUSE-SU-2024:2980-1: important: Security update for kernel-firmware Message-ID: <172415703411.19318.14591248164443284384@smelt2.prg2.suse.org> # Security update for kernel-firmware Announcement ID: SUSE-SU-2024:2980-1 Rating: important References: * bsc#1229069 Cross-References: * CVE-2023-31315 CVSS scores: * CVE-2023-31315 ( SUSE ): 7.5 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.4 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Micro for Rancher 5.3 * SUSE Linux Enterprise Micro for Rancher 5.4 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Manager Proxy 4.3 * SUSE Manager Retail Branch Server 4.3 * SUSE Manager Server 4.3 An update that solves one vulnerability can now be installed. ## Description: This update for kernel-firmware fixes the following issues: CVE-2023-31315: Fixed validation in a model specific register (MSR) that lead to modification of SMM configuration by malicious program with ring0 access (bsc#1229069) ## Special Instructions and Notes: * Please reboot the system after installing this update. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch SUSE-2024-2980=1 * SUSE Linux Enterprise Micro for Rancher 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2024-2980=1 * SUSE Linux Enterprise Micro 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2024-2980=1 * SUSE Linux Enterprise Micro for Rancher 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2024-2980=1 * SUSE Linux Enterprise Micro 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2024-2980=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2024-2980=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2024-2980=1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 zypper in -t patch SUSE-SLE-Product-SLED-15-SP4-LTSS-2024-2980=1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2024-2980=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2024-2980=1 * SUSE Manager Proxy 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Proxy-4.3-2024-2980=1 * SUSE Manager Retail Branch Server 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Retail-Branch- Server-4.3-2024-2980=1 * SUSE Manager Server 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Server-4.3-2024-2980=1 ## Package List: * openSUSE Leap 15.4 (noarch) * kernel-firmware-ath10k-20220509-150400.4.28.1 * kernel-firmware-bnx2-20220509-150400.4.28.1 * kernel-firmware-brcm-20220509-150400.4.28.1 * kernel-firmware-sound-20220509-150400.4.28.1 * kernel-firmware-chelsio-20220509-150400.4.28.1 * kernel-firmware-20220509-150400.4.28.1 * kernel-firmware-mellanox-20220509-150400.4.28.1 * kernel-firmware-platform-20220509-150400.4.28.1 * kernel-firmware-i915-20220509-150400.4.28.1 * kernel-firmware-liquidio-20220509-150400.4.28.1 * kernel-firmware-all-20220509-150400.4.28.1 * kernel-firmware-amdgpu-20220509-150400.4.28.1 * kernel-firmware-intel-20220509-150400.4.28.1 * kernel-firmware-usb-network-20220509-150400.4.28.1 * kernel-firmware-ti-20220509-150400.4.28.1 * kernel-firmware-nfp-20220509-150400.4.28.1 * kernel-firmware-bluetooth-20220509-150400.4.28.1 * kernel-firmware-iwlwifi-20220509-150400.4.28.1 * kernel-firmware-marvell-20220509-150400.4.28.1 * kernel-firmware-nvidia-20220509-150400.4.28.1 * kernel-firmware-prestera-20220509-150400.4.28.1 * kernel-firmware-radeon-20220509-150400.4.28.1 * kernel-firmware-atheros-20220509-150400.4.28.1 * kernel-firmware-media-20220509-150400.4.28.1 * kernel-firmware-qlogic-20220509-150400.4.28.1 * kernel-firmware-ath11k-20220509-150400.4.28.1 * kernel-firmware-mwifiex-20220509-150400.4.28.1 * kernel-firmware-network-20220509-150400.4.28.1 * kernel-firmware-dpaa2-20220509-150400.4.28.1 * ucode-amd-20220509-150400.4.28.1 * kernel-firmware-ueagle-20220509-150400.4.28.1 * kernel-firmware-mediatek-20220509-150400.4.28.1 * kernel-firmware-serial-20220509-150400.4.28.1 * kernel-firmware-realtek-20220509-150400.4.28.1 * kernel-firmware-qcom-20220509-150400.4.28.1 * SUSE Linux Enterprise Micro for Rancher 5.3 (noarch) * kernel-firmware-ath10k-20220509-150400.4.28.1 * kernel-firmware-bnx2-20220509-150400.4.28.1 * kernel-firmware-brcm-20220509-150400.4.28.1 * kernel-firmware-sound-20220509-150400.4.28.1 * kernel-firmware-chelsio-20220509-150400.4.28.1 * kernel-firmware-mellanox-20220509-150400.4.28.1 * kernel-firmware-platform-20220509-150400.4.28.1 * kernel-firmware-i915-20220509-150400.4.28.1 * kernel-firmware-liquidio-20220509-150400.4.28.1 * kernel-firmware-all-20220509-150400.4.28.1 * kernel-firmware-amdgpu-20220509-150400.4.28.1 * kernel-firmware-intel-20220509-150400.4.28.1 * kernel-firmware-usb-network-20220509-150400.4.28.1 * kernel-firmware-ti-20220509-150400.4.28.1 * kernel-firmware-nfp-20220509-150400.4.28.1 * kernel-firmware-bluetooth-20220509-150400.4.28.1 * kernel-firmware-iwlwifi-20220509-150400.4.28.1 * kernel-firmware-marvell-20220509-150400.4.28.1 * kernel-firmware-nvidia-20220509-150400.4.28.1 * kernel-firmware-prestera-20220509-150400.4.28.1 * kernel-firmware-radeon-20220509-150400.4.28.1 * kernel-firmware-atheros-20220509-150400.4.28.1 * kernel-firmware-media-20220509-150400.4.28.1 * kernel-firmware-qlogic-20220509-150400.4.28.1 * kernel-firmware-ath11k-20220509-150400.4.28.1 * kernel-firmware-mwifiex-20220509-150400.4.28.1 * kernel-firmware-network-20220509-150400.4.28.1 * kernel-firmware-dpaa2-20220509-150400.4.28.1 * ucode-amd-20220509-150400.4.28.1 * kernel-firmware-ueagle-20220509-150400.4.28.1 * kernel-firmware-mediatek-20220509-150400.4.28.1 * kernel-firmware-serial-20220509-150400.4.28.1 * kernel-firmware-realtek-20220509-150400.4.28.1 * kernel-firmware-qcom-20220509-150400.4.28.1 * SUSE Linux Enterprise Micro 5.3 (noarch) * kernel-firmware-ath10k-20220509-150400.4.28.1 * kernel-firmware-bnx2-20220509-150400.4.28.1 * kernel-firmware-brcm-20220509-150400.4.28.1 * kernel-firmware-sound-20220509-150400.4.28.1 * kernel-firmware-chelsio-20220509-150400.4.28.1 * kernel-firmware-mellanox-20220509-150400.4.28.1 * kernel-firmware-platform-20220509-150400.4.28.1 * kernel-firmware-i915-20220509-150400.4.28.1 * kernel-firmware-liquidio-20220509-150400.4.28.1 * kernel-firmware-all-20220509-150400.4.28.1 * kernel-firmware-amdgpu-20220509-150400.4.28.1 * kernel-firmware-intel-20220509-150400.4.28.1 * kernel-firmware-usb-network-20220509-150400.4.28.1 * kernel-firmware-ti-20220509-150400.4.28.1 * kernel-firmware-nfp-20220509-150400.4.28.1 * kernel-firmware-bluetooth-20220509-150400.4.28.1 * kernel-firmware-iwlwifi-20220509-150400.4.28.1 * kernel-firmware-marvell-20220509-150400.4.28.1 * kernel-firmware-nvidia-20220509-150400.4.28.1 * kernel-firmware-prestera-20220509-150400.4.28.1 * kernel-firmware-radeon-20220509-150400.4.28.1 * kernel-firmware-atheros-20220509-150400.4.28.1 * kernel-firmware-media-20220509-150400.4.28.1 * kernel-firmware-qlogic-20220509-150400.4.28.1 * kernel-firmware-ath11k-20220509-150400.4.28.1 * kernel-firmware-mwifiex-20220509-150400.4.28.1 * kernel-firmware-network-20220509-150400.4.28.1 * kernel-firmware-dpaa2-20220509-150400.4.28.1 * ucode-amd-20220509-150400.4.28.1 * kernel-firmware-ueagle-20220509-150400.4.28.1 * kernel-firmware-mediatek-20220509-150400.4.28.1 * kernel-firmware-serial-20220509-150400.4.28.1 * kernel-firmware-realtek-20220509-150400.4.28.1 * kernel-firmware-qcom-20220509-150400.4.28.1 * SUSE Linux Enterprise Micro for Rancher 5.4 (noarch) * kernel-firmware-ath10k-20220509-150400.4.28.1 * kernel-firmware-bnx2-20220509-150400.4.28.1 * kernel-firmware-brcm-20220509-150400.4.28.1 * kernel-firmware-sound-20220509-150400.4.28.1 * kernel-firmware-chelsio-20220509-150400.4.28.1 * kernel-firmware-mellanox-20220509-150400.4.28.1 * kernel-firmware-platform-20220509-150400.4.28.1 * kernel-firmware-i915-20220509-150400.4.28.1 * kernel-firmware-liquidio-20220509-150400.4.28.1 * kernel-firmware-all-20220509-150400.4.28.1 * kernel-firmware-amdgpu-20220509-150400.4.28.1 * kernel-firmware-intel-20220509-150400.4.28.1 * kernel-firmware-usb-network-20220509-150400.4.28.1 * kernel-firmware-ti-20220509-150400.4.28.1 * kernel-firmware-nfp-20220509-150400.4.28.1 * kernel-firmware-bluetooth-20220509-150400.4.28.1 * kernel-firmware-iwlwifi-20220509-150400.4.28.1 * kernel-firmware-marvell-20220509-150400.4.28.1 * kernel-firmware-nvidia-20220509-150400.4.28.1 * kernel-firmware-prestera-20220509-150400.4.28.1 * kernel-firmware-radeon-20220509-150400.4.28.1 * kernel-firmware-atheros-20220509-150400.4.28.1 * kernel-firmware-media-20220509-150400.4.28.1 * kernel-firmware-qlogic-20220509-150400.4.28.1 * kernel-firmware-ath11k-20220509-150400.4.28.1 * kernel-firmware-mwifiex-20220509-150400.4.28.1 * kernel-firmware-network-20220509-150400.4.28.1 * kernel-firmware-dpaa2-20220509-150400.4.28.1 * ucode-amd-20220509-150400.4.28.1 * kernel-firmware-ueagle-20220509-150400.4.28.1 * kernel-firmware-mediatek-20220509-150400.4.28.1 * kernel-firmware-serial-20220509-150400.4.28.1 * kernel-firmware-realtek-20220509-150400.4.28.1 * kernel-firmware-qcom-20220509-150400.4.28.1 * SUSE Linux Enterprise Micro 5.4 (noarch) * kernel-firmware-ath10k-20220509-150400.4.28.1 * kernel-firmware-bnx2-20220509-150400.4.28.1 * kernel-firmware-brcm-20220509-150400.4.28.1 * kernel-firmware-sound-20220509-150400.4.28.1 * kernel-firmware-chelsio-20220509-150400.4.28.1 * kernel-firmware-mellanox-20220509-150400.4.28.1 * kernel-firmware-platform-20220509-150400.4.28.1 * kernel-firmware-i915-20220509-150400.4.28.1 * kernel-firmware-liquidio-20220509-150400.4.28.1 * kernel-firmware-all-20220509-150400.4.28.1 * kernel-firmware-amdgpu-20220509-150400.4.28.1 * kernel-firmware-intel-20220509-150400.4.28.1 * kernel-firmware-usb-network-20220509-150400.4.28.1 * kernel-firmware-ti-20220509-150400.4.28.1 * kernel-firmware-nfp-20220509-150400.4.28.1 * kernel-firmware-bluetooth-20220509-150400.4.28.1 * kernel-firmware-iwlwifi-20220509-150400.4.28.1 * kernel-firmware-marvell-20220509-150400.4.28.1 * kernel-firmware-nvidia-20220509-150400.4.28.1 * kernel-firmware-prestera-20220509-150400.4.28.1 * kernel-firmware-radeon-20220509-150400.4.28.1 * kernel-firmware-atheros-20220509-150400.4.28.1 * kernel-firmware-media-20220509-150400.4.28.1 * kernel-firmware-qlogic-20220509-150400.4.28.1 * kernel-firmware-ath11k-20220509-150400.4.28.1 * kernel-firmware-mwifiex-20220509-150400.4.28.1 * kernel-firmware-network-20220509-150400.4.28.1 * kernel-firmware-dpaa2-20220509-150400.4.28.1 * ucode-amd-20220509-150400.4.28.1 * kernel-firmware-ueagle-20220509-150400.4.28.1 * kernel-firmware-mediatek-20220509-150400.4.28.1 * kernel-firmware-serial-20220509-150400.4.28.1 * kernel-firmware-realtek-20220509-150400.4.28.1 * kernel-firmware-qcom-20220509-150400.4.28.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (noarch) * kernel-firmware-ath10k-20220509-150400.4.28.1 * kernel-firmware-bnx2-20220509-150400.4.28.1 * kernel-firmware-brcm-20220509-150400.4.28.1 * kernel-firmware-sound-20220509-150400.4.28.1 * kernel-firmware-chelsio-20220509-150400.4.28.1 * kernel-firmware-mellanox-20220509-150400.4.28.1 * kernel-firmware-platform-20220509-150400.4.28.1 * kernel-firmware-i915-20220509-150400.4.28.1 * kernel-firmware-liquidio-20220509-150400.4.28.1 * kernel-firmware-all-20220509-150400.4.28.1 * kernel-firmware-amdgpu-20220509-150400.4.28.1 * kernel-firmware-intel-20220509-150400.4.28.1 * kernel-firmware-usb-network-20220509-150400.4.28.1 * kernel-firmware-ti-20220509-150400.4.28.1 * kernel-firmware-nfp-20220509-150400.4.28.1 * kernel-firmware-bluetooth-20220509-150400.4.28.1 * kernel-firmware-iwlwifi-20220509-150400.4.28.1 * kernel-firmware-marvell-20220509-150400.4.28.1 * kernel-firmware-nvidia-20220509-150400.4.28.1 * kernel-firmware-prestera-20220509-150400.4.28.1 * kernel-firmware-radeon-20220509-150400.4.28.1 * kernel-firmware-atheros-20220509-150400.4.28.1 * kernel-firmware-media-20220509-150400.4.28.1 * kernel-firmware-qlogic-20220509-150400.4.28.1 * kernel-firmware-ath11k-20220509-150400.4.28.1 * kernel-firmware-mwifiex-20220509-150400.4.28.1 * kernel-firmware-network-20220509-150400.4.28.1 * kernel-firmware-dpaa2-20220509-150400.4.28.1 * ucode-amd-20220509-150400.4.28.1 * kernel-firmware-ueagle-20220509-150400.4.28.1 * kernel-firmware-mediatek-20220509-150400.4.28.1 * kernel-firmware-serial-20220509-150400.4.28.1 * kernel-firmware-realtek-20220509-150400.4.28.1 * kernel-firmware-qcom-20220509-150400.4.28.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (noarch) * kernel-firmware-ath10k-20220509-150400.4.28.1 * kernel-firmware-bnx2-20220509-150400.4.28.1 * kernel-firmware-brcm-20220509-150400.4.28.1 * kernel-firmware-sound-20220509-150400.4.28.1 * kernel-firmware-chelsio-20220509-150400.4.28.1 * kernel-firmware-mellanox-20220509-150400.4.28.1 * kernel-firmware-platform-20220509-150400.4.28.1 * kernel-firmware-i915-20220509-150400.4.28.1 * kernel-firmware-liquidio-20220509-150400.4.28.1 * kernel-firmware-all-20220509-150400.4.28.1 * kernel-firmware-amdgpu-20220509-150400.4.28.1 * kernel-firmware-intel-20220509-150400.4.28.1 * kernel-firmware-usb-network-20220509-150400.4.28.1 * kernel-firmware-ti-20220509-150400.4.28.1 * kernel-firmware-nfp-20220509-150400.4.28.1 * kernel-firmware-bluetooth-20220509-150400.4.28.1 * kernel-firmware-iwlwifi-20220509-150400.4.28.1 * kernel-firmware-marvell-20220509-150400.4.28.1 * kernel-firmware-nvidia-20220509-150400.4.28.1 * kernel-firmware-prestera-20220509-150400.4.28.1 * kernel-firmware-radeon-20220509-150400.4.28.1 * kernel-firmware-atheros-20220509-150400.4.28.1 * kernel-firmware-media-20220509-150400.4.28.1 * kernel-firmware-qlogic-20220509-150400.4.28.1 * kernel-firmware-ath11k-20220509-150400.4.28.1 * kernel-firmware-mwifiex-20220509-150400.4.28.1 * kernel-firmware-network-20220509-150400.4.28.1 * kernel-firmware-dpaa2-20220509-150400.4.28.1 * ucode-amd-20220509-150400.4.28.1 * kernel-firmware-ueagle-20220509-150400.4.28.1 * kernel-firmware-mediatek-20220509-150400.4.28.1 * kernel-firmware-serial-20220509-150400.4.28.1 * kernel-firmware-realtek-20220509-150400.4.28.1 * kernel-firmware-qcom-20220509-150400.4.28.1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (noarch) * kernel-firmware-ath10k-20220509-150400.4.28.1 * kernel-firmware-bnx2-20220509-150400.4.28.1 * kernel-firmware-brcm-20220509-150400.4.28.1 * kernel-firmware-sound-20220509-150400.4.28.1 * kernel-firmware-chelsio-20220509-150400.4.28.1 * kernel-firmware-mellanox-20220509-150400.4.28.1 * kernel-firmware-platform-20220509-150400.4.28.1 * kernel-firmware-i915-20220509-150400.4.28.1 * kernel-firmware-liquidio-20220509-150400.4.28.1 * kernel-firmware-all-20220509-150400.4.28.1 * kernel-firmware-amdgpu-20220509-150400.4.28.1 * kernel-firmware-intel-20220509-150400.4.28.1 * kernel-firmware-usb-network-20220509-150400.4.28.1 * kernel-firmware-ti-20220509-150400.4.28.1 * kernel-firmware-nfp-20220509-150400.4.28.1 * kernel-firmware-bluetooth-20220509-150400.4.28.1 * kernel-firmware-iwlwifi-20220509-150400.4.28.1 * kernel-firmware-marvell-20220509-150400.4.28.1 * kernel-firmware-nvidia-20220509-150400.4.28.1 * kernel-firmware-prestera-20220509-150400.4.28.1 * kernel-firmware-radeon-20220509-150400.4.28.1 * kernel-firmware-atheros-20220509-150400.4.28.1 * kernel-firmware-media-20220509-150400.4.28.1 * kernel-firmware-qlogic-20220509-150400.4.28.1 * kernel-firmware-ath11k-20220509-150400.4.28.1 * kernel-firmware-mwifiex-20220509-150400.4.28.1 * kernel-firmware-network-20220509-150400.4.28.1 * kernel-firmware-dpaa2-20220509-150400.4.28.1 * ucode-amd-20220509-150400.4.28.1 * kernel-firmware-ueagle-20220509-150400.4.28.1 * kernel-firmware-mediatek-20220509-150400.4.28.1 * kernel-firmware-serial-20220509-150400.4.28.1 * kernel-firmware-realtek-20220509-150400.4.28.1 * kernel-firmware-qcom-20220509-150400.4.28.1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (noarch) * kernel-firmware-ath10k-20220509-150400.4.28.1 * kernel-firmware-bnx2-20220509-150400.4.28.1 * kernel-firmware-brcm-20220509-150400.4.28.1 * kernel-firmware-sound-20220509-150400.4.28.1 * kernel-firmware-chelsio-20220509-150400.4.28.1 * kernel-firmware-mellanox-20220509-150400.4.28.1 * kernel-firmware-platform-20220509-150400.4.28.1 * kernel-firmware-i915-20220509-150400.4.28.1 * kernel-firmware-liquidio-20220509-150400.4.28.1 * kernel-firmware-all-20220509-150400.4.28.1 * kernel-firmware-amdgpu-20220509-150400.4.28.1 * kernel-firmware-intel-20220509-150400.4.28.1 * kernel-firmware-usb-network-20220509-150400.4.28.1 * kernel-firmware-ti-20220509-150400.4.28.1 * kernel-firmware-nfp-20220509-150400.4.28.1 * kernel-firmware-bluetooth-20220509-150400.4.28.1 * kernel-firmware-iwlwifi-20220509-150400.4.28.1 * kernel-firmware-marvell-20220509-150400.4.28.1 * kernel-firmware-nvidia-20220509-150400.4.28.1 * kernel-firmware-prestera-20220509-150400.4.28.1 * kernel-firmware-radeon-20220509-150400.4.28.1 * kernel-firmware-atheros-20220509-150400.4.28.1 * kernel-firmware-media-20220509-150400.4.28.1 * kernel-firmware-qlogic-20220509-150400.4.28.1 * kernel-firmware-ath11k-20220509-150400.4.28.1 * kernel-firmware-mwifiex-20220509-150400.4.28.1 * kernel-firmware-network-20220509-150400.4.28.1 * kernel-firmware-dpaa2-20220509-150400.4.28.1 * ucode-amd-20220509-150400.4.28.1 * kernel-firmware-ueagle-20220509-150400.4.28.1 * kernel-firmware-mediatek-20220509-150400.4.28.1 * kernel-firmware-serial-20220509-150400.4.28.1 * kernel-firmware-realtek-20220509-150400.4.28.1 * kernel-firmware-qcom-20220509-150400.4.28.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (noarch) * kernel-firmware-ath10k-20220509-150400.4.28.1 * kernel-firmware-bnx2-20220509-150400.4.28.1 * kernel-firmware-brcm-20220509-150400.4.28.1 * kernel-firmware-sound-20220509-150400.4.28.1 * kernel-firmware-chelsio-20220509-150400.4.28.1 * kernel-firmware-mellanox-20220509-150400.4.28.1 * kernel-firmware-platform-20220509-150400.4.28.1 * kernel-firmware-i915-20220509-150400.4.28.1 * kernel-firmware-liquidio-20220509-150400.4.28.1 * kernel-firmware-all-20220509-150400.4.28.1 * kernel-firmware-amdgpu-20220509-150400.4.28.1 * kernel-firmware-intel-20220509-150400.4.28.1 * kernel-firmware-usb-network-20220509-150400.4.28.1 * kernel-firmware-ti-20220509-150400.4.28.1 * kernel-firmware-nfp-20220509-150400.4.28.1 * kernel-firmware-bluetooth-20220509-150400.4.28.1 * kernel-firmware-iwlwifi-20220509-150400.4.28.1 * kernel-firmware-marvell-20220509-150400.4.28.1 * kernel-firmware-nvidia-20220509-150400.4.28.1 * kernel-firmware-prestera-20220509-150400.4.28.1 * kernel-firmware-radeon-20220509-150400.4.28.1 * kernel-firmware-atheros-20220509-150400.4.28.1 * kernel-firmware-media-20220509-150400.4.28.1 * kernel-firmware-qlogic-20220509-150400.4.28.1 * kernel-firmware-ath11k-20220509-150400.4.28.1 * kernel-firmware-mwifiex-20220509-150400.4.28.1 * kernel-firmware-network-20220509-150400.4.28.1 * kernel-firmware-dpaa2-20220509-150400.4.28.1 * ucode-amd-20220509-150400.4.28.1 * kernel-firmware-ueagle-20220509-150400.4.28.1 * kernel-firmware-mediatek-20220509-150400.4.28.1 * kernel-firmware-serial-20220509-150400.4.28.1 * kernel-firmware-realtek-20220509-150400.4.28.1 * kernel-firmware-qcom-20220509-150400.4.28.1 * SUSE Manager Proxy 4.3 (noarch) * kernel-firmware-ath10k-20220509-150400.4.28.1 * kernel-firmware-bnx2-20220509-150400.4.28.1 * kernel-firmware-brcm-20220509-150400.4.28.1 * kernel-firmware-sound-20220509-150400.4.28.1 * kernel-firmware-chelsio-20220509-150400.4.28.1 * kernel-firmware-mellanox-20220509-150400.4.28.1 * kernel-firmware-platform-20220509-150400.4.28.1 * kernel-firmware-i915-20220509-150400.4.28.1 * kernel-firmware-liquidio-20220509-150400.4.28.1 * kernel-firmware-all-20220509-150400.4.28.1 * kernel-firmware-amdgpu-20220509-150400.4.28.1 * kernel-firmware-intel-20220509-150400.4.28.1 * kernel-firmware-usb-network-20220509-150400.4.28.1 * kernel-firmware-ti-20220509-150400.4.28.1 * kernel-firmware-nfp-20220509-150400.4.28.1 * kernel-firmware-bluetooth-20220509-150400.4.28.1 * kernel-firmware-iwlwifi-20220509-150400.4.28.1 * kernel-firmware-marvell-20220509-150400.4.28.1 * kernel-firmware-nvidia-20220509-150400.4.28.1 * kernel-firmware-prestera-20220509-150400.4.28.1 * kernel-firmware-radeon-20220509-150400.4.28.1 * kernel-firmware-atheros-20220509-150400.4.28.1 * kernel-firmware-media-20220509-150400.4.28.1 * kernel-firmware-qlogic-20220509-150400.4.28.1 * kernel-firmware-ath11k-20220509-150400.4.28.1 * kernel-firmware-mwifiex-20220509-150400.4.28.1 * kernel-firmware-network-20220509-150400.4.28.1 * kernel-firmware-dpaa2-20220509-150400.4.28.1 * ucode-amd-20220509-150400.4.28.1 * kernel-firmware-ueagle-20220509-150400.4.28.1 * kernel-firmware-mediatek-20220509-150400.4.28.1 * kernel-firmware-serial-20220509-150400.4.28.1 * kernel-firmware-realtek-20220509-150400.4.28.1 * kernel-firmware-qcom-20220509-150400.4.28.1 * SUSE Manager Retail Branch Server 4.3 (noarch) * kernel-firmware-ath10k-20220509-150400.4.28.1 * kernel-firmware-bnx2-20220509-150400.4.28.1 * kernel-firmware-brcm-20220509-150400.4.28.1 * kernel-firmware-sound-20220509-150400.4.28.1 * kernel-firmware-chelsio-20220509-150400.4.28.1 * kernel-firmware-mellanox-20220509-150400.4.28.1 * kernel-firmware-platform-20220509-150400.4.28.1 * kernel-firmware-i915-20220509-150400.4.28.1 * kernel-firmware-liquidio-20220509-150400.4.28.1 * kernel-firmware-all-20220509-150400.4.28.1 * kernel-firmware-amdgpu-20220509-150400.4.28.1 * kernel-firmware-intel-20220509-150400.4.28.1 * kernel-firmware-usb-network-20220509-150400.4.28.1 * kernel-firmware-ti-20220509-150400.4.28.1 * kernel-firmware-nfp-20220509-150400.4.28.1 * kernel-firmware-bluetooth-20220509-150400.4.28.1 * kernel-firmware-iwlwifi-20220509-150400.4.28.1 * kernel-firmware-marvell-20220509-150400.4.28.1 * kernel-firmware-nvidia-20220509-150400.4.28.1 * kernel-firmware-prestera-20220509-150400.4.28.1 * kernel-firmware-radeon-20220509-150400.4.28.1 * kernel-firmware-atheros-20220509-150400.4.28.1 * kernel-firmware-media-20220509-150400.4.28.1 * kernel-firmware-qlogic-20220509-150400.4.28.1 * kernel-firmware-ath11k-20220509-150400.4.28.1 * kernel-firmware-mwifiex-20220509-150400.4.28.1 * kernel-firmware-network-20220509-150400.4.28.1 * kernel-firmware-dpaa2-20220509-150400.4.28.1 * ucode-amd-20220509-150400.4.28.1 * kernel-firmware-ueagle-20220509-150400.4.28.1 * kernel-firmware-mediatek-20220509-150400.4.28.1 * kernel-firmware-serial-20220509-150400.4.28.1 * kernel-firmware-realtek-20220509-150400.4.28.1 * kernel-firmware-qcom-20220509-150400.4.28.1 * SUSE Manager Server 4.3 (noarch) * kernel-firmware-ath10k-20220509-150400.4.28.1 * kernel-firmware-bnx2-20220509-150400.4.28.1 * kernel-firmware-brcm-20220509-150400.4.28.1 * kernel-firmware-sound-20220509-150400.4.28.1 * kernel-firmware-chelsio-20220509-150400.4.28.1 * kernel-firmware-mellanox-20220509-150400.4.28.1 * kernel-firmware-platform-20220509-150400.4.28.1 * kernel-firmware-i915-20220509-150400.4.28.1 * kernel-firmware-liquidio-20220509-150400.4.28.1 * kernel-firmware-all-20220509-150400.4.28.1 * kernel-firmware-amdgpu-20220509-150400.4.28.1 * kernel-firmware-intel-20220509-150400.4.28.1 * kernel-firmware-usb-network-20220509-150400.4.28.1 * kernel-firmware-ti-20220509-150400.4.28.1 * kernel-firmware-nfp-20220509-150400.4.28.1 * kernel-firmware-bluetooth-20220509-150400.4.28.1 * kernel-firmware-iwlwifi-20220509-150400.4.28.1 * kernel-firmware-marvell-20220509-150400.4.28.1 * kernel-firmware-nvidia-20220509-150400.4.28.1 * kernel-firmware-prestera-20220509-150400.4.28.1 * kernel-firmware-radeon-20220509-150400.4.28.1 * kernel-firmware-atheros-20220509-150400.4.28.1 * kernel-firmware-media-20220509-150400.4.28.1 * kernel-firmware-qlogic-20220509-150400.4.28.1 * kernel-firmware-ath11k-20220509-150400.4.28.1 * kernel-firmware-mwifiex-20220509-150400.4.28.1 * kernel-firmware-network-20220509-150400.4.28.1 * kernel-firmware-dpaa2-20220509-150400.4.28.1 * ucode-amd-20220509-150400.4.28.1 * kernel-firmware-ueagle-20220509-150400.4.28.1 * kernel-firmware-mediatek-20220509-150400.4.28.1 * kernel-firmware-serial-20220509-150400.4.28.1 * kernel-firmware-realtek-20220509-150400.4.28.1 * kernel-firmware-qcom-20220509-150400.4.28.1 ## References: * https://www.suse.com/security/cve/CVE-2023-31315.html * https://bugzilla.suse.com/show_bug.cgi?id=1229069 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Aug 20 12:30:37 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Tue, 20 Aug 2024 12:30:37 -0000 Subject: SUSE-SU-2024:2979-1: moderate: Security update for tiff Message-ID: <172415703701.19318.3021036288609765740@smelt2.prg2.suse.org> # Security update for tiff Announcement ID: SUSE-SU-2024:2979-1 Rating: moderate References: * bsc#1228924 Cross-References: * CVE-2024-7006 CVSS scores: * CVE-2024-7006 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2024-7006 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2024-7006 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 * SUSE Linux Enterprise Software Development Kit 12 SP5 An update that solves one vulnerability can now be installed. ## Description: This update for tiff fixes the following issues: * CVE-2024-7006: Fixed null pointer dereference in tif_dirinfo.c (bsc#1228924) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Software Development Kit 12 SP5 zypper in -t patch SUSE-SLE-SDK-12-SP5-2024-2979=1 * SUSE Linux Enterprise High Performance Computing 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-2979=1 * SUSE Linux Enterprise Server 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-2979=1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-2979=1 ## Package List: * SUSE Linux Enterprise Software Development Kit 12 SP5 (aarch64 ppc64le s390x x86_64) * libtiff-devel-4.0.9-44.86.1 * tiff-debugsource-4.0.9-44.86.1 * tiff-debuginfo-4.0.9-44.86.1 * SUSE Linux Enterprise High Performance Computing 12 SP5 (aarch64 x86_64) * libtiff5-4.0.9-44.86.1 * libtiff5-debuginfo-4.0.9-44.86.1 * tiff-debugsource-4.0.9-44.86.1 * tiff-debuginfo-4.0.9-44.86.1 * tiff-4.0.9-44.86.1 * SUSE Linux Enterprise High Performance Computing 12 SP5 (x86_64) * libtiff5-debuginfo-32bit-4.0.9-44.86.1 * libtiff5-32bit-4.0.9-44.86.1 * SUSE Linux Enterprise Server 12 SP5 (aarch64 ppc64le s390x x86_64) * libtiff5-4.0.9-44.86.1 * libtiff5-debuginfo-4.0.9-44.86.1 * tiff-debugsource-4.0.9-44.86.1 * tiff-debuginfo-4.0.9-44.86.1 * tiff-4.0.9-44.86.1 * SUSE Linux Enterprise Server 12 SP5 (s390x x86_64) * libtiff5-debuginfo-32bit-4.0.9-44.86.1 * libtiff5-32bit-4.0.9-44.86.1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 (ppc64le x86_64) * libtiff5-4.0.9-44.86.1 * libtiff5-debuginfo-4.0.9-44.86.1 * tiff-debugsource-4.0.9-44.86.1 * tiff-debuginfo-4.0.9-44.86.1 * tiff-4.0.9-44.86.1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 (x86_64) * libtiff5-debuginfo-32bit-4.0.9-44.86.1 * libtiff5-32bit-4.0.9-44.86.1 ## References: * https://www.suse.com/security/cve/CVE-2024-7006.html * https://bugzilla.suse.com/show_bug.cgi?id=1228924 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Aug 20 12:30:39 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Tue, 20 Aug 2024 12:30:39 -0000 Subject: SUSE-SU-2024:2978-1: important: Security update for unixODBC Message-ID: <172415703939.19318.10849327535743392374@smelt2.prg2.suse.org> # Security update for unixODBC Announcement ID: SUSE-SU-2024:2978-1 Rating: important References: * bsc#1228143 Cross-References: * CVE-2024-1013 CVSS scores: * CVE-2024-1013 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H Affected Products: * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 * SUSE Linux Enterprise Software Development Kit 12 SP5 An update that solves one vulnerability can now be installed. ## Description: This update for unixODBC fixes the following issues: * CVE-2024-1013: Fixed out of bounds stack write due to pointer-to-integer types conversion on 64-bit architectures (bsc#1228143) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Software Development Kit 12 SP5 zypper in -t patch SUSE-SLE-SDK-12-SP5-2024-2978=1 * SUSE Linux Enterprise High Performance Computing 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-2978=1 * SUSE Linux Enterprise Server 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-2978=1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-2978=1 ## Package List: * SUSE Linux Enterprise Software Development Kit 12 SP5 (aarch64 ppc64le s390x x86_64) * unixODBC-devel-2.3.9-7.16.1 * unixODBC-debugsource-2.3.9-7.16.1 * unixODBC-debuginfo-2.3.9-7.16.1 * SUSE Linux Enterprise High Performance Computing 12 SP5 (aarch64 x86_64) * unixODBC-2.3.9-7.16.1 * unixODBC-debugsource-2.3.9-7.16.1 * unixODBC-debuginfo-2.3.9-7.16.1 * libodbc2-2.3.9-7.16.1 * libodbc2-debuginfo-2.3.9-7.16.1 * SUSE Linux Enterprise High Performance Computing 12 SP5 (x86_64) * libodbc2-32bit-2.3.9-7.16.1 * unixODBC-debuginfo-32bit-2.3.9-7.16.1 * libodbc2-debuginfo-32bit-2.3.9-7.16.1 * unixODBC-32bit-2.3.9-7.16.1 * SUSE Linux Enterprise Server 12 SP5 (aarch64 ppc64le s390x x86_64) * unixODBC-2.3.9-7.16.1 * unixODBC-debugsource-2.3.9-7.16.1 * unixODBC-debuginfo-2.3.9-7.16.1 * libodbc2-2.3.9-7.16.1 * libodbc2-debuginfo-2.3.9-7.16.1 * SUSE Linux Enterprise Server 12 SP5 (s390x x86_64) * libodbc2-32bit-2.3.9-7.16.1 * unixODBC-debuginfo-32bit-2.3.9-7.16.1 * libodbc2-debuginfo-32bit-2.3.9-7.16.1 * unixODBC-32bit-2.3.9-7.16.1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 (ppc64le x86_64) * unixODBC-2.3.9-7.16.1 * unixODBC-debugsource-2.3.9-7.16.1 * unixODBC-debuginfo-2.3.9-7.16.1 * libodbc2-2.3.9-7.16.1 * libodbc2-debuginfo-2.3.9-7.16.1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 (x86_64) * libodbc2-32bit-2.3.9-7.16.1 * unixODBC-debuginfo-32bit-2.3.9-7.16.1 * libodbc2-debuginfo-32bit-2.3.9-7.16.1 * unixODBC-32bit-2.3.9-7.16.1 ## References: * https://www.suse.com/security/cve/CVE-2024-1013.html * https://bugzilla.suse.com/show_bug.cgi?id=1228143 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Aug 20 12:30:43 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Tue, 20 Aug 2024 12:30:43 -0000 Subject: SUSE-SU-2024:2977-1: important: Security update for qemu Message-ID: <172415704361.19318.12225693794467084699@smelt2.prg2.suse.org> # Security update for qemu Announcement ID: SUSE-SU-2024:2977-1 Rating: important References: * bsc#1212968 * bsc#1215311 * bsc#1227322 Cross-References: * CVE-2023-2861 * CVE-2024-4467 CVSS scores: * CVE-2023-2861 ( SUSE ): 7.5 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H * CVE-2023-2861 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2024-4467 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.3 * SUSE Enterprise Storage 7.1 * SUSE Linux Enterprise High Performance Computing 15 SP3 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 * SUSE Linux Enterprise Micro 5.1 * SUSE Linux Enterprise Micro 5.2 * SUSE Linux Enterprise Micro for Rancher 5.2 * SUSE Linux Enterprise Server 15 SP3 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 An update that solves two vulnerabilities and has one security fix can now be installed. ## Description: This update for qemu fixes the following issues: * CVE-2023-2861: Fixed improper access control on special files via 9p protocol (bsc#1212968) * CVE-2024-4467: Fixed denial of service and file read/write via qemu-img info command (bsc#1227322) Other fixes: \- Fixed qemu build compilation with binutils 2.41 upgrade (bsc#1215311) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.3 zypper in -t patch SUSE-2024-2977=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 zypper in -t patch SUSE-SLE-Product-HPC-15-SP3-LTSS-2024-2977=1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 zypper in -t patch SUSE-SLE-Product-SLES-15-SP3-LTSS-2024-2977=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP3-2024-2977=1 * SUSE Enterprise Storage 7.1 zypper in -t patch SUSE-Storage-7.1-2024-2977=1 * SUSE Linux Enterprise Micro 5.1 zypper in -t patch SUSE-SUSE-MicroOS-5.1-2024-2977=1 * SUSE Linux Enterprise Micro 5.2 zypper in -t patch SUSE-SUSE-MicroOS-5.2-2024-2977=1 * SUSE Linux Enterprise Micro for Rancher 5.2 zypper in -t patch SUSE-SUSE-MicroOS-5.2-2024-2977=1 ## Package List: * openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64 i586) * qemu-chardev-spice-debuginfo-5.2.0-150300.130.1 * qemu-ui-spice-core-debuginfo-5.2.0-150300.130.1 * qemu-block-iscsi-debuginfo-5.2.0-150300.130.1 * qemu-vhost-user-gpu-debuginfo-5.2.0-150300.130.1 * qemu-hw-display-virtio-vga-5.2.0-150300.130.1 * qemu-vhost-user-gpu-5.2.0-150300.130.1 * qemu-tools-5.2.0-150300.130.1 * qemu-debuginfo-5.2.0-150300.130.1 * qemu-ui-gtk-debuginfo-5.2.0-150300.130.1 * qemu-ivshmem-tools-debuginfo-5.2.0-150300.130.1 * qemu-s390x-debuginfo-5.2.0-150300.130.1 * qemu-ui-gtk-5.2.0-150300.130.1 * qemu-linux-user-debuginfo-5.2.0-150300.130.1 * qemu-block-nfs-debuginfo-5.2.0-150300.130.1 * qemu-hw-display-qxl-debuginfo-5.2.0-150300.130.1 * qemu-hw-display-virtio-vga-debuginfo-5.2.0-150300.130.1 * qemu-block-ssh-5.2.0-150300.130.1 * qemu-ui-spice-app-debuginfo-5.2.0-150300.130.1 * qemu-block-gluster-debuginfo-5.2.0-150300.130.1 * qemu-hw-s390x-virtio-gpu-ccw-debuginfo-5.2.0-150300.130.1 * qemu-audio-alsa-debuginfo-5.2.0-150300.130.1 * qemu-ppc-5.2.0-150300.130.1 * qemu-block-dmg-debuginfo-5.2.0-150300.130.1 * qemu-chardev-baum-debuginfo-5.2.0-150300.130.1 * qemu-chardev-spice-5.2.0-150300.130.1 * qemu-hw-display-virtio-gpu-5.2.0-150300.130.1 * qemu-arm-debuginfo-5.2.0-150300.130.1 * qemu-5.2.0-150300.130.1 * qemu-hw-usb-redirect-5.2.0-150300.130.1 * qemu-ui-spice-app-5.2.0-150300.130.1 * qemu-x86-debuginfo-5.2.0-150300.130.1 * qemu-testsuite-5.2.0-150300.130.2 * qemu-ui-opengl-debuginfo-5.2.0-150300.130.1 * qemu-ui-curses-5.2.0-150300.130.1 * qemu-hw-usb-smartcard-5.2.0-150300.130.1 * qemu-block-nfs-5.2.0-150300.130.1 * qemu-audio-pa-5.2.0-150300.130.1 * qemu-audio-pa-debuginfo-5.2.0-150300.130.1 * qemu-ui-spice-core-5.2.0-150300.130.1 * qemu-lang-5.2.0-150300.130.1 * qemu-ppc-debuginfo-5.2.0-150300.130.1 * qemu-ui-curses-debuginfo-5.2.0-150300.130.1 * qemu-arm-5.2.0-150300.130.1 * qemu-ivshmem-tools-5.2.0-150300.130.1 * qemu-ui-opengl-5.2.0-150300.130.1 * qemu-audio-alsa-5.2.0-150300.130.1 * qemu-block-gluster-5.2.0-150300.130.1 * qemu-audio-spice-debuginfo-5.2.0-150300.130.1 * qemu-block-iscsi-5.2.0-150300.130.1 * qemu-x86-5.2.0-150300.130.1 * qemu-chardev-baum-5.2.0-150300.130.1 * qemu-ksm-5.2.0-150300.130.1 * qemu-extra-5.2.0-150300.130.1 * qemu-s390x-5.2.0-150300.130.1 * qemu-hw-display-virtio-gpu-debuginfo-5.2.0-150300.130.1 * qemu-block-dmg-5.2.0-150300.130.1 * qemu-hw-usb-redirect-debuginfo-5.2.0-150300.130.1 * qemu-hw-display-qxl-5.2.0-150300.130.1 * qemu-debugsource-5.2.0-150300.130.1 * qemu-hw-display-virtio-gpu-pci-debuginfo-5.2.0-150300.130.1 * qemu-linux-user-5.2.0-150300.130.1 * qemu-linux-user-debugsource-5.2.0-150300.130.1 * qemu-block-ssh-debuginfo-5.2.0-150300.130.1 * qemu-extra-debuginfo-5.2.0-150300.130.1 * qemu-audio-spice-5.2.0-150300.130.1 * qemu-block-curl-debuginfo-5.2.0-150300.130.1 * qemu-guest-agent-debuginfo-5.2.0-150300.130.1 * qemu-hw-s390x-virtio-gpu-ccw-5.2.0-150300.130.1 * qemu-hw-usb-smartcard-debuginfo-5.2.0-150300.130.1 * qemu-tools-debuginfo-5.2.0-150300.130.1 * qemu-guest-agent-5.2.0-150300.130.1 * qemu-block-curl-5.2.0-150300.130.1 * qemu-hw-display-virtio-gpu-pci-5.2.0-150300.130.1 * openSUSE Leap 15.3 (s390x x86_64 i586) * qemu-kvm-5.2.0-150300.130.1 * openSUSE Leap 15.3 (noarch) * qemu-sgabios-8-150300.130.1 * qemu-seabios-1.14.0_0_g155821a-150300.130.1 * qemu-SLOF-5.2.0-150300.130.1 * qemu-skiboot-5.2.0-150300.130.1 * qemu-ipxe-1.0.0+-150300.130.1 * qemu-microvm-5.2.0-150300.130.1 * qemu-vgabios-1.14.0_0_g155821a-150300.130.1 * openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64) * qemu-block-rbd-5.2.0-150300.130.1 * qemu-block-rbd-debuginfo-5.2.0-150300.130.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (aarch64 x86_64) * qemu-chardev-spice-debuginfo-5.2.0-150300.130.1 * qemu-ui-spice-core-debuginfo-5.2.0-150300.130.1 * qemu-block-iscsi-debuginfo-5.2.0-150300.130.1 * qemu-hw-display-virtio-vga-5.2.0-150300.130.1 * qemu-tools-5.2.0-150300.130.1 * qemu-debuginfo-5.2.0-150300.130.1 * qemu-ui-gtk-debuginfo-5.2.0-150300.130.1 * qemu-ui-gtk-5.2.0-150300.130.1 * qemu-hw-display-virtio-vga-debuginfo-5.2.0-150300.130.1 * qemu-hw-display-qxl-debuginfo-5.2.0-150300.130.1 * qemu-block-ssh-5.2.0-150300.130.1 * qemu-ui-spice-app-debuginfo-5.2.0-150300.130.1 * qemu-chardev-baum-debuginfo-5.2.0-150300.130.1 * qemu-ui-spice-app-5.2.0-150300.130.1 * qemu-chardev-spice-5.2.0-150300.130.1 * qemu-5.2.0-150300.130.1 * qemu-hw-usb-redirect-5.2.0-150300.130.1 * qemu-ui-opengl-debuginfo-5.2.0-150300.130.1 * qemu-ui-curses-5.2.0-150300.130.1 * qemu-ui-spice-core-5.2.0-150300.130.1 * qemu-lang-5.2.0-150300.130.1 * qemu-ui-curses-debuginfo-5.2.0-150300.130.1 * qemu-ui-opengl-5.2.0-150300.130.1 * qemu-audio-spice-debuginfo-5.2.0-150300.130.1 * qemu-block-iscsi-5.2.0-150300.130.1 * qemu-chardev-baum-5.2.0-150300.130.1 * qemu-ksm-5.2.0-150300.130.1 * qemu-block-rbd-debuginfo-5.2.0-150300.130.1 * qemu-hw-usb-redirect-debuginfo-5.2.0-150300.130.1 * qemu-hw-display-qxl-5.2.0-150300.130.1 * qemu-debugsource-5.2.0-150300.130.1 * qemu-block-ssh-debuginfo-5.2.0-150300.130.1 * qemu-audio-spice-5.2.0-150300.130.1 * qemu-block-curl-debuginfo-5.2.0-150300.130.1 * qemu-guest-agent-debuginfo-5.2.0-150300.130.1 * qemu-tools-debuginfo-5.2.0-150300.130.1 * qemu-block-rbd-5.2.0-150300.130.1 * qemu-guest-agent-5.2.0-150300.130.1 * qemu-block-curl-5.2.0-150300.130.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (aarch64) * qemu-arm-debuginfo-5.2.0-150300.130.1 * qemu-arm-5.2.0-150300.130.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (noarch) * qemu-sgabios-8-150300.130.1 * qemu-seabios-1.14.0_0_g155821a-150300.130.1 * qemu-ipxe-1.0.0+-150300.130.1 * qemu-vgabios-1.14.0_0_g155821a-150300.130.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (x86_64) * qemu-audio-alsa-5.2.0-150300.130.1 * qemu-audio-alsa-debuginfo-5.2.0-150300.130.1 * qemu-hw-display-virtio-gpu-5.2.0-150300.130.1 * qemu-kvm-5.2.0-150300.130.1 * qemu-x86-5.2.0-150300.130.1 * qemu-x86-debuginfo-5.2.0-150300.130.1 * qemu-audio-pa-5.2.0-150300.130.1 * qemu-audio-pa-debuginfo-5.2.0-150300.130.1 * qemu-hw-display-virtio-gpu-debuginfo-5.2.0-150300.130.1 * qemu-hw-display-virtio-gpu-pci-5.2.0-150300.130.1 * qemu-hw-display-virtio-gpu-pci-debuginfo-5.2.0-150300.130.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (aarch64 ppc64le s390x x86_64) * qemu-block-iscsi-debuginfo-5.2.0-150300.130.1 * qemu-tools-5.2.0-150300.130.1 * qemu-debuginfo-5.2.0-150300.130.1 * qemu-block-ssh-5.2.0-150300.130.1 * qemu-chardev-baum-debuginfo-5.2.0-150300.130.1 * qemu-5.2.0-150300.130.1 * qemu-ui-curses-5.2.0-150300.130.1 * qemu-lang-5.2.0-150300.130.1 * qemu-ui-curses-debuginfo-5.2.0-150300.130.1 * qemu-block-iscsi-5.2.0-150300.130.1 * qemu-chardev-baum-5.2.0-150300.130.1 * qemu-ksm-5.2.0-150300.130.1 * qemu-block-rbd-debuginfo-5.2.0-150300.130.1 * qemu-debugsource-5.2.0-150300.130.1 * qemu-block-ssh-debuginfo-5.2.0-150300.130.1 * qemu-block-curl-debuginfo-5.2.0-150300.130.1 * qemu-guest-agent-debuginfo-5.2.0-150300.130.1 * qemu-tools-debuginfo-5.2.0-150300.130.1 * qemu-block-rbd-5.2.0-150300.130.1 * qemu-guest-agent-5.2.0-150300.130.1 * qemu-block-curl-5.2.0-150300.130.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (aarch64) * qemu-arm-debuginfo-5.2.0-150300.130.1 * qemu-arm-5.2.0-150300.130.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (aarch64 ppc64le x86_64) * qemu-ui-opengl-5.2.0-150300.130.1 * qemu-chardev-spice-debuginfo-5.2.0-150300.130.1 * qemu-ui-spice-core-debuginfo-5.2.0-150300.130.1 * qemu-hw-display-virtio-vga-5.2.0-150300.130.1 * qemu-ui-spice-app-5.2.0-150300.130.1 * qemu-chardev-spice-5.2.0-150300.130.1 * qemu-audio-spice-debuginfo-5.2.0-150300.130.1 * qemu-audio-spice-5.2.0-150300.130.1 * qemu-hw-usb-redirect-5.2.0-150300.130.1 * qemu-ui-gtk-debuginfo-5.2.0-150300.130.1 * qemu-ui-spice-core-5.2.0-150300.130.1 * qemu-ui-gtk-5.2.0-150300.130.1 * qemu-ui-opengl-debuginfo-5.2.0-150300.130.1 * qemu-hw-display-virtio-vga-debuginfo-5.2.0-150300.130.1 * qemu-hw-display-qxl-debuginfo-5.2.0-150300.130.1 * qemu-ui-spice-app-debuginfo-5.2.0-150300.130.1 * qemu-hw-usb-redirect-debuginfo-5.2.0-150300.130.1 * qemu-hw-display-qxl-5.2.0-150300.130.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (noarch) * qemu-sgabios-8-150300.130.1 * qemu-seabios-1.14.0_0_g155821a-150300.130.1 * qemu-SLOF-5.2.0-150300.130.1 * qemu-skiboot-5.2.0-150300.130.1 * qemu-ipxe-1.0.0+-150300.130.1 * qemu-vgabios-1.14.0_0_g155821a-150300.130.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (ppc64le) * qemu-ppc-debuginfo-5.2.0-150300.130.1 * qemu-ppc-5.2.0-150300.130.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (s390x x86_64) * qemu-kvm-5.2.0-150300.130.1 * qemu-hw-display-virtio-gpu-5.2.0-150300.130.1 * qemu-hw-display-virtio-gpu-debuginfo-5.2.0-150300.130.1 * qemu-hw-display-virtio-gpu-pci-5.2.0-150300.130.1 * qemu-hw-display-virtio-gpu-pci-debuginfo-5.2.0-150300.130.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (s390x) * qemu-s390x-debuginfo-5.2.0-150300.130.1 * qemu-hw-s390x-virtio-gpu-ccw-debuginfo-5.2.0-150300.130.1 * qemu-hw-s390x-virtio-gpu-ccw-5.2.0-150300.130.1 * qemu-s390x-5.2.0-150300.130.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (x86_64) * qemu-audio-alsa-5.2.0-150300.130.1 * qemu-audio-alsa-debuginfo-5.2.0-150300.130.1 * qemu-x86-5.2.0-150300.130.1 * qemu-x86-debuginfo-5.2.0-150300.130.1 * qemu-audio-pa-5.2.0-150300.130.1 * qemu-audio-pa-debuginfo-5.2.0-150300.130.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (ppc64le x86_64) * qemu-chardev-spice-debuginfo-5.2.0-150300.130.1 * qemu-ui-spice-core-debuginfo-5.2.0-150300.130.1 * qemu-block-iscsi-debuginfo-5.2.0-150300.130.1 * qemu-hw-display-virtio-vga-5.2.0-150300.130.1 * qemu-tools-5.2.0-150300.130.1 * qemu-debuginfo-5.2.0-150300.130.1 * qemu-ui-gtk-debuginfo-5.2.0-150300.130.1 * qemu-ui-gtk-5.2.0-150300.130.1 * qemu-hw-display-virtio-vga-debuginfo-5.2.0-150300.130.1 * qemu-hw-display-qxl-debuginfo-5.2.0-150300.130.1 * qemu-block-ssh-5.2.0-150300.130.1 * qemu-ui-spice-app-debuginfo-5.2.0-150300.130.1 * qemu-chardev-baum-debuginfo-5.2.0-150300.130.1 * qemu-ui-spice-app-5.2.0-150300.130.1 * qemu-chardev-spice-5.2.0-150300.130.1 * qemu-5.2.0-150300.130.1 * qemu-hw-usb-redirect-5.2.0-150300.130.1 * qemu-ui-opengl-debuginfo-5.2.0-150300.130.1 * qemu-ui-curses-5.2.0-150300.130.1 * qemu-ui-spice-core-5.2.0-150300.130.1 * qemu-lang-5.2.0-150300.130.1 * qemu-ui-curses-debuginfo-5.2.0-150300.130.1 * qemu-ui-opengl-5.2.0-150300.130.1 * qemu-audio-spice-debuginfo-5.2.0-150300.130.1 * qemu-block-iscsi-5.2.0-150300.130.1 * qemu-chardev-baum-5.2.0-150300.130.1 * qemu-ksm-5.2.0-150300.130.1 * qemu-block-rbd-debuginfo-5.2.0-150300.130.1 * qemu-hw-usb-redirect-debuginfo-5.2.0-150300.130.1 * qemu-hw-display-qxl-5.2.0-150300.130.1 * qemu-debugsource-5.2.0-150300.130.1 * qemu-block-ssh-debuginfo-5.2.0-150300.130.1 * qemu-audio-spice-5.2.0-150300.130.1 * qemu-block-curl-debuginfo-5.2.0-150300.130.1 * qemu-guest-agent-debuginfo-5.2.0-150300.130.1 * qemu-tools-debuginfo-5.2.0-150300.130.1 * qemu-block-rbd-5.2.0-150300.130.1 * qemu-guest-agent-5.2.0-150300.130.1 * qemu-block-curl-5.2.0-150300.130.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (noarch) * qemu-sgabios-8-150300.130.1 * qemu-seabios-1.14.0_0_g155821a-150300.130.1 * qemu-SLOF-5.2.0-150300.130.1 * qemu-skiboot-5.2.0-150300.130.1 * qemu-ipxe-1.0.0+-150300.130.1 * qemu-vgabios-1.14.0_0_g155821a-150300.130.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (ppc64le) * qemu-ppc-debuginfo-5.2.0-150300.130.1 * qemu-ppc-5.2.0-150300.130.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (x86_64) * qemu-audio-alsa-5.2.0-150300.130.1 * qemu-audio-alsa-debuginfo-5.2.0-150300.130.1 * qemu-hw-display-virtio-gpu-5.2.0-150300.130.1 * qemu-kvm-5.2.0-150300.130.1 * qemu-x86-5.2.0-150300.130.1 * qemu-x86-debuginfo-5.2.0-150300.130.1 * qemu-audio-pa-5.2.0-150300.130.1 * qemu-audio-pa-debuginfo-5.2.0-150300.130.1 * qemu-hw-display-virtio-gpu-debuginfo-5.2.0-150300.130.1 * qemu-hw-display-virtio-gpu-pci-5.2.0-150300.130.1 * qemu-hw-display-virtio-gpu-pci-debuginfo-5.2.0-150300.130.1 * SUSE Enterprise Storage 7.1 (aarch64 x86_64) * qemu-chardev-spice-debuginfo-5.2.0-150300.130.1 * qemu-ui-spice-core-debuginfo-5.2.0-150300.130.1 * qemu-block-iscsi-debuginfo-5.2.0-150300.130.1 * qemu-hw-display-virtio-vga-5.2.0-150300.130.1 * qemu-tools-5.2.0-150300.130.1 * qemu-debuginfo-5.2.0-150300.130.1 * qemu-ui-gtk-debuginfo-5.2.0-150300.130.1 * qemu-ui-gtk-5.2.0-150300.130.1 * qemu-hw-display-virtio-vga-debuginfo-5.2.0-150300.130.1 * qemu-hw-display-qxl-debuginfo-5.2.0-150300.130.1 * qemu-block-ssh-5.2.0-150300.130.1 * qemu-ui-spice-app-debuginfo-5.2.0-150300.130.1 * qemu-chardev-baum-debuginfo-5.2.0-150300.130.1 * qemu-ui-spice-app-5.2.0-150300.130.1 * qemu-chardev-spice-5.2.0-150300.130.1 * qemu-5.2.0-150300.130.1 * qemu-hw-usb-redirect-5.2.0-150300.130.1 * qemu-ui-opengl-debuginfo-5.2.0-150300.130.1 * qemu-ui-curses-5.2.0-150300.130.1 * qemu-ui-spice-core-5.2.0-150300.130.1 * qemu-lang-5.2.0-150300.130.1 * qemu-ui-curses-debuginfo-5.2.0-150300.130.1 * qemu-ui-opengl-5.2.0-150300.130.1 * qemu-audio-spice-debuginfo-5.2.0-150300.130.1 * qemu-block-iscsi-5.2.0-150300.130.1 * qemu-chardev-baum-5.2.0-150300.130.1 * qemu-ksm-5.2.0-150300.130.1 * qemu-block-rbd-debuginfo-5.2.0-150300.130.1 * qemu-hw-usb-redirect-debuginfo-5.2.0-150300.130.1 * qemu-hw-display-qxl-5.2.0-150300.130.1 * qemu-debugsource-5.2.0-150300.130.1 * qemu-block-ssh-debuginfo-5.2.0-150300.130.1 * qemu-audio-spice-5.2.0-150300.130.1 * qemu-block-curl-debuginfo-5.2.0-150300.130.1 * qemu-guest-agent-debuginfo-5.2.0-150300.130.1 * qemu-tools-debuginfo-5.2.0-150300.130.1 * qemu-block-rbd-5.2.0-150300.130.1 * qemu-guest-agent-5.2.0-150300.130.1 * qemu-block-curl-5.2.0-150300.130.1 * SUSE Enterprise Storage 7.1 (aarch64) * qemu-arm-debuginfo-5.2.0-150300.130.1 * qemu-arm-5.2.0-150300.130.1 * SUSE Enterprise Storage 7.1 (noarch) * qemu-sgabios-8-150300.130.1 * qemu-seabios-1.14.0_0_g155821a-150300.130.1 * qemu-ipxe-1.0.0+-150300.130.1 * qemu-vgabios-1.14.0_0_g155821a-150300.130.1 * SUSE Enterprise Storage 7.1 (x86_64) * qemu-audio-alsa-5.2.0-150300.130.1 * qemu-audio-alsa-debuginfo-5.2.0-150300.130.1 * qemu-hw-display-virtio-gpu-5.2.0-150300.130.1 * qemu-kvm-5.2.0-150300.130.1 * qemu-x86-5.2.0-150300.130.1 * qemu-x86-debuginfo-5.2.0-150300.130.1 * qemu-audio-pa-5.2.0-150300.130.1 * qemu-audio-pa-debuginfo-5.2.0-150300.130.1 * qemu-hw-display-virtio-gpu-debuginfo-5.2.0-150300.130.1 * qemu-hw-display-virtio-gpu-pci-5.2.0-150300.130.1 * qemu-hw-display-virtio-gpu-pci-debuginfo-5.2.0-150300.130.1 * SUSE Linux Enterprise Micro 5.1 (aarch64 s390x x86_64) * qemu-tools-5.2.0-150300.130.1 * qemu-debuginfo-5.2.0-150300.130.1 * qemu-5.2.0-150300.130.1 * qemu-tools-debuginfo-5.2.0-150300.130.1 * qemu-debugsource-5.2.0-150300.130.1 * SUSE Linux Enterprise Micro 5.1 (aarch64) * qemu-arm-debuginfo-5.2.0-150300.130.1 * qemu-arm-5.2.0-150300.130.1 * SUSE Linux Enterprise Micro 5.1 (noarch) * qemu-sgabios-8-150300.130.1 * qemu-seabios-1.14.0_0_g155821a-150300.130.1 * qemu-ipxe-1.0.0+-150300.130.1 * qemu-vgabios-1.14.0_0_g155821a-150300.130.1 * SUSE Linux Enterprise Micro 5.1 (s390x) * qemu-s390x-debuginfo-5.2.0-150300.130.1 * qemu-s390x-5.2.0-150300.130.1 * SUSE Linux Enterprise Micro 5.1 (x86_64) * qemu-x86-debuginfo-5.2.0-150300.130.1 * qemu-x86-5.2.0-150300.130.1 * SUSE Linux Enterprise Micro 5.2 (aarch64 s390x x86_64) * qemu-chardev-spice-debuginfo-5.2.0-150300.130.1 * qemu-ui-spice-core-debuginfo-5.2.0-150300.130.1 * qemu-hw-display-virtio-vga-5.2.0-150300.130.1 * qemu-tools-5.2.0-150300.130.1 * qemu-debuginfo-5.2.0-150300.130.1 * qemu-hw-display-virtio-vga-debuginfo-5.2.0-150300.130.1 * qemu-hw-display-qxl-debuginfo-5.2.0-150300.130.1 * qemu-chardev-spice-5.2.0-150300.130.1 * qemu-hw-display-virtio-gpu-5.2.0-150300.130.1 * qemu-5.2.0-150300.130.1 * qemu-hw-usb-redirect-5.2.0-150300.130.1 * qemu-ui-opengl-debuginfo-5.2.0-150300.130.1 * qemu-ui-spice-core-5.2.0-150300.130.1 * qemu-ui-opengl-5.2.0-150300.130.1 * qemu-audio-spice-debuginfo-5.2.0-150300.130.1 * qemu-hw-display-virtio-gpu-debuginfo-5.2.0-150300.130.1 * qemu-hw-usb-redirect-debuginfo-5.2.0-150300.130.1 * qemu-hw-display-qxl-5.2.0-150300.130.1 * qemu-debugsource-5.2.0-150300.130.1 * qemu-audio-spice-5.2.0-150300.130.1 * qemu-guest-agent-debuginfo-5.2.0-150300.130.1 * qemu-tools-debuginfo-5.2.0-150300.130.1 * qemu-guest-agent-5.2.0-150300.130.1 * SUSE Linux Enterprise Micro 5.2 (aarch64) * qemu-arm-debuginfo-5.2.0-150300.130.1 * qemu-arm-5.2.0-150300.130.1 * SUSE Linux Enterprise Micro 5.2 (noarch) * qemu-sgabios-8-150300.130.1 * qemu-seabios-1.14.0_0_g155821a-150300.130.1 * qemu-ipxe-1.0.0+-150300.130.1 * qemu-vgabios-1.14.0_0_g155821a-150300.130.1 * SUSE Linux Enterprise Micro 5.2 (s390x) * qemu-s390x-debuginfo-5.2.0-150300.130.1 * qemu-s390x-5.2.0-150300.130.1 * SUSE Linux Enterprise Micro 5.2 (x86_64) * qemu-x86-debuginfo-5.2.0-150300.130.1 * qemu-x86-5.2.0-150300.130.1 * SUSE Linux Enterprise Micro for Rancher 5.2 (aarch64 s390x x86_64) * qemu-chardev-spice-debuginfo-5.2.0-150300.130.1 * qemu-ui-spice-core-debuginfo-5.2.0-150300.130.1 * qemu-hw-display-virtio-vga-5.2.0-150300.130.1 * qemu-tools-5.2.0-150300.130.1 * qemu-debuginfo-5.2.0-150300.130.1 * qemu-hw-display-virtio-vga-debuginfo-5.2.0-150300.130.1 * qemu-hw-display-qxl-debuginfo-5.2.0-150300.130.1 * qemu-chardev-spice-5.2.0-150300.130.1 * qemu-hw-display-virtio-gpu-5.2.0-150300.130.1 * qemu-5.2.0-150300.130.1 * qemu-hw-usb-redirect-5.2.0-150300.130.1 * qemu-ui-opengl-debuginfo-5.2.0-150300.130.1 * qemu-ui-spice-core-5.2.0-150300.130.1 * qemu-ui-opengl-5.2.0-150300.130.1 * qemu-audio-spice-debuginfo-5.2.0-150300.130.1 * qemu-hw-display-virtio-gpu-debuginfo-5.2.0-150300.130.1 * qemu-hw-usb-redirect-debuginfo-5.2.0-150300.130.1 * qemu-hw-display-qxl-5.2.0-150300.130.1 * qemu-debugsource-5.2.0-150300.130.1 * qemu-audio-spice-5.2.0-150300.130.1 * qemu-guest-agent-debuginfo-5.2.0-150300.130.1 * qemu-tools-debuginfo-5.2.0-150300.130.1 * qemu-guest-agent-5.2.0-150300.130.1 * SUSE Linux Enterprise Micro for Rancher 5.2 (aarch64) * qemu-arm-debuginfo-5.2.0-150300.130.1 * qemu-arm-5.2.0-150300.130.1 * SUSE Linux Enterprise Micro for Rancher 5.2 (noarch) * qemu-sgabios-8-150300.130.1 * qemu-seabios-1.14.0_0_g155821a-150300.130.1 * qemu-ipxe-1.0.0+-150300.130.1 * qemu-vgabios-1.14.0_0_g155821a-150300.130.1 * SUSE Linux Enterprise Micro for Rancher 5.2 (s390x) * qemu-s390x-debuginfo-5.2.0-150300.130.1 * qemu-s390x-5.2.0-150300.130.1 * SUSE Linux Enterprise Micro for Rancher 5.2 (x86_64) * qemu-x86-debuginfo-5.2.0-150300.130.1 * qemu-x86-5.2.0-150300.130.1 ## References: * https://www.suse.com/security/cve/CVE-2023-2861.html * https://www.suse.com/security/cve/CVE-2024-4467.html * https://bugzilla.suse.com/show_bug.cgi?id=1212968 * https://bugzilla.suse.com/show_bug.cgi?id=1215311 * https://bugzilla.suse.com/show_bug.cgi?id=1227322 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Aug 20 12:30:50 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Tue, 20 Aug 2024 12:30:50 -0000 Subject: SUSE-SU-2024:2786-1: important: Security update for java-1_8_0-openjdk Message-ID: <172415705060.19318.214367933465119210@smelt2.prg2.suse.org> # Security update for java-1_8_0-openjdk Announcement ID: SUSE-SU-2024:2786-1 Rating: important References: * bsc#1228046 * bsc#1228047 * bsc#1228048 * bsc#1228050 * bsc#1228051 * bsc#1228052 Cross-References: * CVE-2024-21131 * CVE-2024-21138 * CVE-2024-21140 * CVE-2024-21144 * CVE-2024-21145 * CVE-2024-21147 CVSS scores: * CVE-2024-21131 ( SUSE ): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N * CVE-2024-21138 ( SUSE ): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2024-21140 ( SUSE ): 4.8 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N * CVE-2024-21144 ( SUSE ): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2024-21145 ( SUSE ): 4.8 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N * CVE-2024-21147 ( SUSE ): 7.4 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N Affected Products: * Legacy Module 15-SP5 * Legacy Module 15-SP6 * openSUSE Leap 15.5 * openSUSE Leap 15.6 * SUSE Enterprise Storage 7.1 * SUSE Linux Enterprise High Performance Computing 15 SP3 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise Server 15 SP2 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 * SUSE Linux Enterprise Server 15 SP3 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 An update that solves six vulnerabilities can now be installed. ## Description: This update for java-1_8_0-openjdk fixes the following issues: Update to version jdk8u422 (icedtea-3.32.0): * Security fixes * JDK-8314794, CVE-2024-21131, bsc#1228046: Improve UTF8 String supports * JDK-8319859, CVE-2024-21138, bsc#1228047: Better symbol storage * JDK-8320097: Improve Image transformations * JDK-8320548, CVE-2024-21140, bsc#1228048: Improved loop handling * JDK-8322106, CVE-2024-21144, bsc#1228050: Enhance Pack 200 loading * JDK-8323231, CVE-2024-21147, bsc#1228052: Improve array management * JDK-8323390: Enhance mask blit functionality * JDK-8324559, CVE-2024-21145, bsc#1228051: Improve 2D image handling * JDK-8325600: Better symbol storage * Import of OpenJDK 8 u422 build 05 * JDK-8025439: [TEST BUG] [macosx] PrintServiceLookup.lookupPrintServices doesn't work properly since jdk8b105 * JDK-8069389: CompilerOracle prefix wildcarding is broken for long strings * JDK-8159454: [TEST_BUG] javax/swing/ToolTipManager/7123767/ /bug7123767.java: number of checked graphics configurations should be limited * JDK-8198321: javax/swing/JEditorPane/5076514/bug5076514.java fails * JDK-8203691: [TESTBUG] Test /runtime/containers/cgroup/PlainRead.java fails * JDK-8205407: [windows, vs<2017] C4800 after 8203197 * JDK-8235834: IBM-943 charset encoder needs updating * JDK-8239965: XMLEncoder/Test4625418.java fails due to "Error: Cp943 - can't read properly" * JDK-8240756: [macos] SwingSet2:TableDemo:Printed Japanese characters were garbled * JDK-8256152: tests fail because of ambiguous method resolution * JDK-8258855: Two tests sun/security/krb5/auto/ /ReplayCacheTestProc.java and ReplayCacheTestProcWithMD5.java failed on OL8.3 * JDK-8262017: C2: assert(n != __null) failed: Bad immediate dominator info. * JDK-8268916: Tests for AffirmTrust roots * JDK-8278067: Make HttpURLConnection default keep alive timeout configurable * JDK-8291226: Create Test Cases to cover scenarios for JDK-8278067 * JDK-8291637: HttpClient default keep alive timeout not followed if server sends invalid value * JDK-8291638: Keep-Alive timeout of 0 should close connection immediately * JDK-8293562: KeepAliveCache Blocks Threads while Closing Connections * JDK-8303466: C2: failed: malformed control flow. Limit type made precise with MaxL/MinL * JDK-8304074: [JMX] Add an approximation of total bytes allocated on the Java heap by the JVM * JDK-8313081: MonitoringSupport_lock should be unconditionally initialized after 8304074 * JDK-8315020: The macro definition for LoongArch64 zero build is not accurate. * JDK-8316138: Add GlobalSign 2 TLS root certificates * JDK-8318410: jdk/java/lang/instrument/BootClassPath/ /BootClassPathTest.sh fails on Japanese Windows * JDK-8320005: Allow loading of shared objects with .a extension on AIX * JDK-8324185: [8u] Accept Xcode 12+ builds on macOS * JDK-8325096: Test java/security/cert/CertPathBuilder/akiExt/ /AKISerialNumber.java is failing * JDK-8325927: [8u] Backport of JDK-8170552 missed part of the test * JDK-8326686: Bump update version of OpenJDK: 8u422 * JDK-8327440: Fix "bad source file" error during beaninfo generation * JDK-8328809: [8u] Problem list some CA tests * JDK-8328825: Google CAInterop test failures * JDK-8329544: [8u] sun/security/krb5/auto/ /ReplayCacheTestProc.java cannot find the testlibrary * JDK-8331791: [8u] AIX build break from JDK-8320005 backport * JDK-8331980: [8u] Problem list CAInterop.java#certignarootca test * JDK-8335552: [8u] JDK-8303466 backport to 8u requires 3 ::Identity signature fixes * Bug fixes * JDK-8331730: [8u] GHA: update sysroot for cross builds to Debian bullseye * JDK-8333669: [8u] GHA: Dead VS2010 download link * JDK-8318039: GHA: Bump macOS and Xcode versions ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.5 zypper in -t patch openSUSE-SLE-15.5-2024-2786=1 * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2024-2786=1 * Legacy Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Legacy-15-SP5-2024-2786=1 * Legacy Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Legacy-15-SP6-2024-2786=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 zypper in -t patch SUSE-SLE-Product-HPC-15-SP3-LTSS-2024-2786=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2024-2786=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2024-2786=1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 zypper in -t patch SUSE-SLE-Product-SLES-15-SP2-LTSS-2024-2786=1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 zypper in -t patch SUSE-SLE-Product-SLES-15-SP3-LTSS-2024-2786=1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2024-2786=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP2-2024-2786=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP3-2024-2786=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2024-2786=1 * SUSE Enterprise Storage 7.1 zypper in -t patch SUSE-Storage-7.1-2024-2786=1 ## Package List: * openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64) * java-1_8_0-openjdk-devel-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-headless-debuginfo-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-debuginfo-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-src-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-demo-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-debugsource-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-devel-debuginfo-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-headless-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-demo-debuginfo-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-accessibility-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-1.8.0.422-150000.3.97.1 * openSUSE Leap 15.5 (noarch) * java-1_8_0-openjdk-javadoc-1.8.0.422-150000.3.97.1 * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64) * java-1_8_0-openjdk-devel-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-headless-debuginfo-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-debuginfo-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-src-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-demo-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-debugsource-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-devel-debuginfo-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-headless-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-demo-debuginfo-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-accessibility-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-1.8.0.422-150000.3.97.1 * openSUSE Leap 15.6 (noarch) * java-1_8_0-openjdk-javadoc-1.8.0.422-150000.3.97.1 * Legacy Module 15-SP5 (aarch64 ppc64le s390x x86_64) * java-1_8_0-openjdk-devel-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-headless-debuginfo-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-debuginfo-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-demo-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-debugsource-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-devel-debuginfo-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-headless-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-demo-debuginfo-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-1.8.0.422-150000.3.97.1 * Legacy Module 15-SP6 (aarch64 ppc64le s390x x86_64) * java-1_8_0-openjdk-devel-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-headless-debuginfo-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-debuginfo-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-demo-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-debugsource-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-devel-debuginfo-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-headless-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-demo-debuginfo-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-1.8.0.422-150000.3.97.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (aarch64 x86_64) * java-1_8_0-openjdk-devel-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-headless-debuginfo-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-debuginfo-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-demo-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-debugsource-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-devel-debuginfo-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-headless-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-demo-debuginfo-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-1.8.0.422-150000.3.97.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 x86_64) * java-1_8_0-openjdk-devel-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-headless-debuginfo-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-debuginfo-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-demo-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-debugsource-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-devel-debuginfo-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-headless-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-demo-debuginfo-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-1.8.0.422-150000.3.97.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 x86_64) * java-1_8_0-openjdk-devel-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-headless-debuginfo-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-debuginfo-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-demo-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-debugsource-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-devel-debuginfo-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-headless-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-demo-debuginfo-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-1.8.0.422-150000.3.97.1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (aarch64 ppc64le s390x x86_64) * java-1_8_0-openjdk-devel-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-headless-debuginfo-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-debuginfo-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-demo-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-debugsource-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-devel-debuginfo-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-headless-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-demo-debuginfo-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-1.8.0.422-150000.3.97.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (aarch64 ppc64le s390x x86_64) * java-1_8_0-openjdk-devel-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-headless-debuginfo-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-debuginfo-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-demo-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-debugsource-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-devel-debuginfo-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-headless-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-demo-debuginfo-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-1.8.0.422-150000.3.97.1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (aarch64 ppc64le s390x x86_64) * java-1_8_0-openjdk-devel-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-headless-debuginfo-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-debuginfo-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-demo-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-debugsource-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-devel-debuginfo-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-headless-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-demo-debuginfo-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-1.8.0.422-150000.3.97.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 (ppc64le x86_64) * java-1_8_0-openjdk-devel-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-headless-debuginfo-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-debuginfo-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-demo-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-debugsource-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-devel-debuginfo-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-headless-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-demo-debuginfo-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-1.8.0.422-150000.3.97.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (ppc64le x86_64) * java-1_8_0-openjdk-devel-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-headless-debuginfo-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-debuginfo-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-demo-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-debugsource-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-devel-debuginfo-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-headless-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-demo-debuginfo-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-1.8.0.422-150000.3.97.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64) * java-1_8_0-openjdk-devel-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-headless-debuginfo-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-debuginfo-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-demo-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-debugsource-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-devel-debuginfo-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-headless-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-demo-debuginfo-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-1.8.0.422-150000.3.97.1 * SUSE Enterprise Storage 7.1 (aarch64 x86_64) * java-1_8_0-openjdk-devel-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-headless-debuginfo-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-debuginfo-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-demo-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-debugsource-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-devel-debuginfo-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-headless-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-demo-debuginfo-1.8.0.422-150000.3.97.1 * java-1_8_0-openjdk-1.8.0.422-150000.3.97.1 ## References: * https://www.suse.com/security/cve/CVE-2024-21131.html * https://www.suse.com/security/cve/CVE-2024-21138.html * https://www.suse.com/security/cve/CVE-2024-21140.html * https://www.suse.com/security/cve/CVE-2024-21144.html * https://www.suse.com/security/cve/CVE-2024-21145.html * https://www.suse.com/security/cve/CVE-2024-21147.html * https://bugzilla.suse.com/show_bug.cgi?id=1228046 * https://bugzilla.suse.com/show_bug.cgi?id=1228047 * https://bugzilla.suse.com/show_bug.cgi?id=1228048 * https://bugzilla.suse.com/show_bug.cgi?id=1228050 * https://bugzilla.suse.com/show_bug.cgi?id=1228051 * https://bugzilla.suse.com/show_bug.cgi?id=1228052 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Aug 20 12:30:55 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Tue, 20 Aug 2024 12:30:55 -0000 Subject: SUSE-SU-2024:2766-1: important: Security update for java-1_8_0-openjdk Message-ID: <172415705587.19318.751663563456736345@smelt2.prg2.suse.org> # Security update for java-1_8_0-openjdk Announcement ID: SUSE-SU-2024:2766-1 Rating: important References: * bsc#1228046 * bsc#1228047 * bsc#1228048 * bsc#1228050 * bsc#1228051 * bsc#1228052 Cross-References: * CVE-2024-21131 * CVE-2024-21138 * CVE-2024-21140 * CVE-2024-21144 * CVE-2024-21145 * CVE-2024-21147 CVSS scores: * CVE-2024-21131 ( SUSE ): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N * CVE-2024-21138 ( SUSE ): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2024-21140 ( SUSE ): 4.8 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N * CVE-2024-21144 ( SUSE ): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2024-21145 ( SUSE ): 4.8 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N * CVE-2024-21147 ( SUSE ): 7.4 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N Affected Products: * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 An update that solves six vulnerabilities can now be installed. ## Description: This update for java-1_8_0-openjdk fixes the following issues: Update to version jdk8u422 (icedtea-3.32.0) * Security fixes * JDK-8314794, CVE-2024-21131, bsc#1228046: Improve UTF8 String supports * JDK-8319859, CVE-2024-21138, bsc#1228047: Better symbol storage * JDK-8320097: Improve Image transformations * JDK-8320548, CVE-2024-21140, bsc#1228048: Improved loop handling * JDK-8322106, CVE-2024-21144, bsc#1228050: Enhance Pack 200 loading * JDK-8323231, CVE-2024-21147, bsc#1228052: Improve array management * JDK-8323390: Enhance mask blit functionality * JDK-8324559, CVE-2024-21145, bsc#1228051: Improve 2D image handling * JDK-8325600: Better symbol storage * Import of OpenJDK 8 u422 build 05 * JDK-8025439: [TEST BUG] [macosx] PrintServiceLookup.lookupPrintServices doesn't work properly since jdk8b105 * JDK-8069389: CompilerOracle prefix wildcarding is broken for long strings * JDK-8159454: [TEST_BUG] javax/swing/ToolTipManager/7123767/ /bug7123767.java: number of checked graphics configurations should be limited * JDK-8198321: javax/swing/JEditorPane/5076514/bug5076514.java fails * JDK-8203691: [TESTBUG] Test /runtime/containers/cgroup/PlainRead.java fails * JDK-8205407: [windows, vs<2017] C4800 after 8203197 * JDK-8235834: IBM-943 charset encoder needs updating * JDK-8239965: XMLEncoder/Test4625418.java fails due to "Error: Cp943 - can't read properly" * JDK-8240756: [macos] SwingSet2:TableDemo:Printed Japanese characters were garbled * JDK-8256152: tests fail because of ambiguous method resolution * JDK-8258855: Two tests sun/security/krb5/auto/ /ReplayCacheTestProc.java and ReplayCacheTestProcWithMD5.java failed on OL8.3 * JDK-8262017: C2: assert(n != __null) failed: Bad immediate dominator info. * JDK-8268916: Tests for AffirmTrust roots * JDK-8278067: Make HttpURLConnection default keep alive timeout configurable * JDK-8291226: Create Test Cases to cover scenarios for JDK-8278067 * JDK-8291637: HttpClient default keep alive timeout not followed if server sends invalid value * JDK-8291638: Keep-Alive timeout of 0 should close connection immediately * JDK-8293562: KeepAliveCache Blocks Threads while Closing Connections * JDK-8303466: C2: failed: malformed control flow. Limit type made precise with MaxL/MinL * JDK-8304074: [JMX] Add an approximation of total bytes allocated on the Java heap by the JVM * JDK-8313081: MonitoringSupport_lock should be unconditionally initialized after 8304074 * JDK-8315020: The macro definition for LoongArch64 zero build is not accurate. * JDK-8316138: Add GlobalSign 2 TLS root certificates * JDK-8318410: jdk/java/lang/instrument/BootClassPath/ /BootClassPathTest.sh fails on Japanese Windows * JDK-8320005: Allow loading of shared objects with .a extension on AIX * JDK-8324185: [8u] Accept Xcode 12+ builds on macOS * JDK-8325096: Test java/security/cert/CertPathBuilder/akiExt/ /AKISerialNumber.java is failing * JDK-8325927: [8u] Backport of JDK-8170552 missed part of the test * JDK-8326686: Bump update version of OpenJDK: 8u422 * JDK-8327440: Fix "bad source file" error during beaninfo generation * JDK-8328809: [8u] Problem list some CA tests * JDK-8328825: Google CAInterop test failures * JDK-8329544: [8u] sun/security/krb5/auto/ /ReplayCacheTestProc.java cannot find the testlibrary * JDK-8331791: [8u] AIX build break from JDK-8320005 backport * JDK-8331980: [8u] Problem list CAInterop.java#certignarootca test * JDK-8335552: [8u] JDK-8303466 backport to 8u requires 3 ::Identity signature fixes * Bug fixes * JDK-8331730: [8u] GHA: update sysroot for cross builds to Debian bullseye * JDK-8333669: [8u] GHA: Dead VS2010 download link * JDK-8318039: GHA: Bump macOS and Xcode versions ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise High Performance Computing 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-2766=1 * SUSE Linux Enterprise Server 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-2766=1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-2766=1 ## Package List: * SUSE Linux Enterprise High Performance Computing 12 SP5 (aarch64 x86_64) * java-1_8_0-openjdk-demo-debuginfo-1.8.0.422-27.105.2 * java-1_8_0-openjdk-debuginfo-1.8.0.422-27.105.2 * java-1_8_0-openjdk-debugsource-1.8.0.422-27.105.2 * java-1_8_0-openjdk-1.8.0.422-27.105.2 * java-1_8_0-openjdk-devel-1.8.0.422-27.105.2 * java-1_8_0-openjdk-devel-debuginfo-1.8.0.422-27.105.2 * java-1_8_0-openjdk-headless-debuginfo-1.8.0.422-27.105.2 * java-1_8_0-openjdk-demo-1.8.0.422-27.105.2 * java-1_8_0-openjdk-headless-1.8.0.422-27.105.2 * SUSE Linux Enterprise Server 12 SP5 (aarch64 ppc64le s390x x86_64) * java-1_8_0-openjdk-demo-debuginfo-1.8.0.422-27.105.2 * java-1_8_0-openjdk-debuginfo-1.8.0.422-27.105.2 * java-1_8_0-openjdk-debugsource-1.8.0.422-27.105.2 * java-1_8_0-openjdk-1.8.0.422-27.105.2 * java-1_8_0-openjdk-devel-1.8.0.422-27.105.2 * java-1_8_0-openjdk-devel-debuginfo-1.8.0.422-27.105.2 * java-1_8_0-openjdk-headless-debuginfo-1.8.0.422-27.105.2 * java-1_8_0-openjdk-demo-1.8.0.422-27.105.2 * java-1_8_0-openjdk-headless-1.8.0.422-27.105.2 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 (ppc64le x86_64) * java-1_8_0-openjdk-demo-debuginfo-1.8.0.422-27.105.2 * java-1_8_0-openjdk-debuginfo-1.8.0.422-27.105.2 * java-1_8_0-openjdk-debugsource-1.8.0.422-27.105.2 * java-1_8_0-openjdk-1.8.0.422-27.105.2 * java-1_8_0-openjdk-devel-1.8.0.422-27.105.2 * java-1_8_0-openjdk-devel-debuginfo-1.8.0.422-27.105.2 * java-1_8_0-openjdk-headless-debuginfo-1.8.0.422-27.105.2 * java-1_8_0-openjdk-demo-1.8.0.422-27.105.2 * java-1_8_0-openjdk-headless-1.8.0.422-27.105.2 ## References: * https://www.suse.com/security/cve/CVE-2024-21131.html * https://www.suse.com/security/cve/CVE-2024-21138.html * https://www.suse.com/security/cve/CVE-2024-21140.html * https://www.suse.com/security/cve/CVE-2024-21144.html * https://www.suse.com/security/cve/CVE-2024-21145.html * https://www.suse.com/security/cve/CVE-2024-21147.html * https://bugzilla.suse.com/show_bug.cgi?id=1228046 * https://bugzilla.suse.com/show_bug.cgi?id=1228047 * https://bugzilla.suse.com/show_bug.cgi?id=1228048 * https://bugzilla.suse.com/show_bug.cgi?id=1228050 * https://bugzilla.suse.com/show_bug.cgi?id=1228051 * https://bugzilla.suse.com/show_bug.cgi?id=1228052 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Aug 20 12:31:00 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Tue, 20 Aug 2024 12:31:00 -0000 Subject: SUSE-SU-2024:1499-2: low: Security update for java-17-openjdk Message-ID: <172415706092.19318.7054031780974404474@smelt2.prg2.suse.org> # Security update for java-17-openjdk Announcement ID: SUSE-SU-2024:1499-2 Rating: low References: * bsc#1213470 * bsc#1222979 * bsc#1222983 * bsc#1222986 * bsc#1222987 Cross-References: * CVE-2024-21011 * CVE-2024-21012 * CVE-2024-21068 * CVE-2024-21094 CVSS scores: * CVE-2024-21011 ( SUSE ): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2024-21012 ( SUSE ): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N * CVE-2024-21068 ( SUSE ): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N * CVE-2024-21094 ( SUSE ): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N Affected Products: * Basesystem Module 15-SP6 * Legacy Module 15-SP6 * openSUSE Leap 15.6 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 An update that solves four vulnerabilities and has one security fix can now be installed. ## Description: This update for java-17-openjdk fixes the following issues: * CVE-2024-21011: Fixed denial of service due to long Exception message logging (JDK-8319851,bsc#1222979) * CVE-2024-21012: Fixed unauthorized data modification due HTTP/2 client improper reverse DNS lookup (JDK-8315708,bsc#1222987) * CVE-2024-21068: Fixed integer overflow in C1 compiler address generation (JDK-8322122,bsc#1222983) * CVE-2024-21094: Fixed unauthorized data modification due to C2 compilation failure with "Exceeded _node_regs array" (JDK-8317507,JDK-8325348,bsc#1222986) Other fixes: \- Update to upstream tag jdk-17.0.11+9 (April 2024 CPU) * Security fixes \+ JDK-8318340: Improve RSA key implementations * Other changes \+ JDK-6928542: Chinese characters in RTF are not decoded \+ JDK-7132796: [macosx] closed/javax/swing/JComboBox/4517214/ /bug4517214.java fails on MacOS \+ JDK-7148092: [macosx] When Alt+down arrow key is pressed, the combobox popup does not appear. \+ JDK-7167356: (javac) investigate failing tests in JavacParserTest \+ JDK-8054022: HttpURLConnection timeouts with Expect: 100-Continue and no chunking \+ JDK-8054572: [macosx] JComboBox paints the border incorrectly \+ JDK-8169475: WheelModifier.java fails by timeout \+ JDK-8205076: [17u] Inet6AddressImpl.c: `lookupIfLocalHost` accesses `int InetAddress.preferIPv6Address` as a boolean \+ JDK-8209595: MonitorVmStartTerminate.java timed out \+ JDK-8210410: Refactor java.util.Currency:i18n shell tests to plain java tests \+ JDK-8261404: Class.getReflectionFactory() is not thread-safe \+ JDK-8261837: SIGSEGV in ciVirtualCallTypeData::translate_from \+ JDK-8263256: Test java/net/Inet6Address/serialize/ /Inet6AddressSerializationTest.java fails due to dynamic reconfigurations of network interface during test \+ JDK-8269258: java/net/httpclient/ManyRequestsLegacy.java failed with connection timeout \+ JDK-8271118: C2: StressGCM should have higher priority than frequency-based policy \+ JDK-8271616: oddPart in MutableBigInteger::mutableModInverse contains info on final result \+ JDK-8272811: Document the effects of building with _GNU_SOURCE in os_posix.hpp \+ JDK-8272853: improve `JavadocTester.runTests` \+ JDK-8273454: C2: Transform (-a) _(-b) into a_ b \+ JDK-8274060: C2: Incorrect computation after JDK-8273454 \+ JDK-8274122: java/io/File/createTempFile/SpecialTempFile.java fails in Windows 11 \+ JDK-8274621: NullPointerException because listenAddress[0] is null \+ JDK-8274632: Possible pointer overflow in PretouchTask chunk claiming \+ JDK-8274634: Use String.equals instead of String.compareTo in java.desktop \+ JDK-8276125: RunThese24H.java SIGSEGV in JfrThreadGroup::thread_group_id \+ JDK-8278028: [test-library] Warnings cleanup of the test library \+ JDK-8278312: Update SimpleSSLContext keystore to use SANs for localhost IP addresses \+ JDK-8278363: Create extented container test groups \+ JDK-8280241: (aio) AsynchronousSocketChannel init fails in IPv6 only Windows env \+ JDK-8281377: Remove vmTestbase/nsk/monitoring/ThreadMXBean/ /ThreadInfo/Deadlock/JavaDeadlock001/TestDescription.java from problemlist. \+ JDK-8281543: Remove unused code/headerfile dtraceAttacher.hpp \+ JDK-8281585: Remove unused imports under test/lib and jtreg/gc \+ JDK-8283400: [macos] a11y : Screen magnifier does not reflect JRadioButton value change \+ JDK-8283626: AArch64: Set relocInfo::offset_unit to 4 \+ JDK-8283994: Make Xerces DatatypeException stackless \+ JDK-8286312: Stop mixing signed and unsigned types in bit operations \+ JDK-8286846: test/jdk/javax/swing/plaf/aqua/ /CustomComboBoxFocusTest.java fails on mac aarch64 \+ JDK-8287832: jdk/jfr/event/runtime/TestActiveSettingEvent.java failed with "Expected two batches of Active Setting events" \+ JDK-8288663: JFR: Disabling the JfrThreadSampler commits only a partially disabled state \+ JDK-8288846: misc tests fail "assert(ms < 1000) failed: Un-interruptable sleep, short time use only" \+ JDK-8289764: gc/lock tests failed with "OutOfMemoryError: Java heap space: failed reallocation of scalar replaced objects" \+ JDK-8290041: ModuleDescriptor.hashCode is inconsistent \+ JDK-8290203: ProblemList vmTestbase/nsk/jvmti/scenarios/ /capability/CM03/cm03t001/TestDescription.java on linux-all \+ JDK-8290399: [macos] Aqua LAF does not fire an action event if combo box menu is displayed \+ JDK-8292458: Atomic operations on scoped enums don't build with clang \+ JDK-8292946: GC lock/jni/jnilock001 test failed "assert(gch->gc_cause() == GCCause::_scavenge_alot || !gch->incremental_collection_failed()) failed: Twice in a row" \+ JDK-8293117: Add atomic bitset functions \+ JDK-8293547: Add relaxed add_and_fetch for macos aarch64 atomics \+ JDK-8294158: HTML formatting for PassFailJFrame instructions \+ JDK-8294254: [macOS] javax/swing/plaf/aqua/ /CustomComboBoxFocusTest.java failure \+ JDK-8294535: Add screen capture functionality to PassFailJFrame \+ JDK-8295068: SSLEngine throws NPE parsing CertificateRequests \+ JDK-8295124: Atomic::add to pointer type may return wrong value \+ JDK-8295274: HelidonAppTest.java fails "assert(event->should_commit()) failed: invariant" from compiled frame" \+ JDK-8296631: NSS tests failing on OL9 linux-aarch64 hosts \+ JDK-8297968: Crash in PrintOptoAssembly \+ JDK-8298087: XML Schema Validation reports an required attribute twice via ErrorHandler \+ JDK-8299494: Test vmTestbase/nsk/stress/except/except011.java failed: ExceptionInInitializerError: target class not found \+ JDK-8300269: The selected item in an editable JComboBox with titled border is not visible in Aqua LAF \+ JDK-8301306: java/net/httpclient/ _fail with -Xcomp \+ JDK-8301310: The SendRawSysexMessage test may cause a JVM crash \+ JDK-8301787: java/net/httpclient/SpecialHeadersTest failing after JDK-8301306 \+ JDK-8301846: Invalid TargetDataLine after screen lock when using JFileChooser or COM library \+ JDK-8302017: Allocate BadPaddingException only if it will be thrown \+ JDK-8302149: Speed up compiler/jsr292/methodHandleExceptions/ /TestAMEnotNPE.java \+ JDK-8303605: Memory leaks in Metaspace gtests \+ JDK-8304074: [JMX] Add an approximation of total bytes allocated on the Java heap by the JVM \+ JDK-8304696: Duplicate class names in dynamicArchive tests can lead to test failure \+ JDK-8305356: Fix ignored bad CompileCommands in tests \+ JDK-8305900: Use loopback IP addresses in security policy files of httpclient tests \+ JDK-8305906: HttpClient may use incorrect key when finding pooled HTTP/2 connection for IPv6 address \+ JDK-8305962: update jcstress to 0.16 \+ JDK-8305972: Update XML Security for Java to 3.0.2 \+ JDK-8306014: Update javax.net.ssl TLS tests to use SSLContextTemplate or SSLEngineTemplate \+ JDK-8306408: Fix the format of several tables in building.md \+ JDK-8307185: pkcs11 native libraries make JNI calls into java code while holding GC lock \+ JDK-8307926: Support byte-sized atomic bitset operations \+ JDK-8307955: Prefer to PTRACE_GETREGSET instead of PTRACE_GETREGS in method 'ps_proc.c::process_get_lwp_regs' \+ JDK-8307990: jspawnhelper must close its writing side of a pipe before reading from it \+ JDK-8308043: Deadlock in TestCSLocker.java due to blocking GC while allocating \+ JDK-8308245: Add -proc:full to describe current default annotation processing policy \+ JDK-8308336: Test java/net/HttpURLConnection/ /HttpURLConnectionExpectContinueTest.java failed: java.net.BindException: Address already in use \+ JDK-8309302: java/net/Socket/Timeouts.java fails with AssertionError on test temporal post condition \+ JDK-8309305: sun/security/ssl/SSLSocketImpl/ /BlockedAsyncClose.java fails with jtreg test timeout \+ JDK-8309462: [AIX] vmTestbase/nsk/jvmti/RunAgentThread/ /agentthr001/TestDescription.java crashing due to empty while loop \+ JDK-8309733: [macOS, Accessibility] VoiceOver: Incorrect announcements of JRadioButton \+ JDK-8309870: Using -proc:full should be considered requesting explicit annotation processing \+ JDK-8310106: sun.security.ssl.SSLHandshake .getHandshakeProducer() incorrectly checks handshakeConsumers \+ JDK-8310238: [test bug] javax/swing/JTableHeader/6889007/ /bug6889007.java fails \+ JDK-8310380: Handle problems in core-related tests on macOS when codesign tool does not work \+ JDK-8310631: test/jdk/sun/nio/cs/TestCharsetMapping.java is spuriously passing \+ JDK-8310807: java/nio/channels/DatagramChannel/Connect.java timed out \+ JDK-8310838: Correct range notations in MethodTypeDesc specification \+ JDK-8310844: [AArch64] C1 compilation fails because monitor offset in OSR buffer is too large for immediate \+ JDK-8310923: Refactor Currency tests to use JUnit \+ JDK-8311081: KeytoolReaderP12Test.java fail on localized Windows platform \+ JDK-8311160: [macOS, Accessibility] VoiceOver: No announcements on JRadioButtonMenuItem and JCheckBoxMenuItem \+ JDK-8311581: Remove obsolete code and comments in TestLVT.java \+ JDK-8311645: Memory leak in jspawnhelper spawnChild after JDK-8307990 \+ JDK-8311986: Disable runtime/os/TestTracePageSizes.java for ShenandoahGC \+ JDK-8312428: PKCS11 tests fail with NSS 3.91 \+ JDK-8312434: SPECjvm2008/xml.transform with CDS fails with "can't seal package nu.xom" \+ JDK-8313081: MonitoringSupport_lock should be unconditionally initialized after 8304074 \+ JDK-8313082: Enable CreateCoredumpOnCrash for testing in makefiles \+ JDK-8313206: PKCS11 tests silently skip execution \+ JDK-8313575: Refactor PKCS11Test tests \+ JDK-8313621: test/jdk/jdk/internal/math/FloatingDecimal/ /TestFloatingDecimal should use RandomFactory \+ JDK-8313643: Update HarfBuzz to 8.2.2 \+ JDK-8313816: Accessing jmethodID might lead to spurious crashes \+ JDK-8314164: java/net/HttpURLConnection/ /HttpURLConnectionExpectContinueTest.java fails intermittently in timeout \+ JDK-8314220: Configurable InlineCacheBuffer size \+ JDK-8314830: runtime/ErrorHandling/ tests ignore external VM flags \+ JDK-8315034: File.mkdirs() occasionally fails to create folders on Windows shared folder \+ JDK-8315042: NPE in PKCS7.parseOldSignedData \+ JDK-8315594: Open source few headless Swing misc tests \+ JDK-8315600: Open source few more headless Swing misc tests \+ JDK-8315602: Open source swing security manager test \+ JDK-8315611: Open source swing text/html and tree test \+ JDK-8315680: java/lang/ref/ReachabilityFenceTest.java should run with -Xbatch \+ JDK-8315731: Open source several Swing Text related tests \+ JDK-8315761: Open source few swing JList and JMenuBar tests \+ JDK-8315920: C2: "control input must dominate current control" assert failure \+ JDK-8315986: [macos14] javax/swing/JMenuItem/4654927/ /bug4654927.java: component must be showing on the screen to determine its location \+ JDK-8316001: GC: Make TestArrayAllocatorMallocLimit use createTestJvm \+ JDK-8316028: Update FreeType to 2.13.2 \+ JDK-8316030: Update Libpng to 1.6.40 \+ JDK-8316106: Open source few swing JInternalFrame and JMenuBar tests \+ JDK-8316304: (fs) Add support for BasicFileAttributes .creationTime() for Linux \+ JDK-8316392: compiler/interpreter/ /TestVerifyStackAfterDeopt.java failed with SIGBUS in PcDescContainer::find_pc_desc_internal \+ JDK-8316414: C2: large byte array clone triggers "failed: malformed control flow" assertion failure on linux-x86 \+ JDK-8316415: Parallelize sun/security/rsa/SignedObjectChain.java subtests \+ JDK-8316418: containers/docker/TestMemoryWithCgroupV1.java get OOM killed with Parallel GC \+ JDK-8316445: Mark com/sun/management/HotSpotDiagnosticMXBean/ /CheckOrigin.java as vm.flagless \+ JDK-8316679: C2 SuperWord: wrong result, load should not be moved before store if not comparable \+ JDK-8316693: Simplify at-requires checkDockerSupport() \+ JDK-8316929: Shenandoah: Shenandoah degenerated GC and full GC need to cleanup old OopMapCache entries \+ JDK-8316947: Write a test to check textArea triggers MouseEntered/MouseExited events properly \+ JDK-8317039: Enable specifying the JDK used to run jtreg \+ JDK-8317144: Exclude sun/security/pkcs11/sslecc/ /ClientJSSEServerJSSE.java on Linux ppc64le \+ JDK-8317307: test/jdk/com/sun/jndi/ldap/ /LdapPoolTimeoutTest.java fails with ConnectException: Connection timed out: no further information \+ JDK-8317603: Improve exception messages thrown by sun.nio.ch.Net native methods (win) \+ JDK-8317771: [macos14] Expand/collapse a JTree using keyboard freezes the application in macOS 14 Sonoma \+ JDK-8317807: JAVA_FLAGS removed from jtreg running in JDK-8317039 \+ JDK-8317960: [17u] Excessive CPU usage on AbstractQueuedSynchronized.isEnqueued \+ JDK-8318154: Improve stability of WheelModifier.java test \+ JDK-8318183: C2: VM may crash after hitting node limit \+ JDK-8318410: jdk/java/lang/instrument/BootClassPath/ /BootClassPathTest.sh fails on Japanese Windows \+ JDK-8318468: compiler/tiered/LevelTransitionTest.java fails with -XX:CompileThreshold=100 -XX:TieredStopAtLevel=1 \+ JDK-8318490: Increase timeout for JDK tests that are close to the limit when run with libgraal \+ JDK-8318603: Parallelize sun/java2d/marlin/ClipShapeTest.java \+ JDK-8318607: Enable parallelism in vmTestbase/nsk/stress/jni tests \+ JDK-8318608: Enable parallelism in vmTestbase/nsk/stress/threads tests \+ JDK-8318689: jtreg is confused when folder name is the same as the test name \+ JDK-8318736: com/sun/jdi/JdwpOnThrowTest.java failed with "transport error 202: bind failed: Address already in use" \+ JDK-8318951: Additional negative value check in JPEG decoding \+ JDK-8318955: Add ReleaseIntArrayElements in Java_sun_awt_X11_XlibWrapper_SetBitmapShape XlbWrapper.c to early return \+ JDK-8318957: Enhance agentlib:jdwp help output by info about allow option \+ JDK-8318961: increase javacserver connection timeout values and max retry attempts \+ JDK-8318971: Better Error Handling for Jar Tool When Processing Non- existent Files \+ JDK-8318983: Fix comment typo in PKCS12Passwd.java \+ JDK-8319124: Update XML Security for Java to 3.0.3 \+ JDK-8319213: Compatibility.java reads both stdout and stderr of JdkUtils \+ JDK-8319436: Proxy.newProxyInstance throws NPE if loader is null and interface not visible from class loader \+ JDK-8319456: jdk/jfr/event/gc/collection/ /TestGCCauseWith[Serial|Parallel].java : GC cause 'GCLocker Initiated GC' not in the valid causes \+ JDK-8319668: Fixup of jar filename typo in BadFactoryTest.sh \+ JDK-8319922: libCreationTimeHelper.so fails to link in JDK 21 \+ JDK-8319961: JvmtiEnvBase doesn't zero _ext_event_callbacks \+ JDK-8320001: javac crashes while adding type annotations to the return type of a constructor \+ JDK-8320168: handle setsocktopt return values \+ JDK-8320208: Update Public Suffix List to b5bf572 \+ JDK-8320300: Adjust hs_err output in malloc/mmap error cases \+ JDK-8320363: ppc64 TypeEntries::type_unknown logic looks wrong, missed optimization opportunity \+ JDK-8320597: RSA signature verification fails on signed data that does not encode params correctly \+ JDK-8320798: Console read line with zero out should zero out underlying buffer \+ JDK-8320885: Bump update version for OpenJDK: jdk-17.0.11 \+ JDK-8320921: GHA: Parallelize hotspot_compiler test jobs \+ JDK-8320937: support latest VS2022 MSC_VER in abstract_vm_version.cpp \+ JDK-8321151: JDK-8294427 breaks Windows L&F on all older Windows versions \+ JDK-8321215: Incorrect x86 instruction encoding for VSIB addressing mode \+ JDK-8321408: Add Certainly roots R1 and E1 \+ JDK-8321480: ISO 4217 Amendment 176 Update \+ JDK-8321599: Data loss in AVX3 Base64 decoding \+ JDK-8321815: Shenandoah: gc state should be synchronized to java threads only once per safepoint \+ JDK-8321972: test runtime/Unsafe/InternalErrorTest.java timeout on linux-riscv64 platform \+ JDK-8322098: os::Linux::print_system_memory_info enhance the THP output with /sys/kernel/mm/transparent_hugepage/hpage_pmd_size \+ JDK-8322321: Add man page doc for -XX:+VerifySharedSpaces \+ JDK-8322417: Console read line with zero out should zero out when throwing exception \+ JDK-8322583: RISC-V: Enable fast class initialization checks \+ JDK-8322725: (tz) Update Timezone Data to 2023d \+ JDK-8322750: Test "api/java_awt/interactive/ /SystemTrayTests.html" failed because A blue ball icon is added outside of the system tray \+ JDK-8322772: Clean up code after JDK-8322417 \+ JDK-8322783: prioritize /etc/os-release over /etc/SuSE-release in hs_err/info output \+ JDK-8322968: [17u] Amend Atomics gtest with 1-byte tests \+ JDK-8323008: filter out harmful -std_ flags added by autoconf from CXX \+ JDK-8323021: Shenandoah: Encountered reference count always attributed to first worker thread \+ JDK-8323086: Shenandoah: Heap could be corrupted by oom during evacuation \+ JDK-8323243: JNI invocation of an abstract instance method corrupts the stack \+ JDK-8323331: fix typo hpage_pdm_size \+ JDK-8323428: Shenandoah: Unused memory in regions compacted during a full GC should be mangled \+ JDK-8323515: Create test alias "all" for all test roots \+ JDK-8323637: Capture hotspot replay files in GHA \+ JDK-8323640: [TESTBUG]testMemoryFailCount in jdk/internal/platform/docker/TestDockerMemoryMetrics.java always fail because OOM killed \+ JDK-8323806: [17u] VS2017 build fails with warning after 8293117\. \+ JDK-8324184: Windows VS2010 build failed with "error C2275: 'int64_t'" \+ JDK-8324280: RISC-V: Incorrect implementation in VM_Version::parse_satp_mode \+ JDK-8324347: Enable "maybe-uninitialized" warning for FreeType 2.13.1 \+ JDK-8324514: ClassLoaderData::print_on should print address of class loader \+ JDK-8324647: Invalid test group of lib-test after JDK-8323515 \+ JDK-8324659: GHA: Generic jtreg errors are not reported \+ JDK-8324937: GHA: Avoid multiple test suites per job \+ JDK-8325096: Test java/security/cert/CertPathBuilder/akiExt/ /AKISerialNumber.java is failing \+ JDK-8325150: (tz) Update Timezone Data to 2024a \+ JDK-8325585: Remove no longer necessary calls to set/unset-in-asgct flag in JDK 17 \+ JDK-8326000: Remove obsolete comments for class sun.security.ssl.SunJSSE \+ JDK-8327036: [macosx- aarch64] SIGBUS in MarkActivationClosure::do_code_blob reached from Unsafe_CopySwapMemory0 \+ JDK-8327391: Add SipHash attribution file \+ JDK-8329836: [17u] Remove designator DEFAULT_PROMOTED_VERSION_PRE=ea for release 17.0.11 * Removed the possibility to use the system timezone-java (bsc#1213470). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2024-1499=1 * Basesystem Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP6-2024-1499=1 * Legacy Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Legacy-15-SP6-2024-1499=1 ## Package List: * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64) * java-17-openjdk-devel-debuginfo-17.0.11.0-150400.3.42.1 * java-17-openjdk-debuginfo-17.0.11.0-150400.3.42.1 * java-17-openjdk-demo-17.0.11.0-150400.3.42.1 * java-17-openjdk-devel-17.0.11.0-150400.3.42.1 * java-17-openjdk-debugsource-17.0.11.0-150400.3.42.1 * java-17-openjdk-headless-17.0.11.0-150400.3.42.1 * java-17-openjdk-17.0.11.0-150400.3.42.1 * java-17-openjdk-headless-debuginfo-17.0.11.0-150400.3.42.1 * java-17-openjdk-src-17.0.11.0-150400.3.42.1 * java-17-openjdk-jmods-17.0.11.0-150400.3.42.1 * openSUSE Leap 15.6 (noarch) * java-17-openjdk-javadoc-17.0.11.0-150400.3.42.1 * Basesystem Module 15-SP6 (aarch64 ppc64le s390x x86_64) * java-17-openjdk-devel-debuginfo-17.0.11.0-150400.3.42.1 * java-17-openjdk-debuginfo-17.0.11.0-150400.3.42.1 * java-17-openjdk-devel-17.0.11.0-150400.3.42.1 * java-17-openjdk-debugsource-17.0.11.0-150400.3.42.1 * java-17-openjdk-headless-17.0.11.0-150400.3.42.1 * java-17-openjdk-17.0.11.0-150400.3.42.1 * java-17-openjdk-headless-debuginfo-17.0.11.0-150400.3.42.1 * Legacy Module 15-SP6 (aarch64 ppc64le s390x x86_64) * java-17-openjdk-debuginfo-17.0.11.0-150400.3.42.1 * java-17-openjdk-demo-17.0.11.0-150400.3.42.1 * java-17-openjdk-debugsource-17.0.11.0-150400.3.42.1 ## References: * https://www.suse.com/security/cve/CVE-2024-21011.html * https://www.suse.com/security/cve/CVE-2024-21012.html * https://www.suse.com/security/cve/CVE-2024-21068.html * https://www.suse.com/security/cve/CVE-2024-21094.html * https://bugzilla.suse.com/show_bug.cgi?id=1213470 * https://bugzilla.suse.com/show_bug.cgi?id=1222979 * https://bugzilla.suse.com/show_bug.cgi?id=1222983 * https://bugzilla.suse.com/show_bug.cgi?id=1222986 * https://bugzilla.suse.com/show_bug.cgi?id=1222987 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Aug 20 16:30:02 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Tue, 20 Aug 2024 16:30:02 -0000 Subject: SUSE-SU-2024:2991-1: moderate: Security update for openssl1 Message-ID: <172417140267.1017.18393213845574850769@smelt2.prg2.suse.org> # Security update for openssl1 Announcement ID: SUSE-SU-2024:2991-1 Rating: moderate References: * bsc#1227138 Cross-References: * CVE-2024-5535 CVSS scores: * CVE-2024-5535 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * SUSE Linux Enterprise Server 11 SP4 * SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE 11-SP4 An update that solves one vulnerability can now be installed. ## Description: This update for openssl1 fixes the following issues: * CVE-2024-5535: Fixed a buffer overread in function SSL_select_next_proto() with an empty supported client protocols buffer (bsc#1227138) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE 11-SP4 zypper in -t patch SUSE-SLE-SERVER-11-SP4-LTSS-EXTREME-CORE-2024-2991=1 * SUSE Linux Enterprise Server 11 SP4 zypper in -t patch SUSE-SLE-SERVER-11-SP4-LTSS-EXTREME-CORE-2024-2991=1 ## Package List: * SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE 11-SP4 (x86_64) * libopenssl1_0_0-32bit-1.0.1g-0.58.82.1 * libopenssl1-devel-1.0.1g-0.58.82.1 * openssl1-doc-1.0.1g-0.58.82.1 * libopenssl1_0_0-1.0.1g-0.58.82.1 * openssl1-1.0.1g-0.58.82.1 * SUSE Linux Enterprise Server 11 SP4 (x86_64) * libopenssl1_0_0-32bit-1.0.1g-0.58.82.1 * libopenssl1-devel-1.0.1g-0.58.82.1 * openssl1-doc-1.0.1g-0.58.82.1 * libopenssl1_0_0-1.0.1g-0.58.82.1 * openssl1-1.0.1g-0.58.82.1 ## References: * https://www.suse.com/security/cve/CVE-2024-5535.html * https://bugzilla.suse.com/show_bug.cgi?id=1227138 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Aug 20 16:30:10 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Tue, 20 Aug 2024 16:30:10 -0000 Subject: SUSE-SU-2024:2989-1: moderate: Security update for openssl-1_0_0 Message-ID: <172417141069.1017.6203396688681524614@smelt2.prg2.suse.org> # Security update for openssl-1_0_0 Announcement ID: SUSE-SU-2024:2989-1 Rating: moderate References: * bsc#1227138 * bsc#1227227 * bsc#1228291 Cross-References: * CVE-2024-5535 CVSS scores: * CVE-2024-5535 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 * SUSE Linux Enterprise Software Development Kit 12 SP5 An update that solves one vulnerability and has two security fixes can now be installed. ## Description: This update for openssl-1_0_0 fixes the following issues: * CVE-2024-5535: Fixed a buffer overread in function SSL_select_next_proto() with an empty supported client protocols buffer (bsc#1227138, bsc#1227227) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Software Development Kit 12 SP5 zypper in -t patch SUSE-SLE-SDK-12-SP5-2024-2989=1 * SUSE Linux Enterprise High Performance Computing 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-2989=1 * SUSE Linux Enterprise Server 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-2989=1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-2989=1 ## Package List: * SUSE Linux Enterprise Software Development Kit 12 SP5 (aarch64 ppc64le s390x x86_64) * libopenssl-1_0_0-devel-1.0.2p-3.95.1 * openssl-1_0_0-debuginfo-1.0.2p-3.95.1 * openssl-1_0_0-debugsource-1.0.2p-3.95.1 * SUSE Linux Enterprise Software Development Kit 12 SP5 (s390x x86_64) * libopenssl-1_0_0-devel-32bit-1.0.2p-3.95.1 * SUSE Linux Enterprise High Performance Computing 12 SP5 (aarch64 x86_64) * libopenssl-1_0_0-devel-1.0.2p-3.95.1 * openssl-1_0_0-debuginfo-1.0.2p-3.95.1 * libopenssl1_0_0-1.0.2p-3.95.1 * libopenssl1_0_0-debuginfo-1.0.2p-3.95.1 * openssl-1_0_0-debugsource-1.0.2p-3.95.1 * libopenssl1_0_0-hmac-1.0.2p-3.95.1 * openssl-1_0_0-1.0.2p-3.95.1 * SUSE Linux Enterprise High Performance Computing 12 SP5 (noarch) * openssl-1_0_0-doc-1.0.2p-3.95.1 * SUSE Linux Enterprise High Performance Computing 12 SP5 (x86_64) * libopenssl1_0_0-32bit-1.0.2p-3.95.1 * libopenssl1_0_0-hmac-32bit-1.0.2p-3.95.1 * libopenssl1_0_0-debuginfo-32bit-1.0.2p-3.95.1 * SUSE Linux Enterprise Server 12 SP5 (aarch64 ppc64le s390x x86_64) * libopenssl-1_0_0-devel-1.0.2p-3.95.1 * openssl-1_0_0-debuginfo-1.0.2p-3.95.1 * libopenssl1_0_0-1.0.2p-3.95.1 * libopenssl1_0_0-debuginfo-1.0.2p-3.95.1 * openssl-1_0_0-debugsource-1.0.2p-3.95.1 * libopenssl1_0_0-hmac-1.0.2p-3.95.1 * openssl-1_0_0-1.0.2p-3.95.1 * SUSE Linux Enterprise Server 12 SP5 (noarch) * openssl-1_0_0-doc-1.0.2p-3.95.1 * SUSE Linux Enterprise Server 12 SP5 (s390x x86_64) * libopenssl1_0_0-32bit-1.0.2p-3.95.1 * libopenssl1_0_0-hmac-32bit-1.0.2p-3.95.1 * libopenssl1_0_0-debuginfo-32bit-1.0.2p-3.95.1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 (ppc64le x86_64) * libopenssl-1_0_0-devel-1.0.2p-3.95.1 * openssl-1_0_0-debuginfo-1.0.2p-3.95.1 * libopenssl1_0_0-1.0.2p-3.95.1 * libopenssl1_0_0-debuginfo-1.0.2p-3.95.1 * openssl-1_0_0-debugsource-1.0.2p-3.95.1 * libopenssl1_0_0-hmac-1.0.2p-3.95.1 * openssl-1_0_0-1.0.2p-3.95.1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 (noarch) * openssl-1_0_0-doc-1.0.2p-3.95.1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 (x86_64) * libopenssl1_0_0-32bit-1.0.2p-3.95.1 * libopenssl1_0_0-hmac-32bit-1.0.2p-3.95.1 * libopenssl1_0_0-debuginfo-32bit-1.0.2p-3.95.1 ## References: * https://www.suse.com/security/cve/CVE-2024-5535.html * https://bugzilla.suse.com/show_bug.cgi?id=1227138 * https://bugzilla.suse.com/show_bug.cgi?id=1227227 * https://bugzilla.suse.com/show_bug.cgi?id=1228291 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Wed Aug 21 12:30:11 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Wed, 21 Aug 2024 12:30:11 -0000 Subject: SUSE-SU-2024:2994-1: important: Security update for xen Message-ID: <172424341199.18977.1934021145127699522@smelt2.prg2.suse.org> # Security update for xen Announcement ID: SUSE-SU-2024:2994-1 Rating: important References: * bsc#1228574 * bsc#1228575 Cross-References: * CVE-2024-31145 * CVE-2024-31146 CVSS scores: * CVE-2024-31145 ( SUSE ): 7.5 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H * CVE-2024-31146 ( SUSE ): 0.0 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:N Affected Products: * SUSE Linux Enterprise High Performance Computing 15 SP2 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 * SUSE Linux Enterprise Server 15 SP2 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 An update that solves two vulnerabilities can now be installed. ## Description: This update for xen fixes the following issues: * CVE-2024-31145: Fixed error handling in x86 IOMMU identity mapping (XSA-460, bsc#1228574) * CVE-2024-31146: Fixed PCI device pass-through with shared resources (XSA-461, bsc#1228575) ## Special Instructions and Notes: * Please reboot the system after installing this update. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 zypper in -t patch SUSE-SLE-Product-HPC-15-SP2-LTSS-2024-2994=1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 zypper in -t patch SUSE-SLE-Product-SLES-15-SP2-LTSS-2024-2994=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP2-2024-2994=1 ## Package List: * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 (x86_64) * xen-tools-domU-debuginfo-4.13.5_14-150200.3.96.1 * xen-tools-domU-4.13.5_14-150200.3.96.1 * xen-tools-4.13.5_14-150200.3.96.1 * xen-4.13.5_14-150200.3.96.1 * xen-libs-4.13.5_14-150200.3.96.1 * xen-debugsource-4.13.5_14-150200.3.96.1 * xen-libs-debuginfo-4.13.5_14-150200.3.96.1 * xen-tools-debuginfo-4.13.5_14-150200.3.96.1 * xen-devel-4.13.5_14-150200.3.96.1 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 (noarch) * xen-tools-xendomains-wait-disk-4.13.5_14-150200.3.96.1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (x86_64) * xen-tools-domU-debuginfo-4.13.5_14-150200.3.96.1 * xen-tools-domU-4.13.5_14-150200.3.96.1 * xen-tools-4.13.5_14-150200.3.96.1 * xen-4.13.5_14-150200.3.96.1 * xen-libs-4.13.5_14-150200.3.96.1 * xen-debugsource-4.13.5_14-150200.3.96.1 * xen-libs-debuginfo-4.13.5_14-150200.3.96.1 * xen-tools-debuginfo-4.13.5_14-150200.3.96.1 * xen-devel-4.13.5_14-150200.3.96.1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (noarch) * xen-tools-xendomains-wait-disk-4.13.5_14-150200.3.96.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 (x86_64) * xen-tools-domU-debuginfo-4.13.5_14-150200.3.96.1 * xen-tools-domU-4.13.5_14-150200.3.96.1 * xen-tools-4.13.5_14-150200.3.96.1 * xen-4.13.5_14-150200.3.96.1 * xen-libs-4.13.5_14-150200.3.96.1 * xen-debugsource-4.13.5_14-150200.3.96.1 * xen-libs-debuginfo-4.13.5_14-150200.3.96.1 * xen-tools-debuginfo-4.13.5_14-150200.3.96.1 * xen-devel-4.13.5_14-150200.3.96.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 (noarch) * xen-tools-xendomains-wait-disk-4.13.5_14-150200.3.96.1 ## References: * https://www.suse.com/security/cve/CVE-2024-31145.html * https://www.suse.com/security/cve/CVE-2024-31146.html * https://bugzilla.suse.com/show_bug.cgi?id=1228574 * https://bugzilla.suse.com/show_bug.cgi?id=1228575 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Wed Aug 21 12:30:13 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Wed, 21 Aug 2024 12:30:13 -0000 Subject: SUSE-SU-2024:2993-1: moderate: Security update for oniguruma Message-ID: <172424341394.18977.4940063134086803049@smelt2.prg2.suse.org> # Security update for oniguruma Announcement ID: SUSE-SU-2024:2993-1 Rating: moderate References: * bsc#1177179 Cross-References: * CVE-2020-26159 CVSS scores: * CVE-2020-26159 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2020-26159 ( NVD ): 8.6 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H Affected Products: * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 * SUSE Linux Enterprise Software Development Kit 12 SP5 An update that solves one vulnerability can now be installed. ## Description: This update for oniguruma fixes the following issues: * CVE-2020-26159: Fixed buffer overflow in concat_opt_exact_str could that could lead in DoS (bsc#1177179) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Software Development Kit 12 SP5 zypper in -t patch SUSE-SLE-SDK-12-SP5-2024-2993=1 * SUSE Linux Enterprise High Performance Computing 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-2993=1 * SUSE Linux Enterprise Server 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-2993=1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-2993=1 ## Package List: * SUSE Linux Enterprise Software Development Kit 12 SP5 (aarch64 ppc64le s390x x86_64) * oniguruma-debugsource-5.9.2-13.6.1 * oniguruma-devel-5.9.2-13.6.1 * SUSE Linux Enterprise High Performance Computing 12 SP5 (aarch64 x86_64) * libonig2-5.9.2-13.6.1 * oniguruma-debugsource-5.9.2-13.6.1 * libonig2-debuginfo-5.9.2-13.6.1 * SUSE Linux Enterprise Server 12 SP5 (aarch64 ppc64le s390x x86_64) * libonig2-5.9.2-13.6.1 * oniguruma-debugsource-5.9.2-13.6.1 * libonig2-debuginfo-5.9.2-13.6.1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 (ppc64le x86_64) * libonig2-5.9.2-13.6.1 * oniguruma-debugsource-5.9.2-13.6.1 * libonig2-debuginfo-5.9.2-13.6.1 ## References: * https://www.suse.com/security/cve/CVE-2020-26159.html * https://bugzilla.suse.com/show_bug.cgi?id=1177179 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Wed Aug 21 16:30:04 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Wed, 21 Aug 2024 16:30:04 -0000 Subject: SUSE-SU-2024:2997-1: important: Security update for apache2 Message-ID: <172425780489.12625.7601904662184125405@smelt2.prg2.suse.org> # Security update for apache2 Announcement ID: SUSE-SU-2024:2997-1 Rating: important References: * bsc#1227276 * bsc#1227278 Cross-References: * CVE-2024-38473 * CVE-2024-38474 CVSS scores: * CVE-2024-38473 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N * CVE-2024-38474 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N * CVE-2024-38474 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Affected Products: * SUSE Enterprise Storage 7.1 * SUSE Linux Enterprise High Performance Computing 15 SP2 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 * SUSE Linux Enterprise High Performance Computing 15 SP3 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 * SUSE Linux Enterprise Server 15 SP2 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 * SUSE Linux Enterprise Server 15 SP3 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 An update that solves two vulnerabilities can now be installed. ## Description: This update for apache2 fixes the following issues: * CVE-2024-38474: Fixed substitution encoding issue in mod_rewrite (bsc#1227278) * CVE-2024-38473: Fixed encoding problem in mod_proxy (bsc#1227276) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 zypper in -t patch SUSE-SLE-Product-HPC-15-SP2-LTSS-2024-2997=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 zypper in -t patch SUSE-SLE-Product-HPC-15-SP3-LTSS-2024-2997=1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 zypper in -t patch SUSE-SLE-Product-SLES-15-SP2-LTSS-2024-2997=1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 zypper in -t patch SUSE-SLE-Product-SLES-15-SP3-LTSS-2024-2997=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP2-2024-2997=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP3-2024-2997=1 * SUSE Enterprise Storage 7.1 zypper in -t patch SUSE-Storage-7.1-2024-2997=1 ## Package List: * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 (aarch64 x86_64) * apache2-2.4.51-150200.3.73.1 * apache2-utils-2.4.51-150200.3.73.1 * apache2-utils-debuginfo-2.4.51-150200.3.73.1 * apache2-worker-debuginfo-2.4.51-150200.3.73.1 * apache2-prefork-debuginfo-2.4.51-150200.3.73.1 * apache2-debuginfo-2.4.51-150200.3.73.1 * apache2-prefork-2.4.51-150200.3.73.1 * apache2-worker-2.4.51-150200.3.73.1 * apache2-devel-2.4.51-150200.3.73.1 * apache2-debugsource-2.4.51-150200.3.73.1 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 (noarch) * apache2-doc-2.4.51-150200.3.73.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (aarch64 x86_64) * apache2-2.4.51-150200.3.73.1 * apache2-utils-2.4.51-150200.3.73.1 * apache2-utils-debuginfo-2.4.51-150200.3.73.1 * apache2-worker-debuginfo-2.4.51-150200.3.73.1 * apache2-prefork-debuginfo-2.4.51-150200.3.73.1 * apache2-debuginfo-2.4.51-150200.3.73.1 * apache2-prefork-2.4.51-150200.3.73.1 * apache2-worker-2.4.51-150200.3.73.1 * apache2-devel-2.4.51-150200.3.73.1 * apache2-debugsource-2.4.51-150200.3.73.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (noarch) * apache2-doc-2.4.51-150200.3.73.1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (aarch64 ppc64le s390x x86_64) * apache2-2.4.51-150200.3.73.1 * apache2-utils-2.4.51-150200.3.73.1 * apache2-utils-debuginfo-2.4.51-150200.3.73.1 * apache2-worker-debuginfo-2.4.51-150200.3.73.1 * apache2-prefork-debuginfo-2.4.51-150200.3.73.1 * apache2-debuginfo-2.4.51-150200.3.73.1 * apache2-prefork-2.4.51-150200.3.73.1 * apache2-worker-2.4.51-150200.3.73.1 * apache2-devel-2.4.51-150200.3.73.1 * apache2-debugsource-2.4.51-150200.3.73.1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (noarch) * apache2-doc-2.4.51-150200.3.73.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (aarch64 ppc64le s390x x86_64) * apache2-2.4.51-150200.3.73.1 * apache2-utils-2.4.51-150200.3.73.1 * apache2-utils-debuginfo-2.4.51-150200.3.73.1 * apache2-worker-debuginfo-2.4.51-150200.3.73.1 * apache2-prefork-debuginfo-2.4.51-150200.3.73.1 * apache2-debuginfo-2.4.51-150200.3.73.1 * apache2-prefork-2.4.51-150200.3.73.1 * apache2-worker-2.4.51-150200.3.73.1 * apache2-devel-2.4.51-150200.3.73.1 * apache2-debugsource-2.4.51-150200.3.73.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (noarch) * apache2-doc-2.4.51-150200.3.73.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 (ppc64le x86_64) * apache2-2.4.51-150200.3.73.1 * apache2-utils-2.4.51-150200.3.73.1 * apache2-utils-debuginfo-2.4.51-150200.3.73.1 * apache2-worker-debuginfo-2.4.51-150200.3.73.1 * apache2-prefork-debuginfo-2.4.51-150200.3.73.1 * apache2-debuginfo-2.4.51-150200.3.73.1 * apache2-prefork-2.4.51-150200.3.73.1 * apache2-worker-2.4.51-150200.3.73.1 * apache2-devel-2.4.51-150200.3.73.1 * apache2-debugsource-2.4.51-150200.3.73.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 (noarch) * apache2-doc-2.4.51-150200.3.73.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (ppc64le x86_64) * apache2-2.4.51-150200.3.73.1 * apache2-utils-2.4.51-150200.3.73.1 * apache2-utils-debuginfo-2.4.51-150200.3.73.1 * apache2-worker-debuginfo-2.4.51-150200.3.73.1 * apache2-prefork-debuginfo-2.4.51-150200.3.73.1 * apache2-debuginfo-2.4.51-150200.3.73.1 * apache2-prefork-2.4.51-150200.3.73.1 * apache2-worker-2.4.51-150200.3.73.1 * apache2-devel-2.4.51-150200.3.73.1 * apache2-debugsource-2.4.51-150200.3.73.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (noarch) * apache2-doc-2.4.51-150200.3.73.1 * SUSE Enterprise Storage 7.1 (aarch64 x86_64) * apache2-2.4.51-150200.3.73.1 * apache2-utils-2.4.51-150200.3.73.1 * apache2-utils-debuginfo-2.4.51-150200.3.73.1 * apache2-worker-debuginfo-2.4.51-150200.3.73.1 * apache2-prefork-debuginfo-2.4.51-150200.3.73.1 * apache2-debuginfo-2.4.51-150200.3.73.1 * apache2-prefork-2.4.51-150200.3.73.1 * apache2-worker-2.4.51-150200.3.73.1 * apache2-devel-2.4.51-150200.3.73.1 * apache2-debugsource-2.4.51-150200.3.73.1 * SUSE Enterprise Storage 7.1 (noarch) * apache2-doc-2.4.51-150200.3.73.1 ## References: * https://www.suse.com/security/cve/CVE-2024-38473.html * https://www.suse.com/security/cve/CVE-2024-38474.html * https://bugzilla.suse.com/show_bug.cgi?id=1227276 * https://bugzilla.suse.com/show_bug.cgi?id=1227278 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Thu Aug 22 12:30:04 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Thu, 22 Aug 2024 12:30:04 -0000 Subject: SUSE-SU-2024:2998-1: low: Security update for glib2 Message-ID: <172432980412.30112.18082601641458591033@smelt2.prg2.suse.org> # Security update for glib2 Announcement ID: SUSE-SU-2024:2998-1 Rating: low References: * bsc#1224044 Cross-References: * CVE-2024-34397 CVSS scores: * CVE-2024-34397 ( SUSE ): 3.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:N Affected Products: * SUSE Linux Enterprise Micro 5.1 * SUSE Linux Enterprise Micro 5.2 * SUSE Linux Enterprise Micro for Rancher 5.2 An update that solves one vulnerability can now be installed. ## Description: This update for glib2 fixes the following issues: * Fixed a possible use after free regression introduced by CVE-2024-34397 patch (bsc#1224044). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Micro 5.1 zypper in -t patch SUSE-SUSE-MicroOS-5.1-2024-2998=1 * SUSE Linux Enterprise Micro 5.2 zypper in -t patch SUSE-SUSE-MicroOS-5.2-2024-2998=1 * SUSE Linux Enterprise Micro for Rancher 5.2 zypper in -t patch SUSE-SUSE-MicroOS-5.2-2024-2998=1 ## Package List: * SUSE Linux Enterprise Micro 5.1 (aarch64 s390x x86_64) * libgmodule-2_0-0-debuginfo-2.62.6-150200.3.21.1 * libgio-2_0-0-debuginfo-2.62.6-150200.3.21.1 * libglib-2_0-0-debuginfo-2.62.6-150200.3.21.1 * libgio-2_0-0-2.62.6-150200.3.21.1 * libglib-2_0-0-2.62.6-150200.3.21.1 * libgobject-2_0-0-2.62.6-150200.3.21.1 * glib2-tools-debuginfo-2.62.6-150200.3.21.1 * glib2-tools-2.62.6-150200.3.21.1 * libgobject-2_0-0-debuginfo-2.62.6-150200.3.21.1 * glib2-debugsource-2.62.6-150200.3.21.1 * libgmodule-2_0-0-2.62.6-150200.3.21.1 * SUSE Linux Enterprise Micro 5.2 (aarch64 s390x x86_64) * libgmodule-2_0-0-debuginfo-2.62.6-150200.3.21.1 * libgio-2_0-0-debuginfo-2.62.6-150200.3.21.1 * libglib-2_0-0-debuginfo-2.62.6-150200.3.21.1 * libgio-2_0-0-2.62.6-150200.3.21.1 * libglib-2_0-0-2.62.6-150200.3.21.1 * libgobject-2_0-0-2.62.6-150200.3.21.1 * glib2-tools-debuginfo-2.62.6-150200.3.21.1 * glib2-tools-2.62.6-150200.3.21.1 * libgobject-2_0-0-debuginfo-2.62.6-150200.3.21.1 * glib2-debugsource-2.62.6-150200.3.21.1 * libgmodule-2_0-0-2.62.6-150200.3.21.1 * SUSE Linux Enterprise Micro for Rancher 5.2 (aarch64 s390x x86_64) * libgmodule-2_0-0-debuginfo-2.62.6-150200.3.21.1 * libgio-2_0-0-debuginfo-2.62.6-150200.3.21.1 * libglib-2_0-0-debuginfo-2.62.6-150200.3.21.1 * libgio-2_0-0-2.62.6-150200.3.21.1 * libglib-2_0-0-2.62.6-150200.3.21.1 * libgobject-2_0-0-2.62.6-150200.3.21.1 * glib2-tools-debuginfo-2.62.6-150200.3.21.1 * glib2-tools-2.62.6-150200.3.21.1 * libgobject-2_0-0-debuginfo-2.62.6-150200.3.21.1 * glib2-debugsource-2.62.6-150200.3.21.1 * libgmodule-2_0-0-2.62.6-150200.3.21.1 ## References: * https://www.suse.com/security/cve/CVE-2024-34397.html * https://bugzilla.suse.com/show_bug.cgi?id=1224044 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Thu Aug 22 16:30:06 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Thu, 22 Aug 2024 16:30:06 -0000 Subject: SUSE-SU-2024:2999-1: important: Security update for apache2 Message-ID: <172434420616.19318.5476885293246602096@smelt2.prg2.suse.org> # Security update for apache2 Announcement ID: SUSE-SU-2024:2999-1 Rating: important References: * bsc#1227276 * bsc#1227278 Cross-References: * CVE-2024-38473 * CVE-2024-38474 CVSS scores: * CVE-2024-38473 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N * CVE-2024-38474 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N * CVE-2024-38474 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Affected Products: * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 * SUSE Linux Enterprise Software Development Kit 12 SP5 An update that solves two vulnerabilities can now be installed. ## Description: This update for apache2 fixes the following issues: * CVE-2024-38474: Fixed substitution encoding issue in mod_rewrite (bsc#1227278) * CVE-2024-38473: Fixed encoding problem in mod_proxy (bsc#1227276) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Software Development Kit 12 SP5 zypper in -t patch SUSE-SLE-SDK-12-SP5-2024-2999=1 * SUSE Linux Enterprise High Performance Computing 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-2999=1 * SUSE Linux Enterprise Server 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-2999=1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-2999=1 ## Package List: * SUSE Linux Enterprise Software Development Kit 12 SP5 (aarch64 ppc64le s390x x86_64) * apache2-debuginfo-2.4.51-35.57.1 * apache2-tls13-debugsource-2.4.51-35.57.2 * apache2-debugsource-2.4.51-35.57.1 * apache2-tls13-debuginfo-2.4.51-35.57.2 * apache2-tls13-devel-2.4.51-35.57.2 * apache2-devel-2.4.51-35.57.1 * SUSE Linux Enterprise High Performance Computing 12 SP5 (aarch64 x86_64) * apache2-tls13-worker-debuginfo-2.4.51-35.57.2 * apache2-prefork-2.4.51-35.57.1 * apache2-tls13-prefork-2.4.51-35.57.2 * apache2-utils-2.4.51-35.57.1 * apache2-worker-2.4.51-35.57.1 * apache2-worker-debuginfo-2.4.51-35.57.1 * apache2-debuginfo-2.4.51-35.57.1 * apache2-tls13-debugsource-2.4.51-35.57.2 * apache2-2.4.51-35.57.1 * apache2-tls13-prefork-debuginfo-2.4.51-35.57.2 * apache2-tls13-utils-2.4.51-35.57.2 * apache2-prefork-debuginfo-2.4.51-35.57.1 * apache2-tls13-debuginfo-2.4.51-35.57.2 * apache2-utils-debuginfo-2.4.51-35.57.1 * apache2-example-pages-2.4.51-35.57.1 * apache2-tls13-utils-debuginfo-2.4.51-35.57.2 * apache2-tls13-worker-2.4.51-35.57.2 * apache2-tls13-2.4.51-35.57.2 * apache2-tls13-example-pages-2.4.51-35.57.2 * apache2-debugsource-2.4.51-35.57.1 * SUSE Linux Enterprise High Performance Computing 12 SP5 (noarch) * apache2-tls13-doc-2.4.51-35.57.2 * apache2-doc-2.4.51-35.57.1 * SUSE Linux Enterprise Server 12 SP5 (aarch64 ppc64le s390x x86_64) * apache2-tls13-worker-debuginfo-2.4.51-35.57.2 * apache2-prefork-2.4.51-35.57.1 * apache2-tls13-prefork-2.4.51-35.57.2 * apache2-utils-2.4.51-35.57.1 * apache2-worker-2.4.51-35.57.1 * apache2-worker-debuginfo-2.4.51-35.57.1 * apache2-debuginfo-2.4.51-35.57.1 * apache2-tls13-debugsource-2.4.51-35.57.2 * apache2-2.4.51-35.57.1 * apache2-tls13-prefork-debuginfo-2.4.51-35.57.2 * apache2-tls13-utils-2.4.51-35.57.2 * apache2-prefork-debuginfo-2.4.51-35.57.1 * apache2-tls13-debuginfo-2.4.51-35.57.2 * apache2-utils-debuginfo-2.4.51-35.57.1 * apache2-example-pages-2.4.51-35.57.1 * apache2-tls13-utils-debuginfo-2.4.51-35.57.2 * apache2-tls13-worker-2.4.51-35.57.2 * apache2-tls13-2.4.51-35.57.2 * apache2-tls13-example-pages-2.4.51-35.57.2 * apache2-debugsource-2.4.51-35.57.1 * SUSE Linux Enterprise Server 12 SP5 (noarch) * apache2-tls13-doc-2.4.51-35.57.2 * apache2-doc-2.4.51-35.57.1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 (ppc64le x86_64) * apache2-tls13-worker-debuginfo-2.4.51-35.57.2 * apache2-prefork-2.4.51-35.57.1 * apache2-tls13-prefork-2.4.51-35.57.2 * apache2-utils-2.4.51-35.57.1 * apache2-worker-2.4.51-35.57.1 * apache2-worker-debuginfo-2.4.51-35.57.1 * apache2-debuginfo-2.4.51-35.57.1 * apache2-tls13-debugsource-2.4.51-35.57.2 * apache2-2.4.51-35.57.1 * apache2-tls13-prefork-debuginfo-2.4.51-35.57.2 * apache2-tls13-utils-2.4.51-35.57.2 * apache2-prefork-debuginfo-2.4.51-35.57.1 * apache2-tls13-debuginfo-2.4.51-35.57.2 * apache2-utils-debuginfo-2.4.51-35.57.1 * apache2-example-pages-2.4.51-35.57.1 * apache2-tls13-utils-debuginfo-2.4.51-35.57.2 * apache2-tls13-worker-2.4.51-35.57.2 * apache2-tls13-2.4.51-35.57.2 * apache2-tls13-example-pages-2.4.51-35.57.2 * apache2-debugsource-2.4.51-35.57.1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 (noarch) * apache2-tls13-doc-2.4.51-35.57.2 * apache2-doc-2.4.51-35.57.1 ## References: * https://www.suse.com/security/cve/CVE-2024-38473.html * https://www.suse.com/security/cve/CVE-2024-38474.html * https://bugzilla.suse.com/show_bug.cgi?id=1227276 * https://bugzilla.suse.com/show_bug.cgi?id=1227278 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Fri Aug 23 12:30:09 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Fri, 23 Aug 2024 12:30:09 -0000 Subject: SUSE-SU-2024:3005-1: important: Security update for webkit2gtk3 Message-ID: <172441620923.17359.4282816304730885716@smelt2.prg2.suse.org> # Security update for webkit2gtk3 Announcement ID: SUSE-SU-2024:3005-1 Rating: important References: * bsc#1228613 * bsc#1228693 * bsc#1228694 * bsc#1228695 * bsc#1228696 * bsc#1228697 * bsc#1228698 Cross-References: * CVE-2023-40782 * CVE-2024-40776 * CVE-2024-40779 * CVE-2024-40780 * CVE-2024-40785 * CVE-2024-40789 * CVE-2024-40794 * CVE-2024-4558 CVSS scores: * CVE-2024-40776 ( SUSE ): 8.9 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:H * CVE-2024-40776 ( SUSE ): 8.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H * CVE-2024-40776 ( NVD ): 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L * CVE-2024-40779 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2024-40779 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2024-40780 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2024-40780 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2024-40785 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2024-40785 ( NVD ): 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N * CVE-2024-40789 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2024-40794 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H Affected Products: * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 * SUSE Linux Enterprise Software Development Kit 12 SP5 * SUSE Linux Enterprise Workstation Extension 12 12-SP5 An update that solves eight vulnerabilities can now be installed. ## Description: This update for webkit2gtk3 fixes the following issues: Update to version 2.44.3 (bsc#1228696 bsc#1228697 bsc#1228698): * Fix web process cache suspend/resume when sandbox is enabled. * Fix accelerated images dissapearing after scrolling. * Fix video flickering with DMA-BUF sink. * Fix pointer lock on X11. * Fix movement delta on mouse events in GTK3. * Undeprecate console message API and make it available in 2022 API. * Fix several crashes and rendering issues. * Security fixes: CVE-2024-40776, CVE-2024-40779, CVE-2024-40780, CVE-2023-40782, CVE-2024-40785, CVE-2024-40789, CVE-2024-40794, CVE-2024-4558. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Software Development Kit 12 SP5 zypper in -t patch SUSE-SLE-SDK-12-SP5-2024-3005=1 * SUSE Linux Enterprise High Performance Computing 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-3005=1 * SUSE Linux Enterprise Server 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-3005=1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-3005=1 * SUSE Linux Enterprise Workstation Extension 12 12-SP5 zypper in -t patch SUSE-SLE-WE-12-SP5-2024-3005=1 ## Package List: * SUSE Linux Enterprise Software Development Kit 12 SP5 (aarch64 ppc64le s390x x86_64) * webkit2gtk3-debugsource-2.44.3-4.12.1 * webkit2gtk3-devel-2.44.3-4.12.1 * typelib-1_0-WebKit2WebExtension-4_0-2.44.3-4.12.1 * SUSE Linux Enterprise High Performance Computing 12 SP5 (aarch64 x86_64) * typelib-1_0-WebKit2-4_0-2.44.3-4.12.1 * webkit2gtk3-debugsource-2.44.3-4.12.1 * webkit2gtk-4_0-injected-bundles-2.44.3-4.12.1 * typelib-1_0-WebKit2WebExtension-4_0-2.44.3-4.12.1 * webkit2gtk-4_0-injected-bundles-debuginfo-2.44.3-4.12.1 * libwebkit2gtk-4_0-37-2.44.3-4.12.1 * typelib-1_0-JavaScriptCore-4_0-2.44.3-4.12.1 * libjavascriptcoregtk-4_0-18-debuginfo-2.44.3-4.12.1 * libwebkit2gtk-4_0-37-debuginfo-2.44.3-4.12.1 * libjavascriptcoregtk-4_0-18-2.44.3-4.12.1 * SUSE Linux Enterprise High Performance Computing 12 SP5 (noarch) * libwebkit2gtk3-lang-2.44.3-4.12.1 * SUSE Linux Enterprise Server 12 SP5 (aarch64 ppc64le s390x x86_64) * typelib-1_0-WebKit2-4_0-2.44.3-4.12.1 * webkit2gtk3-debugsource-2.44.3-4.12.1 * webkit2gtk-4_0-injected-bundles-2.44.3-4.12.1 * typelib-1_0-WebKit2WebExtension-4_0-2.44.3-4.12.1 * webkit2gtk-4_0-injected-bundles-debuginfo-2.44.3-4.12.1 * libwebkit2gtk-4_0-37-2.44.3-4.12.1 * typelib-1_0-JavaScriptCore-4_0-2.44.3-4.12.1 * libjavascriptcoregtk-4_0-18-debuginfo-2.44.3-4.12.1 * libwebkit2gtk-4_0-37-debuginfo-2.44.3-4.12.1 * libjavascriptcoregtk-4_0-18-2.44.3-4.12.1 * SUSE Linux Enterprise Server 12 SP5 (noarch) * libwebkit2gtk3-lang-2.44.3-4.12.1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 (ppc64le x86_64) * typelib-1_0-WebKit2-4_0-2.44.3-4.12.1 * webkit2gtk3-debugsource-2.44.3-4.12.1 * webkit2gtk-4_0-injected-bundles-2.44.3-4.12.1 * typelib-1_0-WebKit2WebExtension-4_0-2.44.3-4.12.1 * webkit2gtk-4_0-injected-bundles-debuginfo-2.44.3-4.12.1 * libwebkit2gtk-4_0-37-2.44.3-4.12.1 * typelib-1_0-JavaScriptCore-4_0-2.44.3-4.12.1 * libjavascriptcoregtk-4_0-18-debuginfo-2.44.3-4.12.1 * libwebkit2gtk-4_0-37-debuginfo-2.44.3-4.12.1 * libjavascriptcoregtk-4_0-18-2.44.3-4.12.1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 (noarch) * libwebkit2gtk3-lang-2.44.3-4.12.1 * SUSE Linux Enterprise Workstation Extension 12 12-SP5 (x86_64) * libjavascriptcoregtk-4_0-18-32bit-2.44.3-4.12.1 ## References: * https://www.suse.com/security/cve/CVE-2023-40782.html * https://www.suse.com/security/cve/CVE-2024-40776.html * https://www.suse.com/security/cve/CVE-2024-40779.html * https://www.suse.com/security/cve/CVE-2024-40780.html * https://www.suse.com/security/cve/CVE-2024-40785.html * https://www.suse.com/security/cve/CVE-2024-40789.html * https://www.suse.com/security/cve/CVE-2024-40794.html * https://www.suse.com/security/cve/CVE-2024-4558.html * https://bugzilla.suse.com/show_bug.cgi?id=1228613 * https://bugzilla.suse.com/show_bug.cgi?id=1228693 * https://bugzilla.suse.com/show_bug.cgi?id=1228694 * https://bugzilla.suse.com/show_bug.cgi?id=1228695 * https://bugzilla.suse.com/show_bug.cgi?id=1228696 * https://bugzilla.suse.com/show_bug.cgi?id=1228697 * https://bugzilla.suse.com/show_bug.cgi?id=1228698 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Fri Aug 23 12:30:12 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Fri, 23 Aug 2024 12:30:12 -0000 Subject: SUSE-SU-2024:3004-1: moderate: Security update for expat Message-ID: <172441621213.17359.15542932482310515704@smelt2.prg2.suse.org> # Security update for expat Announcement ID: SUSE-SU-2024:3004-1 Rating: moderate References: * bsc#1219559 * bsc#1221563 Cross-References: * CVE-2023-52425 CVSS scores: * CVE-2023-52425 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52425 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 * SUSE Linux Enterprise Software Development Kit 12 SP5 An update that solves one vulnerability and has one security fix can now be installed. ## Description: This update for expat fixes the following issues: * CVE-2023-52425: denial of service (resource consumption) caused by processing large tokens (bsc#1219559) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise High Performance Computing 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-3004=1 * SUSE Linux Enterprise Server 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-3004=1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-3004=1 * SUSE Linux Enterprise Software Development Kit 12 SP5 zypper in -t patch SUSE-SLE-SDK-12-SP5-2024-3004=1 ## Package List: * SUSE Linux Enterprise High Performance Computing 12 SP5 (aarch64 x86_64) * expat-2.1.0-21.32.1 * libexpat1-debuginfo-2.1.0-21.32.1 * expat-debugsource-2.1.0-21.32.1 * expat-debuginfo-2.1.0-21.32.1 * libexpat1-2.1.0-21.32.1 * SUSE Linux Enterprise High Performance Computing 12 SP5 (x86_64) * libexpat1-32bit-2.1.0-21.32.1 * expat-debuginfo-32bit-2.1.0-21.32.1 * libexpat1-debuginfo-32bit-2.1.0-21.32.1 * SUSE Linux Enterprise Server 12 SP5 (aarch64 ppc64le s390x x86_64) * expat-2.1.0-21.32.1 * libexpat1-debuginfo-2.1.0-21.32.1 * expat-debugsource-2.1.0-21.32.1 * expat-debuginfo-2.1.0-21.32.1 * libexpat1-2.1.0-21.32.1 * SUSE Linux Enterprise Server 12 SP5 (s390x x86_64) * libexpat1-32bit-2.1.0-21.32.1 * expat-debuginfo-32bit-2.1.0-21.32.1 * libexpat1-debuginfo-32bit-2.1.0-21.32.1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 (ppc64le x86_64) * expat-2.1.0-21.32.1 * libexpat1-debuginfo-2.1.0-21.32.1 * expat-debugsource-2.1.0-21.32.1 * expat-debuginfo-2.1.0-21.32.1 * libexpat1-2.1.0-21.32.1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 (x86_64) * libexpat1-32bit-2.1.0-21.32.1 * expat-debuginfo-32bit-2.1.0-21.32.1 * libexpat1-debuginfo-32bit-2.1.0-21.32.1 * SUSE Linux Enterprise Software Development Kit 12 SP5 (aarch64 ppc64le s390x x86_64) * libexpat-devel-2.1.0-21.32.1 * expat-debugsource-2.1.0-21.32.1 * expat-debuginfo-2.1.0-21.32.1 ## References: * https://www.suse.com/security/cve/CVE-2023-52425.html * https://bugzilla.suse.com/show_bug.cgi?id=1219559 * https://bugzilla.suse.com/show_bug.cgi?id=1221563 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Fri Aug 23 12:30:15 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Fri, 23 Aug 2024 12:30:15 -0000 Subject: SUSE-SU-2024:3003-1: important: Security update for MozillaFirefox Message-ID: <172441621526.17359.6473844290553630051@smelt2.prg2.suse.org> # Security update for MozillaFirefox Announcement ID: SUSE-SU-2024:3003-1 Rating: important References: * bsc#1226316 * bsc#1228648 Cross-References: * CVE-2024-6600 * CVE-2024-6601 * CVE-2024-6602 * CVE-2024-6603 * CVE-2024-6604 * CVE-2024-6605 * CVE-2024-6606 * CVE-2024-6607 * CVE-2024-6608 * CVE-2024-6609 * CVE-2024-6610 * CVE-2024-6611 * CVE-2024-6612 * CVE-2024-6613 * CVE-2024-6614 * CVE-2024-6615 * CVE-2024-7518 * CVE-2024-7519 * CVE-2024-7520 * CVE-2024-7521 * CVE-2024-7522 * CVE-2024-7524 * CVE-2024-7525 * CVE-2024-7526 * CVE-2024-7527 * CVE-2024-7528 * CVE-2024-7529 * CVE-2024-7531 CVSS scores: * CVE-2024-6600 ( SUSE ): 6.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L * CVE-2024-6601 ( SUSE ): 4.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:N * CVE-2024-6602 ( SUSE ): 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:L/A:L * CVE-2024-6603 ( SUSE ): 5.4 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L * CVE-2024-6604 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2024-6605 ( SUSE ): 8.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N * CVE-2024-6606 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:L * CVE-2024-6607 ( SUSE ): 5.4 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N * CVE-2024-6608 ( SUSE ): 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L * CVE-2024-6609 ( SUSE ): 4.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:N/I:L/A:L * CVE-2024-6610 ( SUSE ): 4.7 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:N/A:L * CVE-2024-6611 ( SUSE ): 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N * CVE-2024-6612 ( SUSE ): 3.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N * CVE-2024-6614 ( SUSE ): 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N * CVE-2024-6615 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2024-7518 ( SUSE ): 7.4 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N * CVE-2024-7518 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N * CVE-2024-7519 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2024-7519 ( NVD ): 9.6 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H * CVE-2024-7520 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2024-7520 ( NVD ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2024-7521 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2024-7521 ( NVD ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2024-7522 ( SUSE ): 7.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:L * CVE-2024-7522 ( NVD ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2024-7524 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2024-7525 ( SUSE ): 7.1 CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H * CVE-2024-7525 ( NVD ): 8.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N * CVE-2024-7526 ( SUSE ): 7.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:L * CVE-2024-7526 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N * CVE-2024-7527 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2024-7527 ( NVD ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2024-7528 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2024-7528 ( NVD ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2024-7529 ( SUSE ): 8.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N * CVE-2024-7529 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N * CVE-2024-7531 ( SUSE ): 4.2 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:L * CVE-2024-7531 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N Affected Products: * Desktop Applications Module 15-SP5 * Desktop Applications Module 15-SP6 * openSUSE Leap 15.5 * openSUSE Leap 15.6 * SUSE Enterprise Storage 7.1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 * SUSE Linux Enterprise Desktop 15 SP5 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise High Performance Computing 15 SP2 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 * SUSE Linux Enterprise High Performance Computing 15 SP3 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Server 15 SP2 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 * SUSE Linux Enterprise Server 15 SP3 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 An update that solves 28 vulnerabilities can now be installed. ## Description: This update for MozillaFirefox fixes the following issues: Update to Firefox Extended Support Release 128.1.0 ESR (MFSA 2024-35, bsc#1228648) \- CVE-2024-7518: Fullscreen notification dialog can be obscured by document \- CVE-2024-7519: Out of bounds memory access in graphics shared memory handling \- CVE-2024-7520: Type confusion in WebAssembly \- CVE-2024-7521: Incomplete WebAssembly exception handing \- CVE-2024-7522: Out of bounds read in editor component \- CVE-2024-7524: CSP strict-dynamic bypass using web- compatibility shims \- CVE-2024-7525: Missing permission check when creating a StreamFilter \- CVE-2024-7526: Uninitialized memory used by WebGL \- CVE-2024-7527: Use-after-free in JavaScript garbage collection \- CVE-2024-7528: Use-after-free in IndexedDB \- CVE-2024-7529: Document content could partially obscure security prompts \- CVE-2024-7531: PK11_Encrypt using CKM_CHACHA20 can reveal plaintext on Intel ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2024-3003=1 * Desktop Applications Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Desktop-Applications-15-SP5-2024-3003=1 * Desktop Applications Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Desktop-Applications-15-SP6-2024-3003=1 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 zypper in -t patch SUSE-SLE-Product-HPC-15-SP2-LTSS-2024-3003=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 zypper in -t patch SUSE-SLE-Product-HPC-15-SP3-LTSS-2024-3003=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2024-3003=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2024-3003=1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 zypper in -t patch SUSE-SLE-Product-SLED-15-SP4-LTSS-2024-3003=1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 zypper in -t patch SUSE-SLE-Product-SLES-15-SP2-LTSS-2024-3003=1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 zypper in -t patch SUSE-SLE-Product-SLES-15-SP3-LTSS-2024-3003=1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2024-3003=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP2-2024-3003=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP3-2024-3003=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2024-3003=1 * SUSE Enterprise Storage 7.1 zypper in -t patch SUSE-Storage-7.1-2024-3003=1 * openSUSE Leap 15.5 zypper in -t patch openSUSE-SLE-15.5-2024-3003=1 ## Package List: * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64) * MozillaFirefox-translations-common-128.1.0-150200.152.146.1 * MozillaFirefox-translations-other-128.1.0-150200.152.146.1 * MozillaFirefox-branding-SLE-128-150200.9.16.1 * MozillaFirefox-branding-upstream-128.1.0-150200.152.146.1 * MozillaFirefox-debugsource-128.1.0-150200.152.146.1 * MozillaFirefox-debuginfo-128.1.0-150200.152.146.1 * MozillaFirefox-128.1.0-150200.152.146.1 * openSUSE Leap 15.6 (noarch) * MozillaFirefox-devel-128.1.0-150200.152.146.1 * Desktop Applications Module 15-SP5 (aarch64 ppc64le s390x x86_64) * MozillaFirefox-translations-common-128.1.0-150200.152.146.1 * MozillaFirefox-translations-other-128.1.0-150200.152.146.1 * MozillaFirefox-branding-SLE-128-150200.9.16.1 * MozillaFirefox-debugsource-128.1.0-150200.152.146.1 * MozillaFirefox-debuginfo-128.1.0-150200.152.146.1 * MozillaFirefox-128.1.0-150200.152.146.1 * Desktop Applications Module 15-SP5 (noarch) * MozillaFirefox-devel-128.1.0-150200.152.146.1 * Desktop Applications Module 15-SP6 (aarch64 ppc64le s390x x86_64) * MozillaFirefox-translations-common-128.1.0-150200.152.146.1 * MozillaFirefox-translations-other-128.1.0-150200.152.146.1 * MozillaFirefox-branding-SLE-128-150200.9.16.1 * MozillaFirefox-debugsource-128.1.0-150200.152.146.1 * MozillaFirefox-debuginfo-128.1.0-150200.152.146.1 * MozillaFirefox-128.1.0-150200.152.146.1 * Desktop Applications Module 15-SP6 (noarch) * MozillaFirefox-devel-128.1.0-150200.152.146.1 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 (aarch64 x86_64) * MozillaFirefox-translations-common-128.1.0-150200.152.146.1 * MozillaFirefox-translations-other-128.1.0-150200.152.146.1 * MozillaFirefox-branding-SLE-128-150200.9.16.1 * MozillaFirefox-debugsource-128.1.0-150200.152.146.1 * MozillaFirefox-debuginfo-128.1.0-150200.152.146.1 * MozillaFirefox-128.1.0-150200.152.146.1 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 (noarch) * MozillaFirefox-devel-128.1.0-150200.152.146.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (aarch64 x86_64) * MozillaFirefox-translations-common-128.1.0-150200.152.146.1 * MozillaFirefox-translations-other-128.1.0-150200.152.146.1 * MozillaFirefox-branding-SLE-128-150200.9.16.1 * MozillaFirefox-debugsource-128.1.0-150200.152.146.1 * MozillaFirefox-debuginfo-128.1.0-150200.152.146.1 * MozillaFirefox-128.1.0-150200.152.146.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (noarch) * MozillaFirefox-devel-128.1.0-150200.152.146.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 x86_64) * MozillaFirefox-translations-common-128.1.0-150200.152.146.1 * MozillaFirefox-translations-other-128.1.0-150200.152.146.1 * MozillaFirefox-branding-SLE-128-150200.9.16.1 * MozillaFirefox-debugsource-128.1.0-150200.152.146.1 * MozillaFirefox-debuginfo-128.1.0-150200.152.146.1 * MozillaFirefox-128.1.0-150200.152.146.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (noarch) * MozillaFirefox-devel-128.1.0-150200.152.146.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 x86_64) * MozillaFirefox-translations-common-128.1.0-150200.152.146.1 * MozillaFirefox-translations-other-128.1.0-150200.152.146.1 * MozillaFirefox-branding-SLE-128-150200.9.16.1 * MozillaFirefox-debugsource-128.1.0-150200.152.146.1 * MozillaFirefox-debuginfo-128.1.0-150200.152.146.1 * MozillaFirefox-128.1.0-150200.152.146.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (noarch) * MozillaFirefox-devel-128.1.0-150200.152.146.1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (x86_64) * MozillaFirefox-translations-common-128.1.0-150200.152.146.1 * MozillaFirefox-translations-other-128.1.0-150200.152.146.1 * MozillaFirefox-branding-SLE-128-150200.9.16.1 * MozillaFirefox-debugsource-128.1.0-150200.152.146.1 * MozillaFirefox-debuginfo-128.1.0-150200.152.146.1 * MozillaFirefox-128.1.0-150200.152.146.1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (noarch) * MozillaFirefox-devel-128.1.0-150200.152.146.1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (aarch64 ppc64le s390x x86_64) * MozillaFirefox-translations-common-128.1.0-150200.152.146.1 * MozillaFirefox-translations-other-128.1.0-150200.152.146.1 * MozillaFirefox-branding-SLE-128-150200.9.16.1 * MozillaFirefox-debugsource-128.1.0-150200.152.146.1 * MozillaFirefox-debuginfo-128.1.0-150200.152.146.1 * MozillaFirefox-128.1.0-150200.152.146.1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (noarch) * MozillaFirefox-devel-128.1.0-150200.152.146.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (aarch64 ppc64le s390x x86_64) * MozillaFirefox-translations-common-128.1.0-150200.152.146.1 * MozillaFirefox-translations-other-128.1.0-150200.152.146.1 * MozillaFirefox-branding-SLE-128-150200.9.16.1 * MozillaFirefox-debugsource-128.1.0-150200.152.146.1 * MozillaFirefox-debuginfo-128.1.0-150200.152.146.1 * MozillaFirefox-128.1.0-150200.152.146.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (noarch) * MozillaFirefox-devel-128.1.0-150200.152.146.1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (aarch64 ppc64le s390x x86_64) * MozillaFirefox-translations-common-128.1.0-150200.152.146.1 * MozillaFirefox-translations-other-128.1.0-150200.152.146.1 * MozillaFirefox-branding-SLE-128-150200.9.16.1 * MozillaFirefox-debugsource-128.1.0-150200.152.146.1 * MozillaFirefox-debuginfo-128.1.0-150200.152.146.1 * MozillaFirefox-128.1.0-150200.152.146.1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (noarch) * MozillaFirefox-devel-128.1.0-150200.152.146.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 (ppc64le x86_64) * MozillaFirefox-translations-common-128.1.0-150200.152.146.1 * MozillaFirefox-translations-other-128.1.0-150200.152.146.1 * MozillaFirefox-branding-SLE-128-150200.9.16.1 * MozillaFirefox-debugsource-128.1.0-150200.152.146.1 * MozillaFirefox-debuginfo-128.1.0-150200.152.146.1 * MozillaFirefox-128.1.0-150200.152.146.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 (noarch) * MozillaFirefox-devel-128.1.0-150200.152.146.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (ppc64le x86_64) * MozillaFirefox-translations-common-128.1.0-150200.152.146.1 * MozillaFirefox-translations-other-128.1.0-150200.152.146.1 * MozillaFirefox-branding-SLE-128-150200.9.16.1 * MozillaFirefox-debugsource-128.1.0-150200.152.146.1 * MozillaFirefox-debuginfo-128.1.0-150200.152.146.1 * MozillaFirefox-128.1.0-150200.152.146.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (noarch) * MozillaFirefox-devel-128.1.0-150200.152.146.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64) * MozillaFirefox-translations-common-128.1.0-150200.152.146.1 * MozillaFirefox-translations-other-128.1.0-150200.152.146.1 * MozillaFirefox-branding-SLE-128-150200.9.16.1 * MozillaFirefox-debugsource-128.1.0-150200.152.146.1 * MozillaFirefox-debuginfo-128.1.0-150200.152.146.1 * MozillaFirefox-128.1.0-150200.152.146.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (noarch) * MozillaFirefox-devel-128.1.0-150200.152.146.1 * SUSE Enterprise Storage 7.1 (aarch64 x86_64) * MozillaFirefox-translations-common-128.1.0-150200.152.146.1 * MozillaFirefox-translations-other-128.1.0-150200.152.146.1 * MozillaFirefox-branding-SLE-128-150200.9.16.1 * MozillaFirefox-debugsource-128.1.0-150200.152.146.1 * MozillaFirefox-debuginfo-128.1.0-150200.152.146.1 * MozillaFirefox-128.1.0-150200.152.146.1 * SUSE Enterprise Storage 7.1 (noarch) * MozillaFirefox-devel-128.1.0-150200.152.146.1 * openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64) * MozillaFirefox-translations-common-128.1.0-150200.152.146.1 * MozillaFirefox-translations-other-128.1.0-150200.152.146.1 * MozillaFirefox-branding-SLE-128-150200.9.16.1 * MozillaFirefox-branding-upstream-128.1.0-150200.152.146.1 * MozillaFirefox-debugsource-128.1.0-150200.152.146.1 * MozillaFirefox-debuginfo-128.1.0-150200.152.146.1 * MozillaFirefox-128.1.0-150200.152.146.1 * openSUSE Leap 15.5 (noarch) * MozillaFirefox-devel-128.1.0-150200.152.146.1 ## References: * https://www.suse.com/security/cve/CVE-2024-6600.html * https://www.suse.com/security/cve/CVE-2024-6601.html * https://www.suse.com/security/cve/CVE-2024-6602.html * https://www.suse.com/security/cve/CVE-2024-6603.html * https://www.suse.com/security/cve/CVE-2024-6604.html * https://www.suse.com/security/cve/CVE-2024-6605.html * https://www.suse.com/security/cve/CVE-2024-6606.html * https://www.suse.com/security/cve/CVE-2024-6607.html * https://www.suse.com/security/cve/CVE-2024-6608.html * https://www.suse.com/security/cve/CVE-2024-6609.html * https://www.suse.com/security/cve/CVE-2024-6610.html * https://www.suse.com/security/cve/CVE-2024-6611.html * https://www.suse.com/security/cve/CVE-2024-6612.html * https://www.suse.com/security/cve/CVE-2024-6613.html * https://www.suse.com/security/cve/CVE-2024-6614.html * https://www.suse.com/security/cve/CVE-2024-6615.html * https://www.suse.com/security/cve/CVE-2024-7518.html * https://www.suse.com/security/cve/CVE-2024-7519.html * https://www.suse.com/security/cve/CVE-2024-7520.html * https://www.suse.com/security/cve/CVE-2024-7521.html * https://www.suse.com/security/cve/CVE-2024-7522.html * https://www.suse.com/security/cve/CVE-2024-7524.html * https://www.suse.com/security/cve/CVE-2024-7525.html * https://www.suse.com/security/cve/CVE-2024-7526.html * https://www.suse.com/security/cve/CVE-2024-7527.html * https://www.suse.com/security/cve/CVE-2024-7528.html * https://www.suse.com/security/cve/CVE-2024-7529.html * https://www.suse.com/security/cve/CVE-2024-7531.html * https://bugzilla.suse.com/show_bug.cgi?id=1226316 * https://bugzilla.suse.com/show_bug.cgi?id=1228648 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Fri Aug 23 12:30:18 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Fri, 23 Aug 2024 12:30:18 -0000 Subject: SUSE-SU-2024:3001-1: important: Security update for xen Message-ID: <172441621857.17359.16337699708231025672@smelt2.prg2.suse.org> # Security update for xen Announcement ID: SUSE-SU-2024:3001-1 Rating: important References: * bsc#1228574 * bsc#1228575 Cross-References: * CVE-2024-31145 * CVE-2024-31146 CVSS scores: * CVE-2024-31145 ( SUSE ): 7.5 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H * CVE-2024-31146 ( SUSE ): 0.0 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:N Affected Products: * openSUSE Leap 15.3 * SUSE Enterprise Storage 7.1 * SUSE Linux Enterprise High Performance Computing 15 SP3 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 * SUSE Linux Enterprise Micro 5.1 * SUSE Linux Enterprise Micro 5.2 * SUSE Linux Enterprise Micro for Rancher 5.2 * SUSE Linux Enterprise Server 15 SP3 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 An update that solves two vulnerabilities can now be installed. ## Description: This update for xen fixes the following issues: * CVE-2024-31145: Fixed error handling in x86 IOMMU identity mapping (XSA-460, bsc#1228574) * CVE-2024-31146: Fixed PCI device pass-through with shared resources (XSA-461, bsc#1228575) ## Special Instructions and Notes: * Please reboot the system after installing this update. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.3 zypper in -t patch SUSE-2024-3001=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 zypper in -t patch SUSE-SLE-Product-HPC-15-SP3-LTSS-2024-3001=1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 zypper in -t patch SUSE-SLE-Product-SLES-15-SP3-LTSS-2024-3001=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP3-2024-3001=1 * SUSE Enterprise Storage 7.1 zypper in -t patch SUSE-Storage-7.1-2024-3001=1 * SUSE Linux Enterprise Micro 5.1 zypper in -t patch SUSE-SUSE-MicroOS-5.1-2024-3001=1 * SUSE Linux Enterprise Micro 5.2 zypper in -t patch SUSE-SUSE-MicroOS-5.2-2024-3001=1 * SUSE Linux Enterprise Micro for Rancher 5.2 zypper in -t patch SUSE-SUSE-MicroOS-5.2-2024-3001=1 ## Package List: * openSUSE Leap 15.3 (aarch64 x86_64 i586) * xen-libs-4.14.6_18-150300.3.78.1 * xen-libs-debuginfo-4.14.6_18-150300.3.78.1 * xen-tools-domU-4.14.6_18-150300.3.78.1 * xen-devel-4.14.6_18-150300.3.78.1 * xen-tools-domU-debuginfo-4.14.6_18-150300.3.78.1 * xen-debugsource-4.14.6_18-150300.3.78.1 * openSUSE Leap 15.3 (x86_64) * xen-libs-32bit-debuginfo-4.14.6_18-150300.3.78.1 * xen-libs-32bit-4.14.6_18-150300.3.78.1 * openSUSE Leap 15.3 (aarch64 x86_64) * xen-4.14.6_18-150300.3.78.1 * xen-tools-debuginfo-4.14.6_18-150300.3.78.1 * xen-tools-4.14.6_18-150300.3.78.1 * xen-doc-html-4.14.6_18-150300.3.78.1 * openSUSE Leap 15.3 (noarch) * xen-tools-xendomains-wait-disk-4.14.6_18-150300.3.78.1 * openSUSE Leap 15.3 (aarch64_ilp32) * xen-libs-64bit-4.14.6_18-150300.3.78.1 * xen-libs-64bit-debuginfo-4.14.6_18-150300.3.78.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (x86_64) * xen-libs-4.14.6_18-150300.3.78.1 * xen-libs-debuginfo-4.14.6_18-150300.3.78.1 * xen-tools-domU-4.14.6_18-150300.3.78.1 * xen-devel-4.14.6_18-150300.3.78.1 * xen-tools-domU-debuginfo-4.14.6_18-150300.3.78.1 * xen-tools-4.14.6_18-150300.3.78.1 * xen-4.14.6_18-150300.3.78.1 * xen-tools-debuginfo-4.14.6_18-150300.3.78.1 * xen-debugsource-4.14.6_18-150300.3.78.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (noarch) * xen-tools-xendomains-wait-disk-4.14.6_18-150300.3.78.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (x86_64) * xen-libs-4.14.6_18-150300.3.78.1 * xen-libs-debuginfo-4.14.6_18-150300.3.78.1 * xen-tools-domU-4.14.6_18-150300.3.78.1 * xen-devel-4.14.6_18-150300.3.78.1 * xen-tools-domU-debuginfo-4.14.6_18-150300.3.78.1 * xen-tools-4.14.6_18-150300.3.78.1 * xen-4.14.6_18-150300.3.78.1 * xen-tools-debuginfo-4.14.6_18-150300.3.78.1 * xen-debugsource-4.14.6_18-150300.3.78.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (noarch) * xen-tools-xendomains-wait-disk-4.14.6_18-150300.3.78.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (x86_64) * xen-libs-4.14.6_18-150300.3.78.1 * xen-libs-debuginfo-4.14.6_18-150300.3.78.1 * xen-tools-domU-4.14.6_18-150300.3.78.1 * xen-devel-4.14.6_18-150300.3.78.1 * xen-tools-domU-debuginfo-4.14.6_18-150300.3.78.1 * xen-tools-4.14.6_18-150300.3.78.1 * xen-4.14.6_18-150300.3.78.1 * xen-tools-debuginfo-4.14.6_18-150300.3.78.1 * xen-debugsource-4.14.6_18-150300.3.78.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (noarch) * xen-tools-xendomains-wait-disk-4.14.6_18-150300.3.78.1 * SUSE Enterprise Storage 7.1 (x86_64) * xen-libs-4.14.6_18-150300.3.78.1 * xen-libs-debuginfo-4.14.6_18-150300.3.78.1 * xen-tools-domU-4.14.6_18-150300.3.78.1 * xen-devel-4.14.6_18-150300.3.78.1 * xen-tools-domU-debuginfo-4.14.6_18-150300.3.78.1 * xen-tools-4.14.6_18-150300.3.78.1 * xen-4.14.6_18-150300.3.78.1 * xen-tools-debuginfo-4.14.6_18-150300.3.78.1 * xen-debugsource-4.14.6_18-150300.3.78.1 * SUSE Enterprise Storage 7.1 (noarch) * xen-tools-xendomains-wait-disk-4.14.6_18-150300.3.78.1 * SUSE Linux Enterprise Micro 5.1 (x86_64) * xen-libs-4.14.6_18-150300.3.78.1 * xen-libs-debuginfo-4.14.6_18-150300.3.78.1 * xen-debugsource-4.14.6_18-150300.3.78.1 * SUSE Linux Enterprise Micro 5.2 (x86_64) * xen-libs-4.14.6_18-150300.3.78.1 * xen-libs-debuginfo-4.14.6_18-150300.3.78.1 * xen-debugsource-4.14.6_18-150300.3.78.1 * SUSE Linux Enterprise Micro for Rancher 5.2 (x86_64) * xen-libs-4.14.6_18-150300.3.78.1 * xen-libs-debuginfo-4.14.6_18-150300.3.78.1 * xen-debugsource-4.14.6_18-150300.3.78.1 ## References: * https://www.suse.com/security/cve/CVE-2024-31145.html * https://www.suse.com/security/cve/CVE-2024-31146.html * https://bugzilla.suse.com/show_bug.cgi?id=1228574 * https://bugzilla.suse.com/show_bug.cgi?id=1228575 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Fri Aug 23 16:30:06 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Fri, 23 Aug 2024 16:30:06 -0000 Subject: SUSE-SU-2024:3007-1: moderate: Security update for libofx Message-ID: <172443060626.18977.6049042224244540617@smelt2.prg2.suse.org> # Security update for libofx Announcement ID: SUSE-SU-2024:3007-1 Rating: moderate References: * bsc#1129596 Cross-References: * CVE-2019-9656 CVSS scores: * CVE-2019-9656 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2019-9656 ( SUSE ): 5.3 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2019-9656 ( NVD ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2019-9656 ( NVD ): 8.8 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Affected Products: * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 * SUSE Linux Enterprise Software Development Kit 12 SP5 * SUSE Linux Enterprise Workstation Extension 12 12-SP5 An update that solves one vulnerability can now be installed. ## Description: This update for libofx fixes the following issues: * CVE-2019-9656: Fixed null pointer dereference in function OFXApplication:startElement in lib/ofx_sgml.cpp (bsc#1129596) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Software Development Kit 12 SP5 zypper in -t patch SUSE-SLE-SDK-12-SP5-2024-3007=1 * SUSE Linux Enterprise Workstation Extension 12 12-SP5 zypper in -t patch SUSE-SLE-WE-12-SP5-2024-3007=1 ## Package List: * SUSE Linux Enterprise Software Development Kit 12 SP5 (aarch64 ppc64le s390x x86_64) * libofx-debuginfo-0.9.9-3.10.1 * libofx-debugsource-0.9.9-3.10.1 * libofx-devel-0.9.9-3.10.1 * libofx-0.9.9-3.10.1 * SUSE Linux Enterprise Workstation Extension 12 12-SP5 (x86_64) * libofx-debuginfo-0.9.9-3.10.1 * libofx-debugsource-0.9.9-3.10.1 * libofx6-debuginfo-0.9.9-3.10.1 * libofx-0.9.9-3.10.1 * libofx6-0.9.9-3.10.1 ## References: * https://www.suse.com/security/cve/CVE-2019-9656.html * https://bugzilla.suse.com/show_bug.cgi?id=1129596 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Fri Aug 23 16:30:09 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Fri, 23 Aug 2024 16:30:09 -0000 Subject: SUSE-SU-2024:3006-1: moderate: Security update for fetchmail Message-ID: <172443060926.18977.7623986888471662464@smelt2.prg2.suse.org> # Security update for fetchmail Announcement ID: SUSE-SU-2024:3006-1 Rating: moderate References: * bsc#1224188 Cross-References: * CVE-2021-36386 CVSS scores: * CVE-2021-36386 ( SUSE ): 5.1 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L * CVE-2021-36386 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 An update that solves one vulnerability can now be installed. ## Description: This update for fetchmail fixes the following issues: * Fixed regression in patch for CVE-2021-36386 (bsc#1224188) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise High Performance Computing 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-3006=1 * SUSE Linux Enterprise Server 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-3006=1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-3006=1 ## Package List: * SUSE Linux Enterprise High Performance Computing 12 SP5 (aarch64 x86_64) * fetchmail-debugsource-6.3.26-13.18.1 * fetchmail-debuginfo-6.3.26-13.18.1 * fetchmailconf-6.3.26-13.18.1 * fetchmail-6.3.26-13.18.1 * SUSE Linux Enterprise Server 12 SP5 (aarch64 ppc64le s390x x86_64) * fetchmail-debugsource-6.3.26-13.18.1 * fetchmail-debuginfo-6.3.26-13.18.1 * fetchmailconf-6.3.26-13.18.1 * fetchmail-6.3.26-13.18.1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 (ppc64le x86_64) * fetchmail-debugsource-6.3.26-13.18.1 * fetchmail-debuginfo-6.3.26-13.18.1 * fetchmailconf-6.3.26-13.18.1 * fetchmail-6.3.26-13.18.1 ## References: * https://www.suse.com/security/cve/CVE-2021-36386.html * https://bugzilla.suse.com/show_bug.cgi?id=1224188 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Aug 26 12:30:11 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Mon, 26 Aug 2024 12:30:11 -0000 Subject: SUSE-SU-2024:3010-1: important: Security update for xen Message-ID: <172467541166.18977.1427684483366957409@smelt2.prg2.suse.org> # Security update for xen Announcement ID: SUSE-SU-2024:3010-1 Rating: important References: * bsc#1027519 * bsc#1227355 * bsc#1228574 * bsc#1228575 Cross-References: * CVE-2024-31145 * CVE-2024-31146 CVSS scores: * CVE-2024-31145 ( SUSE ): 7.5 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H * CVE-2024-31146 ( SUSE ): 0.0 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:N Affected Products: * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 * SUSE Linux Enterprise Software Development Kit 12 SP5 An update that solves two vulnerabilities and has two security fixes can now be installed. ## Description: This update for xen fixes the following issues: * CVE-2024-31145: Fixed error handling in x86 IOMMU identity mapping (XSA-460, bsc#1228574) * CVE-2024-31146: Fixed PCI device pass-through with shared resources (XSA-461, bsc#1228575) Other fixes: \- Migrate CVE-2024-31143 patch in favor of upstream version (bsc#1227355) \- Upstream bug fixes (bsc#1027519) ## Special Instructions and Notes: * Please reboot the system after installing this update. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Software Development Kit 12 SP5 zypper in -t patch SUSE-SLE-SDK-12-SP5-2024-3010=1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-3010=1 * SUSE Linux Enterprise High Performance Computing 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-3010=1 * SUSE Linux Enterprise Server 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-3010=1 ## Package List: * SUSE Linux Enterprise Software Development Kit 12 SP5 (aarch64 x86_64) * xen-devel-4.12.4_52-3.115.1 * xen-debugsource-4.12.4_52-3.115.1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 (x86_64) * xen-libs-32bit-4.12.4_52-3.115.1 * xen-doc-html-4.12.4_52-3.115.1 * xen-libs-debuginfo-32bit-4.12.4_52-3.115.1 * xen-debugsource-4.12.4_52-3.115.1 * xen-tools-4.12.4_52-3.115.1 * xen-libs-debuginfo-4.12.4_52-3.115.1 * xen-4.12.4_52-3.115.1 * xen-tools-debuginfo-4.12.4_52-3.115.1 * xen-tools-domU-debuginfo-4.12.4_52-3.115.1 * xen-libs-4.12.4_52-3.115.1 * xen-tools-domU-4.12.4_52-3.115.1 * SUSE Linux Enterprise High Performance Computing 12 SP5 (x86_64) * xen-libs-32bit-4.12.4_52-3.115.1 * xen-doc-html-4.12.4_52-3.115.1 * xen-libs-debuginfo-32bit-4.12.4_52-3.115.1 * xen-debugsource-4.12.4_52-3.115.1 * xen-tools-4.12.4_52-3.115.1 * xen-libs-debuginfo-4.12.4_52-3.115.1 * xen-4.12.4_52-3.115.1 * xen-tools-debuginfo-4.12.4_52-3.115.1 * xen-tools-domU-debuginfo-4.12.4_52-3.115.1 * xen-libs-4.12.4_52-3.115.1 * xen-tools-domU-4.12.4_52-3.115.1 * SUSE Linux Enterprise Server 12 SP5 (x86_64) * xen-libs-32bit-4.12.4_52-3.115.1 * xen-doc-html-4.12.4_52-3.115.1 * xen-libs-debuginfo-32bit-4.12.4_52-3.115.1 * xen-debugsource-4.12.4_52-3.115.1 * xen-tools-4.12.4_52-3.115.1 * xen-libs-debuginfo-4.12.4_52-3.115.1 * xen-4.12.4_52-3.115.1 * xen-tools-debuginfo-4.12.4_52-3.115.1 * xen-tools-domU-debuginfo-4.12.4_52-3.115.1 * xen-libs-4.12.4_52-3.115.1 * xen-tools-domU-4.12.4_52-3.115.1 ## References: * https://www.suse.com/security/cve/CVE-2024-31145.html * https://www.suse.com/security/cve/CVE-2024-31146.html * https://bugzilla.suse.com/show_bug.cgi?id=1027519 * https://bugzilla.suse.com/show_bug.cgi?id=1227355 * https://bugzilla.suse.com/show_bug.cgi?id=1228574 * https://bugzilla.suse.com/show_bug.cgi?id=1228575 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Aug 27 08:30:17 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Tue, 27 Aug 2024 08:30:17 -0000 Subject: SUSE-SU-2024:3015-1: important: Security update for the Linux Kernel (Live Patch 56 for SLE 12 SP5) Message-ID: <172474741789.18977.6288046361712510312@smelt2.prg2.suse.org> # Security update for the Linux Kernel (Live Patch 56 for SLE 12 SP5) Announcement ID: SUSE-SU-2024:3015-1 Rating: important References: * bsc#1210619 * bsc#1220537 * bsc#1223363 * bsc#1223683 * bsc#1225013 * bsc#1225202 * bsc#1225211 * bsc#1225310 Cross-References: * CVE-2021-46955 * CVE-2021-47378 * CVE-2021-47383 * CVE-2023-1829 * CVE-2024-26828 * CVE-2024-26923 * CVE-2024-27398 * CVE-2024-35950 CVSS scores: * CVE-2021-46955 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2021-47378 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2021-47383 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-1829 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-1829 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26828 ( SUSE ): 7.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:H * CVE-2024-26923 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-27398 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35950 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise Live Patching 12-SP5 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 An update that solves eight vulnerabilities can now be installed. ## Description: This update for the Linux Kernel 4.12.14-122_216 fixes several issues. The following security issues were fixed: * CVE-2021-47378: Fixed use-after-free by destroying cm id before destroying qp (bsc#1225202). * CVE-2024-27398: Fixed use-after-free bugs caused by sco_sock_timeout (bsc#1225013). * CVE-2024-35950: drm/client: Fully protect modes with dev->mode_config.mutex (bsc#1225310). * CVE-2021-47383: Fixed out-of-bound vmalloc access in imageblit (bsc#1225211). * CVE-2024-26923: Fixed false-positive lockdep splat for spin_lock() in __unix_gc() (bsc#1223683). * CVE-2024-26828: Fixed underflow in parse_server_interfaces() (bsc#1223363). * CVE-2021-46955: Fixed an out-of-bounds read with openvswitch, when fragmenting IPv4 packets (bsc#1220537). * CVE-2023-1829: Fixed a use-after-free vulnerability in the control index filter (tcindex) (bsc#1210619). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Live Patching 12-SP5 zypper in -t patch SUSE-SLE-Live-Patching-12-SP5-2024-3015=1 ## Package List: * SUSE Linux Enterprise Live Patching 12-SP5 (ppc64le s390x x86_64) * kgraft-patch-4_12_14-122_216-default-5-8.6.1 ## References: * https://www.suse.com/security/cve/CVE-2021-46955.html * https://www.suse.com/security/cve/CVE-2021-47378.html * https://www.suse.com/security/cve/CVE-2021-47383.html * https://www.suse.com/security/cve/CVE-2023-1829.html * https://www.suse.com/security/cve/CVE-2024-26828.html * https://www.suse.com/security/cve/CVE-2024-26923.html * https://www.suse.com/security/cve/CVE-2024-27398.html * https://www.suse.com/security/cve/CVE-2024-35950.html * https://bugzilla.suse.com/show_bug.cgi?id=1210619 * https://bugzilla.suse.com/show_bug.cgi?id=1220537 * https://bugzilla.suse.com/show_bug.cgi?id=1223363 * https://bugzilla.suse.com/show_bug.cgi?id=1223683 * https://bugzilla.suse.com/show_bug.cgi?id=1225013 * https://bugzilla.suse.com/show_bug.cgi?id=1225202 * https://bugzilla.suse.com/show_bug.cgi?id=1225211 * https://bugzilla.suse.com/show_bug.cgi?id=1225310 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Aug 27 08:30:20 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Tue, 27 Aug 2024 08:30:20 -0000 Subject: SUSE-SU-2024:3014-1: important: Security update for the Linux Kernel (Live Patch 49 for SLE 12 SP5) Message-ID: <172474742014.18977.3162326213866986344@smelt2.prg2.suse.org> # Security update for the Linux Kernel (Live Patch 49 for SLE 12 SP5) Announcement ID: SUSE-SU-2024:3014-1 Rating: important References: * bsc#1225202 Cross-References: * CVE-2021-47378 CVSS scores: * CVE-2021-47378 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise Live Patching 12-SP5 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 An update that solves one vulnerability can now be installed. ## Description: This update for the Linux Kernel 4.12.14-122_179 fixes one issue. The following security issue was fixed: * CVE-2021-47378: Fixed use-after-free by destroying cm id before destroying qp (bsc#1225202). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Live Patching 12-SP5 zypper in -t patch SUSE-SLE-Live-Patching-12-SP5-2024-3014=1 ## Package List: * SUSE Linux Enterprise Live Patching 12-SP5 (ppc64le s390x x86_64) * kgraft-patch-4_12_14-122_179-default-12-2.1 ## References: * https://www.suse.com/security/cve/CVE-2021-47378.html * https://bugzilla.suse.com/show_bug.cgi?id=1225202 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Aug 27 08:30:22 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Tue, 27 Aug 2024 08:30:22 -0000 Subject: SUSE-SU-2024:3018-1: moderate: Security update for mariadb Message-ID: <172474742226.18977.4743801449787986702@smelt2.prg2.suse.org> # Security update for mariadb Announcement ID: SUSE-SU-2024:3018-1 Rating: moderate References: * bsc#1225983 Cross-References: * CVE-2024-21096 CVSS scores: * CVE-2024-21096 ( SUSE ): 5.9 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L Affected Products: * Galera for Ericsson 15 SP3 * openSUSE Leap 15.3 * SUSE Enterprise Storage 7.1 * SUSE Linux Enterprise High Performance Computing 15 SP3 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 * SUSE Linux Enterprise Server 15 SP3 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 An update that solves one vulnerability can now be installed. ## Description: This update for mariadb fixes the following issues: * Updated to 10.5.26 * Updated to 10.5.25: * CVE-2024-21096: Fixed a vulnerability that would allow unauthenticated attacker with logon to the infrastructure where MySQL Server executes to compromise MySQL Server. (bsc#1225983) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.3 zypper in -t patch SUSE-2024-3018=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 zypper in -t patch SUSE-SLE-Product-HPC-15-SP3-LTSS-2024-3018=1 * Galera for Ericsson 15 SP3 zypper in -t patch SUSE-SLE-Product-SLES-15-SP3-ERICSSON-2024-3018=1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 zypper in -t patch SUSE-SLE-Product-SLES-15-SP3-LTSS-2024-3018=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP3-2024-3018=1 * SUSE Enterprise Storage 7.1 zypper in -t patch SUSE-Storage-7.1-2024-3018=1 ## Package List: * openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64 i586) * mariadb-test-10.5.26-150300.3.46.1 * libmariadbd19-debuginfo-10.5.26-150300.3.46.1 * mariadb-debugsource-10.5.26-150300.3.46.1 * mariadb-tools-debuginfo-10.5.26-150300.3.46.1 * mariadb-debuginfo-10.5.26-150300.3.46.1 * mariadb-test-debuginfo-10.5.26-150300.3.46.1 * mariadb-rpm-macros-10.5.26-150300.3.46.1 * mariadb-tools-10.5.26-150300.3.46.1 * mariadb-client-10.5.26-150300.3.46.1 * mariadb-bench-10.5.26-150300.3.46.1 * libmariadbd19-10.5.26-150300.3.46.1 * mariadb-bench-debuginfo-10.5.26-150300.3.46.1 * libmariadbd-devel-10.5.26-150300.3.46.1 * mariadb-10.5.26-150300.3.46.1 * mariadb-client-debuginfo-10.5.26-150300.3.46.1 * mariadb-galera-10.5.26-150300.3.46.1 * openSUSE Leap 15.3 (noarch) * mariadb-errormessages-10.5.26-150300.3.46.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (aarch64 x86_64) * libmariadbd19-debuginfo-10.5.26-150300.3.46.1 * mariadb-debugsource-10.5.26-150300.3.46.1 * mariadb-tools-debuginfo-10.5.26-150300.3.46.1 * mariadb-debuginfo-10.5.26-150300.3.46.1 * mariadb-tools-10.5.26-150300.3.46.1 * mariadb-client-10.5.26-150300.3.46.1 * libmariadbd19-10.5.26-150300.3.46.1 * libmariadbd-devel-10.5.26-150300.3.46.1 * mariadb-10.5.26-150300.3.46.1 * mariadb-client-debuginfo-10.5.26-150300.3.46.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (noarch) * mariadb-errormessages-10.5.26-150300.3.46.1 * Galera for Ericsson 15 SP3 (x86_64) * mariadb-galera-10.5.26-150300.3.46.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (aarch64 ppc64le s390x x86_64) * libmariadbd19-debuginfo-10.5.26-150300.3.46.1 * mariadb-debugsource-10.5.26-150300.3.46.1 * mariadb-tools-debuginfo-10.5.26-150300.3.46.1 * mariadb-debuginfo-10.5.26-150300.3.46.1 * mariadb-tools-10.5.26-150300.3.46.1 * mariadb-client-10.5.26-150300.3.46.1 * libmariadbd19-10.5.26-150300.3.46.1 * libmariadbd-devel-10.5.26-150300.3.46.1 * mariadb-10.5.26-150300.3.46.1 * mariadb-client-debuginfo-10.5.26-150300.3.46.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (noarch) * mariadb-errormessages-10.5.26-150300.3.46.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (ppc64le x86_64) * libmariadbd19-debuginfo-10.5.26-150300.3.46.1 * mariadb-debugsource-10.5.26-150300.3.46.1 * mariadb-tools-debuginfo-10.5.26-150300.3.46.1 * mariadb-debuginfo-10.5.26-150300.3.46.1 * mariadb-tools-10.5.26-150300.3.46.1 * mariadb-client-10.5.26-150300.3.46.1 * libmariadbd19-10.5.26-150300.3.46.1 * libmariadbd-devel-10.5.26-150300.3.46.1 * mariadb-10.5.26-150300.3.46.1 * mariadb-client-debuginfo-10.5.26-150300.3.46.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (noarch) * mariadb-errormessages-10.5.26-150300.3.46.1 * SUSE Enterprise Storage 7.1 (aarch64 x86_64) * libmariadbd19-debuginfo-10.5.26-150300.3.46.1 * mariadb-debugsource-10.5.26-150300.3.46.1 * mariadb-tools-debuginfo-10.5.26-150300.3.46.1 * mariadb-debuginfo-10.5.26-150300.3.46.1 * mariadb-tools-10.5.26-150300.3.46.1 * mariadb-client-10.5.26-150300.3.46.1 * libmariadbd19-10.5.26-150300.3.46.1 * libmariadbd-devel-10.5.26-150300.3.46.1 * mariadb-10.5.26-150300.3.46.1 * mariadb-client-debuginfo-10.5.26-150300.3.46.1 * SUSE Enterprise Storage 7.1 (noarch) * mariadb-errormessages-10.5.26-150300.3.46.1 ## References: * https://www.suse.com/security/cve/CVE-2024-21096.html * https://bugzilla.suse.com/show_bug.cgi?id=1225983 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Aug 27 12:30:07 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Tue, 27 Aug 2024 12:30:07 -0000 Subject: SUSE-SU-2024:3023-1: important: Security update for the Linux Kernel (Live Patch 42 for SLE 15 SP2) Message-ID: <172476180773.17623.5851096586849118461@smelt2.prg2.suse.org> # Security update for the Linux Kernel (Live Patch 42 for SLE 15 SP2) Announcement ID: SUSE-SU-2024:3023-1 Rating: important References: * bsc#1225202 * bsc#1225302 Cross-References: * CVE-2021-47378 * CVE-2021-47402 CVSS scores: * CVE-2021-47378 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2021-47402 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * SUSE Linux Enterprise High Performance Computing 15 SP2 * SUSE Linux Enterprise Live Patching 15-SP2 * SUSE Linux Enterprise Server 15 SP2 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 An update that solves two vulnerabilities can now be installed. ## Description: This update for the Linux Kernel 5.3.18-150200_24_169 fixes several issues. The following security issues were fixed: * CVE-2021-47402: Fixed use-after-free in fl_walk() (bsc#1225301) * CVE-2021-47378: Fixed use-after-free by destroying cm id before destroying qp (bsc#1225202). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Live Patching 15-SP2 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP2-2024-3023=1 SUSE-SLE- Module-Live-Patching-15-SP2-2024-3024=1 ## Package List: * SUSE Linux Enterprise Live Patching 15-SP2 (ppc64le s390x x86_64) * kernel-livepatch-SLE15-SP2_Update_41-debugsource-13-150200.2.1 * kernel-livepatch-5_3_18-150200_24_169-default-debuginfo-13-150200.2.1 * kernel-livepatch-SLE15-SP2_Update_42-debugsource-13-150200.2.1 * kernel-livepatch-5_3_18-150200_24_166-default-13-150200.2.1 * kernel-livepatch-5_3_18-150200_24_169-default-13-150200.2.1 * kernel-livepatch-5_3_18-150200_24_166-default-debuginfo-13-150200.2.1 ## References: * https://www.suse.com/security/cve/CVE-2021-47378.html * https://www.suse.com/security/cve/CVE-2021-47402.html * https://bugzilla.suse.com/show_bug.cgi?id=1225202 * https://bugzilla.suse.com/show_bug.cgi?id=1225302 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Aug 27 12:30:10 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Tue, 27 Aug 2024 12:30:10 -0000 Subject: SUSE-SU-2024:3021-1: important: Security update for the Linux Kernel (Live Patch 50 for SLE 12 SP5) Message-ID: <172476181099.17623.14393626906387933956@smelt2.prg2.suse.org> # Security update for the Linux Kernel (Live Patch 50 for SLE 12 SP5) Announcement ID: SUSE-SU-2024:3021-1 Rating: important References: * bsc#1225202 Cross-References: * CVE-2021-47378 CVSS scores: * CVE-2021-47378 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise Live Patching 12-SP5 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 An update that solves one vulnerability can now be installed. ## Description: This update for the Linux Kernel 4.12.14-122_183 fixes one issue. The following security issue was fixed: * CVE-2021-47378: Fixed use-after-free by destroying cm id before destroying qp (bsc#1225202). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Live Patching 12-SP5 zypper in -t patch SUSE-SLE-Live-Patching-12-SP5-2024-3021=1 SUSE-SLE-Live- Patching-12-SP5-2024-3022=1 ## Package List: * SUSE Linux Enterprise Live Patching 12-SP5 (ppc64le s390x x86_64) * kgraft-patch-4_12_14-122_183-default-12-2.1 * kgraft-patch-4_12_14-122_176-default-13-2.1 ## References: * https://www.suse.com/security/cve/CVE-2021-47378.html * https://bugzilla.suse.com/show_bug.cgi?id=1225202 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Aug 27 12:30:27 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Tue, 27 Aug 2024 12:30:27 -0000 Subject: SUSE-SU-2024:3019-1: moderate: Security update for openssl-3 Message-ID: <172476182717.17623.4058669596027483260@smelt2.prg2.suse.org> # Security update for openssl-3 Announcement ID: SUSE-SU-2024:3019-1 Rating: moderate References: * bsc#1226463 * bsc#1227138 Cross-References: * CVE-2024-5535 CVSS scores: * CVE-2024-5535 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * Basesystem Module 15-SP5 * openSUSE Leap 15.5 * SUSE Linux Enterprise Desktop 15 SP5 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 An update that solves one vulnerability and has one security fix can now be installed. ## Description: This update for openssl-3 fixes the following issues: * CVE-2024-5535: Fixed a buffer overread in function SSL_select_next_proto() with an empty supported client protocols buffer (bsc#1227138) Other fixes: \- Build with no-afalgeng (bsc#1226463) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.5 zypper in -t patch SUSE-2024-3019=1 openSUSE-SLE-15.5-2024-3019=1 * Basesystem Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP5-2024-3019=1 ## Package List: * openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64 i586) * libopenssl3-debuginfo-3.0.8-150500.5.39.1 * openssl-3-debugsource-3.0.8-150500.5.39.1 * openssl-3-3.0.8-150500.5.39.1 * libopenssl-3-devel-3.0.8-150500.5.39.1 * libopenssl3-3.0.8-150500.5.39.1 * openssl-3-debuginfo-3.0.8-150500.5.39.1 * openSUSE Leap 15.5 (x86_64) * libopenssl3-32bit-3.0.8-150500.5.39.1 * libopenssl-3-devel-32bit-3.0.8-150500.5.39.1 * libopenssl3-32bit-debuginfo-3.0.8-150500.5.39.1 * openSUSE Leap 15.5 (noarch) * openssl-3-doc-3.0.8-150500.5.39.1 * openSUSE Leap 15.5 (aarch64_ilp32) * libopenssl3-64bit-3.0.8-150500.5.39.1 * libopenssl3-64bit-debuginfo-3.0.8-150500.5.39.1 * libopenssl-3-devel-64bit-3.0.8-150500.5.39.1 * Basesystem Module 15-SP5 (aarch64 ppc64le s390x x86_64) * libopenssl3-debuginfo-3.0.8-150500.5.39.1 * openssl-3-debugsource-3.0.8-150500.5.39.1 * openssl-3-3.0.8-150500.5.39.1 * libopenssl-3-devel-3.0.8-150500.5.39.1 * libopenssl3-3.0.8-150500.5.39.1 * openssl-3-debuginfo-3.0.8-150500.5.39.1 ## References: * https://www.suse.com/security/cve/CVE-2024-5535.html * https://bugzilla.suse.com/show_bug.cgi?id=1226463 * https://bugzilla.suse.com/show_bug.cgi?id=1227138 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Aug 27 16:30:15 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Tue, 27 Aug 2024 16:30:15 -0000 Subject: SUSE-SU-2024:3034-1: important: Security update for the Linux Kernel (Live Patch 42 for SLE 15 SP3) Message-ID: <172477621503.20717.6560185557558218470@smelt2.prg2.suse.org> # Security update for the Linux Kernel (Live Patch 42 for SLE 15 SP3) Announcement ID: SUSE-SU-2024:3034-1 Rating: important References: * bsc#1210619 * bsc#1218487 * bsc#1220145 * bsc#1220537 * bsc#1221302 * bsc#1222685 * bsc#1223059 * bsc#1223363 * bsc#1223514 * bsc#1223683 * bsc#1225013 * bsc#1225202 * bsc#1225211 * bsc#1225302 * bsc#1225310 Cross-References: * CVE-2021-46955 * CVE-2021-47378 * CVE-2021-47383 * CVE-2021-47402 * CVE-2022-48651 * CVE-2023-1829 * CVE-2023-6531 * CVE-2023-6546 * CVE-2024-23307 * CVE-2024-26610 * CVE-2024-26828 * CVE-2024-26852 * CVE-2024-26923 * CVE-2024-27398 * CVE-2024-35950 CVSS scores: * CVE-2021-46955 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2021-47378 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2021-47383 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2021-47402 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48651 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-1829 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-1829 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-6531 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-6531 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-6546 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-6546 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-23307 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-23307 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26610 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2024-26828 ( SUSE ): 7.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:H * CVE-2024-26852 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26923 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-27398 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35950 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.3 * SUSE Linux Enterprise High Performance Computing 15 SP3 * SUSE Linux Enterprise Live Patching 15-SP3 * SUSE Linux Enterprise Micro 5.1 * SUSE Linux Enterprise Micro 5.2 * SUSE Linux Enterprise Server 15 SP3 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 An update that solves 15 vulnerabilities can now be installed. ## Description: This update for the Linux Kernel 5.3.18-150300_59_153 fixes several issues. The following security issues were fixed: * CVE-2021-47402: Fixed use-after-free in fl_walk() (bsc#1225301) * CVE-2021-47378: Fixed use-after-free by destroying cm id before destroying qp (bsc#1225202). * CVE-2024-27398: Fixed use-after-free bugs caused by sco_sock_timeout (bsc#1225013). * CVE-2024-35950: drm/client: Fully protect modes with dev->mode_config.mutex (bsc#1225310). * CVE-2021-47383: Fixed out-of-bound vmalloc access in imageblit (bsc#1225211). * CVE-2024-26923: Fixed false-positive lockdep splat for spin_lock() in __unix_gc() (bsc#1223683). * CVE-2024-26828: Fixed underflow in parse_server_interfaces() (bsc#1223363). * CVE-2021-46955: Fixed an out-of-bounds read with openvswitch, when fragmenting IPv4 packets (bsc#1220537). * CVE-2024-23307: Fixed Integer Overflow or Wraparound vulnerability in x86 and ARM md, raid, raid5 modules (bsc#1220145). * CVE-2024-26852: Fixed use-after-free in ip6_route_mpath_notify() (bsc#1223059). * CVE-2024-26610: Fixed memory corruption in wifi/iwlwifi (bsc#1221302). * CVE-2022-48651: Fixed an out-of-bound bug in ipvlan caused by unset skb->mac_header (bsc#1223514). * CVE-2023-6546: Fixed a race condition in the GSM 0710 tty multiplexor via the GSMIOC_SETCONF ioctl that could lead to local privilege escalation (bsc#1222685). * CVE-2023-6531: Fixed a use-after-free flaw due to a race problem in the unix garbage collector's deletion of SKB races with unix_stream_read_generic()on the socket that the SKB is queued on (bsc#1218487). * CVE-2023-1829: Fixed a use-after-free vulnerability in the control index filter (tcindex) (bsc#1210619). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.3 zypper in -t patch SUSE-2024-3034=1 * SUSE Linux Enterprise Live Patching 15-SP3 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP3-2024-3034=1 ## Package List: * openSUSE Leap 15.3 (ppc64le s390x x86_64) * kernel-livepatch-5_3_18-150300_59_153-default-debuginfo-7-150300.7.6.1 * kernel-livepatch-5_3_18-150300_59_153-default-7-150300.7.6.1 * kernel-livepatch-SLE15-SP3_Update_42-debugsource-7-150300.7.6.1 * openSUSE Leap 15.3 (x86_64) * kernel-livepatch-5_3_18-150300_59_153-preempt-7-150300.7.6.1 * kernel-livepatch-5_3_18-150300_59_153-preempt-debuginfo-7-150300.7.6.1 * SUSE Linux Enterprise Live Patching 15-SP3 (ppc64le s390x x86_64) * kernel-livepatch-5_3_18-150300_59_153-default-7-150300.7.6.1 ## References: * https://www.suse.com/security/cve/CVE-2021-46955.html * https://www.suse.com/security/cve/CVE-2021-47378.html * https://www.suse.com/security/cve/CVE-2021-47383.html * https://www.suse.com/security/cve/CVE-2021-47402.html * https://www.suse.com/security/cve/CVE-2022-48651.html * https://www.suse.com/security/cve/CVE-2023-1829.html * https://www.suse.com/security/cve/CVE-2023-6531.html * https://www.suse.com/security/cve/CVE-2023-6546.html * https://www.suse.com/security/cve/CVE-2024-23307.html * https://www.suse.com/security/cve/CVE-2024-26610.html * https://www.suse.com/security/cve/CVE-2024-26828.html * https://www.suse.com/security/cve/CVE-2024-26852.html * https://www.suse.com/security/cve/CVE-2024-26923.html * https://www.suse.com/security/cve/CVE-2024-27398.html * https://www.suse.com/security/cve/CVE-2024-35950.html * https://bugzilla.suse.com/show_bug.cgi?id=1210619 * https://bugzilla.suse.com/show_bug.cgi?id=1218487 * https://bugzilla.suse.com/show_bug.cgi?id=1220145 * https://bugzilla.suse.com/show_bug.cgi?id=1220537 * https://bugzilla.suse.com/show_bug.cgi?id=1221302 * https://bugzilla.suse.com/show_bug.cgi?id=1222685 * https://bugzilla.suse.com/show_bug.cgi?id=1223059 * https://bugzilla.suse.com/show_bug.cgi?id=1223363 * https://bugzilla.suse.com/show_bug.cgi?id=1223514 * https://bugzilla.suse.com/show_bug.cgi?id=1223683 * https://bugzilla.suse.com/show_bug.cgi?id=1225013 * https://bugzilla.suse.com/show_bug.cgi?id=1225202 * https://bugzilla.suse.com/show_bug.cgi?id=1225211 * https://bugzilla.suse.com/show_bug.cgi?id=1225302 * https://bugzilla.suse.com/show_bug.cgi?id=1225310 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Aug 27 16:30:17 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Tue, 27 Aug 2024 16:30:17 -0000 Subject: SUSE-SU-2024:3032-1: important: Security update for the Linux Kernel (Live Patch 0 for SLE 15 SP6) Message-ID: <172477621798.20717.14342910688053441994@smelt2.prg2.suse.org> # Security update for the Linux Kernel (Live Patch 0 for SLE 15 SP6) Announcement ID: SUSE-SU-2024:3032-1 Rating: important References: * bsc#1224991 * bsc#1225850 Cross-References: * CVE-2023-52772 * CVE-2024-36921 CVSS scores: * CVE-2023-52772 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-52772 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-36921 ( SUSE ): 8.0 CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.6 * SUSE Linux Enterprise Live Patching 15-SP6 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 An update that solves two vulnerabilities can now be installed. ## Description: This update for the Linux Kernel 6.4.0-150600_21 fixes several issues. The following security issues were fixed: * CVE-2024-36921: wifi: iwlwifi: mvm: guard against invalid STA ID removal (bsc#1225850). * CVE-2023-52772: Fixed use-after-free in unix_stream_read_actor() (bsc#1224991). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch SUSE-2024-3032=1 * SUSE Linux Enterprise Live Patching 15-SP6 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP6-2024-3032=1 ## Package List: * openSUSE Leap 15.6 (ppc64le s390x x86_64) * kernel-livepatch-6_4_0-150600_21-default-3-150600.4.7.1 * kernel-livepatch-SLE15-SP6_Update_0-debugsource-3-150600.4.7.1 * kernel-livepatch-6_4_0-150600_21-default-debuginfo-3-150600.4.7.1 * SUSE Linux Enterprise Live Patching 15-SP6 (ppc64le s390x x86_64) * kernel-livepatch-6_4_0-150600_21-default-3-150600.4.7.1 * kernel-livepatch-SLE15-SP6_Update_0-debugsource-3-150600.4.7.1 * kernel-livepatch-6_4_0-150600_21-default-debuginfo-3-150600.4.7.1 ## References: * https://www.suse.com/security/cve/CVE-2023-52772.html * https://www.suse.com/security/cve/CVE-2024-36921.html * https://bugzilla.suse.com/show_bug.cgi?id=1224991 * https://bugzilla.suse.com/show_bug.cgi?id=1225850 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Aug 27 16:30:20 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Tue, 27 Aug 2024 16:30:20 -0000 Subject: SUSE-SU-2024:3030-1: important: Security update for the Linux Kernel (Live Patch 38 for SLE 15 SP3) Message-ID: <172477622081.20717.10888046456174616035@smelt2.prg2.suse.org> # Security update for the Linux Kernel (Live Patch 38 for SLE 15 SP3) Announcement ID: SUSE-SU-2024:3030-1 Rating: important References: * bsc#1225202 * bsc#1225302 Cross-References: * CVE-2021-47378 * CVE-2021-47402 CVSS scores: * CVE-2021-47378 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2021-47402 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.3 * SUSE Linux Enterprise High Performance Computing 15 SP2 * SUSE Linux Enterprise High Performance Computing 15 SP3 * SUSE Linux Enterprise Live Patching 15-SP2 * SUSE Linux Enterprise Live Patching 15-SP3 * SUSE Linux Enterprise Micro 5.1 * SUSE Linux Enterprise Micro 5.2 * SUSE Linux Enterprise Server 15 SP2 * SUSE Linux Enterprise Server 15 SP3 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 An update that solves two vulnerabilities can now be installed. ## Description: This update for the Linux Kernel 5.3.18-150300_59_141 fixes several issues. The following security issues were fixed: * CVE-2021-47402: Fixed use-after-free in fl_walk() (bsc#1225301) * CVE-2021-47378: Fixed use-after-free by destroying cm id before destroying qp (bsc#1225202). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Live Patching 15-SP2 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP2-2024-3030=1 * openSUSE Leap 15.3 zypper in -t patch SUSE-2024-3036=1 SUSE-2024-3035=1 SUSE-2024-3033=1 * SUSE Linux Enterprise Live Patching 15-SP3 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP3-2024-3036=1 SUSE-SLE- Module-Live-Patching-15-SP3-2024-3035=1 SUSE-SLE-Module-Live- Patching-15-SP3-2024-3033=1 ## Package List: * SUSE Linux Enterprise Live Patching 15-SP2 (ppc64le s390x x86_64) * kernel-livepatch-5_3_18-150200_24_178-default-9-150200.2.1 * kernel-livepatch-SLE15-SP2_Update_45-debugsource-9-150200.2.1 * kernel-livepatch-5_3_18-150200_24_178-default-debuginfo-9-150200.2.1 * openSUSE Leap 15.3 (ppc64le s390x x86_64) * kernel-livepatch-5_3_18-150300_59_133-default-13-150300.2.1 * kernel-livepatch-SLE15-SP3_Update_35-debugsource-14-150300.2.1 * kernel-livepatch-5_3_18-150300_59_141-default-debuginfo-12-150300.2.1 * kernel-livepatch-5_3_18-150300_59_141-default-12-150300.2.1 * kernel-livepatch-SLE15-SP3_Update_36-debugsource-13-150300.2.1 * kernel-livepatch-SLE15-SP3_Update_38-debugsource-12-150300.2.1 * kernel-livepatch-5_3_18-150300_59_133-default-debuginfo-13-150300.2.1 * kernel-livepatch-5_3_18-150300_59_130-default-14-150300.2.1 * kernel-livepatch-5_3_18-150300_59_130-default-debuginfo-14-150300.2.1 * openSUSE Leap 15.3 (x86_64) * kernel-livepatch-5_3_18-150300_59_133-preempt-debuginfo-13-150300.2.1 * kernel-livepatch-5_3_18-150300_59_130-preempt-debuginfo-14-150300.2.1 * kernel-livepatch-5_3_18-150300_59_133-preempt-13-150300.2.1 * kernel-livepatch-5_3_18-150300_59_130-preempt-14-150300.2.1 * kernel-livepatch-5_3_18-150300_59_141-preempt-12-150300.2.1 * kernel-livepatch-5_3_18-150300_59_141-preempt-debuginfo-12-150300.2.1 * SUSE Linux Enterprise Live Patching 15-SP3 (ppc64le s390x x86_64) * kernel-livepatch-5_3_18-150300_59_130-default-14-150300.2.1 * kernel-livepatch-5_3_18-150300_59_141-default-12-150300.2.1 * kernel-livepatch-5_3_18-150300_59_133-default-13-150300.2.1 ## References: * https://www.suse.com/security/cve/CVE-2021-47378.html * https://www.suse.com/security/cve/CVE-2021-47402.html * https://bugzilla.suse.com/show_bug.cgi?id=1225202 * https://bugzilla.suse.com/show_bug.cgi?id=1225302 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Aug 27 16:30:22 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Tue, 27 Aug 2024 16:30:22 -0000 Subject: SUSE-SU-2024:3027-1: important: Security update for the Linux Kernel (Live Patch 53 for SLE 12 SP5) Message-ID: <172477622298.20717.18396120026041821261@smelt2.prg2.suse.org> # Security update for the Linux Kernel (Live Patch 53 for SLE 12 SP5) Announcement ID: SUSE-SU-2024:3027-1 Rating: important References: * bsc#1225202 Cross-References: * CVE-2021-47378 CVSS scores: * CVE-2021-47378 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise Live Patching 12-SP5 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 An update that solves one vulnerability can now be installed. ## Description: This update for the Linux Kernel 4.12.14-122_194 fixes one issue. The following security issue was fixed: * CVE-2021-47378: Fixed use-after-free by destroying cm id before destroying qp (bsc#1225202). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Live Patching 12-SP5 zypper in -t patch SUSE-SLE-Live-Patching-12-SP5-2024-3029=1 SUSE-SLE-Live- Patching-12-SP5-2024-3027=1 SUSE-SLE-Live-Patching-12-SP5-2024-3028=1 ## Package List: * SUSE Linux Enterprise Live Patching 12-SP5 (ppc64le s390x x86_64) * kgraft-patch-4_12_14-122_194-default-8-2.1 * kgraft-patch-4_12_14-122_186-default-11-2.1 * kgraft-patch-4_12_14-122_189-default-10-2.1 ## References: * https://www.suse.com/security/cve/CVE-2021-47378.html * https://bugzilla.suse.com/show_bug.cgi?id=1225202 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Aug 27 16:30:25 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Tue, 27 Aug 2024 16:30:25 -0000 Subject: SUSE-SU-2024:3031-1: moderate: Security update for keepalived Message-ID: <172477622502.20717.3121601633811726323@smelt2.prg2.suse.org> # Security update for keepalived Announcement ID: SUSE-SU-2024:3031-1 Rating: moderate References: * bsc#1228123 Cross-References: * CVE-2024-41184 CVSS scores: * CVE-2024-41184 ( SUSE ): 6.4 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:H Affected Products: * openSUSE Leap 15.4 * SUSE Linux Enterprise High Availability Extension 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Micro for Rancher 5.3 * SUSE Linux Enterprise Micro for Rancher 5.4 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Manager Proxy 4.3 * SUSE Manager Retail Branch Server 4.3 * SUSE Manager Server 4.3 An update that solves one vulnerability can now be installed. ## Description: This update for keepalived fixes the following issues: * CVE-2024-41184: Fixed integer overflow in vrrp_ipsets_handler (bsc#1228123) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch SUSE-2024-3031=1 * SUSE Linux Enterprise Micro for Rancher 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2024-3031=1 * SUSE Linux Enterprise Micro 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2024-3031=1 * SUSE Linux Enterprise Micro for Rancher 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2024-3031=1 * SUSE Linux Enterprise Micro 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2024-3031=1 * SUSE Linux Enterprise High Availability Extension 15 SP4 zypper in -t patch SUSE-SLE-Product-HA-15-SP4-2024-3031=1 ## Package List: * openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586) * keepalived-2.2.2-150400.3.10.1 * keepalived-debugsource-2.2.2-150400.3.10.1 * keepalived-debuginfo-2.2.2-150400.3.10.1 * SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 s390x x86_64) * keepalived-2.2.2-150400.3.10.1 * keepalived-debugsource-2.2.2-150400.3.10.1 * keepalived-debuginfo-2.2.2-150400.3.10.1 * SUSE Linux Enterprise Micro 5.3 (aarch64 s390x x86_64) * keepalived-2.2.2-150400.3.10.1 * keepalived-debugsource-2.2.2-150400.3.10.1 * keepalived-debuginfo-2.2.2-150400.3.10.1 * SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 s390x x86_64) * keepalived-2.2.2-150400.3.10.1 * keepalived-debugsource-2.2.2-150400.3.10.1 * keepalived-debuginfo-2.2.2-150400.3.10.1 * SUSE Linux Enterprise Micro 5.4 (aarch64 s390x x86_64) * keepalived-2.2.2-150400.3.10.1 * keepalived-debugsource-2.2.2-150400.3.10.1 * keepalived-debuginfo-2.2.2-150400.3.10.1 * SUSE Linux Enterprise High Availability Extension 15 SP4 (aarch64 ppc64le s390x x86_64) * keepalived-2.2.2-150400.3.10.1 * keepalived-debugsource-2.2.2-150400.3.10.1 * keepalived-debuginfo-2.2.2-150400.3.10.1 ## References: * https://www.suse.com/security/cve/CVE-2024-41184.html * https://bugzilla.suse.com/show_bug.cgi?id=1228123 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Aug 27 20:30:14 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Tue, 27 Aug 2024 20:30:14 -0000 Subject: SUSE-SU-2024:3048-1: important: Security update for the Linux Kernel (Live Patch 43 for SLE 15 SP3) Message-ID: <172479061467.24134.11537072091675666691@smelt2.prg2.suse.org> # Security update for the Linux Kernel (Live Patch 43 for SLE 15 SP3) Announcement ID: SUSE-SU-2024:3048-1 Rating: important References: * bsc#1210619 * bsc#1220145 * bsc#1220537 * bsc#1221302 * bsc#1223059 * bsc#1223363 * bsc#1223514 * bsc#1223683 * bsc#1225013 * bsc#1225202 * bsc#1225211 * bsc#1225302 * bsc#1225310 Cross-References: * CVE-2021-46955 * CVE-2021-47378 * CVE-2021-47383 * CVE-2021-47402 * CVE-2022-48651 * CVE-2023-1829 * CVE-2024-23307 * CVE-2024-26610 * CVE-2024-26828 * CVE-2024-26852 * CVE-2024-26923 * CVE-2024-27398 * CVE-2024-35950 CVSS scores: * CVE-2021-46955 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2021-47378 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2021-47383 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2021-47402 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48651 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-1829 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-1829 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-23307 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-23307 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26610 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2024-26828 ( SUSE ): 7.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:H * CVE-2024-26852 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26923 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-27398 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35950 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.3 * SUSE Linux Enterprise High Performance Computing 15 SP3 * SUSE Linux Enterprise Live Patching 15-SP3 * SUSE Linux Enterprise Micro 5.1 * SUSE Linux Enterprise Micro 5.2 * SUSE Linux Enterprise Server 15 SP3 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 An update that solves 13 vulnerabilities can now be installed. ## Description: This update for the Linux Kernel 5.3.18-150300_59_158 fixes several issues. The following security issues were fixed: * CVE-2021-47402: Fixed use-after-free in fl_walk() (bsc#1225301) * CVE-2021-47378: Fixed use-after-free by destroying cm id before destroying qp (bsc#1225202). * CVE-2024-27398: Fixed use-after-free bugs caused by sco_sock_timeout (bsc#1225013). * CVE-2024-35950: drm/client: Fully protect modes with dev->mode_config.mutex (bsc#1225310). * CVE-2021-47383: Fixed out-of-bound vmalloc access in imageblit (bsc#1225211). * CVE-2024-26923: Fixed false-positive lockdep splat for spin_lock() in __unix_gc() (bsc#1223683). * CVE-2024-26828: Fixed underflow in parse_server_interfaces() (bsc#1223363). * CVE-2021-46955: Fixed an out-of-bounds read with openvswitch, when fragmenting IPv4 packets (bsc#1220537). * CVE-2024-23307: Fixed Integer Overflow or Wraparound vulnerability in x86 and ARM md, raid, raid5 modules (bsc#1220145). * CVE-2024-26852: Fixed use-after-free in ip6_route_mpath_notify() (bsc#1223059). * CVE-2024-26610: Fixed memory corruption in wifi/iwlwifi (bsc#1221302). * CVE-2022-48651: Fixed an out-of-bound bug in ipvlan caused by unset skb->mac_header (bsc#1223514). * CVE-2023-1829: Fixed a use-after-free vulnerability in the control index filter (tcindex) (bsc#1210619). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Live Patching 15-SP3 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP3-2024-3048=1 * openSUSE Leap 15.3 zypper in -t patch SUSE-2024-3048=1 ## Package List: * SUSE Linux Enterprise Live Patching 15-SP3 (ppc64le s390x x86_64) * kernel-livepatch-5_3_18-150300_59_158-default-6-150300.7.6.1 * openSUSE Leap 15.3 (ppc64le s390x x86_64) * kernel-livepatch-5_3_18-150300_59_158-default-6-150300.7.6.1 * kernel-livepatch-SLE15-SP3_Update_43-debugsource-6-150300.7.6.1 * kernel-livepatch-5_3_18-150300_59_158-default-debuginfo-6-150300.7.6.1 * openSUSE Leap 15.3 (x86_64) * kernel-livepatch-5_3_18-150300_59_158-preempt-debuginfo-6-150300.7.6.1 * kernel-livepatch-5_3_18-150300_59_158-preempt-6-150300.7.6.1 ## References: * https://www.suse.com/security/cve/CVE-2021-46955.html * https://www.suse.com/security/cve/CVE-2021-47378.html * https://www.suse.com/security/cve/CVE-2021-47383.html * https://www.suse.com/security/cve/CVE-2021-47402.html * https://www.suse.com/security/cve/CVE-2022-48651.html * https://www.suse.com/security/cve/CVE-2023-1829.html * https://www.suse.com/security/cve/CVE-2024-23307.html * https://www.suse.com/security/cve/CVE-2024-26610.html * https://www.suse.com/security/cve/CVE-2024-26828.html * https://www.suse.com/security/cve/CVE-2024-26852.html * https://www.suse.com/security/cve/CVE-2024-26923.html * https://www.suse.com/security/cve/CVE-2024-27398.html * https://www.suse.com/security/cve/CVE-2024-35950.html * https://bugzilla.suse.com/show_bug.cgi?id=1210619 * https://bugzilla.suse.com/show_bug.cgi?id=1220145 * https://bugzilla.suse.com/show_bug.cgi?id=1220537 * https://bugzilla.suse.com/show_bug.cgi?id=1221302 * https://bugzilla.suse.com/show_bug.cgi?id=1223059 * https://bugzilla.suse.com/show_bug.cgi?id=1223363 * https://bugzilla.suse.com/show_bug.cgi?id=1223514 * https://bugzilla.suse.com/show_bug.cgi?id=1223683 * https://bugzilla.suse.com/show_bug.cgi?id=1225013 * https://bugzilla.suse.com/show_bug.cgi?id=1225202 * https://bugzilla.suse.com/show_bug.cgi?id=1225211 * https://bugzilla.suse.com/show_bug.cgi?id=1225302 * https://bugzilla.suse.com/show_bug.cgi?id=1225310 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Aug 27 20:30:24 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Tue, 27 Aug 2024 20:30:24 -0000 Subject: SUSE-SU-2024:3044-1: important: Security update for the Linux Kernel (Live Patch 47 for SLE 15 SP2) Message-ID: <172479062404.24134.9675643224006576604@smelt2.prg2.suse.org> # Security update for the Linux Kernel (Live Patch 47 for SLE 15 SP2) Announcement ID: SUSE-SU-2024:3044-1 Rating: important References: * bsc#1210619 * bsc#1220145 * bsc#1220537 * bsc#1223059 * bsc#1223363 * bsc#1223514 * bsc#1223683 * bsc#1225013 * bsc#1225202 * bsc#1225211 * bsc#1225302 * bsc#1225310 Cross-References: * CVE-2021-46955 * CVE-2021-47378 * CVE-2021-47383 * CVE-2021-47402 * CVE-2022-48651 * CVE-2023-1829 * CVE-2024-23307 * CVE-2024-26828 * CVE-2024-26852 * CVE-2024-26923 * CVE-2024-27398 * CVE-2024-35950 CVSS scores: * CVE-2021-46955 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2021-47378 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2021-47383 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2021-47402 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48651 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-1829 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-1829 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-23307 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-23307 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26828 ( SUSE ): 7.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:H * CVE-2024-26852 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26923 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-27398 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35950 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * SUSE Linux Enterprise High Performance Computing 15 SP2 * SUSE Linux Enterprise Live Patching 15-SP2 * SUSE Linux Enterprise Server 15 SP2 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 An update that solves 12 vulnerabilities can now be installed. ## Description: This update for the Linux Kernel 5.3.18-150200_24_188 fixes several issues. The following security issues were fixed: * CVE-2021-47402: Fixed use-after-free in fl_walk() (bsc#1225301) * CVE-2021-47378: Fixed use-after-free by destroying cm id before destroying qp (bsc#1225202). * CVE-2024-27398: Fixed use-after-free bugs caused by sco_sock_timeout (bsc#1225013). * CVE-2024-35950: drm/client: Fully protect modes with dev->mode_config.mutex (bsc#1225310). * CVE-2021-47383: Fixed out-of-bound vmalloc access in imageblit (bsc#1225211). * CVE-2024-26923: Fixed false-positive lockdep splat for spin_lock() in __unix_gc() (bsc#1223683). * CVE-2024-26828: Fixed underflow in parse_server_interfaces() (bsc#1223363). * CVE-2021-46955: Fixed an out-of-bounds read with openvswitch, when fragmenting IPv4 packets (bsc#1220537). * CVE-2024-23307: Fixed Integer Overflow or Wraparound vulnerability in x86 and ARM md, raid, raid5 modules (bsc#1220145). * CVE-2024-26852: Fixed use-after-free in ip6_route_mpath_notify() (bsc#1223059). * CVE-2022-48651: Fixed an out-of-bound bug in ipvlan caused by unset skb->mac_header (bsc#1223514). * CVE-2023-1829: Fixed a use-after-free vulnerability in the control index filter (tcindex) (bsc#1210619). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Live Patching 15-SP2 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP2-2024-3044=1 ## Package List: * SUSE Linux Enterprise Live Patching 15-SP2 (ppc64le s390x x86_64) * kernel-livepatch-5_3_18-150200_24_188-default-debuginfo-6-150200.5.6.1 * kernel-livepatch-SLE15-SP2_Update_47-debugsource-6-150200.5.6.1 * kernel-livepatch-5_3_18-150200_24_188-default-6-150200.5.6.1 ## References: * https://www.suse.com/security/cve/CVE-2021-46955.html * https://www.suse.com/security/cve/CVE-2021-47378.html * https://www.suse.com/security/cve/CVE-2021-47383.html * https://www.suse.com/security/cve/CVE-2021-47402.html * https://www.suse.com/security/cve/CVE-2022-48651.html * https://www.suse.com/security/cve/CVE-2023-1829.html * https://www.suse.com/security/cve/CVE-2024-23307.html * https://www.suse.com/security/cve/CVE-2024-26828.html * https://www.suse.com/security/cve/CVE-2024-26852.html * https://www.suse.com/security/cve/CVE-2024-26923.html * https://www.suse.com/security/cve/CVE-2024-27398.html * https://www.suse.com/security/cve/CVE-2024-35950.html * https://bugzilla.suse.com/show_bug.cgi?id=1210619 * https://bugzilla.suse.com/show_bug.cgi?id=1220145 * https://bugzilla.suse.com/show_bug.cgi?id=1220537 * https://bugzilla.suse.com/show_bug.cgi?id=1223059 * https://bugzilla.suse.com/show_bug.cgi?id=1223363 * https://bugzilla.suse.com/show_bug.cgi?id=1223514 * https://bugzilla.suse.com/show_bug.cgi?id=1223683 * https://bugzilla.suse.com/show_bug.cgi?id=1225013 * https://bugzilla.suse.com/show_bug.cgi?id=1225202 * https://bugzilla.suse.com/show_bug.cgi?id=1225211 * https://bugzilla.suse.com/show_bug.cgi?id=1225302 * https://bugzilla.suse.com/show_bug.cgi?id=1225310 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Aug 27 20:30:35 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Tue, 27 Aug 2024 20:30:35 -0000 Subject: SUSE-SU-2024:3043-1: important: Security update for the Linux Kernel (Live Patch 46 for SLE 15 SP2) Message-ID: <172479063549.24134.16409328084409225979@smelt2.prg2.suse.org> # Security update for the Linux Kernel (Live Patch 46 for SLE 15 SP2) Announcement ID: SUSE-SU-2024:3043-1 Rating: important References: * bsc#1210619 * bsc#1218487 * bsc#1220145 * bsc#1220537 * bsc#1222685 * bsc#1223059 * bsc#1223363 * bsc#1223514 * bsc#1223683 * bsc#1225013 * bsc#1225202 * bsc#1225211 * bsc#1225302 * bsc#1225310 Cross-References: * CVE-2021-46955 * CVE-2021-47378 * CVE-2021-47383 * CVE-2021-47402 * CVE-2022-48651 * CVE-2023-1829 * CVE-2023-6531 * CVE-2023-6546 * CVE-2024-23307 * CVE-2024-26828 * CVE-2024-26852 * CVE-2024-26923 * CVE-2024-27398 * CVE-2024-35950 CVSS scores: * CVE-2021-46955 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2021-47378 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2021-47383 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2021-47402 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48651 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-1829 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-1829 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-6531 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-6531 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-6546 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-6546 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-23307 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-23307 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26828 ( SUSE ): 7.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:H * CVE-2024-26852 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26923 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-27398 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35950 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * SUSE Linux Enterprise High Performance Computing 15 SP2 * SUSE Linux Enterprise Live Patching 15-SP2 * SUSE Linux Enterprise Server 15 SP2 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 An update that solves 14 vulnerabilities can now be installed. ## Description: This update for the Linux Kernel 5.3.18-150200_24_183 fixes several issues. The following security issues were fixed: * CVE-2021-47402: Fixed use-after-free in fl_walk() (bsc#1225301) * CVE-2021-47378: Fixed use-after-free by destroying cm id before destroying qp (bsc#1225202). * CVE-2024-27398: Fixed use-after-free bugs caused by sco_sock_timeout (bsc#1225013). * CVE-2024-35950: drm/client: Fully protect modes with dev->mode_config.mutex (bsc#1225310). * CVE-2021-47383: Fixed out-of-bound vmalloc access in imageblit (bsc#1225211). * CVE-2024-26923: Fixed false-positive lockdep splat for spin_lock() in __unix_gc() (bsc#1223683). * CVE-2024-26828: Fixed underflow in parse_server_interfaces() (bsc#1223363). * CVE-2021-46955: Fixed an out-of-bounds read with openvswitch, when fragmenting IPv4 packets (bsc#1220537). * CVE-2024-23307: Fixed Integer Overflow or Wraparound vulnerability in x86 and ARM md, raid, raid5 modules (bsc#1220145). * CVE-2024-26852: Fixed use-after-free in ip6_route_mpath_notify() (bsc#1223059). * CVE-2022-48651: Fixed an out-of-bound bug in ipvlan caused by unset skb->mac_header (bsc#1223514). * CVE-2023-6546: Fixed a race condition in the GSM 0710 tty multiplexor via the GSMIOC_SETCONF ioctl that could lead to local privilege escalation (bsc#1222685). * CVE-2023-6531: Fixed a use-after-free flaw due to a race problem in the unix garbage collector's deletion of SKB races with unix_stream_read_generic()on the socket that the SKB is queued on (bsc#1218487). * CVE-2023-1829: Fixed a use-after-free vulnerability in the control index filter (tcindex) (bsc#1210619). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Live Patching 15-SP2 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP2-2024-3043=1 ## Package List: * SUSE Linux Enterprise Live Patching 15-SP2 (ppc64le s390x x86_64) * kernel-livepatch-5_3_18-150200_24_183-default-debuginfo-7-150200.5.6.1 * kernel-livepatch-5_3_18-150200_24_183-default-7-150200.5.6.1 * kernel-livepatch-SLE15-SP2_Update_46-debugsource-7-150200.5.6.1 ## References: * https://www.suse.com/security/cve/CVE-2021-46955.html * https://www.suse.com/security/cve/CVE-2021-47378.html * https://www.suse.com/security/cve/CVE-2021-47383.html * https://www.suse.com/security/cve/CVE-2021-47402.html * https://www.suse.com/security/cve/CVE-2022-48651.html * https://www.suse.com/security/cve/CVE-2023-1829.html * https://www.suse.com/security/cve/CVE-2023-6531.html * https://www.suse.com/security/cve/CVE-2023-6546.html * https://www.suse.com/security/cve/CVE-2024-23307.html * https://www.suse.com/security/cve/CVE-2024-26828.html * https://www.suse.com/security/cve/CVE-2024-26852.html * https://www.suse.com/security/cve/CVE-2024-26923.html * https://www.suse.com/security/cve/CVE-2024-27398.html * https://www.suse.com/security/cve/CVE-2024-35950.html * https://bugzilla.suse.com/show_bug.cgi?id=1210619 * https://bugzilla.suse.com/show_bug.cgi?id=1218487 * https://bugzilla.suse.com/show_bug.cgi?id=1220145 * https://bugzilla.suse.com/show_bug.cgi?id=1220537 * https://bugzilla.suse.com/show_bug.cgi?id=1222685 * https://bugzilla.suse.com/show_bug.cgi?id=1223059 * https://bugzilla.suse.com/show_bug.cgi?id=1223363 * https://bugzilla.suse.com/show_bug.cgi?id=1223514 * https://bugzilla.suse.com/show_bug.cgi?id=1223683 * https://bugzilla.suse.com/show_bug.cgi?id=1225013 * https://bugzilla.suse.com/show_bug.cgi?id=1225202 * https://bugzilla.suse.com/show_bug.cgi?id=1225211 * https://bugzilla.suse.com/show_bug.cgi?id=1225302 * https://bugzilla.suse.com/show_bug.cgi?id=1225310 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Aug 27 20:30:40 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Tue, 27 Aug 2024 20:30:40 -0000 Subject: SUSE-SU-2024:3040-1: important: Security update for the Linux Kernel (Live Patch 47 for SLE 12 SP5) Message-ID: <172479064072.24134.13452685406759892350@smelt2.prg2.suse.org> # Security update for the Linux Kernel (Live Patch 47 for SLE 12 SP5) Announcement ID: SUSE-SU-2024:3040-1 Rating: important References: * bsc#1225202 Cross-References: * CVE-2021-47378 CVSS scores: * CVE-2021-47378 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise Live Patching 12-SP5 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 An update that solves one vulnerability can now be installed. ## Description: This update for the Linux Kernel 4.12.14-122_173 fixes one issue. The following security issue was fixed: * CVE-2021-47378: Fixed use-after-free by destroying cm id before destroying qp (bsc#1225202). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Live Patching 12-SP5 zypper in -t patch SUSE-SLE-Live-Patching-12-SP5-2024-3040=1 ## Package List: * SUSE Linux Enterprise Live Patching 12-SP5 (ppc64le s390x x86_64) * kgraft-patch-4_12_14-122_173-default-14-2.1 ## References: * https://www.suse.com/security/cve/CVE-2021-47378.html * https://bugzilla.suse.com/show_bug.cgi?id=1225202 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Aug 27 20:30:47 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Tue, 27 Aug 2024 20:30:47 -0000 Subject: SUSE-SU-2024:3039-1: important: Security update for the Linux Kernel (Live Patch 44 for SLE 15 SP3) Message-ID: <172479064705.24134.5333672076606512606@smelt2.prg2.suse.org> # Security update for the Linux Kernel (Live Patch 44 for SLE 15 SP3) Announcement ID: SUSE-SU-2024:3039-1 Rating: important References: * bsc#1210619 * bsc#1223363 * bsc#1223683 * bsc#1225013 * bsc#1225202 * bsc#1225211 * bsc#1225302 * bsc#1225310 Cross-References: * CVE-2021-47378 * CVE-2021-47383 * CVE-2021-47402 * CVE-2023-1829 * CVE-2024-26828 * CVE-2024-26923 * CVE-2024-27398 * CVE-2024-35950 CVSS scores: * CVE-2021-47378 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2021-47383 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2021-47402 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-1829 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-1829 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26828 ( SUSE ): 7.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:H * CVE-2024-26923 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-27398 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35950 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.3 * SUSE Linux Enterprise High Performance Computing 15 SP2 * SUSE Linux Enterprise High Performance Computing 15 SP3 * SUSE Linux Enterprise Live Patching 15-SP2 * SUSE Linux Enterprise Live Patching 15-SP3 * SUSE Linux Enterprise Micro 5.1 * SUSE Linux Enterprise Micro 5.2 * SUSE Linux Enterprise Server 15 SP2 * SUSE Linux Enterprise Server 15 SP3 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 An update that solves eight vulnerabilities can now be installed. ## Description: This update for the Linux Kernel 5.3.18-150300_59_161 fixes several issues. The following security issues were fixed: * CVE-2021-47402: Fixed use-after-free in fl_walk() (bsc#1225301) * CVE-2021-47378: Fixed use-after-free by destroying cm id before destroying qp (bsc#1225202). * CVE-2024-27398: Fixed use-after-free bugs caused by sco_sock_timeout (bsc#1225013). * CVE-2024-35950: drm/client: Fully protect modes with dev->mode_config.mutex (bsc#1225310). * CVE-2021-47383: Fixed out-of-bound vmalloc access in imageblit (bsc#1225211). * CVE-2024-26923: Fixed false-positive lockdep splat for spin_lock() in __unix_gc() (bsc#1223683). * CVE-2024-26828: Fixed underflow in parse_server_interfaces() (bsc#1223363). * CVE-2023-1829: Fixed a use-after-free vulnerability in the control index filter (tcindex) (bsc#1210619). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Live Patching 15-SP2 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP2-2024-3039=1 * openSUSE Leap 15.3 zypper in -t patch SUSE-2024-3051=1 * SUSE Linux Enterprise Live Patching 15-SP3 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP3-2024-3051=1 ## Package List: * SUSE Linux Enterprise Live Patching 15-SP2 (ppc64le s390x x86_64) * kernel-livepatch-5_3_18-150200_24_191-default-debuginfo-5-150200.5.6.1 * kernel-livepatch-5_3_18-150200_24_191-default-5-150200.5.6.1 * kernel-livepatch-SLE15-SP2_Update_48-debugsource-5-150200.5.6.1 * openSUSE Leap 15.3 (ppc64le s390x x86_64) * kernel-livepatch-SLE15-SP3_Update_44-debugsource-5-150300.7.6.1 * kernel-livepatch-5_3_18-150300_59_161-default-5-150300.7.6.1 * kernel-livepatch-5_3_18-150300_59_161-default-debuginfo-5-150300.7.6.1 * openSUSE Leap 15.3 (x86_64) * kernel-livepatch-5_3_18-150300_59_161-preempt-debuginfo-5-150300.7.6.1 * kernel-livepatch-5_3_18-150300_59_161-preempt-5-150300.7.6.1 * SUSE Linux Enterprise Live Patching 15-SP3 (ppc64le s390x x86_64) * kernel-livepatch-5_3_18-150300_59_161-default-5-150300.7.6.1 ## References: * https://www.suse.com/security/cve/CVE-2021-47378.html * https://www.suse.com/security/cve/CVE-2021-47383.html * https://www.suse.com/security/cve/CVE-2021-47402.html * https://www.suse.com/security/cve/CVE-2023-1829.html * https://www.suse.com/security/cve/CVE-2024-26828.html * https://www.suse.com/security/cve/CVE-2024-26923.html * https://www.suse.com/security/cve/CVE-2024-27398.html * https://www.suse.com/security/cve/CVE-2024-35950.html * https://bugzilla.suse.com/show_bug.cgi?id=1210619 * https://bugzilla.suse.com/show_bug.cgi?id=1223363 * https://bugzilla.suse.com/show_bug.cgi?id=1223683 * https://bugzilla.suse.com/show_bug.cgi?id=1225013 * https://bugzilla.suse.com/show_bug.cgi?id=1225202 * https://bugzilla.suse.com/show_bug.cgi?id=1225211 * https://bugzilla.suse.com/show_bug.cgi?id=1225302 * https://bugzilla.suse.com/show_bug.cgi?id=1225310 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Aug 27 20:30:50 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Tue, 27 Aug 2024 20:30:50 -0000 Subject: SUSE-SU-2024:3041-1: important: Security update for the Linux Kernel (Live Patch 41 for SLE 15 SP3) Message-ID: <172479065001.24134.16729863752200702140@smelt2.prg2.suse.org> # Security update for the Linux Kernel (Live Patch 41 for SLE 15 SP3) Announcement ID: SUSE-SU-2024:3041-1 Rating: important References: * bsc#1225202 * bsc#1225302 Cross-References: * CVE-2021-47378 * CVE-2021-47402 CVSS scores: * CVE-2021-47378 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2021-47402 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.3 * SUSE Linux Enterprise High Performance Computing 15 SP2 * SUSE Linux Enterprise High Performance Computing 15 SP3 * SUSE Linux Enterprise Live Patching 15-SP2 * SUSE Linux Enterprise Live Patching 15-SP3 * SUSE Linux Enterprise Micro 5.1 * SUSE Linux Enterprise Micro 5.2 * SUSE Linux Enterprise Server 15 SP2 * SUSE Linux Enterprise Server 15 SP3 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 An update that solves two vulnerabilities can now be installed. ## Description: This update for the Linux Kernel 5.3.18-150300_59_150 fixes several issues. The following security issues were fixed: * CVE-2021-47402: Fixed use-after-free in fl_walk() (bsc#1225301) * CVE-2021-47378: Fixed use-after-free by destroying cm id before destroying qp (bsc#1225202). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Live Patching 15-SP2 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP2-2024-3038=1 SUSE-SLE- Module-Live-Patching-15-SP2-2024-3041=1 SUSE-SLE-Module-Live- Patching-15-SP2-2024-3042=1 SUSE-SLE-Module-Live-Patching-15-SP2-2024-3049=1 * openSUSE Leap 15.3 zypper in -t patch SUSE-2024-3045=1 SUSE-2024-3050=1 SUSE-2024-3046=1 SUSE-2024-3047=1 * SUSE Linux Enterprise Live Patching 15-SP3 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP3-2024-3047=1 SUSE-SLE- Module-Live-Patching-15-SP3-2024-3045=1 SUSE-SLE-Module-Live- Patching-15-SP3-2024-3050=1 SUSE-SLE-Module-Live-Patching-15-SP3-2024-3046=1 ## Package List: * SUSE Linux Enterprise Live Patching 15-SP2 (ppc64le s390x x86_64) * kernel-livepatch-5_3_18-150200_24_175-default-12-150200.2.1 * kernel-livepatch-5_3_18-150200_24_160-default-debuginfo-14-150200.2.1 * kernel-livepatch-5_3_18-150200_24_160-default-14-150200.2.1 * kernel-livepatch-5_3_18-150200_24_175-default-debuginfo-12-150200.2.1 * kernel-livepatch-SLE15-SP2_Update_43-debugsource-11-150200.2.1 * kernel-livepatch-5_3_18-150200_24_163-default-13-150200.2.1 * kernel-livepatch-SLE15-SP2_Update_40-debugsource-13-150200.2.1 * kernel-livepatch-5_3_18-150200_24_172-default-11-150200.2.1 * kernel-livepatch-SLE15-SP2_Update_39-debugsource-14-150200.2.1 * kernel-livepatch-SLE15-SP2_Update_44-debugsource-12-150200.2.1 * kernel-livepatch-5_3_18-150200_24_172-default-debuginfo-11-150200.2.1 * kernel-livepatch-5_3_18-150200_24_163-default-debuginfo-13-150200.2.1 * openSUSE Leap 15.3 (ppc64le s390x x86_64) * kernel-livepatch-SLE15-SP3_Update_40-debugsource-11-150300.2.1 * kernel-livepatch-5_3_18-150300_59_150-default-10-150300.2.1 * kernel-livepatch-5_3_18-150300_59_147-default-11-150300.2.1 * kernel-livepatch-5_3_18-150300_59_138-default-debuginfo-13-150300.2.1 * kernel-livepatch-5_3_18-150300_59_147-default-debuginfo-11-150300.2.1 * kernel-livepatch-SLE15-SP3_Update_41-debugsource-10-150300.2.1 * kernel-livepatch-5_3_18-150300_59_138-default-13-150300.2.1 * kernel-livepatch-SLE15-SP3_Update_39-debugsource-11-150300.2.1 * kernel-livepatch-5_3_18-150300_59_150-default-debuginfo-10-150300.2.1 * kernel-livepatch-SLE15-SP3_Update_37-debugsource-13-150300.2.1 * kernel-livepatch-5_3_18-150300_59_144-default-11-150300.2.1 * kernel-livepatch-5_3_18-150300_59_144-default-debuginfo-11-150300.2.1 * openSUSE Leap 15.3 (x86_64) * kernel-livepatch-5_3_18-150300_59_147-preempt-11-150300.2.1 * kernel-livepatch-5_3_18-150300_59_150-preempt-debuginfo-10-150300.2.1 * kernel-livepatch-5_3_18-150300_59_144-preempt-11-150300.2.1 * kernel-livepatch-5_3_18-150300_59_138-preempt-debuginfo-13-150300.2.1 * kernel-livepatch-5_3_18-150300_59_144-preempt-debuginfo-11-150300.2.1 * kernel-livepatch-5_3_18-150300_59_138-preempt-13-150300.2.1 * kernel-livepatch-5_3_18-150300_59_147-preempt-debuginfo-11-150300.2.1 * kernel-livepatch-5_3_18-150300_59_150-preempt-10-150300.2.1 * SUSE Linux Enterprise Live Patching 15-SP3 (ppc64le s390x x86_64) * kernel-livepatch-5_3_18-150300_59_147-default-11-150300.2.1 * kernel-livepatch-5_3_18-150300_59_138-default-13-150300.2.1 * kernel-livepatch-5_3_18-150300_59_150-default-10-150300.2.1 * kernel-livepatch-5_3_18-150300_59_144-default-11-150300.2.1 ## References: * https://www.suse.com/security/cve/CVE-2021-47378.html * https://www.suse.com/security/cve/CVE-2021-47402.html * https://bugzilla.suse.com/show_bug.cgi?id=1225202 * https://bugzilla.suse.com/show_bug.cgi?id=1225302 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Aug 27 20:30:59 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Tue, 27 Aug 2024 20:30:59 -0000 Subject: SUSE-SU-2024:3037-1: important: Security update for the Linux Kernel (Live Patch 54 for SLE 12 SP5) Message-ID: <172479065977.24134.13478446788949528662@smelt2.prg2.suse.org> # Security update for the Linux Kernel (Live Patch 54 for SLE 12 SP5) Announcement ID: SUSE-SU-2024:3037-1 Rating: important References: * bsc#1210619 * bsc#1220145 * bsc#1220537 * bsc#1222685 * bsc#1223059 * bsc#1223363 * bsc#1223514 * bsc#1223681 * bsc#1223683 * bsc#1225013 * bsc#1225202 * bsc#1225211 * bsc#1225310 Cross-References: * CVE-2021-46955 * CVE-2021-47378 * CVE-2021-47383 * CVE-2022-48651 * CVE-2023-1829 * CVE-2023-6546 * CVE-2024-23307 * CVE-2024-26828 * CVE-2024-26852 * CVE-2024-26923 * CVE-2024-26930 * CVE-2024-27398 * CVE-2024-35950 CVSS scores: * CVE-2021-46955 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2021-47378 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2021-47383 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48651 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-1829 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-1829 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-6546 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-6546 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-23307 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-23307 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26828 ( SUSE ): 7.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:H * CVE-2024-26852 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26923 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26930 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26930 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-27398 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35950 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise Live Patching 12-SP5 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 An update that solves 13 vulnerabilities can now be installed. ## Description: This update for the Linux Kernel 4.12.14-122_201 fixes several issues. The following security issues were fixed: * CVE-2021-47378: Fixed use-after-free by destroying cm id before destroying qp (bsc#1225202). * CVE-2024-27398: Fixed use-after-free bugs caused by sco_sock_timeout (bsc#1225013). * CVE-2024-35950: drm/client: Fully protect modes with dev->mode_config.mutex (bsc#1225310). * CVE-2021-47383: Fixed out-of-bound vmalloc access in imageblit (bsc#1225211). * CVE-2024-26923: Fixed false-positive lockdep splat for spin_lock() in __unix_gc() (bsc#1223683). * CVE-2024-26930: Fixed double free of the ha->vp_map pointer (bsc#1223681). * CVE-2024-26828: Fixed underflow in parse_server_interfaces() (bsc#1223363). * CVE-2021-46955: Fixed an out-of-bounds read with openvswitch, when fragmenting IPv4 packets (bsc#1220537). * CVE-2024-23307: Fixed Integer Overflow or Wraparound vulnerability in x86 and ARM md, raid, raid5 modules (bsc#1220145). * CVE-2024-26852: Fixed use-after-free in ip6_route_mpath_notify() (bsc#1223059). * CVE-2022-48651: Fixed an out-of-bound bug in ipvlan caused by unset skb->mac_header (bsc#1223514). * CVE-2023-6546: Fixed a race condition in the GSM 0710 tty multiplexor via the GSMIOC_SETCONF ioctl that could lead to local privilege escalation (bsc#1222685). * CVE-2023-1829: Fixed a use-after-free vulnerability in the control index filter (tcindex) (bsc#1210619). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Live Patching 12-SP5 zypper in -t patch SUSE-SLE-Live-Patching-12-SP5-2024-3037=1 ## Package List: * SUSE Linux Enterprise Live Patching 12-SP5 (ppc64le s390x x86_64) * kgraft-patch-4_12_14-122_201-default-7-8.10.1 ## References: * https://www.suse.com/security/cve/CVE-2021-46955.html * https://www.suse.com/security/cve/CVE-2021-47378.html * https://www.suse.com/security/cve/CVE-2021-47383.html * https://www.suse.com/security/cve/CVE-2022-48651.html * https://www.suse.com/security/cve/CVE-2023-1829.html * https://www.suse.com/security/cve/CVE-2023-6546.html * https://www.suse.com/security/cve/CVE-2024-23307.html * https://www.suse.com/security/cve/CVE-2024-26828.html * https://www.suse.com/security/cve/CVE-2024-26852.html * https://www.suse.com/security/cve/CVE-2024-26923.html * https://www.suse.com/security/cve/CVE-2024-26930.html * https://www.suse.com/security/cve/CVE-2024-27398.html * https://www.suse.com/security/cve/CVE-2024-35950.html * https://bugzilla.suse.com/show_bug.cgi?id=1210619 * https://bugzilla.suse.com/show_bug.cgi?id=1220145 * https://bugzilla.suse.com/show_bug.cgi?id=1220537 * https://bugzilla.suse.com/show_bug.cgi?id=1222685 * https://bugzilla.suse.com/show_bug.cgi?id=1223059 * https://bugzilla.suse.com/show_bug.cgi?id=1223363 * https://bugzilla.suse.com/show_bug.cgi?id=1223514 * https://bugzilla.suse.com/show_bug.cgi?id=1223681 * https://bugzilla.suse.com/show_bug.cgi?id=1223683 * https://bugzilla.suse.com/show_bug.cgi?id=1225013 * https://bugzilla.suse.com/show_bug.cgi?id=1225202 * https://bugzilla.suse.com/show_bug.cgi?id=1225211 * https://bugzilla.suse.com/show_bug.cgi?id=1225310 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Wed Aug 28 08:30:09 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Wed, 28 Aug 2024 08:30:09 -0000 Subject: SUSE-SU-2024:3052-1: important: Security update for webkit2gtk3 Message-ID: <172483380924.31515.7426623296293684986@smelt2.prg2.suse.org> # Security update for webkit2gtk3 Announcement ID: SUSE-SU-2024:3052-1 Rating: important References: * bsc#1228696 * bsc#1228697 * bsc#1228698 Cross-References: * CVE-2024-40776 * CVE-2024-40779 * CVE-2024-40780 * CVE-2024-40782 * CVE-2024-40785 * CVE-2024-40789 * CVE-2024-40794 * CVE-2024-4558 CVSS scores: * CVE-2024-40776 ( SUSE ): 8.9 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:H * CVE-2024-40776 ( SUSE ): 8.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H * CVE-2024-40776 ( NVD ): 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L * CVE-2024-40779 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2024-40779 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2024-40780 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2024-40780 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2024-40782 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2024-40785 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2024-40785 ( NVD ): 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N * CVE-2024-40789 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2024-40789 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2024-40794 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2024-40794 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N Affected Products: * SUSE Enterprise Storage 7.1 * SUSE Linux Enterprise High Performance Computing 15 SP2 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 * SUSE Linux Enterprise High Performance Computing 15 SP3 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 * SUSE Linux Enterprise Server 15 SP2 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 * SUSE Linux Enterprise Server 15 SP3 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 An update that solves eight vulnerabilities can now be installed. ## Description: This update for webkit2gtk3 fixes the following issues: Update to version 2.44.3 (bsc#1228696 bsc#1228697 bsc#1228698): * Fix web process cache suspend/resume when sandbox is enabled. * Fix accelerated images dissapearing after scrolling. * Fix video flickering with DMA-BUF sink. * Fix pointer lock on X11. * Fix movement delta on mouse events in GTK3. * Undeprecate console message API and make it available in 2022 API. * Fix several crashes and rendering issues. * Security fixes: CVE-2024-40776, CVE-2024-40779, CVE-2024-40780, CVE-2024-40782, CVE-2024-40785, CVE-2024-40789, CVE-2024-40794, CVE-2024-4558. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 zypper in -t patch SUSE-SLE-Product-HPC-15-SP2-LTSS-2024-3052=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 zypper in -t patch SUSE-SLE-Product-HPC-15-SP3-LTSS-2024-3052=1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 zypper in -t patch SUSE-SLE-Product-SLES-15-SP2-LTSS-2024-3052=1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 zypper in -t patch SUSE-SLE-Product-SLES-15-SP3-LTSS-2024-3052=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP2-2024-3052=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP3-2024-3052=1 * SUSE Enterprise Storage 7.1 zypper in -t patch SUSE-Storage-7.1-2024-3052=1 ## Package List: * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 (aarch64 x86_64) * typelib-1_0-JavaScriptCore-4_0-2.44.3-150200.118.1 * webkit2gtk-4_0-injected-bundles-2.44.3-150200.118.1 * typelib-1_0-WebKit2-4_0-2.44.3-150200.118.1 * libjavascriptcoregtk-4_0-18-2.44.3-150200.118.1 * webkit2gtk-4_0-injected-bundles-debuginfo-2.44.3-150200.118.1 * libwebkit2gtk-4_0-37-debuginfo-2.44.3-150200.118.1 * typelib-1_0-WebKit2WebExtension-4_0-2.44.3-150200.118.1 * webkit2gtk3-debugsource-2.44.3-150200.118.1 * libjavascriptcoregtk-4_0-18-debuginfo-2.44.3-150200.118.1 * libwebkit2gtk-4_0-37-2.44.3-150200.118.1 * webkit2gtk3-devel-2.44.3-150200.118.1 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 (noarch) * libwebkit2gtk3-lang-2.44.3-150200.118.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (aarch64 x86_64) * typelib-1_0-JavaScriptCore-4_0-2.44.3-150200.118.1 * webkit2gtk-4_0-injected-bundles-2.44.3-150200.118.1 * typelib-1_0-WebKit2-4_0-2.44.3-150200.118.1 * libjavascriptcoregtk-4_0-18-2.44.3-150200.118.1 * webkit2gtk-4_0-injected-bundles-debuginfo-2.44.3-150200.118.1 * libwebkit2gtk-4_0-37-debuginfo-2.44.3-150200.118.1 * typelib-1_0-WebKit2WebExtension-4_0-2.44.3-150200.118.1 * webkit2gtk3-debugsource-2.44.3-150200.118.1 * libjavascriptcoregtk-4_0-18-debuginfo-2.44.3-150200.118.1 * libwebkit2gtk-4_0-37-2.44.3-150200.118.1 * webkit2gtk3-devel-2.44.3-150200.118.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (noarch) * libwebkit2gtk3-lang-2.44.3-150200.118.1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (aarch64 ppc64le s390x x86_64) * typelib-1_0-JavaScriptCore-4_0-2.44.3-150200.118.1 * webkit2gtk-4_0-injected-bundles-2.44.3-150200.118.1 * typelib-1_0-WebKit2-4_0-2.44.3-150200.118.1 * libjavascriptcoregtk-4_0-18-2.44.3-150200.118.1 * webkit2gtk-4_0-injected-bundles-debuginfo-2.44.3-150200.118.1 * libwebkit2gtk-4_0-37-debuginfo-2.44.3-150200.118.1 * typelib-1_0-WebKit2WebExtension-4_0-2.44.3-150200.118.1 * webkit2gtk3-debugsource-2.44.3-150200.118.1 * libjavascriptcoregtk-4_0-18-debuginfo-2.44.3-150200.118.1 * libwebkit2gtk-4_0-37-2.44.3-150200.118.1 * webkit2gtk3-devel-2.44.3-150200.118.1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (noarch) * libwebkit2gtk3-lang-2.44.3-150200.118.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (aarch64 ppc64le s390x x86_64) * typelib-1_0-JavaScriptCore-4_0-2.44.3-150200.118.1 * webkit2gtk-4_0-injected-bundles-2.44.3-150200.118.1 * typelib-1_0-WebKit2-4_0-2.44.3-150200.118.1 * libjavascriptcoregtk-4_0-18-2.44.3-150200.118.1 * webkit2gtk-4_0-injected-bundles-debuginfo-2.44.3-150200.118.1 * libwebkit2gtk-4_0-37-debuginfo-2.44.3-150200.118.1 * typelib-1_0-WebKit2WebExtension-4_0-2.44.3-150200.118.1 * webkit2gtk3-debugsource-2.44.3-150200.118.1 * libjavascriptcoregtk-4_0-18-debuginfo-2.44.3-150200.118.1 * libwebkit2gtk-4_0-37-2.44.3-150200.118.1 * webkit2gtk3-devel-2.44.3-150200.118.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (noarch) * libwebkit2gtk3-lang-2.44.3-150200.118.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 (ppc64le x86_64) * typelib-1_0-JavaScriptCore-4_0-2.44.3-150200.118.1 * webkit2gtk-4_0-injected-bundles-2.44.3-150200.118.1 * typelib-1_0-WebKit2-4_0-2.44.3-150200.118.1 * libjavascriptcoregtk-4_0-18-2.44.3-150200.118.1 * webkit2gtk-4_0-injected-bundles-debuginfo-2.44.3-150200.118.1 * libwebkit2gtk-4_0-37-debuginfo-2.44.3-150200.118.1 * typelib-1_0-WebKit2WebExtension-4_0-2.44.3-150200.118.1 * webkit2gtk3-debugsource-2.44.3-150200.118.1 * libjavascriptcoregtk-4_0-18-debuginfo-2.44.3-150200.118.1 * libwebkit2gtk-4_0-37-2.44.3-150200.118.1 * webkit2gtk3-devel-2.44.3-150200.118.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 (noarch) * libwebkit2gtk3-lang-2.44.3-150200.118.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (ppc64le x86_64) * typelib-1_0-JavaScriptCore-4_0-2.44.3-150200.118.1 * webkit2gtk-4_0-injected-bundles-2.44.3-150200.118.1 * typelib-1_0-WebKit2-4_0-2.44.3-150200.118.1 * libjavascriptcoregtk-4_0-18-2.44.3-150200.118.1 * webkit2gtk-4_0-injected-bundles-debuginfo-2.44.3-150200.118.1 * libwebkit2gtk-4_0-37-debuginfo-2.44.3-150200.118.1 * typelib-1_0-WebKit2WebExtension-4_0-2.44.3-150200.118.1 * webkit2gtk3-debugsource-2.44.3-150200.118.1 * libjavascriptcoregtk-4_0-18-debuginfo-2.44.3-150200.118.1 * libwebkit2gtk-4_0-37-2.44.3-150200.118.1 * webkit2gtk3-devel-2.44.3-150200.118.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (noarch) * libwebkit2gtk3-lang-2.44.3-150200.118.1 * SUSE Enterprise Storage 7.1 (aarch64 x86_64) * typelib-1_0-JavaScriptCore-4_0-2.44.3-150200.118.1 * webkit2gtk-4_0-injected-bundles-2.44.3-150200.118.1 * typelib-1_0-WebKit2-4_0-2.44.3-150200.118.1 * libjavascriptcoregtk-4_0-18-2.44.3-150200.118.1 * webkit2gtk-4_0-injected-bundles-debuginfo-2.44.3-150200.118.1 * libwebkit2gtk-4_0-37-debuginfo-2.44.3-150200.118.1 * typelib-1_0-WebKit2WebExtension-4_0-2.44.3-150200.118.1 * webkit2gtk3-debugsource-2.44.3-150200.118.1 * libjavascriptcoregtk-4_0-18-debuginfo-2.44.3-150200.118.1 * libwebkit2gtk-4_0-37-2.44.3-150200.118.1 * webkit2gtk3-devel-2.44.3-150200.118.1 * SUSE Enterprise Storage 7.1 (noarch) * libwebkit2gtk3-lang-2.44.3-150200.118.1 ## References: * https://www.suse.com/security/cve/CVE-2024-40776.html * https://www.suse.com/security/cve/CVE-2024-40779.html * https://www.suse.com/security/cve/CVE-2024-40780.html * https://www.suse.com/security/cve/CVE-2024-40782.html * https://www.suse.com/security/cve/CVE-2024-40785.html * https://www.suse.com/security/cve/CVE-2024-40789.html * https://www.suse.com/security/cve/CVE-2024-40794.html * https://www.suse.com/security/cve/CVE-2024-4558.html * https://bugzilla.suse.com/show_bug.cgi?id=1228696 * https://bugzilla.suse.com/show_bug.cgi?id=1228697 * https://bugzilla.suse.com/show_bug.cgi?id=1228698 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Wed Aug 28 16:30:11 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Wed, 28 Aug 2024 16:30:11 -0000 Subject: SUSE-SU-2024:3060-1: important: Security update for the Linux Kernel RT (Live Patch 0 for SLE 15 SP6) Message-ID: <172486261135.18977.6764390006821311847@smelt2.prg2.suse.org> # Security update for the Linux Kernel RT (Live Patch 0 for SLE 15 SP6) Announcement ID: SUSE-SU-2024:3060-1 Rating: important References: * bsc#1224991 * bsc#1225850 Cross-References: * CVE-2023-52772 * CVE-2024-36921 CVSS scores: * CVE-2023-52772 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-52772 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-36921 ( SUSE ): 8.0 CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Affected Products: * SUSE Linux Enterprise Live Patching 15-SP6 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 An update that solves two vulnerabilities can now be installed. ## Description: This update for the Linux Kernel 6.4.0-150600_8 fixes several issues. The following security issues were fixed: * CVE-2024-36921: wifi: iwlwifi: mvm: guard against invalid STA ID removal (bsc#1225850). * CVE-2023-52772: Fixed use-after-free in unix_stream_read_actor() (bsc#1224991). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Live Patching 15-SP6 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP6-2024-3060=1 ## Package List: * SUSE Linux Enterprise Live Patching 15-SP6 (x86_64) * kernel-livepatch-6_4_0-150600_8-rt-2-150600.3.3.2 * kernel-livepatch-6_4_0-150600_8-rt-debuginfo-2-150600.3.3.2 * kernel-livepatch-SLE15-SP6-RT_Update_0-debugsource-2-150600.3.3.2 ## References: * https://www.suse.com/security/cve/CVE-2023-52772.html * https://www.suse.com/security/cve/CVE-2024-36921.html * https://bugzilla.suse.com/show_bug.cgi?id=1224991 * https://bugzilla.suse.com/show_bug.cgi?id=1225850 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Wed Aug 28 16:30:26 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Wed, 28 Aug 2024 16:30:26 -0000 Subject: SUSE-SU-2024:3055-1: important: Security update for python-setuptools Message-ID: <172486262642.18977.9421084895846567454@smelt2.prg2.suse.org> # Security update for python-setuptools Announcement ID: SUSE-SU-2024:3055-1 Rating: important References: * bsc#1228105 Cross-References: * CVE-2024-6345 CVSS scores: * CVE-2024-6345 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.4 * openSUSE Leap 15.5 * openSUSE Leap 15.6 * Public Cloud Module 15-SP4 * Python 3 Module 15-SP5 * Python 3 Module 15-SP6 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 * SUSE Linux Enterprise Desktop 15 SP5 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Manager Proxy 4.3 * SUSE Manager Retail Branch Server 4.3 * SUSE Manager Server 4.3 An update that solves one vulnerability can now be installed. ## Description: This update for python-setuptools fixes the following issues: * CVE-2024-6345: Fixed code execution via download functions in the package_index module (bsc#1228105) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch SUSE-2024-3055=1 * openSUSE Leap 15.5 zypper in -t patch openSUSE-SLE-15.5-2024-3055=1 * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2024-3055=1 * Public Cloud Module 15-SP4 zypper in -t patch SUSE-SLE-Module-Public-Cloud-15-SP4-2024-3055=1 * Python 3 Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Python3-15-SP5-2024-3055=1 * Python 3 Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Python3-15-SP6-2024-3055=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2024-3055=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2024-3055=1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 zypper in -t patch SUSE-SLE-Product-SLED-15-SP4-LTSS-2024-3055=1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2024-3055=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2024-3055=1 ## Package List: * openSUSE Leap 15.4 (noarch) * python311-setuptools-wheel-67.7.2-150400.3.16.1 * python311-setuptools-67.7.2-150400.3.16.1 * openSUSE Leap 15.5 (noarch) * python311-setuptools-67.7.2-150400.3.16.1 * openSUSE Leap 15.6 (noarch) * python311-setuptools-wheel-67.7.2-150400.3.16.1 * python311-setuptools-67.7.2-150400.3.16.1 * Public Cloud Module 15-SP4 (noarch) * python311-setuptools-67.7.2-150400.3.16.1 * Python 3 Module 15-SP5 (noarch) * python311-setuptools-67.7.2-150400.3.16.1 * Python 3 Module 15-SP6 (noarch) * python311-setuptools-67.7.2-150400.3.16.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (noarch) * python311-setuptools-67.7.2-150400.3.16.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (noarch) * python311-setuptools-67.7.2-150400.3.16.1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (noarch) * python311-setuptools-67.7.2-150400.3.16.1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (noarch) * python311-setuptools-67.7.2-150400.3.16.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (noarch) * python311-setuptools-67.7.2-150400.3.16.1 ## References: * https://www.suse.com/security/cve/CVE-2024-6345.html * https://bugzilla.suse.com/show_bug.cgi?id=1228105 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Wed Aug 28 16:30:28 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Wed, 28 Aug 2024 16:30:28 -0000 Subject: SUSE-SU-2024:3054-1: important: Security update for python3-setuptools Message-ID: <172486262886.18977.5684666325936212861@smelt2.prg2.suse.org> # Security update for python3-setuptools Announcement ID: SUSE-SU-2024:3054-1 Rating: important References: * bsc#1228105 Cross-References: * CVE-2024-6345 CVSS scores: * CVE-2024-6345 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H Affected Products: * Basesystem Module 15-SP5 * Basesystem Module 15-SP6 * openSUSE Leap 15.4 * openSUSE Leap 15.5 * openSUSE Leap 15.6 * openSUSE Leap Micro 5.5 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 * SUSE Linux Enterprise Desktop 15 SP5 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Micro for Rancher 5.3 * SUSE Linux Enterprise Micro for Rancher 5.4 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Manager Proxy 4.3 * SUSE Manager Retail Branch Server 4.3 * SUSE Manager Server 4.3 An update that solves one vulnerability can now be installed. ## Description: This update for python3-setuptools fixes the following issues: * CVE-2024-6345: Fixed code execution via download functions in the package_index module (bsc#1228105) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2024-3054=1 * Basesystem Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP5-2024-3054=1 * Basesystem Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP6-2024-3054=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2024-3054=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2024-3054=1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 zypper in -t patch SUSE-SLE-Product-SLED-15-SP4-LTSS-2024-3054=1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2024-3054=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2024-3054=1 * SUSE Manager Proxy 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Proxy-4.3-2024-3054=1 * SUSE Manager Retail Branch Server 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Retail-Branch- Server-4.3-2024-3054=1 * SUSE Manager Server 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Server-4.3-2024-3054=1 * openSUSE Leap 15.4 zypper in -t patch SUSE-2024-3054=1 * openSUSE Leap Micro 5.5 zypper in -t patch openSUSE-Leap-Micro-5.5-2024-3054=1 * openSUSE Leap 15.5 zypper in -t patch openSUSE-SLE-15.5-2024-3054=1 * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2024-3054=1 * SUSE Linux Enterprise Micro for Rancher 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2024-3054=1 * SUSE Linux Enterprise Micro 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2024-3054=1 * SUSE Linux Enterprise Micro for Rancher 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2024-3054=1 * SUSE Linux Enterprise Micro 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2024-3054=1 ## Package List: * SUSE Linux Enterprise Micro 5.5 (noarch) * python3-setuptools-44.1.1-150400.9.9.1 * Basesystem Module 15-SP5 (noarch) * python3-setuptools-44.1.1-150400.9.9.1 * python3-setuptools-test-44.1.1-150400.9.9.1 * python3-setuptools-wheel-44.1.1-150400.9.9.1 * Basesystem Module 15-SP6 (noarch) * python3-setuptools-44.1.1-150400.9.9.1 * python3-setuptools-test-44.1.1-150400.9.9.1 * python3-setuptools-wheel-44.1.1-150400.9.9.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (noarch) * python3-setuptools-44.1.1-150400.9.9.1 * python3-setuptools-test-44.1.1-150400.9.9.1 * python3-setuptools-wheel-44.1.1-150400.9.9.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (noarch) * python3-setuptools-44.1.1-150400.9.9.1 * python3-setuptools-test-44.1.1-150400.9.9.1 * python3-setuptools-wheel-44.1.1-150400.9.9.1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (noarch) * python3-setuptools-44.1.1-150400.9.9.1 * python3-setuptools-test-44.1.1-150400.9.9.1 * python3-setuptools-wheel-44.1.1-150400.9.9.1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (noarch) * python3-setuptools-44.1.1-150400.9.9.1 * python3-setuptools-test-44.1.1-150400.9.9.1 * python3-setuptools-wheel-44.1.1-150400.9.9.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (noarch) * python3-setuptools-44.1.1-150400.9.9.1 * python3-setuptools-test-44.1.1-150400.9.9.1 * python3-setuptools-wheel-44.1.1-150400.9.9.1 * SUSE Manager Proxy 4.3 (noarch) * python3-setuptools-44.1.1-150400.9.9.1 * python3-setuptools-test-44.1.1-150400.9.9.1 * python3-setuptools-wheel-44.1.1-150400.9.9.1 * SUSE Manager Retail Branch Server 4.3 (noarch) * python3-setuptools-44.1.1-150400.9.9.1 * python3-setuptools-test-44.1.1-150400.9.9.1 * python3-setuptools-wheel-44.1.1-150400.9.9.1 * SUSE Manager Server 4.3 (noarch) * python3-setuptools-44.1.1-150400.9.9.1 * python3-setuptools-test-44.1.1-150400.9.9.1 * python3-setuptools-wheel-44.1.1-150400.9.9.1 * openSUSE Leap 15.4 (noarch) * python3-setuptools-44.1.1-150400.9.9.1 * python3-setuptools-test-44.1.1-150400.9.9.1 * python3-setuptools-wheel-44.1.1-150400.9.9.1 * openSUSE Leap Micro 5.5 (noarch) * python3-setuptools-44.1.1-150400.9.9.1 * openSUSE Leap 15.5 (noarch) * python3-setuptools-44.1.1-150400.9.9.1 * python3-setuptools-test-44.1.1-150400.9.9.1 * python3-setuptools-wheel-44.1.1-150400.9.9.1 * openSUSE Leap 15.6 (noarch) * python3-setuptools-44.1.1-150400.9.9.1 * python3-setuptools-test-44.1.1-150400.9.9.1 * python3-setuptools-wheel-44.1.1-150400.9.9.1 * SUSE Linux Enterprise Micro for Rancher 5.3 (noarch) * python3-setuptools-44.1.1-150400.9.9.1 * SUSE Linux Enterprise Micro 5.3 (noarch) * python3-setuptools-44.1.1-150400.9.9.1 * SUSE Linux Enterprise Micro for Rancher 5.4 (noarch) * python3-setuptools-44.1.1-150400.9.9.1 * SUSE Linux Enterprise Micro 5.4 (noarch) * python3-setuptools-44.1.1-150400.9.9.1 ## References: * https://www.suse.com/security/cve/CVE-2024-6345.html * https://bugzilla.suse.com/show_bug.cgi?id=1228105 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Thu Aug 29 08:30:08 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Thu, 29 Aug 2024 08:30:08 -0000 Subject: SUSE-SU-2024:3061-1: moderate: Security update for apache2 Message-ID: <172492020823.16252.10181506085883824672@smelt2.prg2.suse.org> # Security update for apache2 Announcement ID: SUSE-SU-2024:3061-1 Rating: moderate References: * bsc#1227353 Cross-References: * CVE-2024-39884 CVSS scores: * CVE-2024-39884 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N Affected Products: * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 * SUSE Linux Enterprise Software Development Kit 12 SP5 An update that solves one vulnerability can now be installed. ## Description: This update for apache2 fixes the following issues: * CVE-2024-39884: Fixed source code disclosure with handlers configured via AddType (bsc#1227353) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise High Performance Computing 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-3061=1 * SUSE Linux Enterprise Server 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-3061=1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-3061=1 * SUSE Linux Enterprise Software Development Kit 12 SP5 zypper in -t patch SUSE-SLE-SDK-12-SP5-2024-3061=1 ## Package List: * SUSE Linux Enterprise High Performance Computing 12 SP5 (aarch64 x86_64) * apache2-example-pages-2.4.51-35.60.1 * apache2-debuginfo-2.4.51-35.60.1 * apache2-utils-2.4.51-35.60.1 * apache2-tls13-worker-2.4.51-35.60.1 * apache2-debugsource-2.4.51-35.60.1 * apache2-worker-2.4.51-35.60.1 * apache2-tls13-debugsource-2.4.51-35.60.1 * apache2-tls13-prefork-debuginfo-2.4.51-35.60.1 * apache2-tls13-2.4.51-35.60.1 * apache2-tls13-worker-debuginfo-2.4.51-35.60.1 * apache2-utils-debuginfo-2.4.51-35.60.1 * apache2-tls13-prefork-2.4.51-35.60.1 * apache2-2.4.51-35.60.1 * apache2-tls13-debuginfo-2.4.51-35.60.1 * apache2-tls13-example-pages-2.4.51-35.60.1 * apache2-tls13-utils-debuginfo-2.4.51-35.60.1 * apache2-prefork-debuginfo-2.4.51-35.60.1 * apache2-worker-debuginfo-2.4.51-35.60.1 * apache2-prefork-2.4.51-35.60.1 * apache2-tls13-utils-2.4.51-35.60.1 * SUSE Linux Enterprise High Performance Computing 12 SP5 (noarch) * apache2-doc-2.4.51-35.60.1 * apache2-tls13-doc-2.4.51-35.60.1 * SUSE Linux Enterprise Server 12 SP5 (aarch64 ppc64le s390x x86_64) * apache2-example-pages-2.4.51-35.60.1 * apache2-debuginfo-2.4.51-35.60.1 * apache2-utils-2.4.51-35.60.1 * apache2-tls13-worker-2.4.51-35.60.1 * apache2-debugsource-2.4.51-35.60.1 * apache2-worker-2.4.51-35.60.1 * apache2-tls13-debugsource-2.4.51-35.60.1 * apache2-tls13-prefork-debuginfo-2.4.51-35.60.1 * apache2-tls13-2.4.51-35.60.1 * apache2-tls13-worker-debuginfo-2.4.51-35.60.1 * apache2-utils-debuginfo-2.4.51-35.60.1 * apache2-tls13-prefork-2.4.51-35.60.1 * apache2-2.4.51-35.60.1 * apache2-tls13-debuginfo-2.4.51-35.60.1 * apache2-tls13-example-pages-2.4.51-35.60.1 * apache2-tls13-utils-debuginfo-2.4.51-35.60.1 * apache2-prefork-debuginfo-2.4.51-35.60.1 * apache2-worker-debuginfo-2.4.51-35.60.1 * apache2-prefork-2.4.51-35.60.1 * apache2-tls13-utils-2.4.51-35.60.1 * SUSE Linux Enterprise Server 12 SP5 (noarch) * apache2-doc-2.4.51-35.60.1 * apache2-tls13-doc-2.4.51-35.60.1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 (ppc64le x86_64) * apache2-example-pages-2.4.51-35.60.1 * apache2-debuginfo-2.4.51-35.60.1 * apache2-utils-2.4.51-35.60.1 * apache2-tls13-worker-2.4.51-35.60.1 * apache2-debugsource-2.4.51-35.60.1 * apache2-worker-2.4.51-35.60.1 * apache2-tls13-debugsource-2.4.51-35.60.1 * apache2-tls13-prefork-debuginfo-2.4.51-35.60.1 * apache2-tls13-2.4.51-35.60.1 * apache2-tls13-worker-debuginfo-2.4.51-35.60.1 * apache2-utils-debuginfo-2.4.51-35.60.1 * apache2-tls13-prefork-2.4.51-35.60.1 * apache2-2.4.51-35.60.1 * apache2-tls13-debuginfo-2.4.51-35.60.1 * apache2-tls13-example-pages-2.4.51-35.60.1 * apache2-tls13-utils-debuginfo-2.4.51-35.60.1 * apache2-prefork-debuginfo-2.4.51-35.60.1 * apache2-worker-debuginfo-2.4.51-35.60.1 * apache2-prefork-2.4.51-35.60.1 * apache2-tls13-utils-2.4.51-35.60.1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 (noarch) * apache2-doc-2.4.51-35.60.1 * apache2-tls13-doc-2.4.51-35.60.1 * SUSE Linux Enterprise Software Development Kit 12 SP5 (aarch64 ppc64le s390x x86_64) * apache2-debuginfo-2.4.51-35.60.1 * apache2-debugsource-2.4.51-35.60.1 * apache2-tls13-debugsource-2.4.51-35.60.1 * apache2-tls13-debuginfo-2.4.51-35.60.1 * apache2-tls13-devel-2.4.51-35.60.1 * apache2-devel-2.4.51-35.60.1 ## References: * https://www.suse.com/security/cve/CVE-2024-39884.html * https://bugzilla.suse.com/show_bug.cgi?id=1227353 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Fri Aug 30 12:30:05 2024 From: null at suse.de (SLE-SECURITY-UPDATES) Date: Fri, 30 Aug 2024 12:30:05 -0000 Subject: SUSE-SU-2024:3062-1: moderate: Security update for podman Message-ID: <172502100594.19318.3162346165664487824@smelt2.prg2.suse.org> # Security update for podman Announcement ID: SUSE-SU-2024:3062-1 Rating: moderate References: * bsc#1227052 Cross-References: * CVE-2024-6104 CVSS scores: * CVE-2024-6104 ( SUSE ): 6.0 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N * CVE-2024-6104 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * openSUSE Leap 15.3 * SUSE Enterprise Storage 7.1 * SUSE Linux Enterprise Micro 5.1 * SUSE Linux Enterprise Micro 5.2 * SUSE Linux Enterprise Micro for Rancher 5.2 * SUSE Linux Enterprise Server 15 SP3 An update that solves one vulnerability can now be installed. ## Description: This update for podman fixes the following issues: * CVE-2024-6104: Fixed sensitive information disclosure in log files in go- retryablehttp (bsc#1227052) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.3 zypper in -t patch SUSE-2024-3062=1 * SUSE Enterprise Storage 7.1 zypper in -t patch SUSE-Storage-7.1-2024-3062=1 * SUSE Linux Enterprise Micro 5.1 zypper in -t patch SUSE-SUSE-MicroOS-5.1-2024-3062=1 * SUSE Linux Enterprise Micro 5.2 zypper in -t patch SUSE-SUSE-MicroOS-5.2-2024-3062=1 * SUSE Linux Enterprise Micro for Rancher 5.2 zypper in -t patch SUSE-SUSE-MicroOS-5.2-2024-3062=1 ## Package List: * openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64 i586) * podman-remote-4.9.5-150300.9.34.1 * podman-remote-debuginfo-4.9.5-150300.9.34.1 * podman-4.9.5-150300.9.34.1 * podmansh-4.9.5-150300.9.34.1 * podman-debuginfo-4.9.5-150300.9.34.1 * openSUSE Leap 15.3 (noarch) * podman-docker-4.9.5-150300.9.34.1 * SUSE Enterprise Storage 7.1 (aarch64 x86_64) * podman-4.9.5-150300.9.34.1 * podman-debuginfo-4.9.5-150300.9.34.1 * SUSE Linux Enterprise Micro 5.1 (aarch64 s390x x86_64) * podman-remote-4.9.5-150300.9.34.1 * podman-4.9.5-150300.9.34.1 * podman-remote-debuginfo-4.9.5-150300.9.34.1 * SUSE Linux Enterprise Micro 5.2 (aarch64 s390x x86_64) * podman-remote-4.9.5-150300.9.34.1 * podman-4.9.5-150300.9.34.1 * podman-debuginfo-4.9.5-150300.9.34.1 * podman-remote-debuginfo-4.9.5-150300.9.34.1 * SUSE Linux Enterprise Micro for Rancher 5.2 (aarch64 s390x x86_64) * podman-remote-4.9.5-150300.9.34.1 * podman-4.9.5-150300.9.34.1 * podman-debuginfo-4.9.5-150300.9.34.1 * podman-remote-debuginfo-4.9.5-150300.9.34.1 ## References: * https://www.suse.com/security/cve/CVE-2024-6104.html * https://bugzilla.suse.com/show_bug.cgi?id=1227052 -------------- next part -------------- An HTML attachment was scrubbed... URL: