<div class="container">
<h1>Security update for the Linux Kernel</h1>
<table class="table table-striped table-bordered">
<tbody>
<tr>
<th>Announcement ID:</th>
<td>SUSE-SU-2024:2923-1</td>
</tr>
<tr>
<th>Rating:</th>
<td>important</td>
</tr>
<tr>
<th>References:</th>
<td>
<ul>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1065729">bsc#1065729</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1179610">bsc#1179610</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1186463">bsc#1186463</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1216834">bsc#1216834</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1218820">bsc#1218820</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1220185">bsc#1220185</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1220186">bsc#1220186</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1220187">bsc#1220187</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1221539">bsc#1221539</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1222824">bsc#1222824</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1224682">bsc#1224682</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1224918">bsc#1224918</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1225404">bsc#1225404</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1225431">bsc#1225431</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1226519">bsc#1226519</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1226550">bsc#1226550</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1226574">bsc#1226574</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1226575">bsc#1226575</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1226666">bsc#1226666</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1226758">bsc#1226758</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1226785">bsc#1226785</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1227213">bsc#1227213</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1227487">bsc#1227487</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1227716">bsc#1227716</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1227750">bsc#1227750</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1227836">bsc#1227836</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1227976">bsc#1227976</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1228013">bsc#1228013</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1228114">bsc#1228114</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1228328">bsc#1228328</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1228561">bsc#1228561</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1228644">bsc#1228644</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1228743">bsc#1228743</a>
</li>
</ul>
</td>
</tr>
<tr>
<th>
Cross-References:
</th>
<td>
<ul>
<li style="display: inline;">
<a href="https://www.suse.com/security/cve/CVE-2020-26558.html">CVE-2020-26558</a>
</li>
<li style="display: inline;">
<a href="https://www.suse.com/security/cve/CVE-2021-0129.html">CVE-2021-0129</a>
</li>
<li style="display: inline;">
<a href="https://www.suse.com/security/cve/CVE-2021-47126.html">CVE-2021-47126</a>
</li>
<li style="display: inline;">
<a href="https://www.suse.com/security/cve/CVE-2021-47219.html">CVE-2021-47219</a>
</li>
<li style="display: inline;">
<a href="https://www.suse.com/security/cve/CVE-2021-47291.html">CVE-2021-47291</a>
</li>
<li style="display: inline;">
<a href="https://www.suse.com/security/cve/CVE-2021-47506.html">CVE-2021-47506</a>
</li>
<li style="display: inline;">
<a href="https://www.suse.com/security/cve/CVE-2021-47520.html">CVE-2021-47520</a>
</li>
<li style="display: inline;">
<a href="https://www.suse.com/security/cve/CVE-2021-47580.html">CVE-2021-47580</a>
</li>
<li style="display: inline;">
<a href="https://www.suse.com/security/cve/CVE-2021-47598.html">CVE-2021-47598</a>
</li>
<li style="display: inline;">
<a href="https://www.suse.com/security/cve/CVE-2021-47600.html">CVE-2021-47600</a>
</li>
<li style="display: inline;">
<a href="https://www.suse.com/security/cve/CVE-2022-48792.html">CVE-2022-48792</a>
</li>
<li style="display: inline;">
<a href="https://www.suse.com/security/cve/CVE-2022-48821.html">CVE-2022-48821</a>
</li>
<li style="display: inline;">
<a href="https://www.suse.com/security/cve/CVE-2023-52686.html">CVE-2023-52686</a>
</li>
<li style="display: inline;">
<a href="https://www.suse.com/security/cve/CVE-2023-52885.html">CVE-2023-52885</a>
</li>
<li style="display: inline;">
<a href="https://www.suse.com/security/cve/CVE-2024-26583.html">CVE-2024-26583</a>
</li>
<li style="display: inline;">
<a href="https://www.suse.com/security/cve/CVE-2024-26584.html">CVE-2024-26584</a>
</li>
<li style="display: inline;">
<a href="https://www.suse.com/security/cve/CVE-2024-26585.html">CVE-2024-26585</a>
</li>
<li style="display: inline;">
<a href="https://www.suse.com/security/cve/CVE-2024-36974.html">CVE-2024-36974</a>
</li>
<li style="display: inline;">
<a href="https://www.suse.com/security/cve/CVE-2024-38559.html">CVE-2024-38559</a>
</li>
<li style="display: inline;">
<a href="https://www.suse.com/security/cve/CVE-2024-39494.html">CVE-2024-39494</a>
</li>
<li style="display: inline;">
<a href="https://www.suse.com/security/cve/CVE-2024-40937.html">CVE-2024-40937</a>
</li>
<li style="display: inline;">
<a href="https://www.suse.com/security/cve/CVE-2024-41011.html">CVE-2024-41011</a>
</li>
<li style="display: inline;">
<a href="https://www.suse.com/security/cve/CVE-2024-41059.html">CVE-2024-41059</a>
</li>
<li style="display: inline;">
<a href="https://www.suse.com/security/cve/CVE-2024-41069.html">CVE-2024-41069</a>
</li>
<li style="display: inline;">
<a href="https://www.suse.com/security/cve/CVE-2024-41090.html">CVE-2024-41090</a>
</li>
<li style="display: inline;">
<a href="https://www.suse.com/security/cve/CVE-2024-42145.html">CVE-2024-42145</a>
</li>
</ul>
</td>
</tr>
<tr>
<th>CVSS scores:</th>
<td>
<ul class="list-group">
<li class="list-group-item">
<span class="cvss-reference">CVE-2020-26558</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">4.2</span>
<span class="cvss-vector">CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2020-26558</span>
<span class="cvss-source">
(
NVD
):
</span>
<span class="cvss-score">4.2</span>
<span class="cvss-vector">CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2021-0129</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">6.4</span>
<span class="cvss-vector">CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2021-0129</span>
<span class="cvss-source">
(
NVD
):
</span>
<span class="cvss-score">5.7</span>
<span class="cvss-vector">CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2021-47126</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">5.5</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2021-47219</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">5.5</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2021-47291</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">7.8</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2021-47506</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">7.0</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2021-47520</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">7.8</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2021-47520</span>
<span class="cvss-source">
(
NVD
):
</span>
<span class="cvss-score">7.8</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2021-47580</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">6.3</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:L</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2021-47598</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">7.8</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2021-47600</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">7.0</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2022-48792</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">7.0</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2022-48792</span>
<span class="cvss-source">
(
NVD
):
</span>
<span class="cvss-score">7.8</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2022-48821</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">7.8</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2023-52686</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">5.5</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2023-52885</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">8.1</span>
<span class="cvss-vector">CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2024-26583</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">5.1</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2024-26583</span>
<span class="cvss-source">
(
NVD
):
</span>
<span class="cvss-score">4.7</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2024-26584</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">5.5</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2024-26584</span>
<span class="cvss-source">
(
NVD
):
</span>
<span class="cvss-score">5.5</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2024-26585</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">7.0</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2024-26585</span>
<span class="cvss-source">
(
NVD
):
</span>
<span class="cvss-score">4.7</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2024-36974</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">7.8</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2024-38559</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">6.7</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2024-39494</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">7.8</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2024-39494</span>
<span class="cvss-source">
(
NVD
):
</span>
<span class="cvss-score">7.8</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2024-40937</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">7.8</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2024-41011</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">7.8</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2024-41059</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">7.3</span>
<span class="cvss-vector">CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2024-41059</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">7.8</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2024-41069</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">7.3</span>
<span class="cvss-vector">CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2024-41069</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">7.8</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2024-41090</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">7.1</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2024-42145</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">8.7</span>
<span class="cvss-vector">CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2024-42145</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">7.5</span>
<span class="cvss-vector">CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H</span>
</li>
</ul>
</td>
</tr>
<tr>
<th>Affected Products:</th>
<td>
<ul class="list-group">
<li class="list-group-item">SUSE Linux Enterprise High Availability Extension 15 SP2</li>
<li class="list-group-item">SUSE Linux Enterprise High Performance Computing 15 SP2</li>
<li class="list-group-item">SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2</li>
<li class="list-group-item">SUSE Linux Enterprise Live Patching 15-SP2</li>
<li class="list-group-item">SUSE Linux Enterprise Server 15 SP2</li>
<li class="list-group-item">SUSE Linux Enterprise Server 15 SP2 Business Critical Linux 15-SP2</li>
<li class="list-group-item">SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2</li>
<li class="list-group-item">SUSE Linux Enterprise Server for SAP Applications 15 SP2</li>
<li class="list-group-item">SUSE Manager Proxy 4.1</li>
<li class="list-group-item">SUSE Manager Retail Branch Server 4.1</li>
<li class="list-group-item">SUSE Manager Server 4.1</li>
</ul>
</td>
</tr>
</tbody>
</table>
<p>An update that solves 26 vulnerabilities and has seven security fixes can now be installed.</p>
<h2>Description:</h2>
<p>The SUSE Linux Enterprise 15 SP2 kernel was updated to receive various security bugfixes.</p>
<p>The following security bugs were fixed:</p>
<ul>
<li>CVE-2024-39494: ima: Fix use-after-free on a dentry's dname.name (bsc#1227716).</li>
<li>CVE-2024-41069: ASoC: topology: Fix route memory corruption (bsc#1228644).</li>
<li>CVE-2024-42145: IB/core: Implement a limit on UMAD receive List (bsc#1228743).</li>
<li>CVE-2024-41059: hfsplus: fix uninit-value in copy_name (bsc#1228561).</li>
<li>CVE-2023-52885: SUNRPC: Fix UAF in svc_tcp_listen_data_ready() (bsc#1227750).</li>
<li>CVE-2022-48792: scsi: pm8001: Fix use-after-free for aborted SSP/STP sas_task (bsc#1228013).</li>
<li>CVE-2024-41090: tap: add missing verification for short frame (bsc#1228328).</li>
<li>CVE-2021-47291: ipv6: fix another slab-out-of-bounds in fib6_nh_flush_exceptions (bsc#1224918).</li>
<li>CVE-2021-47126: ipv6: Fix KASAN: slab-out-of-bounds Read in fib6_nh_flush_exceptions (bsc#1221539).</li>
<li>CVE-2024-41011: drm/amdkfd: do not allow mapping the MMIO HDP page with large pages (bsc#1228114).</li>
<li>CVE-2021-47598: sch_cake: do not call cake_destroy() from cake_init() (bsc#1226574).</li>
<li>CVE-2021-47580: scsi: scsi_debug: Fix type in min_t to avoid stack OOB (bsc#1226550).</li>
<li>CVE-2021-47219: scsi: scsi_debug: Fix out-of-bound read in resp_report_tgtpgs() (bsc#1222824).</li>
<li>CVE-2024-40937: gve: Clear napi->skb before dev_kfree_skb_any() (bsc#1227836).</li>
<li>CVE-2021-0129: Improper access control in BlueZ may have allowed an authenticated user to potentially enable information disclosure via adjacent access (bsc#1186463).</li>
<li>CVE-2020-26558: Fixed a flaw in the Bluetooth LE and BR/EDR secure pairing that could permit a nearby man-in-the-middle attacker to identify the Passkey used during pairing (bsc#1179610).</li>
<li>CVE-2022-48821: misc: fastrpc: avoid double fput() on failed usercopy (bsc#1227976).</li>
<li>CVE-2021-47506: nfsd: fix use-after-free due to delegation race (bsc#1225404).</li>
<li>CVE-2021-47520: can: pch_can: pch_can_rx_normal: fix use after free (bsc#1225431).</li>
<li>CVE-2024-26583: tls: fix use-after-free on failed backlog decryption (bsc#1220185).</li>
<li>CVE-2024-26585: Fixed race between tx work scheduling and socket close (bsc#1220187).</li>
<li>CVE-2021-47600: dm btree remove: fix use after free in rebalance_children() (bsc#1226575).</li>
<li>CVE-2024-36974: net/sched: taprio: always validate TCA_TAPRIO_ATTR_PRIOMAP (bsc#1226519).</li>
</ul>
<p>The following non-security bugs were fixed:</p>
<ul>
<li>Fix spurious WARNING caused by a qxl driver patch (bsc#1227213)</li>
<li>X.509: Fix the parser of extended key usage for length (bsc#1218820 bsc#1226666).</li>
<li>ocfs2: fix DIO failure due to insufficient transaction credits (bsc#1216834).</li>
<li>powerpc/rtas: Prevent Spectre v1 gadget construction in sys_rtas() (bsc#1227487).</li>
<li>powerpc/rtas: clean up includes (bsc#1227487).</li>
</ul>
<h2>Special Instructions and Notes:</h2>
<ul>
<li>Please reboot the system after installing this update.</li>
</ul>
<h2>Patch Instructions:</h2>
<p>
To install this SUSE update use the SUSE recommended
installation methods like YaST online_update or "zypper patch".<br/>
Alternatively you can run the command listed for your product:
</p>
<ul class="list-group">
<li class="list-group-item">
SUSE Linux Enterprise Live Patching 15-SP2
<br/>
<code>zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP2-2024-2923=1</code>
</li>
<li class="list-group-item">
SUSE Linux Enterprise High Availability Extension 15 SP2
<br/>
<code>zypper in -t patch SUSE-SLE-Product-HA-15-SP2-2024-2923=1</code>
</li>
<li class="list-group-item">
SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2
<br/>
<code>zypper in -t patch SUSE-SLE-Product-HPC-15-SP2-LTSS-2024-2923=1</code>
</li>
<li class="list-group-item">
SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2
<br/>
<code>zypper in -t patch SUSE-SLE-Product-SLES-15-SP2-LTSS-2024-2923=1</code>
</li>
<li class="list-group-item">
SUSE Linux Enterprise Server for SAP Applications 15 SP2
<br/>
<code>zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP2-2024-2923=1</code>
</li>
</ul>
<h2>Package List:</h2>
<ul>
<li>
SUSE Linux Enterprise Live Patching 15-SP2 (nosrc)
<ul>
<li>kernel-default-5.3.18-150200.24.200.1</li>
</ul>
</li>
<li>
SUSE Linux Enterprise Live Patching 15-SP2 (ppc64le s390x x86_64)
<ul>
<li>kernel-livepatch-SLE15-SP2_Update_51-debugsource-1-150200.5.3.1</li>
<li>kernel-default-livepatch-devel-5.3.18-150200.24.200.1</li>
<li>kernel-default-debugsource-5.3.18-150200.24.200.1</li>
<li>kernel-livepatch-5_3_18-150200_24_200-default-1-150200.5.3.1</li>
<li>kernel-default-livepatch-5.3.18-150200.24.200.1</li>
<li>kernel-livepatch-5_3_18-150200_24_200-default-debuginfo-1-150200.5.3.1</li>
<li>kernel-default-debuginfo-5.3.18-150200.24.200.1</li>
</ul>
</li>
<li>
SUSE Linux Enterprise High Availability Extension 15 SP2 (aarch64 ppc64le s390x x86_64)
<ul>
<li>dlm-kmp-default-5.3.18-150200.24.200.1</li>
<li>kernel-default-debugsource-5.3.18-150200.24.200.1</li>
<li>gfs2-kmp-default-5.3.18-150200.24.200.1</li>
<li>cluster-md-kmp-default-5.3.18-150200.24.200.1</li>
<li>ocfs2-kmp-default-debuginfo-5.3.18-150200.24.200.1</li>
<li>gfs2-kmp-default-debuginfo-5.3.18-150200.24.200.1</li>
<li>ocfs2-kmp-default-5.3.18-150200.24.200.1</li>
<li>cluster-md-kmp-default-debuginfo-5.3.18-150200.24.200.1</li>
<li>kernel-default-debuginfo-5.3.18-150200.24.200.1</li>
<li>dlm-kmp-default-debuginfo-5.3.18-150200.24.200.1</li>
</ul>
</li>
<li>
SUSE Linux Enterprise High Availability Extension 15 SP2 (nosrc)
<ul>
<li>kernel-default-5.3.18-150200.24.200.1</li>
</ul>
</li>
<li>
SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 (aarch64 nosrc x86_64)
<ul>
<li>kernel-preempt-5.3.18-150200.24.200.1</li>
<li>kernel-default-5.3.18-150200.24.200.1</li>
</ul>
</li>
<li>
SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 (aarch64 x86_64)
<ul>
<li>kernel-preempt-devel-debuginfo-5.3.18-150200.24.200.1</li>
<li>kernel-default-debugsource-5.3.18-150200.24.200.1</li>
<li>kernel-obs-build-5.3.18-150200.24.200.1</li>
<li>kernel-default-devel-debuginfo-5.3.18-150200.24.200.1</li>
<li>kernel-default-base-5.3.18-150200.24.200.1.150200.9.103.1</li>
<li>kernel-preempt-debuginfo-5.3.18-150200.24.200.1</li>
<li>kernel-preempt-devel-5.3.18-150200.24.200.1</li>
<li>kernel-syms-5.3.18-150200.24.200.1</li>
<li>kernel-default-debuginfo-5.3.18-150200.24.200.1</li>
<li>kernel-preempt-debugsource-5.3.18-150200.24.200.1</li>
<li>kernel-default-devel-5.3.18-150200.24.200.1</li>
<li>kernel-obs-build-debugsource-5.3.18-150200.24.200.1</li>
</ul>
</li>
<li>
SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 (noarch)
<ul>
<li>kernel-macros-5.3.18-150200.24.200.1</li>
<li>kernel-source-5.3.18-150200.24.200.1</li>
<li>kernel-devel-5.3.18-150200.24.200.1</li>
</ul>
</li>
<li>
SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 (noarch nosrc)
<ul>
<li>kernel-docs-5.3.18-150200.24.200.1</li>
</ul>
</li>
<li>
SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (aarch64 ppc64le s390x x86_64 nosrc)
<ul>
<li>kernel-default-5.3.18-150200.24.200.1</li>
</ul>
</li>
<li>
SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (aarch64 ppc64le s390x x86_64)
<ul>
<li>kernel-default-debugsource-5.3.18-150200.24.200.1</li>
<li>kernel-obs-build-5.3.18-150200.24.200.1</li>
<li>reiserfs-kmp-default-debuginfo-5.3.18-150200.24.200.1</li>
<li>kernel-default-devel-debuginfo-5.3.18-150200.24.200.1</li>
<li>kernel-default-base-5.3.18-150200.24.200.1.150200.9.103.1</li>
<li>reiserfs-kmp-default-5.3.18-150200.24.200.1</li>
<li>kernel-syms-5.3.18-150200.24.200.1</li>
<li>kernel-default-debuginfo-5.3.18-150200.24.200.1</li>
<li>kernel-default-devel-5.3.18-150200.24.200.1</li>
<li>kernel-obs-build-debugsource-5.3.18-150200.24.200.1</li>
</ul>
</li>
<li>
SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (noarch)
<ul>
<li>kernel-macros-5.3.18-150200.24.200.1</li>
<li>kernel-source-5.3.18-150200.24.200.1</li>
<li>kernel-devel-5.3.18-150200.24.200.1</li>
</ul>
</li>
<li>
SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (noarch nosrc)
<ul>
<li>kernel-docs-5.3.18-150200.24.200.1</li>
</ul>
</li>
<li>
SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (aarch64 nosrc x86_64)
<ul>
<li>kernel-preempt-5.3.18-150200.24.200.1</li>
</ul>
</li>
<li>
SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (aarch64 x86_64)
<ul>
<li>kernel-preempt-devel-debuginfo-5.3.18-150200.24.200.1</li>
<li>kernel-preempt-debuginfo-5.3.18-150200.24.200.1</li>
<li>kernel-preempt-debugsource-5.3.18-150200.24.200.1</li>
<li>kernel-preempt-devel-5.3.18-150200.24.200.1</li>
</ul>
</li>
<li>
SUSE Linux Enterprise Server for SAP Applications 15 SP2 (nosrc ppc64le x86_64)
<ul>
<li>kernel-default-5.3.18-150200.24.200.1</li>
</ul>
</li>
<li>
SUSE Linux Enterprise Server for SAP Applications 15 SP2 (ppc64le x86_64)
<ul>
<li>kernel-default-debugsource-5.3.18-150200.24.200.1</li>
<li>kernel-obs-build-5.3.18-150200.24.200.1</li>
<li>reiserfs-kmp-default-debuginfo-5.3.18-150200.24.200.1</li>
<li>kernel-default-devel-debuginfo-5.3.18-150200.24.200.1</li>
<li>kernel-default-base-5.3.18-150200.24.200.1.150200.9.103.1</li>
<li>reiserfs-kmp-default-5.3.18-150200.24.200.1</li>
<li>kernel-syms-5.3.18-150200.24.200.1</li>
<li>kernel-default-debuginfo-5.3.18-150200.24.200.1</li>
<li>kernel-default-devel-5.3.18-150200.24.200.1</li>
<li>kernel-obs-build-debugsource-5.3.18-150200.24.200.1</li>
</ul>
</li>
<li>
SUSE Linux Enterprise Server for SAP Applications 15 SP2 (noarch)
<ul>
<li>kernel-macros-5.3.18-150200.24.200.1</li>
<li>kernel-source-5.3.18-150200.24.200.1</li>
<li>kernel-devel-5.3.18-150200.24.200.1</li>
</ul>
</li>
<li>
SUSE Linux Enterprise Server for SAP Applications 15 SP2 (noarch nosrc)
<ul>
<li>kernel-docs-5.3.18-150200.24.200.1</li>
</ul>
</li>
<li>
SUSE Linux Enterprise Server for SAP Applications 15 SP2 (nosrc x86_64)
<ul>
<li>kernel-preempt-5.3.18-150200.24.200.1</li>
</ul>
</li>
<li>
SUSE Linux Enterprise Server for SAP Applications 15 SP2 (x86_64)
<ul>
<li>kernel-preempt-devel-debuginfo-5.3.18-150200.24.200.1</li>
<li>kernel-preempt-debuginfo-5.3.18-150200.24.200.1</li>
<li>kernel-preempt-debugsource-5.3.18-150200.24.200.1</li>
<li>kernel-preempt-devel-5.3.18-150200.24.200.1</li>
</ul>
</li>
</ul>
<h2>References:</h2>
<ul>
<li>
<a href="https://www.suse.com/security/cve/CVE-2020-26558.html">https://www.suse.com/security/cve/CVE-2020-26558.html</a>
</li>
<li>
<a href="https://www.suse.com/security/cve/CVE-2021-0129.html">https://www.suse.com/security/cve/CVE-2021-0129.html</a>
</li>
<li>
<a href="https://www.suse.com/security/cve/CVE-2021-47126.html">https://www.suse.com/security/cve/CVE-2021-47126.html</a>
</li>
<li>
<a href="https://www.suse.com/security/cve/CVE-2021-47219.html">https://www.suse.com/security/cve/CVE-2021-47219.html</a>
</li>
<li>
<a href="https://www.suse.com/security/cve/CVE-2021-47291.html">https://www.suse.com/security/cve/CVE-2021-47291.html</a>
</li>
<li>
<a href="https://www.suse.com/security/cve/CVE-2021-47506.html">https://www.suse.com/security/cve/CVE-2021-47506.html</a>
</li>
<li>
<a href="https://www.suse.com/security/cve/CVE-2021-47520.html">https://www.suse.com/security/cve/CVE-2021-47520.html</a>
</li>
<li>
<a href="https://www.suse.com/security/cve/CVE-2021-47580.html">https://www.suse.com/security/cve/CVE-2021-47580.html</a>
</li>
<li>
<a href="https://www.suse.com/security/cve/CVE-2021-47598.html">https://www.suse.com/security/cve/CVE-2021-47598.html</a>
</li>
<li>
<a href="https://www.suse.com/security/cve/CVE-2021-47600.html">https://www.suse.com/security/cve/CVE-2021-47600.html</a>
</li>
<li>
<a href="https://www.suse.com/security/cve/CVE-2022-48792.html">https://www.suse.com/security/cve/CVE-2022-48792.html</a>
</li>
<li>
<a href="https://www.suse.com/security/cve/CVE-2022-48821.html">https://www.suse.com/security/cve/CVE-2022-48821.html</a>
</li>
<li>
<a href="https://www.suse.com/security/cve/CVE-2023-52686.html">https://www.suse.com/security/cve/CVE-2023-52686.html</a>
</li>
<li>
<a href="https://www.suse.com/security/cve/CVE-2023-52885.html">https://www.suse.com/security/cve/CVE-2023-52885.html</a>
</li>
<li>
<a href="https://www.suse.com/security/cve/CVE-2024-26583.html">https://www.suse.com/security/cve/CVE-2024-26583.html</a>
</li>
<li>
<a href="https://www.suse.com/security/cve/CVE-2024-26584.html">https://www.suse.com/security/cve/CVE-2024-26584.html</a>
</li>
<li>
<a href="https://www.suse.com/security/cve/CVE-2024-26585.html">https://www.suse.com/security/cve/CVE-2024-26585.html</a>
</li>
<li>
<a href="https://www.suse.com/security/cve/CVE-2024-36974.html">https://www.suse.com/security/cve/CVE-2024-36974.html</a>
</li>
<li>
<a href="https://www.suse.com/security/cve/CVE-2024-38559.html">https://www.suse.com/security/cve/CVE-2024-38559.html</a>
</li>
<li>
<a href="https://www.suse.com/security/cve/CVE-2024-39494.html">https://www.suse.com/security/cve/CVE-2024-39494.html</a>
</li>
<li>
<a href="https://www.suse.com/security/cve/CVE-2024-40937.html">https://www.suse.com/security/cve/CVE-2024-40937.html</a>
</li>
<li>
<a href="https://www.suse.com/security/cve/CVE-2024-41011.html">https://www.suse.com/security/cve/CVE-2024-41011.html</a>
</li>
<li>
<a href="https://www.suse.com/security/cve/CVE-2024-41059.html">https://www.suse.com/security/cve/CVE-2024-41059.html</a>
</li>
<li>
<a href="https://www.suse.com/security/cve/CVE-2024-41069.html">https://www.suse.com/security/cve/CVE-2024-41069.html</a>
</li>
<li>
<a href="https://www.suse.com/security/cve/CVE-2024-41090.html">https://www.suse.com/security/cve/CVE-2024-41090.html</a>
</li>
<li>
<a href="https://www.suse.com/security/cve/CVE-2024-42145.html">https://www.suse.com/security/cve/CVE-2024-42145.html</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1065729">https://bugzilla.suse.com/show_bug.cgi?id=1065729</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1179610">https://bugzilla.suse.com/show_bug.cgi?id=1179610</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1186463">https://bugzilla.suse.com/show_bug.cgi?id=1186463</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1216834">https://bugzilla.suse.com/show_bug.cgi?id=1216834</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1218820">https://bugzilla.suse.com/show_bug.cgi?id=1218820</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1220185">https://bugzilla.suse.com/show_bug.cgi?id=1220185</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1220186">https://bugzilla.suse.com/show_bug.cgi?id=1220186</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1220187">https://bugzilla.suse.com/show_bug.cgi?id=1220187</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1221539">https://bugzilla.suse.com/show_bug.cgi?id=1221539</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1222824">https://bugzilla.suse.com/show_bug.cgi?id=1222824</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1224682">https://bugzilla.suse.com/show_bug.cgi?id=1224682</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1224918">https://bugzilla.suse.com/show_bug.cgi?id=1224918</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1225404">https://bugzilla.suse.com/show_bug.cgi?id=1225404</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1225431">https://bugzilla.suse.com/show_bug.cgi?id=1225431</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1226519">https://bugzilla.suse.com/show_bug.cgi?id=1226519</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1226550">https://bugzilla.suse.com/show_bug.cgi?id=1226550</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1226574">https://bugzilla.suse.com/show_bug.cgi?id=1226574</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1226575">https://bugzilla.suse.com/show_bug.cgi?id=1226575</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1226666">https://bugzilla.suse.com/show_bug.cgi?id=1226666</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1226758">https://bugzilla.suse.com/show_bug.cgi?id=1226758</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1226785">https://bugzilla.suse.com/show_bug.cgi?id=1226785</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1227213">https://bugzilla.suse.com/show_bug.cgi?id=1227213</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1227487">https://bugzilla.suse.com/show_bug.cgi?id=1227487</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1227716">https://bugzilla.suse.com/show_bug.cgi?id=1227716</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1227750">https://bugzilla.suse.com/show_bug.cgi?id=1227750</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1227836">https://bugzilla.suse.com/show_bug.cgi?id=1227836</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1227976">https://bugzilla.suse.com/show_bug.cgi?id=1227976</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1228013">https://bugzilla.suse.com/show_bug.cgi?id=1228013</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1228114">https://bugzilla.suse.com/show_bug.cgi?id=1228114</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1228328">https://bugzilla.suse.com/show_bug.cgi?id=1228328</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1228561">https://bugzilla.suse.com/show_bug.cgi?id=1228561</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1228644">https://bugzilla.suse.com/show_bug.cgi?id=1228644</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1228743">https://bugzilla.suse.com/show_bug.cgi?id=1228743</a>
</li>
</ul>
</div>