SUSE-SU-2025:0229-1: important: Security update for the Linux Kernel
SLE-SECURITY-UPDATES
null at suse.de
Fri Jan 24 12:32:55 UTC 2025
# Security update for the Linux Kernel
Announcement ID: SUSE-SU-2025:0229-1
Release Date: 2025-01-24T10:10:27Z
Rating: important
References:
* bsc#1135481
* bsc#1170891
* bsc#1171420
* bsc#1173139
* bsc#1175543
* bsc#1181006
* bsc#1185010
* bsc#1187211
* bsc#1187619
* bsc#1188412
* bsc#1188616
* bsc#1188700
* bsc#1188983
* bsc#1188985
* bsc#1189760
* bsc#1189762
* bsc#1189870
* bsc#1189872
* bsc#1190117
* bsc#1190131
* bsc#1190181
* bsc#1190358
* bsc#1190412
* bsc#1190428
* bsc#1203332
* bsc#1205521
* bsc#1209288
* bsc#1209798
* bsc#1211593
* bsc#1211595
* bsc#1215304
* bsc#1216813
* bsc#1216909
* bsc#1219608
* bsc#1222878
* bsc#1223044
* bsc#1225758
* bsc#1225820
* bsc#1226694
* bsc#1228190
* bsc#1229809
* bsc#1230422
* bsc#1230697
* bsc#1231388
* bsc#1231453
* bsc#1231854
* bsc#1232045
* bsc#1232157
* bsc#1232166
* bsc#1232419
* bsc#1232436
* bsc#1232472
* bsc#1232823
* bsc#1233038
* bsc#1233050
* bsc#1233070
* bsc#1233096
* bsc#1233127
* bsc#1233200
* bsc#1233239
* bsc#1233324
* bsc#1233467
* bsc#1233468
* bsc#1233469
* bsc#1233485
* bsc#1233547
* bsc#1233550
* bsc#1233558
* bsc#1233564
* bsc#1233568
* bsc#1233637
* bsc#1233701
* bsc#1233769
* bsc#1233837
* bsc#1234072
* bsc#1234073
* bsc#1234075
* bsc#1234076
* bsc#1234077
* bsc#1234087
* bsc#1234120
* bsc#1234156
* bsc#1234219
* bsc#1234220
* bsc#1234240
* bsc#1234241
* bsc#1234281
* bsc#1234282
* bsc#1234294
* bsc#1234338
* bsc#1234357
* bsc#1234437
* bsc#1234464
* bsc#1234605
* bsc#1234639
* bsc#1234650
* bsc#1234727
* bsc#1234811
* bsc#1234827
* bsc#1234834
* bsc#1234843
* bsc#1234846
* bsc#1234853
* bsc#1234856
* bsc#1234891
* bsc#1234912
* bsc#1234920
* bsc#1234921
* bsc#1234960
* bsc#1234963
* bsc#1234971
* bsc#1234973
* bsc#1235004
* bsc#1235035
* bsc#1235037
* bsc#1235039
* bsc#1235054
* bsc#1235056
* bsc#1235061
* bsc#1235073
* bsc#1235220
* bsc#1235224
* bsc#1235246
* bsc#1235507
Cross-References:
* CVE-2020-12770
* CVE-2021-34556
* CVE-2021-35477
* CVE-2021-38160
* CVE-2021-47202
* CVE-2022-36280
* CVE-2022-48742
* CVE-2022-49033
* CVE-2022-49035
* CVE-2023-1382
* CVE-2023-33951
* CVE-2023-33952
* CVE-2023-52920
* CVE-2024-24860
* CVE-2024-26886
* CVE-2024-26924
* CVE-2024-36915
* CVE-2024-42232
* CVE-2024-44934
* CVE-2024-47666
* CVE-2024-47678
* CVE-2024-49944
* CVE-2024-49952
* CVE-2024-50018
* CVE-2024-50143
* CVE-2024-50154
* CVE-2024-50166
* CVE-2024-50181
* CVE-2024-50202
* CVE-2024-50211
* CVE-2024-50256
* CVE-2024-50262
* CVE-2024-50278
* CVE-2024-50279
* CVE-2024-50280
* CVE-2024-50296
* CVE-2024-53051
* CVE-2024-53055
* CVE-2024-53056
* CVE-2024-53064
* CVE-2024-53072
* CVE-2024-53090
* CVE-2024-53101
* CVE-2024-53113
* CVE-2024-53114
* CVE-2024-53119
* CVE-2024-53120
* CVE-2024-53122
* CVE-2024-53125
* CVE-2024-53130
* CVE-2024-53131
* CVE-2024-53142
* CVE-2024-53146
* CVE-2024-53150
* CVE-2024-53156
* CVE-2024-53157
* CVE-2024-53158
* CVE-2024-53161
* CVE-2024-53162
* CVE-2024-53173
* CVE-2024-53179
* CVE-2024-53206
* CVE-2024-53210
* CVE-2024-53213
* CVE-2024-53214
* CVE-2024-53239
* CVE-2024-53240
* CVE-2024-53241
* CVE-2024-56539
* CVE-2024-56548
* CVE-2024-56549
* CVE-2024-56570
* CVE-2024-56571
* CVE-2024-56575
* CVE-2024-56598
* CVE-2024-56604
* CVE-2024-56605
* CVE-2024-56619
* CVE-2024-56755
* CVE-2024-8805
CVSS scores:
* CVE-2020-12770 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H
* CVE-2020-12770 ( NVD ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
* CVE-2021-34556 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
* CVE-2021-34556 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
* CVE-2021-35477 ( SUSE ): 6.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N
* CVE-2021-35477 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
* CVE-2021-38160 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2021-38160 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2021-47202 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2021-47202 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2022-36280 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2022-36280 ( NVD ): 6.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:H
* CVE-2022-48742 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2022-48742 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2022-49033 ( SUSE ): 6.8
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2022-49033 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2022-49033 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2022-49035 ( SUSE ): 8.5
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2022-49035 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2022-49035 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2023-1382 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2023-1382 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2023-33951 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:L
* CVE-2023-33951 ( NVD ): 5.3 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:N/A:N
* CVE-2023-33952 ( SUSE ): 8.2 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
* CVE-2023-33952 ( NVD ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
* CVE-2023-52920 ( SUSE ): 6.8
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2023-52920 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2023-52920 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2024-24860 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2024-24860 ( NVD ): 5.3 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2024-26886 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2024-26886 ( NVD ): 6.5 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2024-26924 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2024-26924 ( NVD ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2024-36915 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H
* CVE-2024-42232 ( SUSE ): 7.3
CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2024-42232 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2024-42232 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2024-44934 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2024-44934 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2024-47666 ( SUSE ): 5.7
CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2024-47666 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2024-47666 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2024-47678 ( SUSE ): 6.8
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
* CVE-2024-47678 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
* CVE-2024-47678 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
* CVE-2024-49944 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2024-49944 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2024-49952 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2024-49952 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2024-50018 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
* CVE-2024-50018 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2024-50143 ( SUSE ): 6.9
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N
* CVE-2024-50143 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H
* CVE-2024-50143 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2024-50154 ( SUSE ): 7.3
CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2024-50154 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2024-50154 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2024-50154 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2024-50166 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2024-50166 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2024-50181 ( SUSE ): 6.8
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2024-50181 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2024-50181 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2024-50202 ( SUSE ): 6.8
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2024-50202 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2024-50202 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2024-50211 ( SUSE ): 6.8
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2024-50211 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2024-50211 ( NVD ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
* CVE-2024-50256 ( SUSE ): 6.8
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2024-50256 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2024-50256 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2024-50262 ( SUSE ): 6.9
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N
* CVE-2024-50262 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H
* CVE-2024-50262 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2024-50262 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2024-50278 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:H/A:H
* CVE-2024-50278 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
* CVE-2024-50279 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H
* CVE-2024-50279 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
* CVE-2024-50280 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2024-50280 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2024-50296 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2024-50296 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2024-53051 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2024-53051 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2024-53055 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2024-53055 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2024-53056 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2024-53056 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2024-53064 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2024-53064 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2024-53072 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2024-53072 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2024-53090 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2024-53090 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2024-53101 ( SUSE ): 6.9
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N
* CVE-2024-53101 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H
* CVE-2024-53101 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2024-53113 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2024-53113 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2024-53114 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2024-53114 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2024-53119 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2024-53119 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2024-53120 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2024-53120 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2024-53122 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2024-53122 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2024-53125 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2024-53130 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2024-53130 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2024-53131 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2024-53131 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2024-53142 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
* CVE-2024-53142 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2024-53146 ( SUSE ): 8.5
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2024-53146 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2024-53146 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2024-53150 ( SUSE ): 6.9
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N
* CVE-2024-53150 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H
* CVE-2024-53150 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
* CVE-2024-53156 ( SUSE ): 8.5
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2024-53156 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2024-53156 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2024-53157 ( SUSE ): 6.8
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2024-53157 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2024-53157 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2024-53158 ( SUSE ): 6.9
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2024-53158 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H
* CVE-2024-53161 ( SUSE ): 6.9
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N
* CVE-2024-53161 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H
* CVE-2024-53162 ( SUSE ): 6.9
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N
* CVE-2024-53162 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H
* CVE-2024-53173 ( SUSE ): 7.3
CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2024-53173 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2024-53173 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2024-53179 ( SUSE ): 7.3
CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2024-53179 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2024-53179 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2024-53206 ( SUSE ): 5.9
CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N
* CVE-2024-53206 ( SUSE ): 5.8 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H
* CVE-2024-53206 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2024-53210 ( SUSE ): 6.8
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2024-53210 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2024-53210 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2024-53213 ( SUSE ): 6.9
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N
* CVE-2024-53213 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H
* CVE-2024-53213 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2024-53214 ( SUSE ): 8.5
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2024-53214 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2024-53239 ( SUSE ): 8.5
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2024-53239 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2024-53241 ( SUSE ): 6.8
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
* CVE-2024-53241 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
* CVE-2024-56539 ( SUSE ): 8.6
CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2024-56539 ( SUSE ): 8.0 CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
* CVE-2024-56548 ( SUSE ): 8.4
CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2024-56548 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
* CVE-2024-56549 ( SUSE ): 5.7
CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2024-56549 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2024-56549 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2024-56570 ( SUSE ): 6.8
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2024-56570 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2024-56571 ( SUSE ): 6.8
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2024-56571 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2024-56575 ( SUSE ): 6.8
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2024-56575 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2024-56598 ( SUSE ): 7.3
CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2024-56598 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2024-56598 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2024-56604 ( SUSE ): 8.5
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2024-56604 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2024-56604 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2024-56605 ( SUSE ): 8.5
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2024-56605 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2024-56605 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2024-56619 ( SUSE ): 8.5
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2024-56619 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2024-56755 ( SUSE ): 2.0
CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N
* CVE-2024-56755 ( SUSE ): 2.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L
* CVE-2024-56755 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2024-8805 ( SUSE ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
* CVE-2024-8805 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
* CVE-2024-8805 ( NVD ): 8.8 CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected Products:
* openSUSE Leap 15.5
* SUSE Linux Enterprise Micro 5.5
An update that solves 80 vulnerabilities and has 44 security fixes can now be
installed.
## Description:
The SUSE Linux Enterprise 15 SP5 RT kernel was updated to receive various
security bugfixes.
The following security bugs were fixed:
* CVE-2022-36280: Fixed out-of-bounds memory access vulnerability found in
vmwgfx driver (bsc#1203332).
* CVE-2022-48742: rtnetlink: make sure to refresh master_dev/m_ops in
__rtnl_newlink() (bsc#1226694).
* CVE-2022-49033: btrfs: qgroup: fix sleep from invalid context bug in
btrfs_qgroup_inherit() (bsc#1232045).
* CVE-2023-1382: Fixed denial of service in tipc_conn_close (bsc#1209288).
* CVE-2023-52920: bpf: support non-r10 register spill/fill to/from stack in
precision tracking (bsc#1232823).
* CVE-2024-26886: Bluetooth: af_bluetooth: Fix deadlock (bsc#1223044).
* CVE-2024-26924: scsi: lpfc: Release hbalock before calling
lpfc_worker_wake_up() (bsc#1225820).
* CVE-2024-36915: nfc: llcp: fix nfc_llcp_setsockopt() unsafe copies
(bsc#1225758).
* CVE-2024-44934: net: bridge: mcast: wait for previous gc cycles when
removing port (bsc#1229809).
* CVE-2024-47666: scsi: pm80xx: Set phy->enable_completion only when we wait
for it (bsc#1231453).
* CVE-2024-47678: icmp: change the order of rate limits (bsc#1231854).
* CVE-2024-49944: sctp: set sk_state back to CLOSED if autobind fails in
sctp_listen_start (bsc#1232166).
* CVE-2024-49952: netfilter: nf_tables: prevent nf_skb_duplicated corruption
(bsc#1232157).
* CVE-2024-50018: net: napi: Prevent overflow of napi_defer_hard_irqs
(bsc#1232419).
* CVE-2024-50143: udf: fix uninit-value use in udf_get_fileshortad
(bsc#1233038).
* CVE-2024-50166: fsl/fman: Fix refcount handling of fman-related devices
(bsc#1233050).
* CVE-2024-50181: clk: imx: Remove CLK_SET_PARENT_GATE for DRAM mux for i.MX7D
(bsc#1233127).
* CVE-2024-50202: nilfs2: propagate directory read errors from
nilfs_find_entry() (bsc#1233324).
* CVE-2024-50211: udf: refactor inode_bmap() to handle error (bsc#1233096).
* CVE-2024-50256: netfilter: nf_reject_ipv6: fix potential crash in
nf_send_reset6() (bsc#1233200).
* CVE-2024-50262: bpf: Fix out-of-bounds write in trie_get_next_key()
(bsc#1233239).
* CVE-2024-50296: net: hns3: fix kernel crash when uninstalling driver
(bsc#1233485).
* CVE-2024-53051: drm/i915/hdcp: Add encoder check in
intel_hdcp_get_capability (bsc#1233547).
* CVE-2024-53055: wifi: iwlwifi: mvm: fix 6 GHz scan construction
(bsc#1233550).
* CVE-2024-53056: drm/mediatek: Fix potential NULL dereference in
mtk_crtc_destroy() (bsc#1233568).
* CVE-2024-53064: idpf: fix idpf_vc_core_init error path (bsc#1233558).
* CVE-2024-53072: platform/x86/amd/pmc: Detect when STB is not available
(bsc#1233564).
* CVE-2024-53090: afs: Fix lock recursion (bsc#1233637).
* CVE-2024-53101: fs: Fix uninitialized value issue in from_kuid and from_kgid
(bsc#1233769).
* CVE-2024-53113: mm: fix NULL pointer dereference in alloc_pages_bulk_noprof
(bsc#1234077).
* CVE-2024-53114: x86/CPU/AMD: Clear virtualized VMLOAD/VMSAVE on Zen4 client
(bsc#1234072).
* CVE-2024-53119: virtio/vsock: Fix accept_queue memory leak (bsc#1234073).
* CVE-2024-53122: mptcp: cope racing subflow creation in
mptcp_rcv_space_adjust (bsc#1234076).
* CVE-2024-53125: bpf: sync_linked_regs() must preserve subreg_def
(bsc#1234156).
* CVE-2024-53130: nilfs2: fix null-ptr-deref in block_dirty_buffer tracepoint
(bsc#1234219).
* CVE-2024-53131: nilfs2: fix null-ptr-deref in block_touch_buffer tracepoint
(bsc#1234220).
* CVE-2024-53146: NFSD: Prevent a potential integer overflow (bsc#1234853).
* CVE-2024-53150: ALSA: usb-audio: Fix out of bounds reads when finding clock
sources (bsc#1234834).
* CVE-2024-53156: wifi: ath9k: add range check for conn_rsp_epid in
htc_connect_service() (bsc#1234846).
* CVE-2024-53157: firmware: arm_scpi: Check the DVFS OPP count returned by the
firmware (bsc#1234827).
* CVE-2024-53158: soc: qcom: geni-se: fix array underflow in
geni_se_clk_tbl_get() (bsc#1234811).
* CVE-2024-53161: EDAC/bluefield: Fix potential integer overflow
(bsc#1234856).
* CVE-2024-53162: crypto: qat/qat_4xxx - fix off by one in uof_get_name()
(bsc#1234843).
* CVE-2024-53173: NFSv4.0: Fix a use-after-free problem in the asynchronous
open() (bsc#1234891).
* CVE-2024-53179: smb: client: fix use-after-free of signing key
(bsc#1234921).
* CVE-2024-53210: s390/iucv: MSG_PEEK causes memory leak in
iucv_sock_destruct() (bsc#1234971).
* CVE-2024-53213: net: usb: lan78xx: Fix double free issue with interrupt
buffer allocation (bsc#1234973).
* CVE-2024-53214: vfio/pci: Properly hide first-in-list PCIe extended
capability (bsc#1235004).
* CVE-2024-53239: ALSA: 6fire: Release resources at card release
(bsc#1235054).
* CVE-2024-53240: xen/netfront: fix crash when removing device (bsc#1234281).
* CVE-2024-53241: x86/xen: use new hypercall functions instead of hypercall
page (bsc#1234282).
* CVE-2024-56539: wifi: mwifiex: Fix memcpy() field-spanning write warning in
mwifiex_config_scan() (bsc#1234963).
* CVE-2024-56548: hfsplus: do not query the device logical block size multiple
times (bsc#1235073).
* CVE-2024-56549: cachefiles: Fix NULL pointer dereference in object->file
(bsc#1234912).
* CVE-2024-56570: ovl: Filter invalid inodes with missing lookup function
(bsc#1235035).
* CVE-2024-56571: media: uvcvideo: Require entities to have a non-zero unique
ID (bsc#1235037).
* CVE-2024-56575: media: imx-jpeg: Ensure power suppliers be suspended before
detach them (bsc#1235039).
* CVE-2024-56598: jfs: array-index-out-of-bounds fix in dtReadFirst
(bsc#1235220).
* CVE-2024-56604: Bluetooth: RFCOMM: avoid leaving dangling sk pointer in
rfcomm_sock_alloc() (bsc#1235056).
* CVE-2024-56605: Bluetooth: L2CAP: do not leave dangling sk pointer on error
in l2cap_sock_create() (bsc#1235061).
* CVE-2024-56619: nilfs2: fix potential out-of-bounds memory access in
nilfs_find_entry() (bsc#1235224).
* CVE-2024-56755: netfs/fscache: Add a memory barrier for
FSCACHE_VOLUME_CREATING (bsc#1234920).
The following non-security bugs were fixed:
* ACPI/HMAT: Move HMAT messages to pr_debug() (bsc#1234294)
* amd_hsmp: Add HSMP protocol version 5 messages (jsc#PED-1295).
* arm64: dts: allwinner: pinephone: Add mount matrix to accelerometer (git-
fixes).
* arm64: dts: rockchip: Fix bluetooth properties on Rock960 boards (git-
fixes).
* arm64: dts: rockchip: Fix LED triggers on rk3308-roc-cc (git-fixes).
* arm64: dts: rockchip: Fix rt5651 compatible value on rk3399-sapphire-
excavator (git-fixes).
* arm64: dts: rockchip: Remove #cooling-cells from fan on Theobroma lion (git-
fixes).
* arm64: dts: rockchip: Remove hdmi's 2nd interrupt on rk3328 (git-fixes).
* arm64: Ensure bits ASID[15:8] are masked out when the kernel uses
(bsc#1234605)
* autofs: fix memory leak of waitqueues in autofs_catatonic_mode (git-fixes).
* autofs: use flexible array in ioctl structure (git-fixes).
* devlink: allow registering parameters after the instance (bsc#1231388
bsc#1230422).
* devlink: do not require setting features before registration (bsc#1231388
bsc#1230422).
* dma-fence: Fix reference leak on fence merge failure path (git-fixes).
* dmaengine: idxd: add wq driver name support for accel-config user tool
(bsc#1234357).
* dmaengine: idxd: Check for driver name match before sva user feature
(bsc#1234357).
* Documentation: Add x86/amd_hsmp driver (jsc#PED-1295).
* Drivers: hv: util: Avoid accessing a ringbuffer not initialized yet (git-
fixes).
* drm/sti: Add __iomem for mixer_dbg_mxn's parameter (git-fixes).
* drm/v3d: Enable Performance Counters before clearing them (git-fixes).
* exfat: fix uninit-value in __exfat_get_dentry_set (git-fixes).
* hfsplus: do not query the device logical block size multiple times (git-
fixes).
* idpf: add support for SW triggered interrupts (bsc#1235507).
* idpf: enable WB_ON_ITR (bsc#1235507).
* idpf: trigger SW interrupt when exiting wb_on_itr mode (bsc#1235507).
* ipc/sem: Fix dangling sem_array access in semtimedop race (bsc#1234727).
* jffs2: Fix rtime decompressor (git-fixes).
* jffs2: fix use of uninitialized variable (git-fixes).
* jffs2: Prevent rtime decompress memory corruption (git-fixes).
* jfs: add a check to prevent array-index-out-of-bounds in dbAdjTree (git-
fixes).
* jfs: array-index-out-of-bounds fix in dtReadFirst (git-fixes).
* jfs: fix array-index-out-of-bounds in jfs_readdir (git-fixes).
* jfs: fix shift-out-of-bounds in dbSplit (git-fixes).
* jfs: xattr: check invalid xattr size more strictly (git-fixes).
* kabi/severities: ignore intermodule symbols between fsl_fman and
fsl_dpaa_eth
* kobject: Add sanity check for kset->kobj.ktype in kset_register()
(bsc#1234639).
* KVM: x86: fix sending PV IPI (git-fixes).
* memory: tegra: Add API for retrieving carveout bounds (jsc#PED-1763).
* mm/kfence: reset PG_slab and memcg_data before freeing __kfence_pool
(bsc#1234120).
* mmc: core: Further prevent card detect during shutdown (git-fixes).
* net: mana: Increase the DEF_RX_BUFFERS_PER_QUEUE to 1024 (bsc#1235246).
* net/ipv6: release expired exception dst cached in socket (bsc#1216813).
* NFS/pnfs: Fix a live lock between recalled layouts and layoutget (git-
fixes).
* NFSD: Fix nfsd4_shutdown_copy() (git-fixes).
* nfsd: make sure exp active before svc_export_show (git-fixes).
* NFSD: Move fill_pre_wcc() and fill_post_wcc() (bsc#1234650 bsc#1233701
bsc#1232472).
* NFSD: Prevent a potential integer overflow (git-fixes).
* NFSD: Prevent NULL dereference in nfsd4_process_cb_update() (git-fixes).
* NFSD: reduce locking in nfsd_lookup() (bsc#1234650 bsc#1233701 bsc#1232472).
* nfsd: remove unsafe BUG_ON from set_change_info (bsc#1234650 bsc#1233701
bsc#1232472).
* nfsd: restore callback functionality for NFSv4.0 (git-fixes).
* NFSv4.0: Fix a use-after-free problem in the asynchronous open() (git-
fixes).
* nilfs2: fix potential out-of-bounds memory access in nilfs_find_entry()
(git-fixes).
* nilfs2: prevent use of deleted inode (git-fixes).
* ocfs2: uncache inode which has failed entering the group (bsc#1234087).
* PCI: vmd: Fix secondary bus reset for Intel bridges (git-fixes).
* phy: tegra: p2u: Set ENABLE_L2_EXIT_RATE_CHANGE in calibration
(jsc#PED-1763).
* platform/x86: Add AMD system management interface (jsc#PED-1295).
* proc/softirqs: replace seq_printf with seq_put_decimal_ull_width (git-
fixes).
* pwm: tegra: Improve required rate calculation (jsc#PED-1763).
* RDMA/hns: Disassociate mmap pages for all uctx when HW is being reset (git-
fixes)
* regmap: detach regmap from dev on regmap_exit (git-fixes).
* scatterlist: fix incorrect func name in kernel-doc (git-fixes).
* scripts/git_sort/git_sort.py: add tegra DRM and linux-pwm repo
* scsi: storvsc: Do not flag MAINTENANCE_IN return of SRB_STATUS_DATA_OVERRUN
as an error (git-fixes).
* serial: tegra: Read DMA status before terminating (jsc#PED-1763).
* smb: client: fix TCP timers deadlock after rmmod (git-fixes) (bsc#1233642).
* spi: mpc52xx: Add cancel_work_sync before module remove (git-fixes).
* SUNRPC: make sure cache entry active before cache_show (git-fixes).
* sunrpc: simplify two-level sysctl registration for svcrdma_parm_table (git-
fixes).
* svcrdma: Address an integer overflow (git-fixes).
* svcrdma: fix miss destroy percpu_counter in svc_rdma_proc_init() (git-
fixes).
* tpm_tis_spi: Release chip select when flow control fails (bsc#1234338)
* ubifs: authentication: Fix use-after-free in ubifs_tnc_end_commit (git-
fixes).
* ubifs: Correct the total block count by deducting journal reservation (git-
fixes).
* udf: Handle error when adding extent to a file (bsc#1234437).
* udf: refactor udf_current_aext() to handle error (bsc#1234240).
* udf: refactor udf_next_aext() to handle error (bsc#1234241).
* usb: roles: Call try_module_get() from usb_role_switch_find_by_fwnode()
(git-fixes).
* usb: typec: tps6598x: Fix return value check in tps6598x_probe() (git-
fixes).
* x86: Annotate call_on_stack() (git-fixes).
* x86/bug: Merge annotate_reachable() into _BUG_FLAGS() asm (git-fixes).
* x86/fpu: Remove unused supervisor only offsets (git-fixes).
* x86/fpu/xsave: Handle compacted offsets correctly with supervisor states
(git-fixes).
* x86/fpu/xstate: Fix the ARCH_REQ_XCOMP_PERM implementation (git-fixes).
* x86/kvm: Do not use pv tlb/ipi/sched_yield if on 1 vCPU (git-fixes).
* x86/mce: Allow instrumentation during task work queueing (git-fixes).
* x86/mce: Mark mce_end() noinstr (git-fixes).
* x86/mce: Mark mce_panic() noinstr (git-fixes).
* x86/mce: Mark mce_read_aux() noinstr (git-fixes).
* x86/mce/inject: Avoid out-of-bounds write when setting flags (git-fixes).
* x86/mm: Flush global TLB when switching to trampoline page-table (git-
fixes).
* x86/sgx: Free backing memory after faulting the enclave page (git-fixes).
* x86/sgx: Silence softlockup detection when releasing large enclaves (git-
fixes).
* x86/uaccess: Move variable into switch case statement (git-fixes).
* xfs: can't use kmem_zalloc() for attribute buffers (bsc#1216909).
* zonefs: fix zone report size in __zonefs_io_error() (git-fixes).
## Special Instructions and Notes:
* Please reboot the system after installing this update.
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* openSUSE Leap 15.5
zypper in -t patch SUSE-2025-229=1
* SUSE Linux Enterprise Micro 5.5
zypper in -t patch SUSE-SLE-Micro-5.5-2025-229=1
## Package List:
* openSUSE Leap 15.5 (noarch)
* kernel-devel-rt-5.14.21-150500.13.82.1
* kernel-source-rt-5.14.21-150500.13.82.1
* openSUSE Leap 15.5 (x86_64)
* ocfs2-kmp-rt-5.14.21-150500.13.82.1
* kernel-rt_debug-vdso-5.14.21-150500.13.82.1
* gfs2-kmp-rt-debuginfo-5.14.21-150500.13.82.1
* kernel-rt_debug-debuginfo-5.14.21-150500.13.82.1
* kernel-rt-livepatch-5.14.21-150500.13.82.1
* kernel-rt-extra-5.14.21-150500.13.82.1
* kernel-rt-optional-5.14.21-150500.13.82.1
* kernel-rt_debug-devel-5.14.21-150500.13.82.1
* cluster-md-kmp-rt-5.14.21-150500.13.82.1
* kernel-rt-debugsource-5.14.21-150500.13.82.1
* kernel-rt-vdso-5.14.21-150500.13.82.1
* kernel-syms-rt-5.14.21-150500.13.82.1
* kernel-rt-optional-debuginfo-5.14.21-150500.13.82.1
* gfs2-kmp-rt-5.14.21-150500.13.82.1
* kselftests-kmp-rt-5.14.21-150500.13.82.1
* reiserfs-kmp-rt-debuginfo-5.14.21-150500.13.82.1
* kernel-rt_debug-debugsource-5.14.21-150500.13.82.1
* reiserfs-kmp-rt-5.14.21-150500.13.82.1
* kernel-rt_debug-devel-debuginfo-5.14.21-150500.13.82.1
* kernel-rt-extra-debuginfo-5.14.21-150500.13.82.1
* dlm-kmp-rt-5.14.21-150500.13.82.1
* kselftests-kmp-rt-debuginfo-5.14.21-150500.13.82.1
* ocfs2-kmp-rt-debuginfo-5.14.21-150500.13.82.1
* kernel-rt-livepatch-devel-5.14.21-150500.13.82.1
* dlm-kmp-rt-debuginfo-5.14.21-150500.13.82.1
* kernel-rt-debuginfo-5.14.21-150500.13.82.1
* kernel-rt-devel-5.14.21-150500.13.82.1
* kernel-rt-vdso-debuginfo-5.14.21-150500.13.82.1
* kernel-rt-devel-debuginfo-5.14.21-150500.13.82.1
* kernel-rt_debug-vdso-debuginfo-5.14.21-150500.13.82.1
* cluster-md-kmp-rt-debuginfo-5.14.21-150500.13.82.1
* openSUSE Leap 15.5 (nosrc x86_64)
* kernel-rt-5.14.21-150500.13.82.1
* kernel-rt_debug-5.14.21-150500.13.82.1
* SUSE Linux Enterprise Micro 5.5 (nosrc x86_64)
* kernel-rt-5.14.21-150500.13.82.1
* SUSE Linux Enterprise Micro 5.5 (x86_64)
* kernel-rt-debuginfo-5.14.21-150500.13.82.1
* kernel-rt-debugsource-5.14.21-150500.13.82.1
* SUSE Linux Enterprise Micro 5.5 (noarch)
* kernel-source-rt-5.14.21-150500.13.82.1
## References:
* https://www.suse.com/security/cve/CVE-2020-12770.html
* https://www.suse.com/security/cve/CVE-2021-34556.html
* https://www.suse.com/security/cve/CVE-2021-35477.html
* https://www.suse.com/security/cve/CVE-2021-38160.html
* https://www.suse.com/security/cve/CVE-2021-47202.html
* https://www.suse.com/security/cve/CVE-2022-36280.html
* https://www.suse.com/security/cve/CVE-2022-48742.html
* https://www.suse.com/security/cve/CVE-2022-49033.html
* https://www.suse.com/security/cve/CVE-2022-49035.html
* https://www.suse.com/security/cve/CVE-2023-1382.html
* https://www.suse.com/security/cve/CVE-2023-33951.html
* https://www.suse.com/security/cve/CVE-2023-33952.html
* https://www.suse.com/security/cve/CVE-2023-52920.html
* https://www.suse.com/security/cve/CVE-2024-24860.html
* https://www.suse.com/security/cve/CVE-2024-26886.html
* https://www.suse.com/security/cve/CVE-2024-26924.html
* https://www.suse.com/security/cve/CVE-2024-36915.html
* https://www.suse.com/security/cve/CVE-2024-42232.html
* https://www.suse.com/security/cve/CVE-2024-44934.html
* https://www.suse.com/security/cve/CVE-2024-47666.html
* https://www.suse.com/security/cve/CVE-2024-47678.html
* https://www.suse.com/security/cve/CVE-2024-49944.html
* https://www.suse.com/security/cve/CVE-2024-49952.html
* https://www.suse.com/security/cve/CVE-2024-50018.html
* https://www.suse.com/security/cve/CVE-2024-50143.html
* https://www.suse.com/security/cve/CVE-2024-50154.html
* https://www.suse.com/security/cve/CVE-2024-50166.html
* https://www.suse.com/security/cve/CVE-2024-50181.html
* https://www.suse.com/security/cve/CVE-2024-50202.html
* https://www.suse.com/security/cve/CVE-2024-50211.html
* https://www.suse.com/security/cve/CVE-2024-50256.html
* https://www.suse.com/security/cve/CVE-2024-50262.html
* https://www.suse.com/security/cve/CVE-2024-50278.html
* https://www.suse.com/security/cve/CVE-2024-50279.html
* https://www.suse.com/security/cve/CVE-2024-50280.html
* https://www.suse.com/security/cve/CVE-2024-50296.html
* https://www.suse.com/security/cve/CVE-2024-53051.html
* https://www.suse.com/security/cve/CVE-2024-53055.html
* https://www.suse.com/security/cve/CVE-2024-53056.html
* https://www.suse.com/security/cve/CVE-2024-53064.html
* https://www.suse.com/security/cve/CVE-2024-53072.html
* https://www.suse.com/security/cve/CVE-2024-53090.html
* https://www.suse.com/security/cve/CVE-2024-53101.html
* https://www.suse.com/security/cve/CVE-2024-53113.html
* https://www.suse.com/security/cve/CVE-2024-53114.html
* https://www.suse.com/security/cve/CVE-2024-53119.html
* https://www.suse.com/security/cve/CVE-2024-53120.html
* https://www.suse.com/security/cve/CVE-2024-53122.html
* https://www.suse.com/security/cve/CVE-2024-53125.html
* https://www.suse.com/security/cve/CVE-2024-53130.html
* https://www.suse.com/security/cve/CVE-2024-53131.html
* https://www.suse.com/security/cve/CVE-2024-53142.html
* https://www.suse.com/security/cve/CVE-2024-53146.html
* https://www.suse.com/security/cve/CVE-2024-53150.html
* https://www.suse.com/security/cve/CVE-2024-53156.html
* https://www.suse.com/security/cve/CVE-2024-53157.html
* https://www.suse.com/security/cve/CVE-2024-53158.html
* https://www.suse.com/security/cve/CVE-2024-53161.html
* https://www.suse.com/security/cve/CVE-2024-53162.html
* https://www.suse.com/security/cve/CVE-2024-53173.html
* https://www.suse.com/security/cve/CVE-2024-53179.html
* https://www.suse.com/security/cve/CVE-2024-53206.html
* https://www.suse.com/security/cve/CVE-2024-53210.html
* https://www.suse.com/security/cve/CVE-2024-53213.html
* https://www.suse.com/security/cve/CVE-2024-53214.html
* https://www.suse.com/security/cve/CVE-2024-53239.html
* https://www.suse.com/security/cve/CVE-2024-53240.html
* https://www.suse.com/security/cve/CVE-2024-53241.html
* https://www.suse.com/security/cve/CVE-2024-56539.html
* https://www.suse.com/security/cve/CVE-2024-56548.html
* https://www.suse.com/security/cve/CVE-2024-56549.html
* https://www.suse.com/security/cve/CVE-2024-56570.html
* https://www.suse.com/security/cve/CVE-2024-56571.html
* https://www.suse.com/security/cve/CVE-2024-56575.html
* https://www.suse.com/security/cve/CVE-2024-56598.html
* https://www.suse.com/security/cve/CVE-2024-56604.html
* https://www.suse.com/security/cve/CVE-2024-56605.html
* https://www.suse.com/security/cve/CVE-2024-56619.html
* https://www.suse.com/security/cve/CVE-2024-56755.html
* https://www.suse.com/security/cve/CVE-2024-8805.html
* https://bugzilla.suse.com/show_bug.cgi?id=1135481
* https://bugzilla.suse.com/show_bug.cgi?id=1170891
* https://bugzilla.suse.com/show_bug.cgi?id=1171420
* https://bugzilla.suse.com/show_bug.cgi?id=1173139
* https://bugzilla.suse.com/show_bug.cgi?id=1175543
* https://bugzilla.suse.com/show_bug.cgi?id=1181006
* https://bugzilla.suse.com/show_bug.cgi?id=1185010
* https://bugzilla.suse.com/show_bug.cgi?id=1187211
* https://bugzilla.suse.com/show_bug.cgi?id=1187619
* https://bugzilla.suse.com/show_bug.cgi?id=1188412
* https://bugzilla.suse.com/show_bug.cgi?id=1188616
* https://bugzilla.suse.com/show_bug.cgi?id=1188700
* https://bugzilla.suse.com/show_bug.cgi?id=1188983
* https://bugzilla.suse.com/show_bug.cgi?id=1188985
* https://bugzilla.suse.com/show_bug.cgi?id=1189760
* https://bugzilla.suse.com/show_bug.cgi?id=1189762
* https://bugzilla.suse.com/show_bug.cgi?id=1189870
* https://bugzilla.suse.com/show_bug.cgi?id=1189872
* https://bugzilla.suse.com/show_bug.cgi?id=1190117
* https://bugzilla.suse.com/show_bug.cgi?id=1190131
* https://bugzilla.suse.com/show_bug.cgi?id=1190181
* https://bugzilla.suse.com/show_bug.cgi?id=1190358
* https://bugzilla.suse.com/show_bug.cgi?id=1190412
* https://bugzilla.suse.com/show_bug.cgi?id=1190428
* https://bugzilla.suse.com/show_bug.cgi?id=1203332
* https://bugzilla.suse.com/show_bug.cgi?id=1205521
* https://bugzilla.suse.com/show_bug.cgi?id=1209288
* https://bugzilla.suse.com/show_bug.cgi?id=1209798
* https://bugzilla.suse.com/show_bug.cgi?id=1211593
* https://bugzilla.suse.com/show_bug.cgi?id=1211595
* https://bugzilla.suse.com/show_bug.cgi?id=1215304
* https://bugzilla.suse.com/show_bug.cgi?id=1216813
* https://bugzilla.suse.com/show_bug.cgi?id=1216909
* https://bugzilla.suse.com/show_bug.cgi?id=1219608
* https://bugzilla.suse.com/show_bug.cgi?id=1222878
* https://bugzilla.suse.com/show_bug.cgi?id=1223044
* https://bugzilla.suse.com/show_bug.cgi?id=1225758
* https://bugzilla.suse.com/show_bug.cgi?id=1225820
* https://bugzilla.suse.com/show_bug.cgi?id=1226694
* https://bugzilla.suse.com/show_bug.cgi?id=1228190
* https://bugzilla.suse.com/show_bug.cgi?id=1229809
* https://bugzilla.suse.com/show_bug.cgi?id=1230422
* https://bugzilla.suse.com/show_bug.cgi?id=1230697
* https://bugzilla.suse.com/show_bug.cgi?id=1231388
* https://bugzilla.suse.com/show_bug.cgi?id=1231453
* https://bugzilla.suse.com/show_bug.cgi?id=1231854
* https://bugzilla.suse.com/show_bug.cgi?id=1232045
* https://bugzilla.suse.com/show_bug.cgi?id=1232157
* https://bugzilla.suse.com/show_bug.cgi?id=1232166
* https://bugzilla.suse.com/show_bug.cgi?id=1232419
* https://bugzilla.suse.com/show_bug.cgi?id=1232436
* https://bugzilla.suse.com/show_bug.cgi?id=1232472
* https://bugzilla.suse.com/show_bug.cgi?id=1232823
* https://bugzilla.suse.com/show_bug.cgi?id=1233038
* https://bugzilla.suse.com/show_bug.cgi?id=1233050
* https://bugzilla.suse.com/show_bug.cgi?id=1233070
* https://bugzilla.suse.com/show_bug.cgi?id=1233096
* https://bugzilla.suse.com/show_bug.cgi?id=1233127
* https://bugzilla.suse.com/show_bug.cgi?id=1233200
* https://bugzilla.suse.com/show_bug.cgi?id=1233239
* https://bugzilla.suse.com/show_bug.cgi?id=1233324
* https://bugzilla.suse.com/show_bug.cgi?id=1233467
* https://bugzilla.suse.com/show_bug.cgi?id=1233468
* https://bugzilla.suse.com/show_bug.cgi?id=1233469
* https://bugzilla.suse.com/show_bug.cgi?id=1233485
* https://bugzilla.suse.com/show_bug.cgi?id=1233547
* https://bugzilla.suse.com/show_bug.cgi?id=1233550
* https://bugzilla.suse.com/show_bug.cgi?id=1233558
* https://bugzilla.suse.com/show_bug.cgi?id=1233564
* https://bugzilla.suse.com/show_bug.cgi?id=1233568
* https://bugzilla.suse.com/show_bug.cgi?id=1233637
* https://bugzilla.suse.com/show_bug.cgi?id=1233701
* https://bugzilla.suse.com/show_bug.cgi?id=1233769
* https://bugzilla.suse.com/show_bug.cgi?id=1233837
* https://bugzilla.suse.com/show_bug.cgi?id=1234072
* https://bugzilla.suse.com/show_bug.cgi?id=1234073
* https://bugzilla.suse.com/show_bug.cgi?id=1234075
* https://bugzilla.suse.com/show_bug.cgi?id=1234076
* https://bugzilla.suse.com/show_bug.cgi?id=1234077
* https://bugzilla.suse.com/show_bug.cgi?id=1234087
* https://bugzilla.suse.com/show_bug.cgi?id=1234120
* https://bugzilla.suse.com/show_bug.cgi?id=1234156
* https://bugzilla.suse.com/show_bug.cgi?id=1234219
* https://bugzilla.suse.com/show_bug.cgi?id=1234220
* https://bugzilla.suse.com/show_bug.cgi?id=1234240
* https://bugzilla.suse.com/show_bug.cgi?id=1234241
* https://bugzilla.suse.com/show_bug.cgi?id=1234281
* https://bugzilla.suse.com/show_bug.cgi?id=1234282
* https://bugzilla.suse.com/show_bug.cgi?id=1234294
* https://bugzilla.suse.com/show_bug.cgi?id=1234338
* https://bugzilla.suse.com/show_bug.cgi?id=1234357
* https://bugzilla.suse.com/show_bug.cgi?id=1234437
* https://bugzilla.suse.com/show_bug.cgi?id=1234464
* https://bugzilla.suse.com/show_bug.cgi?id=1234605
* https://bugzilla.suse.com/show_bug.cgi?id=1234639
* https://bugzilla.suse.com/show_bug.cgi?id=1234650
* https://bugzilla.suse.com/show_bug.cgi?id=1234727
* https://bugzilla.suse.com/show_bug.cgi?id=1234811
* https://bugzilla.suse.com/show_bug.cgi?id=1234827
* https://bugzilla.suse.com/show_bug.cgi?id=1234834
* https://bugzilla.suse.com/show_bug.cgi?id=1234843
* https://bugzilla.suse.com/show_bug.cgi?id=1234846
* https://bugzilla.suse.com/show_bug.cgi?id=1234853
* https://bugzilla.suse.com/show_bug.cgi?id=1234856
* https://bugzilla.suse.com/show_bug.cgi?id=1234891
* https://bugzilla.suse.com/show_bug.cgi?id=1234912
* https://bugzilla.suse.com/show_bug.cgi?id=1234920
* https://bugzilla.suse.com/show_bug.cgi?id=1234921
* https://bugzilla.suse.com/show_bug.cgi?id=1234960
* https://bugzilla.suse.com/show_bug.cgi?id=1234963
* https://bugzilla.suse.com/show_bug.cgi?id=1234971
* https://bugzilla.suse.com/show_bug.cgi?id=1234973
* https://bugzilla.suse.com/show_bug.cgi?id=1235004
* https://bugzilla.suse.com/show_bug.cgi?id=1235035
* https://bugzilla.suse.com/show_bug.cgi?id=1235037
* https://bugzilla.suse.com/show_bug.cgi?id=1235039
* https://bugzilla.suse.com/show_bug.cgi?id=1235054
* https://bugzilla.suse.com/show_bug.cgi?id=1235056
* https://bugzilla.suse.com/show_bug.cgi?id=1235061
* https://bugzilla.suse.com/show_bug.cgi?id=1235073
* https://bugzilla.suse.com/show_bug.cgi?id=1235220
* https://bugzilla.suse.com/show_bug.cgi?id=1235224
* https://bugzilla.suse.com/show_bug.cgi?id=1235246
* https://bugzilla.suse.com/show_bug.cgi?id=1235507
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.suse.com/pipermail/sle-security-updates/attachments/20250124/dc3dc715/attachment.htm>
More information about the sle-security-updates
mailing list